Disabled Azure Active Directory Admin for Azure MySQL Single Server may lead to unauthorized access. Without a designated Azure Active Directory Admin, the MySQL server lacks a layer of authentication and authorization. This gap may allow malicious actors to exploit potential security gaps and gain unauthorized access to sensitive data stored within the database.
In Azure Console -
In Terraform -
References:
https://learn.microsoft.com/en-us/azure/mysql/flexible-server/how-to-azure-ad#configure-the-azure-ad-admin
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/mysql_server
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/mysql_active_directory_administrator