search
πŸ”— Supported Cloud ObjectsπŸ”— PortalπŸ”— REST APIπŸ”— tuono.com

Deploy or connect an Azure MSSQL database with a discovered network.

hashtag
How to add a Microsoft.Sql service endpoint and disable network policy to a discovered subnet

hashtag
Overview

Tuono has the ability to discover an existing network and subnet in your infrastructure and deploy or connect to an Azure MSSQL database. Since we treat discovered networks as read only objects you are required to configure the network manually to prepare it for database usage.

Azure MSSQL requires the following subnet configuration that will not automatically be configured in a read only network.

  1. Subnet with a 'Microsoft.Sql/managedInstances' endpoint.

  2. Subnet with privateEndpointNetworkPolicies disabled

hashtag
Error message

When attempting to deploy a Microsoft Azure MSSQL database to a discovered network you will receive the following errors:

Service Endpoint missing

Apply DB in azure :: end :: failure

error in managed.database.<DATABASE_NAME>

Subnet <SUBNET_NAME> must have a 'Microsoft.Sql' service endpoint.

Add a Microsoft.Sql service endpoint to the subnet, or do not make the subnet readonly.

hashtag
Network policy enabled

hashtag
Resolution

Execute the following azure cli commands to configure the targeted subnet.

  1. Open an Azure shell console https://shell.azure.com/arrow-up-right.

  2. Set your account subscriptionarrow-up-right in cloud shell

  1. Add a Microsoft.SQL endpoint to your subnet by executing a subnet updatearrow-up-right command in cloud shell.

4. Disable network policiesarrow-up-right for private endpoints.

  1. Re-run the Tuono job.

PreviousDatabaseNextDeploy or connect an Azure Managed Instance database with a discovered network.

Last updated

Was this helpful?