Deploying Azure Database for MySQL

This guide provides comprehensive steps and best practices for deploying Azure Database for MySQL instances, whether you're creating a new server or configuring an existing one.

Creating an Azure Database for MySQL Server

You can deploy Azure Database for MySQL using the Azure portal, Azure CLI, Azure PowerShell, or REST APIs. Below, we'll cover the Azure portal and CLI methods.

Using the Azure Portal

Navigate to the Azure portal.
Search for "Azure Database for MySQL" and select it.
Click "Create".
Select a subscription and resource group.
Provide a unique server name.
Choose a location, version, and workload type (General Purpose, Memory Optimized).
Configure compute + storage: Select vCores, storage size, and backup retention period.
Configure networking: Choose public access (with firewall rules) or private access.
Configure additional settings: Administrator login, password, and high availability options.
Review and create the server.

Using the Azure CLI

Use the az mysql server create command. Ensure you have the Azure CLI installed and logged in.

az mysql server create \
    --resource-group myresourcegroup \
    --name myservername \
    --location eastus \
    --admin-user myadmin \
    --admin-password <your-password> \
    --sku-name Standard_D2s_v3 \
    --tier GeneralPurpose \
    --version 5.7 \
    --storage-size 10240 \
    --backup-retention 7 \
    --geo-redundant-backup Disabled

Note: Replace placeholders like myresourcegroup, myservername, myadmin, and <your-password> with your actual values.

Configuring Firewall Rules

Firewall rules control access to your database server. By default, no connections are allowed.

Azure Portal

Go to your Azure Database for MySQL server in the Azure portal.
Under "Settings", select "Connection security".
Click "Add current client IP" to allow your current IP address.
To add other IP addresses or ranges, click "Add firewall rule" and provide a name, start IP, and end IP address.

Azure CLI

Use the az mysql server firewall-rule create command.

az mysql server firewall-rule create \
    --resource-group myresourcegroup \
    --server myservername \
    --name AllowMyIP \
    --start-ip-address 203.0.113.0 \
    --end-ip-address 203.0.113.1

Tip: For production environments, consider using Private Link for secure and private network access instead of public access.

Virtual Network (VNet) Service Endpoints

VNet service endpoints enhance security by allowing you to restrict database access to specific virtual networks and subnets.

Azure CLI

az mysql server vnet-rule create \
    --resource-group myresourcegroup \
    --server myservername \
    --name MyVnetRule \
    --subnet <your-subnet-resource-id>

Deploying with High Availability

Azure Database for MySQL offers zone-redundant high availability, ensuring your application remains available even if a datacenter experiences an outage.

When creating a server, choose "Zone-redundant" under "High availability" in the "Configure server" or "Compute + storage" section.
This option is available for the General Purpose and Memory Optimized tiers.

Warning: Zone-redundant high availability incurs additional costs. Review pricing details before enabling.

Next Steps

After successful deployment and configuration, you can connect to your Azure Database for MySQL instance from your applications or development tools.

Migrate Your Database Monitor Your Server