Need to Connect Azure Sql db from Azure Data Factory,restricted at Schema Level using userManagedIdentity as Authentication Method
Question
I have a successful connection from Azure data Factory to my Azure Sql db.And I have set the AAD Admin as myself and also the UserManagedIdentity from the portal.
Now whoever use that UserManagedidentity in ADF can access the entire Sql DB.I need to restrict the access at Schema level, like X people should have access to X tables and Y people should have access to Y Tables.
So how can we achieve this through usermangedIdentity,Can we set Schema level permissions via usermanagedidentity?
2 answers
solution1
0 2023-02-01 16:09:10
The managed identity has a corresponding user in SQL, so limit their permissions are you would any other user or group.
ie: GRANT SELECT ON Employees TO UserManagedIdentity;
solution2
0 2023-02-02 04:07:14
Admin overrides all other restrictions. So as long as a user is part of Server admin, he/she can have the entire access. For your use case, you would need to remove the managed identity from the admin group DL, create a new user within the database and grant the new user required access
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.