https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/4337#M1084 <P>Hello Nistrate,</P><P></P><P>If I understand the question correctly, the ask is to create an approval framework/workflow for workflows/jobs changes/commits, I don't believe this is currently supported however this can be supported through the use of source control like Git ( pull requests )</P><P></P><P>Databricks is also integrated with source control through Databricks repos (details <A href="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html#job-permissions" alt="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html#job-permissions" target="_blank">here</A>)</P><P></P><P>Also please find available jobs/workflow permissions for Databricks' admin <A href="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html?_gl=1*t79sfv*_gcl_aw*R0NMLjE2ODM4MjczODAuQ2owS0NRandwUEtpQmhEdkFSSXNBQ24tZ3pDUmE1dEtxYWdjN2FVU1JpZHNmVmZWVG5yY3V4Q1ZyWHB6RXFkdnRJRmU1c1NYRU8zSXpEc2FBbmdoRUFMd193Y0I.*_gcl_au*MTQ4MzY0ODgzOS4xNjg0MjA1NDMz*_ga*MDY2YzVjNjQtOGI4OC00Y2JkLWEyNzgtZjk2YzkzMjEyMzZh*_ga_PQSEQ3RZQC*MTY4NjE4OTYwNC4zNTcuMS4xNjg2MTkwMjg2LjQ3LjAuMA..&amp;_ga=2.132272974.1399601693.1685992177-066c5c64-8b88-4cbd-a278-f96c9321236a&amp;_gac=1.53303770.1683827380.Cj0KCQjwpPKiBhDvARIsACn-gzCRa5tKqagc7aUSRidsfVfVTnrcuxCVrXpzEqdvtIFe5sSXEO3IzDsaAnghEALw_wcB#job-permissions" alt="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html?_gl=1*t79sfv*_gcl_aw*R0NMLjE2ODM4MjczODAuQ2owS0NRandwUEtpQmhEdkFSSXNBQ24tZ3pDUmE1dEtxYWdjN2FVU1JpZHNmVmZWVG5yY3V4Q1ZyWHB6RXFkdnRJRmU1c1NYRU8zSXpEc2FBbmdoRUFMd193Y0I.*_gcl_au*MTQ4MzY0ODgzOS4xNjg0MjA1NDMz*_ga*MDY2YzVjNjQtOGI4OC00Y2JkLWEyNzgtZjk2YzkzMjEyMzZh*_ga_PQSEQ3RZQC*MTY4NjE4OTYwNC4zNTcuMS4xNjg2MTkwMjg2LjQ3LjAuMA..&amp;_ga=2.132272974.1399601693.1685992177-066c5c64-8b88-4cbd-a278-f96c9321236a&amp;_gac=1.53303770.1683827380.Cj0KCQjwpPKiBhDvARIsACn-gzCRa5tKqagc7aUSRidsfVfVTnrcuxCVrXpzEqdvtIFe5sSXEO3IzDsaAnghEALw_wcB#job-permissions" target="_blank">here</A></P><P></P><P>Regards</P><P></P> Thu, 08 Jun 2023 02:13:42 GMT User16502773013 2023-06-08T02:13:42Z https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/4336#M1083 <P>Hello Databricks Community,</P><P>I am seeking assistance understanding the possibility and procedure of implementing a workflow restriction mechanism in Databricks. Our aim is to promote a better workflow management and ensure the quality of the notebooks being attached to clusters.</P><P>Specifically, we want to restrict the ability for users to directly create workflows based on their user group. In our use case, if a user such as J.Doe is in the 'Data Engineer' group and is working on a new workflow, we would like them to submit the notebook for approval by an admin before it can be attached to a cluster.</P><P>Does Databricks support such a mechanism natively? If not, could you suggest any workarounds or third-party solutions that could help us achieve this? Ideally, we would like to automate this process as much as possible to avoid manual intervention.</P><P>Any guidance or suggestions would be greatly appreciated.</P><P>Thank you in advance for your time and help!</P> Mon, 15 May 2023 18:40:32 GMT https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/4336#M1083 nistrate 2023-05-15T18:40:32Z https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/4337#M1084 <P>Hello Nistrate,</P><P></P><P>If I understand the question correctly, the ask is to create an approval framework/workflow for workflows/jobs changes/commits, I don't believe this is currently supported however this can be supported through the use of source control like Git ( pull requests )</P><P></P><P>Databricks is also integrated with source control through Databricks repos (details <A href="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html#job-permissions" alt="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html#job-permissions" target="_blank">here</A>)</P><P></P><P>Also please find available jobs/workflow permissions for Databricks' admin <A href="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html?_gl=1*t79sfv*_gcl_aw*R0NMLjE2ODM4MjczODAuQ2owS0NRandwUEtpQmhEdkFSSXNBQ24tZ3pDUmE1dEtxYWdjN2FVU1JpZHNmVmZWVG5yY3V4Q1ZyWHB6RXFkdnRJRmU1c1NYRU8zSXpEc2FBbmdoRUFMd193Y0I.*_gcl_au*MTQ4MzY0ODgzOS4xNjg0MjA1NDMz*_ga*MDY2YzVjNjQtOGI4OC00Y2JkLWEyNzgtZjk2YzkzMjEyMzZh*_ga_PQSEQ3RZQC*MTY4NjE4OTYwNC4zNTcuMS4xNjg2MTkwMjg2LjQ3LjAuMA..&amp;_ga=2.132272974.1399601693.1685992177-066c5c64-8b88-4cbd-a278-f96c9321236a&amp;_gac=1.53303770.1683827380.Cj0KCQjwpPKiBhDvARIsACn-gzCRa5tKqagc7aUSRidsfVfVTnrcuxCVrXpzEqdvtIFe5sSXEO3IzDsaAnghEALw_wcB#job-permissions" alt="https://docs.databricks.com/security/auth-authz/access-control/jobs-acl.html?_gl=1*t79sfv*_gcl_aw*R0NMLjE2ODM4MjczODAuQ2owS0NRandwUEtpQmhEdkFSSXNBQ24tZ3pDUmE1dEtxYWdjN2FVU1JpZHNmVmZWVG5yY3V4Q1ZyWHB6RXFkdnRJRmU1c1NYRU8zSXpEc2FBbmdoRUFMd193Y0I.*_gcl_au*MTQ4MzY0ODgzOS4xNjg0MjA1NDMz*_ga*MDY2YzVjNjQtOGI4OC00Y2JkLWEyNzgtZjk2YzkzMjEyMzZh*_ga_PQSEQ3RZQC*MTY4NjE4OTYwNC4zNTcuMS4xNjg2MTkwMjg2LjQ3LjAuMA..&amp;_ga=2.132272974.1399601693.1685992177-066c5c64-8b88-4cbd-a278-f96c9321236a&amp;_gac=1.53303770.1683827380.Cj0KCQjwpPKiBhDvARIsACn-gzCRa5tKqagc7aUSRidsfVfVTnrcuxCVrXpzEqdvtIFe5sSXEO3IzDsaAnghEALw_wcB#job-permissions" target="_blank">here</A></P><P></P><P>Regards</P><P></P> Thu, 08 Jun 2023 02:13:42 GMT https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/4337#M1084 User16502773013 2023-06-08T02:13:42Z https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/72088#M34495 <P>I believe this has to happen in 2 steps.</P><P>step1: Currently admin can't restrict workflow creation in databricks&nbsp; currently any user with workspace access can create workflows. Admins should be able to restrict workflow creation. Databricks doesn't have this feature/functionality, this something simple to implement. not sure why they didn't.</P><P>Step2: First step eliminates all unwanted users. coming back to be able to review notebooks to be attached to clusters from workflow tasks. you can make use of git PR's and use databricks assets bundle to deploy code, workflows.</P><P>i think step 1 is must, unless admin able to restrict unwanted users from creating workflows any user can create workflow and the challenging part is user can create workflow in any workspace (prd,qas,dev,etc). Our workspaces are already messy with lot of workflows.&nbsp; I hope databricks implements this feature soon.</P> Fri, 07 Jun 2024 19:34:25 GMT https://community.databricks.com/t5/data-engineering/restricting-workflow-creation-and-implementing-approval/m-p/72088#M34495 Avvar2022 2024-06-07T19:34:25Z