Effect on Azure SQL Server DB permissions of Azure Active Directory Group rename

Ruchira Kale 1 Reputation point
2022-01-12T13:05:46.04+00:00

hi,
I need to rename the AAD group. The users of that group have permissions on Azure SQL server database via Group only( contained user).
1] What will be the effect of renaming the AAD group name on SQL server database permissions?
2] Will the user still have the same permissions?
3] Will the name change of the ADD group will be reflected automatically in Azure SQL database?
4] if it is not reflected automatically then how do I fix it?

Azure SQL Database
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,683 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Nandan Hegde 29,896 Reputation points MVP
    2022-01-12T13:35:33.983+00:00

    Hey,
    Renaming an AAD group would not have any impact on existing permissions and everything should be same.
    Based on my experience, the name change is not reflected automatically in user details within Azure SQL database/synapse.

    Still get the old names with the below query:

    SELECT r.name role_principal_name, m.name AS member_principal_name
    FROM sys.database_role_members rm
    JOIN sys.database_principals r
    ON rm.role_principal_id = r.principal_id
    JOIN sys.database_principals m
    ON rm.member_principal_id = m.principal_id