Who Can Connect to an Azure SQL Database?
Question
When you create an Azure SQL database, which account can always connect to the database?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.B
When you first deploy Azure SQL, you specify an admin login and an associated password for that login. This administrative account is called Server admin.
https://docs.microsoft.com/en-us/azure/azure-sql/database/single-database-create-quickstartWhen you create an Azure SQL database, the account that can always connect to the database is the server admin login account of the logical server.
Here's a detailed explanation:
When you create an Azure SQL database, you create it on a logical server, which is a container for your databases. The logical server is identified by a unique server name and is created within an Azure region.
When you create a logical server, you must specify a server admin login account. This account is used to manage the logical server, including its databases. The server admin login account has the highest level of permissions for the logical server and all its databases.
By default, the server admin login account has full control over all the databases created on the logical server, including the ability to read, write, and modify data. This means that the server admin login account can always connect to any database on the logical server.
Therefore, answer B, "the server admin login account of the logical server" is correct.
Answer A, "the Azure Active Directory (Azure AD) account that created the database," is not correct because it is not necessarily the same as the server admin login account of the logical server. The Azure AD account that created the database is only granted access to the database if it is granted appropriate permissions.
Answer C, "the Azure Active Directory (Azure AD) administrator account," is not correct because it is not necessarily the same as the server admin login account of the logical server. The Azure AD administrator account has administrative rights over the Azure AD tenant, but not necessarily over the logical server.
Answer D, "the sa account," is not correct because it is a login for the on-premises instance of SQL Server, not for Azure SQL database. Azure SQL database does not support the sa account.
