Jump to content

Integrate logic apps with SQL server by API connection using credentials kept in key vault.

Guest Serena_Li
Guest Serena_Li
in Microsoft Support & Discussions

Featured Replies

Posted

Introduction:

 

===================================================================================

 

This blog introduces the detailed procedures to Integrate logic apps with SQL server by API connection using credentials kept in key vault.

 

 

 

Solution

 

===================================================================================

 

STEP1: As we chose to use “SQL server Authentication”, please save the SQL server’s password in KeyVault:

 

872x377vv2.png.689409090ce36d1b7202fac92daec80b.png

 

 

 

STEP2: I fetched the ARM template for SQL-API connection from network trace during API connection creating process:

 

 

 

(Note: Please change the highlighted part as your environment)

 

 

 

templatea.json

 

 

{

 

"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",

 

"contentVersion": "1.0.0.0",

 

"parameters": {

 

"connections_sql_name": {

 

"defaultValue": "sql-5",

 

"type": "String"

 

},

 

"password": {

 

"type": "String"

 

 

 

}

 

},

 

"variables": {},

 

"resources": [

 

{

 

"properties": {

 

"api": {

 

"id": "/subscriptions/a781a931-d3dc-4bd0-8f43-05528dd0b6fb/providers/Microsoft.Web/locations/eastus/managedApis/sql"

 

},

 

"parameterValueSet": {

 

"name": "sqlAuthentication",

 

"values": {

 

"server": {

 

"value": "serena0227sqloauth.database.windows.net"

 

},

 

"database": {

 

"value": "keyvaulttest"

 

},

 

"username": {

 

"value": "serenaliqing"

 

},

 

"password": {

 

"value": "[parameters('password')]"

 

}

 

}

 

},

 

"displayName": "testarm"

 

},

 

"kind": "V2",

 

"location": "eastus",

 

"type": "Microsoft.Web/connections",

 

"apiVersion": "2016-06-01",

 

"name": "[parameters('connections_sql_name')]"

 

}

 

]

 

}

 

 

templatea.parameters.json

 

 

 

{

 

"$schema": https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#,

 

"contentVersion": "1.0.0.0",

 

"parameters": {

 

"connections_sql_name": {

 

"value": "sql-5"

 

},

 

"password": {

 

"reference": {

 

"keyVault": {

 

"id": "/subscriptions/a781a931-d3dc-4bd0-8f43-05528dd0b6fb/resourceGroups/KeyVault-APIConnection-Test/providers/Microsoft.KeyVault/vaults/test0621keyvault"

 

},

 

"secretName": "password"

 

}

 

}

 

}

 

}

 

 

 

STEP3:Use the Powershell command to deploy both files: New-AzResourceGroupDeployment -ResourceGroupName KeyVault-APIConnection-Test -TemplateFile "templatea.json" -TemplateParameterFile "templatea.parameters.json"

 

 

 

946x358vv2.png.55d97afec14e8a184fb639a9a76f87bd.png

 

 

 

 

 

STEP4: Check the deployed API connection in portal and add access policy:

 

 

 

878x459vv2.png.a9ca69beca790da874297f256cd47d71.png

 

 

 

 

 

885x335vv2.png.772c55e91267e35e798e7a71fcd1c2d4.png

 

 

 

STEP5: Test the deployed API connection, it can works:

 

 

 

906x256vv2.png.abfaeb6c89587406463cd4da151a3f69.png

 

 

 

References

 

==================

 

https://github.com/MicrosoftDocs/azure-docs/blob/main/articles/logic-apps/set-up-devops-deployment-single-tenant-azure-logic-apps.md

 

Continue reading...

  • Quote

    • Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.

    Guest
    Reply to this topic...
    Go to topic listing