Allow SPN's to create AAD Users
As we follow best practices and fully automate Azure using SPN's while leveraging AAD for users, we wish to create AAD users in SQL DB using our SPN's.
When attempting to create AAD users in a database using an SPN, we received this error:
"Principal 'xxxxxx' could not be created. Only connections established with Active Directory accounts can create other Active Directory users."
We were told by support that "At this time, the statement CREATE USER  FROM EXTERNAL PROVIDER; is not supported for SPN."
Request we make this possible...