Azure Permissions
To use CloudBeaver with Azure, certain permissions are required for different actions. Below is a summary of the necessary permissions and their purposes.
| Action | Permission | Description |
|---|---|---|
| Login | No additional permissions required | Allows users to authenticate in CloudBeaver. |
| Cloud Explorer |
Azure Service Management (user_impersonation) |
Grants access to retrieve a list of available user resources using the https://management.azure.com//.default scope. |
| Database authentication - Azure SQL, MySQL |
Azure SQL Database (user_impersonation) |
Enables database authentication (Azure SQL, MySQL) using the https://database.windows.net//.default scope. |
| Database authentication - PostgreSQL, MySQL |
Azure OSSRDBMS Database (user_impersonation) |
Enables database authentication (PostgreSQL, MySQL) using the https://ossrdbms-aad.database.windows.net/.default scope. |
| User provisioning |
User.ReadBasic.All or User.Read.All
|
Allows importing users from Azure AD. |
| Auto-assigned user teams | No additional permissions required, but groups claim must be included in the access or ID token. |
Automatically assigns users to teams based on their Azure AD group memberships. |
- Getting started
- Create connection
- Connection network options
- Supported databases
-
Drivers management
- Database authentication methods
- Database navigator
- Properties editor
- Data editor
- SQL editor
-
Entity relation diagrams
- Cloud services
-
AI Smart assistance
- Data transfer
- General user guide
- Administration
- Server configuration
-
Server security and access configuration
- Authentication methods
- Access management
- Proxy configuration
-
Secret management
- Logs
-
Query manager
- Workspace location
- Command line parameters
-
Session manager
- Deployment options
- CloudBeaver Editions
- FAQ
- Development