All geek questions in one place

Azure SQL Active Directory Integrated Auth Federated Domains

I was unable to connect to Azure SQL Server using Active Directory Integrated Auth. When I try to authenticate, I get the error below.

Any ideas on how to further identify this problem will be appreciated.

Greetings

Cannot connect to XXXXXXX.database.windows.net.

=====================================

Failed to authenticate user NT Authority \ Anonymous logon to Active Directory (Authentication = ActiveDirectoryIntegrated). Error Code 0xCAA9002C; state 10 Failed to parse the XML block. Cause. The XML document must have a top-level element. Line: 0, position: 0 Text: (null) (.Net SqlClient data provider)

For help, click http://go.microsoft.com/fwlink?ProdName=Microsoft%20SQL%20Server&EvtSrc=MSSQLServer&EvtID=0&LinkId=20476

Server Name: XXXXXXX.database.windows.net Error Number: 0 Severity: 11 Status: 0 Procedure: ADALGetAccessToken

Program Location:

   at System.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, SqlCredential credential, Object providerInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance, SqlConnectionString userConnectionOptions, SessionData reconnectSessionData, DbConnectionPool pool, String accessToken, Boolean applyTransientFaultHandling)
   at System.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, DbConnectionPoolKey poolKey, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection, DbConnectionOptions userOptions)
   at System.Data.ProviderBase.DbConnectionFactory.CreateNonPooledConnection(DbConnection owningConnection, DbConnectionPoolGroup poolGroup, DbConnectionOptions userOptions)
   at System.Data.ProviderBase.DbConnectionFactory.TryGetConnection(DbConnection owningConnection, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal oldConnection, DbConnectionInternal& connection)
   at System.Data.ProviderBase.DbConnectionInternal.TryOpenConnectionInternal(DbConnection outerConnection, DbConnectionFactory connectionFactory, TaskCompletionSource`1 retry, DbConnectionOptions userOptions)
   at System.Data.ProviderBase.DbConnectionClosed.TryOpenConnection(DbConnection outerConnection, DbConnectionFactory connectionFactory, TaskCompletionSource`1 retry, DbConnectionOptions userOptions)
   at System.Data.SqlClient.SqlConnection.TryOpenInner(TaskCompletionSource`1 retry)
   at System.Data.SqlClient.SqlConnection.TryOpen(TaskCompletionSource`1 retry)
   at System.Data.SqlClient.SqlConnection.Open()
   at Microsoft.SqlServer.Management.SqlStudio.Explorer.ObjectExplorerService.ValidateConnection(UIConnectionInfo ci, IServerType server)
   at Microsoft.SqlServer.Management.UI.ConnectionDlg.Connector.ConnectionThreadUser()
+4
source share
1 answer

I connect to SSMS after logging in to the federated domain.

The error is returned by SSMS when trying to connect.

I assume that Azure SQL Server can determine that the user is from the federated domain because the procedure is being called: ADALGetAccessToken?

thank

M

0
source

Source: https://habr.com/ru/post/1653252/

More articles:


All Articles