Unable to Set up MDW connecting to Azure SQL database using Azure AD Integrated Authentication type
Did anyone try to connect azure sql database using Azure AD Integrated Authentication? I notice MFA was missing as an Auth type but AD Integrated was failing with error. Let me know if anyone resolved this error.
One or more errors occurred. Could not discover endpoint for Integrate Windows Authentication. Check your ADFS settings. It should support Integrate Widows Authentication for WS-Trust 1.3 or WS-Trust 2005.
Details:
Could not discover endpoint for Integrate Windows Authentication. Check your ADFS settings. It should support Integrate Widows Authentication for WS-Trust 1.3 or WS-Trust 2005.
Page 1 / 1
Hi Zeph
When running the ODX server service is it running as a user with Azure AD credentials?
Are you logged in to TX as a user that also is an Azure ad Account?
I tested the Azure AD Password authentication method to be working, but I don’t know if I could ever be sure I was actually logged in as a Azure AD integrated account.
ODX server is with Azure data lake and we are using app reg key to connect to the data lake.
We are logged into TX as a user that is an AD account.
With Azure AD PWD, Our security policy does not allow us to store the PW in the portal
Hi Zeph
The ODX Server Service is this.
Besides that it could be the Execution Service user. I marked that as well.
I am not aware of any possibility of adding a AD user to run a service.
The other user, possibly used for access to anything is this. See lower right corner.
This is not an AD user, it is what is created in the portal.
It is unfortunate that you aren’t allowed to use the other options.
I think if you are logged into Windows using an AAD account which is synched through ADFS you could use AAD Integrated security. There are some prerequisites with regards to your setup though.
HI @zmayari are you able to connect successfully in SSMS using Integrated auth?
Searching for the error online, I found the following article, which suggests that you can enable the ADFS endpoint for Integrated Windows Authentication for WS-Trust 1.3 using a PowerShell cmdlet.