Home
%3CLINGO-SUB%20id%3D%22lingo-sub-800520%22%20slang%3D%22en-US%22%3EAzure%20Data%20Explorer%20breaking%20changes%20%5BAction%20Required%5D%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-800520%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20Azure%20Data%20Explorer%20users%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH1%20id%3D%22toc-hId-2012932279%22%20id%3D%22toc-hId-2012932279%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EThis%20notification%20includes%20information%20about%203%20upcoming%20changes%20in%20Azure%20Data%20Explore%20service.%20The%20changes%20are%20in%3A%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId--539224682%22%20id%3D%22toc-hId--539224682%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%C2%B7%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3E%3CSPAN%3E%60.show%20EventHub%20ingestion%20sources%20settings%60%20DM%20command%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId-1203585653%22%20id%3D%22toc-hId-1203585653%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%C2%B7%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3E%3CSPAN%3EThe%20output%20format%20of%20the%20command%20%60.show%20principal%20roles%60%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId--1348571308%22%20id%3D%22toc-hId--1348571308%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%C2%B7%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3E%3CSPAN%3E%60.show%20principal%20roles%60%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId-394239027%22%20id%3D%22toc-hId-394239027%22%3E%26nbsp%3B%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId-2137049362%22%20id%3D%22toc-hId-2137049362%22%3EDetailed%20description%3C%2FH1%3E%0A%3CH2%20id%3D%22toc-hId--611621104%22%20id%3D%22toc-hId--611621104%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3EPlanned%20change%20in%20%60.show%20EventHub%20ingestion%20sources%20settings%60%20DM%20command%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId-934675726%22%20id%3D%22toc-hId-934675726%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EChange%20details%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSPAN%3EAdded%20a%20flavor%20%22with%20secrets%22%20that%20will%20only%20populate%20the%20secrets%20for%20a%20caller%20with%20ingest%20permissions%20to%20the%20relevant%20databases.%3CSTRONG%3E%20Changes%20the%20current%20implementation%20that%20does%20not%20show%20the%20secrets.%3C%2FSTRONG%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--1617481235%22%20id%3D%22toc-hId--1617481235%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EImpacted%20scenarios%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSPAN%3EImpacted%20scenarios%20perform%20%60.show%20EventHub%20ingestion%20sources%20settings%60%20command%20and%20use%20the%20Event%20Hub%20connection%20string%20or%20the%20Event%20Hub%20secondary%20connection%20string%20from%20the%20results.%20Running%20the%20command%20returns%20a%20connection%20string%20to%20the%20Event%20Hub%2C%20with%20secrets%20included%2C%20which%20is%20used%20to%20enqueue%20events%20to%20the%20Event%20Hub.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3ENote%3A%20This%20change%20is%20primarily%20relevant%20to%20customers%20who%20have%20Event%20Hub%20connections%20where%20the%20Event%20Hub%20resource%20is%20managed%20by%20Azure%20Data%20Explorer.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId-125329100%22%20id%3D%22toc-hId-125329100%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3ERequired%20change%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3EApplications%20that%20use%20this%20command%20for%20getting%20(decrypted)%20Event%20Hub%20connection%20strings%2C%20in%20order%20to%20enqueue%20events%20to%20Event%20Hub%2C%20should%20execute%20the%20command%26nbsp%3B%60.show%20Event%20Hub%20ingestion%20source%20settings%20with%20secrets%60.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EApplications%20that%20perform%20ingestions%20are%20required%20to%20have%20database%20ingestor%20permissions.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EBest%20practice%3A%20Cache%20the%20connection%20strings%20and%20refresh%20them%20every%20few%20hours.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CH3%20id%3D%22toc-hId-1152978146%22%20id%3D%22toc-hId-1152978146%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3ESchedule%20%26amp%3B%20plan%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSTRONG%3EPhase%20%231%3A%20Command%20change%20(ETA%3A%20September%2030%2C%202019)%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-397772544%22%20id%3D%22toc-hId-397772544%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-2140582879%22%20id%3D%22toc-hId-2140582879%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EPlanned%20change%20in%20the%20output%20format%20of%20the%20command%20%60.show%20principal%20roles%60%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId-2086441855%22%20id%3D%22toc-hId-2086441855%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EChange%20details%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSPAN%3EThe%20current%20output%20of%20%60.show%20principal%20roles%60%20and%20%E2%80%98.show%20principal%20%5Bprincipal%5D%20roles%E2%80%99%20control%20commands%20may%20be%20misleading.%20Therefore%2C%20the%20schema%20of%20these%20command%20results%20will%20be%20modified%3A%3C%2FSPAN%3E%3C%2FP%3E%0A%3CTABLE%3E%0A%3CTBODY%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22143%22%3E%3CH3%20id%3D%22toc-hId--465715106%22%20id%3D%22toc-hId--465715106%22%3E%3CSPAN%3EColumn%20name%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22300%22%3E%3CH3%20id%3D%22toc-hId-1277095229%22%20id%3D%22toc-hId-1277095229%22%3E%3CSPAN%3EDescription%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22462%22%3E%3CH3%20id%3D%22toc-hId--1275061732%22%20id%3D%22toc-hId--1275061732%22%3E%3CSPAN%3EChange%20scope%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22143%22%3E%3CH3%20id%3D%22toc-hId-467748603%22%20id%3D%22toc-hId-467748603%22%3E%3CSPAN%3EScope%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22300%22%3E%3CH3%20id%3D%22toc-hId--2084408358%22%20id%3D%22toc-hId--2084408358%22%3E%3CSPAN%3Ethe%20scope%20of%20the%20role%20assignment%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22462%22%3E%3CH3%20id%3D%22toc-hId--341598023%22%20id%3D%22toc-hId--341598023%22%3E%3CSPAN%3EUnchanged%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22143%22%3E%3CH3%20id%3D%22toc-hId--654476317%22%20id%3D%22toc-hId--654476317%22%3E%3CSPAN%3EDisplayName%20%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22300%22%3E%3CH3%20id%3D%22toc-hId-1088334018%22%20id%3D%22toc-hId-1088334018%22%3E%3CSPAN%3Ethe%20display%20name%20of%20the%20principal%20for%20which%20the%20operation%20is%20performed%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22462%22%3E%3CH3%20id%3D%22toc-hId--1463822943%22%20id%3D%22toc-hId--1463822943%22%3E%3CSPAN%3EChange%20the%20previous%20name%20that%20contains%20inconsistent%20data%20to%20PrincipalDisplayName%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22143%22%3E%3CH3%20id%3D%22toc-hId-278987392%22%20id%3D%22toc-hId-278987392%22%3E%3CSPAN%3EAADObjectID%20%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22300%22%3E%3CH3%20id%3D%22toc-hId-2021797727%22%20id%3D%22toc-hId-2021797727%22%3E%3CSPAN%3Ethe%20fully%20qualified%20principal%20name%20in%20Azure%20Data%20Explorer%20notation%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22462%22%3E%3CH3%20id%3D%22toc-hId--530359234%22%20id%3D%22toc-hId--530359234%22%3E%3CSPAN%3EChange%20the%20previous%20name%20that%20contains%20inconsistent%20data%20to%20PrincipalFQN%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22143%22%3E%3CH3%20id%3D%22toc-hId-1212451101%22%20id%3D%22toc-hId-1212451101%22%3E%3CSPAN%3ERole%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22300%22%3E%3CH3%20id%3D%22toc-hId--1339705860%22%20id%3D%22toc-hId--1339705860%22%3E%3CSPAN%3Ethe%20role%20assignment%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22462%22%3E%3CH3%20id%3D%22toc-hId-403104475%22%20id%3D%22toc-hId-403104475%22%3E%3CSPAN%3EUnchanged%3C%2FSPAN%3E%3C%2FH3%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3C%2FTBODY%3E%0A%3C%2FTABLE%3E%0A%3CH3%20id%3D%22toc-hId-2145914810%22%20id%3D%22toc-hId-2145914810%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FH3%3E%0A%3CH3%20id%3D%22toc-hId-1833036516%22%20id%3D%22toc-hId-1833036516%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EImpacted%20scenarios%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSPAN%3EScenarios%20that%20use%20the%20control%20commands%2C%20%E2%80%98.show%20principal%20roles%E2%80%99%20and%20%E2%80%98.show%20principal%20%5Bprincipal%5D%20roles%E2%80%99%20and%20parse%20the%20results.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--719120445%22%20id%3D%22toc-hId--719120445%22%3E%3CSPAN%3ERequired%20change%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FH3%3E%0A%3CH2%20id%3D%22toc-hId--1474326047%22%20id%3D%22toc-hId--1474326047%22%3E%3CSPAN%3E%3CFONT%20size%3D%224%22%3ECustomers%20that%20rely%20on%20the%20output%20of%20the%20updated%20commands%2C%20must%20make%20changes%20to%20accommodate%20the%20new%20schema.%3C%2FFONT%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FSPAN%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId--1528467071%22%20id%3D%22toc-hId--1528467071%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3ESchedule%20%26amp%3B%20plan%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CSTRONG%3EPhase%20%231%3A%20%3C%2FSTRONG%3E%3CSTRONG%3ECommand%20schema%20changes%3C%2FSTRONG%3E%3CSTRONG%3E(ETA%3A%20September%2030%2C%202019%3C%2FSTRONG%3E%3CSTRONG%3E)%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CH1%20id%3D%22toc-hId--486721314%22%20id%3D%22toc-hId--486721314%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FH1%3E%0A%3CH2%20id%3D%22toc-hId--540862338%22%20id%3D%22toc-hId--540862338%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EPlanned%20change%20in%20%60.show%20principal%20roles%60%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId--595003362%22%20id%3D%22toc-hId--595003362%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EChange%20details%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CH1%20id%3D%22toc-hId-446742395%22%20id%3D%22toc-hId-446742395%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3EThe%20%60%3CSTRONG%3E.show%20principal%20roles%60%3C%2FSTRONG%3Eengine%20command%20retrieves%20all%20the%20security%20roles%20of%20the%20current%20principal%20on%20the%20cluster.%20This%20command%20is%20often%20used%20by%20mid-tier%20applications%20to%20determine%20if%20a%3C%2FSPAN%3E%3CSPAN%3Egiven%20principal%20has%20a%20specific%20type%20of%20role.%20For%20clusters%20with%20many%20entities%20(databases%20and%20tables.)%2C%20this%20command%20needlessly%20consumes%20many%20resources.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId--2105414566%22%20id%3D%22toc-hId--2105414566%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3ETo%20allow%20callers%20to%20reduce%20the%20impact%20of%20this%20command%20on%20the%20cluster%2C%20the%20syntax%20of%20the%20command%20will%20be%20modified%20so%20that%20the%20caller%20will%20have%20to%20specify%20the%20entity%20for%20which%20roles%20are%20to%20be%20retrieved%3A%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId--362604231%22%20id%3D%22toc-hId--362604231%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E.show%20%3CENTITY%20type%3D%22%22%3E%20%3CENTITY%20name%3D%22%22%3E%20principal%20roles%3CBR%20%2F%3E%3C%2FENTITY%3E%3C%2FENTITY%3E%3C%2FSPAN%3E%3CSPAN%3ERetrieves%20all%20roles%20held%20by%20the%20current%20principal%20for%20the%20specified%20entity.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH1%20id%3D%22toc-hId--675482525%22%20id%3D%22toc-hId--675482525%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E.show%20%3CENTITY%20type%3D%22%22%3E%20%3CENTITY%20name%3D%22%22%3E%20principal%20%3CPRINCIPAL%20identity%3D%22%22%3E%20roles%3C%2FPRINCIPAL%3E%3C%2FENTITY%3E%3C%2FENTITY%3E%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CH2%20id%3D%22toc-hId--729623549%22%20id%3D%22toc-hId--729623549%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3EAllows%20the%20caller%20to%20specify%20the%20principal%20whose%20roles%20are%20to%20be%20returned%2C%20as%20long%20as%20the%20caller%20has%20the%20right%20permissions.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-1013186786%22%20id%3D%22toc-hId-1013186786%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId--1538970175%22%20id%3D%22toc-hId--1538970175%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3EThe%20change%20will%20be%20performed%20in%20two%20stages%3A%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-203840160%22%20id%3D%22toc-hId-203840160%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E1.%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3E%3CSPAN%3EThe%20new%20syntax%20will%20be%20added%20without%20impacting%20the%20existing%20syntax.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-1946650495%22%20id%3D%22toc-hId-1946650495%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E2.%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%3C%2FSPAN%3E%3CSPAN%3EThe%20existing%20syntax%20will%20be%20removed.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId--605506466%22%20id%3D%22toc-hId--605506466%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId--659647490%22%20id%3D%22toc-hId--659647490%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3ERequired%20change%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3EChange%20automation%20using%20the%20two%20commands%20specified%20above%20to%20support%20the%20new%20syntax.%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId--1414853092%22%20id%3D%22toc-hId--1414853092%22%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CH3%20id%3D%22toc-hId--1468994116%22%20id%3D%22toc-hId--1468994116%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3ESchedule%20%26amp%3B%20plan%26nbsp%3B%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH3%3E%0A%3CP%3E%3CFONT%20size%3D%223%22%3E%3CSTRONG%3EPhase%20%231%3A%20The%20new%20syntax%20will%20be%20added%20without%20impacting%20the%20existing%20syntax%20(ETA%3A%20Done)%3C%2FSTRONG%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-15078949%22%20id%3D%22toc-hId-15078949%22%3E%3CFONT%20size%3D%223%22%3E%3CSTRONG%3EPhase%20%232%3A%20The%20existing%20syntax%20will%20be%20removed%20(ETA%3A%20October%2030%2C%202019)%3C%2FSTRONG%3E%3C%2FFONT%3E%3C%2FH2%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-800520%22%20slang%3D%22en-US%22%3E%3CH1%20id%3D%22toc-hId--740126653%22%3E%3CFONT%20size%3D%224%22%3E%3CSPAN%3EThis%20notification%20includes%20information%20about%203%20upcoming%20changes%20in%20Azure%20Data%20Explore%20service.%20The%20changes%20are%20in%3A%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FH1%3E%0A%3CUL%3E%0A%3CLI%3E%3CFONT%20size%3D%223%22%3E%3CSPAN%3E%60.show%20EventHub%20ingestion%20sources%20settings%60%20DM%20command%3C%2FSPAN%3E%3C%2FFONT%3E%3C%2FLI%3E%0A%3CLI%3EThe%20output%20format%20of%20the%20command%20%60.show%20principal%20roles%60%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%20style%3D%22font-size%3A%20medium%3B%20color%3A%20inherit%3B%20font-family%3A%20inherit%3B%22%3E%60.show%20principal%20roles%60%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%3C%2FLINGO-TEASER%3E
Microsoft

Hello Azure Data Explorer users,

 

This notification includes information about 3 upcoming changes in Azure Data Explore service. The changes are in:

·      `.show EventHub ingestion sources settings` DM command

·      The output format of the command `.show principal roles`

·      `.show principal roles`

 

Detailed description

Planned change in `.show EventHub ingestion sources settings` DM command

Change details

Added a flavor "with secrets" that will only populate the secrets for a caller with ingest permissions to the relevant databases. Changes the current implementation that does not show the secrets.

Impacted scenarios 

Impacted scenarios perform `.show EventHub ingestion sources settings` command and use the Event Hub connection string or the Event Hub secondary connection string from the results. Running the command returns a connection string to the Event Hub, with secrets included, which is used to enqueue events to the Event Hub.

Note: This change is primarily relevant to customers who have Event Hub connections where the Event Hub resource is managed by Azure Data Explorer.

Required change

  • Applications that use this command for getting (decrypted) Event Hub connection strings, in order to enqueue events to Event Hub, should execute the command `.show Event Hub ingestion source settings with secrets`.
  • Applications that perform ingestions are required to have database ingestor permissions.
  • Best practice: Cache the connection strings and refresh them every few hours.

Schedule & plan 

Phase #1: Command change (ETA: September 30, 2019)

 

 

Planned change in the output format of the command `.show principal roles`

Change details 

The current output of `.show principal roles` and ‘.show principal [principal] roles’ control commands may be misleading. Therefore, the schema of these command results will be modified:

Column name

Description

Change scope

Scope

the scope of the role assignment

Unchanged

DisplayName

the display name of the principal for which the operation is performed

Change the previous name that contains inconsistent data to PrincipalDisplayName

AADObjectID

the fully qualified principal name in Azure Data Explorer notation

Change the previous name that contains inconsistent data to PrincipalFQN

Role

the role assignment

Unchanged

 

Impacted scenarios 

Scenarios that use the control commands, ‘.show principal roles’ and ‘.show principal [principal] roles’ and parse the results.

Required change 

Customers that rely on the output of the updated commands, must make changes to accommodate the new schema.

Schedule & plan 

Phase #1: Command schema changes (ETA: September 30, 2019)

 

Planned change in `.show principal roles`

Change details 

The `.show principal roles` engine command retrieves all the security roles of the current principal on the cluster. This command is often used by mid-tier applications to determine if a given principal has a specific type of role. For clusters with many entities (databases and tables.), this command needlessly consumes many resources.

To allow callers to reduce the impact of this command on the cluster, the syntax of the command will be modified so that the caller will have to specify the entity for which roles are to be retrieved:

.show <entity type> <entity name> principal roles
Retrieves all roles held by the current principal for the specified entity.

.show <entity type> <entity name> principal <principal identity> roles

Allows the caller to specify the principal whose roles are to be returned, as long as the caller has the right permissions.

 

The change will be performed in two stages:

1.       The new syntax will be added without impacting the existing syntax.

2.       The existing syntax will be removed.

 

Required change 

Change automation using the two commands specified above to support the new syntax.

 

Schedule & plan 

Phase #1: The new syntax will be added without impacting the existing syntax (ETA: Done)

Phase #2: The existing syntax will be removed (ETA: October 30, 2019)