Page Comparison

...

To use the Active Directory Integrated Security authentication option, follow these steps:

1. Log in with the admin user and create USER [username] from EXTERNAL PROVIDER; on the database you use.

2. Add ddladmin, datawriter, and datareader roles for checking the status and Deploy Packager processes:
   EXEC sp_addrolemember 'db_ddladmin', 'datical_user';
EXEC sp_addrolemember 'db_datawriter', 'datical_user';
EXEC sp_addrolemember 'db_datareader', 'datical_user';

3. Make sure that you federated the on-premise Active Directory Federation Services (AD FS) with the Azure Active Directory in the cloud.

4. Make the connection from a domain-joined machine that is federated with Azure Active Directory. You can access an Azure SQL Database without entering credentials when you're logged in to a domain-joined machine. Additionally, a database user representing your Azure Active Directory principal, or one of the groups to which the user belongs, needs to exist in the database and have the CONNECT permission.

5. Install the OLE DB Driver. This msi installer should add adal.dll to System32 and Syswow64 folders.

6. Install the ODBC Driver.

7. Ensure that the SQL Server JDBC Driver Authentication Library is in \Windows\System32. The file is named mssql-jdbc_auth-<version>.x64.dll where <version> is a version number for the file.

   1. If the mssql-jdbc_auth-<version>.x64.dll library is not already in \Windows\System32, it can be extracted from the following file (if you have installed the SQL Server JDBC Driver for Liquibase Enterprise/Datical): <datical-install>\plugins\com.datical.db.drivers.mssql_<version>.jar

   2. Using an archive utility, open or extract the com.datical.db.drivers.mssql_<version>.jar file to access its contents.

   3. The DLL is located in the following archive location: com.datical.db.drivers.mssql_1.0.24.jar\auth\x64\mssql-jdbc_auth-<version>.x64.dll

   4. Put the mssql-jdbc_auth-<version>.x64.dll file in \Windows\System32

8. Make sure sqlcmd (version 13.1 or higher) is installed and on your PATH. To install sqlcmd, go to the sqlcmd Utility page.

...

To connect using the Active Directory Password authentication, follow these steps:

1. Log in with the admin user and create USER [username] from EXTERNAL PROVIDER; on the database you use.

2. Add ddladmin, datawriter, and datareader roles for checking the status and Deploy Packager processes:
   EXEC sp_addrolemember 'db_ddladmin', 'datical_user';
EXEC sp_addrolemember 'db_datawriter', 'datical_user';
EXEC sp_addrolemember 'db_datareader', 'datical_user';

3. Install the SQL Server JDBC Driver Authentication Library - mssql-jdbc_auth-<version>-<arch>.dll file on your machine. The file is located in the <datical-install>\DaticalDB\plugins\ directory.

4. Put the mssql-jdbc_auth-<version>-<arch>.dll file in \Windows\System32. There are 32-bit and 64-bit versions of the .dll file included with the Microsoft SQL Server JDBC driver. For example: mssql-jdbc_auth-8.4.1.x64.dll.

...

Optionally, to acquire the accessToken for establishing the connection, you can specify msiClientId in the Connection or DataSource properties along with the Active Directory MSI Authentication mode, which must include the Client ID of a Managed Identity.

...