Skip to content
English
  • There are no suggestions because the search field is empty.

Azure SQL Virtual Machine

Arpio support for Azure SQL Virtual Machine

Azure SQL Virtual Machine

Arpio supports recovery of Azure SQL Database workloads. The following resource types are supported:

SQL Virtual Machine

Arpio replicates SQL Virtual Machine configurations for SQL Server running on Azure VMs. The data is also replicated when the underlying Virtual Machine disks are replicated.

Translated Attributes

The following attributes are translated during replication:

Attribute Translation Method
Virtual Machine ID Resource ID of the corresponding recovery VM
Auto Patching Settings Applied from tag or default configuration
Entra Administrator Client ID Client ID of the corresponding user assigned identity from the recovery VM
Database principals for Entra identities Any database principals for user or system assigned identities will be translated to the corresponding recovery environment identities.

The Azure Resource Manager does not return the auto patching settings that were specified when the SQL Virtual Machine was created. When Arpio replicates the VM, it uses these default values:

  • Day of week: Sunday
  • Maintenance window duration: 60 minutes
  • Maintenance window starting hour: 2 AM
  • Additional VM patch: Based on source additionalVmPatch property

You can override these defaults by using the arpio-config:sql-vm-auto-patching-settings configuration tag containing a JSON dictionary of settings as specified in the ARM Create API.

Automatic Dependency Selection

The following resources are automatically selected into recovery points when a SQL Virtual Machine is selected:

  • The underlying Virtual Machine
  • The managed identity if used as the Entra administrator
  • Any managed identities referenced in the database

Additional considerations if using Entra:

  • You must grant Directory.Read.All and Organization.Read.All Entra permissions to the Arpio Primary Delegate. This allows Arpio to look up your Entra IDs to properly mirror them.
  • You must use a user assigned identity, not a system assigned one for the Entra administrator. System assigned ones are created at failover time and there is no opportunity to assign them the correct Entra permissions.
  • After initial restore, you must grant the User.Read.AllGroupMember.Read.All, and Application.Read.All Entra permissions to the recovery user managed identity as described here prior to conducting a failover or test. This ensures that the recovery SQL server can properly access Entra.
  • You must grant the Arpio Recovery Delegate the [sysadmin] role in the master database of your Primary server. Instructions are provided in the issue raised during backup. This ensures that Arpio can update the database principals when the database is cloned to the recovery environment.
  • The Arpio Delegates use unencrypted connections to communicate with the SQL server. However, all communication happens within virtual networks.