Is there plans in the future to implement the ability to create a backup of DB 'A' and restore it to existing DB 'B'?

Looks like it intended to have some strings replaced.

InvalidPrivateDnsZoneName\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\",\\\\\\\\\\\\\\\\r\\\\\\\\\\\\\\\\n \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"message\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\": \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"The Private DNS Zone name provided is invalid. It must end with '{0}', and shouldn't contain underscore. Currently we do not support {1}.{0} as the private dns zone name either.

Currently we are seeing that there are only 3 Features(Add, Delete & Stop Replication) for Replication between Two or More Read-Replicas. It is using the same Binary Log Replication that one can use between 2 on-prems or cloud as primary and on-prem as secondary. We run stop Replication (Pause Replication) command on on-prem server to pause the replication and then run start replication command to resume the replication. Are there any future features to be added to Pause Replication between Two or More Read-Replicas in Azure for MYSQL and then Resume it again?

after running the script, we get this issue but data is migrated, We found some number of rows data mismatch on migrated DB.

This is exactly what I wrote in the title (and attached file).

I have created a small pullrequest　[#88], please refer to it.

There are important files that Microsoft projects should all have that are not present in this repository. A pull request has been opened to add the missing file(s). When the pr is merged this issue will be closed automatically.

Microsoft teams can learn more about this effort and share feedback within the open source guidance available internally.

Merge this pull request

I found if we need to enable the customer key encryption for the MySQL database, the "serverKeyName" must be in this format: "KeyvaultName_keyName_keyVersion".

which makes it impossible to create the keyvault key and enable the customer-key encryption at the same within one ARM template, cause we cannot use the ARM function "reference" to reference the key we created and extract the dynamically generated version number. The "reference" function cannot be used in variables definition, resource name and types.

Questions:
How to create the keyvault key and enable the customer-key encryption at the same time within one ARM template?

Thanks.

I want to set those using ARM Templates.
Thanks.

Hi, I was trying to migrate managed MySQL in Alibaba cloud to azure for MySQL using GTID-based replication.
I follow this instruction, but I keep getting an error
Got fatal error 1236 from master when reading data from binary log: 'The slave is connecting using CHANGE MASTER TO MASTER_AUTO_POSITION = 1, but the master has purged binary logs containing GTIDs that the slave requires.
so is there any way to change the gtid_purged variable?

When running the script the database charset was not preserved. This will stop your emojis, or any special characters, from being transferred correctly. I recommend adding --default-character-set= in my case --default-character-set=utf8mb4 to both the mysqldump and mysql. Also for large databases I recommend removing the -v flag so every insert isn't printed to the console. I would also recommend not using Azure Cloud Shell as the timeout of 20 min is too short to successfully migrate a large database.

How to create additional DB server users via ARM template?

When I try to deploy MySQL flexible server to a subscription and try to use a private DNS zone in another subscription, I get the following error:

Code: InvalidPrivateDnsZoneSubscription
Message: The subscription 'YYYYYY' of the private DNS zone 'private.mysql.database.azure.com' is in valid, it is not registered for '2'.

I'm getting the exact same error when deploying from Bicep, Azure CLI and the Azure Portal. Here's an Azure CLI snippet:

az mysql flexible-server create --resource-group xx-content-dev-weu `
  --name xx-content-dev-weu-mysql --location westeurope `
  --subnet /subscriptions/XXXXXX/resourceGroups/xx-net-dev-weu/providers/Microsoft.Network/virtualNetworks/gd-net-dev-weu-vnet/subnets/database `
  --private-dns-zone /subscriptions/YYYYYY/resourceGroups/xx-deployment-network-weu/providers/Microsoft.Network/privateDnsZones/private.mysql.database.azure.com

This is very close to the sample from the Azure CLI docs, except that XXXXXX and YYYYYY are ids for two different subscriptions.

At first I suspected an RBAC issue but I'm contributor on both subscriptions and that should be sufficient.

Background

We're trying to implement a hub and spoke network architecture. Each spoke has it's own subscription with a VNet that is peered to the hub VNet. The private DNS zones live in the hub subscription, MySQL should be in the spoke VNet.

Issue:
The MySQL database cannot be found. I am trying to update my threat detection policy on a MySQL database within a server. I am using Terraform to deploy and update this resource. This error only occurs when the last three lines on the threat detection policy code is commented in.
'retention_days = 7
storage_account_access_key = var.storage_account_access_key
storage_endpoint = data.azurerm_storage_account.sta.primary_blob_endpoint`

The sample from my Terraform code is below. See Terraform documentation for more details.

Code:
resource "azurerm_mysql_server" "mysql" {
name = "azmsql${var.location_code}${var.mysqlname}${var.resource_count}"
location = var.location
resource_group_name = var.resource_group_name
sku_name = var.sku_name
administrator_login = var.administrator_login
administrator_login_password = random_password.admin_password.result
version = "8.0"
ssl_enforcement_enabled = true
infrastructure_encryption_enabled = true
auto_grow_enabled = true
storage_mb = 5120
backup_retention_days = 7
geo_redundant_backup_enabled = false

threat_detection_policy {
enabled = true
email_account_admins = true
email_addresses = [var.threat_protection_email]
retention_days = 7
storage_account_access_key = var.storage_account_access_key
storage_endpoint = data.azurerm_storage_account.sta.primary_blob_endpoint
}
}

Error Log:
https://gist.github.com/jmeadowcroft/7944fdcab9870b2eacbc5d0113913a40

Error in Azure:
In the Portal, the failed task of updating the threat detection policy says:

"statusMessage": "{"status":"Failed","error":{"code":"ResourceOperationFailure","message":"The resource operation completed with terminal provisioning state 'Failed'.","details":[{"code":"InternalServerError","message":"An unexpected error occured while processing the request. Tracking ID: '661fa012-c37a-452c-8e82-92efe9ea7827'"}]}}"

Error in on the CLI using Terrraform:

Error: error waiting for creation/update of mysql server security alert policy (server "azmsqlwu2db4001", resource group "Test01"): Code="InternalServerError" Message="An unexpected error occured while processing the request. Tracking ID: '0e302d66-3ff7-49ff-b35a-806afe701423'"

on ....\mysql\mysql.tf line 10, in resource "azurerm_mysql_server" "mysql":
10: resource "azurerm_mysql_server" "mysql"

Let me know if there is any information I can give you about this problem. Thank you for your time.

Hi,

I can use resource deployment client to deploy a VM with template (like azure-sdk-for-go-samples/quickstart/deploy-vm/mai.go). But when I was using it to deploy a Azure mysql with a template (ServicePrinciple authentication as well), it threw out a exception of 'InvalidAuthenticationTokenAudience'.

The detail exception information as below:
Failed to deploy Azure MysQL: resources.DeploymentsClient#CreateOrUpdate: Failure sending request: StatusCode=401 -- Original Error: Code="InvalidAuthenticationTokenAudience" Message="The access token has been obtained for wrong audience or resource 'https://vault.azure.net'. It should exactly match with one of the allowed audiences 'https://management.core.windows.net/','https://management.core.windows.net','https://management.azure.com/','https://management.azure.com'."

I have a customer will integrate their IT management system with Azure, this is an obstacle. And they prefer using template to deploy all the resources. Can anybody help me out?

Thanks,
Jerry