How to fix Add-AzureADGroupMember error in Azure AD - azure-powershell

I'm a bit baffled as to why I'm receiving the error shown below. I've followed the official documentation for the cmdlet which doesn't have much and cannot figure out why I'm receiving this error. I'm feeding the correct ObjectID for the group and RefObjectID for the user.
https://i.imgur.com/AbEKPt8.png

This issue may be related to your group , if your group is e.g. Mail-enabled security groups, you could not update it directly in Azure AD, they are managed either from on-premises or from Exchange Online.
The command Add-AzureADGroupMember essentially calls the Azure AD Graph API, you could refer to this similar issue.
Mail-enabled security groups cannot currently be updated directly in Azure AD, they are managed either from on-premises (if you're syncing from an on-premises directory with Azure AD Connect), or from Exchange Online.

Related

Connection string for parameterized Linked Services - Azure SQL / Azure Synapse

I have a requirement where in I need to parameterize my Azure SQL/Azure Synapse linked service using 2 parameters 'DBServer' and 'DBName'. I configured my collaboration branch as below and everything works as expected in my Synapse workspace.
Even the linked service ARM template shows the connection string values as expected.
However when I publish the code (using the publish button in Synapse workspace), the code in the Synapse Live mode does not contain these parameters defined. Please see the snippet below.
Even the code in the TemplateParameter file of the publish branch is blank.
I tried removing the parameters and put in the actual values for Server and DBName, it still shows no values in the publish branch/Live mode. While I understand that the git mode does not store secrets, this case of mine does not have any secrets and I am authenticating via Managed Identity.
Is there a solution to deal with this scenario? I would not prefer to store the connection string in KeyVault and refer it back in the linked service as it does not make the solution completely dynamic.
I created Azure sql database and created synapse pool in Azure portal. I created SQL linked service in synapse pool with managed identity authentication.
to authenticate with managed identity, I created user in SQL database with synapse pool name using below query
create user [SynapsePoolName] from external provider;
ALTER ROLE db_owner ADD MEMBER [SynapsePoolName];
Image for reference:
Linked service:
I published the Linked Service with publish button.
Image for reference:
It published successfully.
When I open the linked service after publish, I am getting the parameters.
Image for reference:
I got the parameters in template also.
Image for reference:
It worked in my machine kindly check from your side.

migrating logins to another subscription in azure

Is there a way to migrate logins, including their sid and passwords, to a master on a server on another subscription in azure? There seems to be a couple ways to do this on-prem to on-prem but haven't found a way to migrate logins across subscriptions from azure sql to azure sql
Transferring an Azure subscription to a different Azure AD directory is a complex process that must be carefully planned and executed. Many Azure services require security principals (identities) to operate normally or even manage other Azure resources.
Steps to prepare for the transfer are in this link https://learn.microsoft.com/en-us/azure/role-based-access-control/transfer-subscription

Unable to connect Azure purview from Azure Synapse

I followed the documentation for connecting azure purview account with synapse.
I do not see option - Manage -> Azure Purview in Synapse Workspace.
UPDATE: Azure Purview Integration is now available in Azure Synapse Studio.
On January 8th, 2021
The integration between Azure Synapse Analytics and Azure Purview is currently under Preview. If you are interested to try Azure Purview in Synapse, please connect with your Microsoft Sales Representative.
To get access to this feature you need to reach out to your sales representative at Microsoft.
In case, if you do not have a sales representative at Microsoft. I would suggest you file a support ticket and with a strong business use case.
Once you have created a support ticket, I would request you to share the support request number so that I can route it to the Azure Synapse team to enable access to the Azure Purview.
Hello as mentioned Pradeep, the integration feature is under gated preview but will be public very soon (end of January). In the meantime, if you still want to connect, please connect through my LinkedIn profile (Arnaud Comet).
Thank you,
Arnaud

Does Azure charges for using VPN in SQL Database Managed Instance?

I am planning to use Azure SQL Database Managed Instance, but not sure if using VPN will be charged or not. Microsoft Doc's on this are quite confusing and doesn't clearly mention about VPN pricing.
You have to pay for any bandwidth consumption related to data going out of Microsoft Azure Data Centers. You can get more information about it here.
If you are looking for pricing of VPN Gateway and Express Route Gateway you can visit this Microsoft page.

How to get error log in windows Azure server?

I have developed test application to display claims of authenticated identity.
this application is working in local but when I publish to windows azure it gives some dot net error. Can Anybody explain me how to get error log in windows azure server?
Thanks in Advance !!!
I suspect you aren't looking for help with Azure Storage - or just in case you are I have included a detailed explanation below. For Azure log information see here: Windows Azure PaaS Compute Diagnostics Data.
If it is storage you are interested in, the following blog post provides a good overview of the logging capability: Windows Azure Storage Logging:Windows Azure Storage Logging: Using Logs to Track Storage Requests.
Jason