Reputation: 467
Automating download of SQL backups stored on Azure via powershell
I'm trying to create a script that will download SQL backups from Azure before using docker to build containers. I created a service principal using these instructions: https://learn.microsoft.com/en-us/powershell/azure/create-azure-service-principal-azureps?view=azps-2.4.0
I'm using the following code to try to start the downloads but it fails with the following error:
$tenantID = '6ed674z5-my tenant ID-802730b05737'
$passwd = ConvertTo-SecureString 'x43my long passwordR69' -AsPlainText -Force
$pscredential = New-Object System.Management.Automation.PSCredential('079054cd-my application ID-0b19d8ar6e77', $passwd)
Connect-AzAccount -ServicePrincipal -Credential $pscredential -TenantId $tenantId
$containerName = "mycontainer"
$location = "westus2"
$resourceGroup = "myresourcegroup"
$storageAccount = Get-AzStorageAccount
$ctx = $storageAccount.Context
Get-AzStorageBlob -Container $ContainerName -Context $ctx | Get-AzStorageblobcontent -Destination ".\dbase\backups" -Force
Error:
Get-AzStorageAccount : 'this.Client.SubscriptionId' cannot be null.
At C:\dev\thcguard\launch.ps1:9 char:19
+ $storageAccount = Get-AzStorageAccount
+ ~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : CloseError: (:) [Get-AzStorageAccount], ValidationException
+ FullyQualifiedErrorId : Microsoft.Azure.Commands.Management.Storage.GetAzureStorageAccountCommand
Where am I going wrong? If I just use Connect-AzAccount and manually log in the download code works.
Upvotes: 0
Views: 162
Answers (1)
Reputation: 29791
Service principals don't have a default subscription.
While connecting using a user account, Connect-AzAccount fectches the default subscription. In your case, you need to specify the subscription you want to connect to.
You can adjust your code like that:
$tenantId = "{my-tenant-id}"
$subscriptionId = "{my-subscription-id}"
$applicationId = "{my-application-id}"
$password = ConvertTo-SecureString "{my-password}" -AsPlainText -Force
$psCredential = New-Object System.Management.Automation.PSCredential($applicationId, $password)
Connect-AzAccount -ServicePrincipal -Credential $psCredential -TenantId $tenantId -SubscriptionId $subscriptionId
Make sure your service principal can access your storage account. You can assign permission to the storage account, using the Access control (IAM) blade of the storage account:
Upvotes: 1
Related Questions
- Azure Export SQL database example
- How can i backup and Azure DB to local disk?
- how to run az storage blob download-batch command in script .ps1?
- Differential backup of azure sql database in to storage account blob storage using Powershell Script
- How to bypass Backup-SqlDatabase prompt for password?
- Download multiple powershell files from Azure Storage container as a Zip
- how to backup multiple databases in a script
- Run Powershell script every hour on Azure
- Powershell script for SQL Azure back up to Microsoft Azure Blob
- Use Azure Powershell to execute a .sql file