O365 Consuming Azure PAAS SQL DB Through BCS

This document explains the steps to configure BCS using Office 365 that can pull data from Azure PaaS SQL DB and also to configure firewall IP ranges and network possibilities.

Introduction

This document explains the steps to configure BCS using Office 365 that can pull data from Azure PaaS SQL DB and also how to configure firewall IP ranges and network possibilities.

Create Azure SQL DB

Go to Azure > SQL Database. Click add and create a new SQL server and New SQL DB. Existing Azure SQL DB can also be used for this purpose, as shown below in the image.

Make a note of the SQL server admin and Password credentials.

Azure

Create Secure Store Token ID

Go to Admin site of the O365 tenant and open secure store tab

Create a new secure store token ID with username as SQL server username and password as SQL server password, as shown below in the image.

Make a note of the secure store token ID.

Azure

Configure in SharePoint Designer 2013

Create an external content type with the external system as shown in the below image.

In the add connection wizard provide Azure SQL DB related field values along with secure store token as shown below in the image.

Azure

On click of the ok button, an error popup will be shown, but this pop up is specific to some networks.

Azure

As a onetime activity add the IP specified in the popup to the firewall settings of the Azure SQL server firewall settings page. Along with that add 11 more IP ranges to the firewall settings page in Azure SQL server as shown below.

Azure

IP Ranges table

13.107.6.150/3113.107.6.15013.107.6.151
13.107.9.150/3113.107.9.15013.107.9.151
40.108.0.0/1940.108.0.140.108.31.254
40.108.128.0/1740.108.128.140.108.255.254
104.146.0.0/19104.146.0.1104.146.31.254
104.146.128.0/17104.146.128.1104.146.255.254
134.170.200.0/21134.170.200.1134.170.207.254
134.170.208.0/21134.170.208.1134.170.215.254
191.232.0.0/23191.232.0.1191.232.1.254
191.234.128.0/21191.234.128.1191.234.135.254
191.235.0.0/20191.235.0.1191.235.15.234

The above IP ranges may be updated based on Microsoft updates. These updates needs to be periodically checked in this site.

Next go back to the SharePoint designer and click ok, now the connection will be stabilized and the DB will be created.

Select any DB and create all operations, set parameters, filters and click finish.

Azure

Click the save button at the top left of the designer to save the connection to external content type.

Now the Temporary client IP added to Azure SQL firewall can be deleted. Don’t delete other 11 IP Ranges.

Now navigate to the O365 admin site > BCS tab > click Manage BDC models and external content types.

The newly created content type will be reflected there in the BCS screen. Select the content type and “set object permissions” and “set metadata store permissions” as shown below

Azure

ADD BDC Web part or External List in O365

Create a new web page and add Business Data List Web Part as shown below

Azure

Edit the web part and configure the external content type to the above-created one as shown below.

Azure

BCS is configured and shown as below.

Azure