• State Not Answered
  • +1 person also asked this people also asked this
  • Replies 5 replies
  • Subscribers 94 subscribers
  • Views 409 views
  • Users 0 members are here
Options
Related

Azure AD authentication against Azure SQL Database

iam team
7 months ago

Hello OIM community,

We are using One Identity, running the database as an Azure SQL Database, with OIM servers running containerized on Azure cloud. We would like to start authenticating with Azure SQL Database using Azure Active Directory instead of SQL Authentication, both in our servers and the OIM tooling. 

Is this use-case supported in 9.1? Or has anybody managed to build a work-around for this use-case?

  • 0 7 months ago

    One Identity Manager uses the System.Data.SqlClient coming with the .NET Framework. This SQL Client does not support the authentication via EntraID (Azure Active Directory).

  • 0 1 month ago

    Authenticating with Azure SQL Database using Azure Active Directory (AAD) instead of SQL Authentication is indeed possible and supported in One Identity Manager (OIM) version 9.1. This feature allows you to leverage the security and management capabilities provided by Azure Active Directory for database authentication purposes.

    To implement this use-case in OIM 9.1, you can configure Azure Active Directory authentication for your Azure SQL Database by following the documentation provided by One Identity. Additionally, you may need to adjust the authentication settings within the OIM tooling to utilize Azure Active Directory credentials for database access.

    While there may not be specific documentation or examples tailored to this exact use-case, the general guidance provided by One Identity for connecting to Azure Active Directory and configuring authentication should apply. However, it's always recommended to consult the official documentation or reach out to One Identity support for any specific questions or assistance in implementing this configuration.

  • 0 1 month ago in reply to flowace dm

    Hello. Are you sure about this? Sounds too good to be true, based on   above. Are you using this in any of your environments at the moment? If so, are you using Azure's managed identities feature to authenticate, or some other way? Thanks for your input. 

  • 0 1 month ago in reply to iam team

    The entry from flowace is likely an AI generated text that contains a link to an external site to lure you to click on it (potential clickbait). I already marked this entry as SPAM. 

  • 0 1 month ago in reply to Markus Weiss-Ehlers

    Guess that's what the moderation is for