Set Server Administrator Password (classic)


THIS TOPIC APPLIES TO: noSQL Server yesAzure SQL DatabaseyesAzure SQL Data Warehouse noParallel Data Warehouse

Reset the administrator password for a server.


The recommended REST commands to work with SQL Database are the Resource Manager based Azure SQL Database REST API. While there is no change to SQL Database, be aware that the classic deployment model command in this article is scheduled for deprecation on December 1, 2019. For a table providing links to the specific new commands you should use, see Operations for Azure SQL Databases.


The Set Server Administrator Password request must be specified as follows:

  • Replace {subscriptionId} with your subscription ID.

  • Replace {serverName} with the name of the server to change the password.

Method Request URI HTTP Version
POST{subscriptionId}/services/sqlservers/servers/{serverName}?op=ResetPassword HTTP/1.1

If an operation returns success, the operation is complete and changes are effective immediately. If an operation fails because of a user error, no changes are applied. If there is a communication error or internal server error, you should check the status of the operation using List Servers (classic).

URI Parameters


Request Headers

The following table describes the required and optional request headers:

Request Header Description
x-ms-version Required. Specifies the version of the operation to use for this request. This header should be set to 2012-03-01.
x-ms-client-request-id Optional. Provides a client-generated, opaque value with a 1 KB character limit. Using this header is highly recommended for correlating client-side activities with requests received by the server.

Request Body

The format of the request body is as follows. Replace {myNewPassword} with your new password.

<?xml version="1.0" encoding="utf-8"?>  
<AdministratorLoginPassword xmlns="">{myNewPassword}</AdministratorLoginPassword>  

The following table describes the elements in the request body:

Element Name Description
AdministratorLoginPassword The new administrator password for the server.

For more information about password requirements, see Password Policy


The response includes an HTTP status code and a set of response headers.

Status Code

Response Headers

The response for this operation includes the following headers. The response may also include additional standard HTTP headers. All standard headers conform to the HTTP/1.1 protocol specification.

Response Header Description
x-ms-request-id A value that uniquely identifies a request made against the database management service. This request id is used for request tracking. If a failure occurs that requires the user to contact Microsoft Support, the request id should be provided to Microsoft to assist in tracking and resolving the failure for the request.

Response Body



The following console application resets the administrator password for a server.

Replace the following values:

  • {subscriptionId} – replace with the subscription identifier for your subscription.

  • {serverName} – replace with the name of the server.

  • {myNewPassword} – replace with the new password for the server.

  • {thumbprint} – replace with the thumbprint of a management certificate in your subscription.

using System;  
using System.Collections.Generic;  
using System.Linq;  
using System.Text;  
using System.Threading.Tasks;  
using System.IO;  
using System.Xml;  
using System.Security;  
using System.Security.Cryptography;  
using System.Security.Cryptography.X509Certificates;  
using System.Net;  
namespace SetServerPassword  
    /// <summary>  
    /// Changes the password for a server.  
    /// </summary>  
    class Program  
        static void Main(string[] args)  
            Uri requestUri = new Uri(""  
                        + "{subscriptionId}"  
                        + "/services"  
                        + "/sqlservers/servers/{serverName}"  
                        + "?op=ResetPassword");  
            // Create the request and specify attributes.  
            HttpWebRequest request = (HttpWebRequest)HttpWebRequest.Create(requestUri);  
            // Add a x-ms-version header to specify API version.  
            request.Headers.Add("x-ms-version", "2012-03-01");  
            // Generate a request ID that can be used to identify this request in the service logs.  
            string clientRequestId = Guid.NewGuid().ToString();  
            request.Headers.Add("x-ms-client-request-id", clientRequestId);  
            request.Method = "POST";  
            request.ContentType = "application/xml";  
            // Build the request body.  
            string newPassword = "{myNewPassword}";  
            string xmlBody = String.Format(  
                "<AdministratorLoginPassword xmlns=\"\">{0}</AdministratorLoginPassword>", newPassword);  
            // Write the POST body into the request.  
            ASCIIEncoding encoding = new ASCIIEncoding();  
            byte[] data = encoding.GetBytes(xmlBody);  
            Stream newStream = request.GetRequestStream();  
            newStream.Write(data, 0, data.Length);  
            // The thumbprint value of the management certificate.  
            // Replace {thumbprint} with the thumbprint of a management certificate associated with your subscription.  
            // It must also be installed on the machine accessing the API.  
            string certThumbprint = "{thumbprint}";  
            // Create a reference to the My certificate store.  
            X509Store certStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);  
            // Open the store.  
            // Find the certificate that matches the thumbprint.  
            X509Certificate2Collection certCollection = certStore.Certificates.Find(X509FindType.FindByThumbprint, certThumbprint, false);  
            // Verify the certificate was added to the collection.  
            if (0 == certCollection.Count)  
                throw new Exception("Error: No certificate found with thumbprint " + certThumbprint);  
            // Create an X509Certificate2 object using our matching certificate.  
            X509Certificate2 certificate = certCollection[0];  
            // Attach the certificate to the request.  
                using (HttpWebResponse response = (HttpWebResponse)request.GetResponse())  
                using (Stream responseStream = response.GetResponseStream())  
                using (StreamReader reader = new StreamReader(responseStream))  
                    // Display the client request ID.  
                    Console.WriteLine("clientRequestId: " + clientRequestId);  
                    // Display the web response status code.  
                    Console.WriteLine("Response status code: " + response.StatusCode);  
                    // Display the request ID returned by Windows Azure.  
                    Console.WriteLine("x-ms-request-id: "  
                        + response.Headers["x-ms-request-id"]);  
                    // Display the raw response.  
                    Console.WriteLine("Received response:");  
            catch (Exception e)  

See Also

Common REST API Error Codes
Azure SQL Database
Operations for Azure SQL Databases
Azure SQL Database Cmdlets