Names like azure_superuser, azure_pg_admin, admin, administrator, root, guest, public for an Azure SQL Server Active Directory Administrator account are used, this may make brute force easier for malicious users.
Creating administrative users in SQL can be done at multiple stages, however the initial administrator username can only be set at the time the instance is created; changing the username will require a new instance to be created. Before starting, ensure that the user you wish to use is already configured in Azure AD. To create a new instance, follow the steps below.
In Azure Console -
In Terraform -
For current Azure Provider versions:
For Azure Provider versions prior to 2.99.x:
References:
https://learn.microsoft.com/en-us/azure/azure-sql/database/authentication-aad-service-principal-tutorial?view=azuresql
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/mssql_server
https://registry.terraform.io/providers/hashicorp/azurerm/2.99.0/docs/resources/sql_active_directory_administrator