Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

azurerm_mysql_flexible_server replica not applying same authentication settings as the source server #27266

Open
1 task done
techcubs opened this issue Sep 3, 2024 · 1 comment
Open
1 task done

azurerm_mysql_flexible_server replica not applying same authentication settings as the source server #27266

techcubs opened this issue Sep 3, 2024 · 1 comment
Labels
service/mysql upstream/microsoft/waiting-on-service-team This label is applicable when waiting on the Microsoft Service Team v/4.x

Comments

@techcubs
Copy link

techcubs commented Sep 3, 2024

Is there an existing issue for this?

  • I have searched the existing issues

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave comments along the lines of "+1", "me too" or "any updates", they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment and review the contribution guide to help.

Terraform Version

4.241.26

AzureRM Provider Version

v4.0.1

Affected Resource(s)/Data Source(s)

azurerm_mysql_flexible_server

Terraform Configuration Files

# mySqlReplica source server
data "azurerm_mysql_flexible_server" "mysql_source_server" {
  name                = var.mysql_source_server_name
  resource_group_name = var.mysql_source_server_resource_group_name
}

resource "azurerm_mysql_flexible_server" "mySqlReplica" {
  name                          = var.mysql_replica_name
  resource_group_name           = var.mysql_replica_resource_group_name #Has to be the same as the Source Server resource group
  location                      = var.mysql_replica_location
  delegated_subnet_id           = var.mysql_replica_subnet_id
  private_dns_zone_id           = var.private_dns_zone_id
  create_mode      = "Replica"
  source_server_id = data.azurerm_mysql_flexible_server.mysql_source_server.id

  lifecycle {
    ignore_changes = [tags, zone]
  }
}

Debug Output/Panic Output

the apply works without issues but the result is not expected.

Expected Behaviour

The source server has mySQL and Microsoft Entra Authentication enabled (using terraform's azurerm_mysql_flexible_server_active_directory_administrator module). After the source server is created when we create the replica server, it should also have mySQL and Microsoft Entra Authentication enabled. When we create a replica using the GUI, the selection of authentication option s is greyed out.

Actual Behaviour

When we create the replica server, it only shows MySQL Authentication only.

Steps to Reproduce

terraform apply

Important Factoids

No response

References

No response
@neil-yechenwei
Copy link
Contributor

neil-yechenwei commented Sep 4, 2024
edited
Loading

Thanks for raising this issue. Service team confirmed that it's security related issue at service side and they will fix it in the future but there is no ETA. So for now you have to config it again for replica server using azurerm_mysql_flexible_server_active_directory_administrator.

@rcskosir rcskosir added the upstream/microsoft/waiting-on-service-team This label is applicable when waiting on the Microsoft Service Team label Sep 4, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
service/mysql upstream/microsoft/waiting-on-service-team This label is applicable when waiting on the Microsoft Service Team v/4.x
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@neil-yechenwei @techcubs @rcskosir