You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/postgresql/flexible-server/how-to-manage-azure-ad-users.md
+10-2Lines changed: 10 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -28,7 +28,7 @@ If you like to learn about how to create and manage Azure subscription users and
28
28
## Create or delete Microsoft Entra administrators using Azure portal or Azure Resource Manager (ARM) API
29
29
30
30
1. Open the **Authentication** page for your Azure Database for PostgreSQL flexible server instance in the Azure portal.
31
-
1. To add an administrator - select **Add Microsoft Entra Admin** and select a user, group, application or a managed identity from the current Microsoft Entra tenant.
31
+
1. To add an administrator - select **Add Microsoft Entra Admin** and select a user, group, application, or a managed identity from the current Microsoft Entra tenant.
32
32
1. To remove an administrator - select **Delete** icon for the one to remove.
33
33
1. Select **Save** and wait for provisioning operation to completed.
34
34
@@ -42,7 +42,7 @@ If you like to learn about how to create and manage Azure subscription users and
42
42
43
43
## Manage Microsoft Entra roles using SQL
44
44
45
-
Once first Microsoft Entra administrator is created from the Azure portal or API, you can use the administrator role to manage Microsoft Entra roles in your Azure Database for PostgreSQL flexible server instance.
45
+
Once the first Microsoft Entra administrator is created from the Azure portal or API, you can use the administrator role to manage Microsoft Entra roles in your Azure Database for PostgreSQL flexible server instance.
46
46
47
47
We recommend getting familiar with [Microsoft identity platform](../../active-directory/develop/v2-overview.md) for best use of Microsoft Entra integration with Azure Database for PostgreSQL flexible server.
48
48
@@ -86,6 +86,14 @@ For example: select * from pgaadauth_create_principal('[email protected]', false,
## Drop a role using Microsoft Entra principal name
90
+
91
+
Remember that any Microsoft Entra role that is created in PostgreSQL must be dropped using a Microsoft Entra Admin. If you use a regular PostgreSQL admin to drop an Entra role then it will result in an error.
92
+
93
+
```sql
94
+
Drop Role rolename;
95
+
```
96
+
89
97
## Create a role using Microsoft Entra object identifier
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments