https://community.databricks.com/t5/data-engineering/setting-cluster-settings-through-scim/m-p/21602#M14745 <P><B>Credential passthrough</B></P><P>This actually needs some setting up in AWS IAM to get started. Once you've created the right instance profiles, you'll need to add them to your Databricks workspace. There's pretty exhaustive guides here that has each of the steps. </P><P>AWS: <A href="https://docs.databricks.com/security/credential-passthrough/iam-passthrough.html" target="test_blank">https://docs.databricks.com/security/credential-passthrough/iam-passthrough.html</A></P><P>Azure: <A href="https://docs.microsoft.com/en-us/azure/databricks/security/credential-passthrough/adls-passthrough" target="test_blank">https://docs.microsoft.com/en-us/azure/databricks/security/credential-passthrough/adls-passthrough</A></P><P></P><P><B>Single user access</B></P><P>Do you mean restricting access to a cluster for a single user? You can't directly do this with only SCIM APIs. You'll need to utilize the permissions API to set which users can attach to/run/manage a cluster and simply restrict that to a single user or group.</P><P>The SCIM APIs allow you to set whether that user is part of a particular group or whether they can access the Databricks DE/DS or SQL analytics workspace in the first place. It also allows you to specify if someone has global cluster creation/editing privileges.</P><P></P><P><B>Permission settings</B></P><P>See above, you might want to look at the permissions API. </P><P><A href="https://docs.databricks.com/dev-tools/api/latest/permissions.html" target="test_blank">https://docs.databricks.com/dev-tools/api/latest/permissions.html</A></P><P></P><P>Heads up some of the advanced permissions settings also need to be enabled by logging in, going to the Admin console from the dropdown in the top right, and then 'Workspace Settings' tab at the top.</P> Wed, 23 Jun 2021 17:36:16 GMT Taha 2021-06-23T17:36:16Z https://community.databricks.com/t5/data-engineering/setting-cluster-settings-through-scim/m-p/21601#M14744 <P>is there a way to set the following cluster settings through the SCIM? I am not seeing anything in the API docs that would suggest it is possible but I want to double check here.</P><UL><LI>Enable credential passthrough</LI><LI>Single User Access</LI><LI>Permission settings</LI></UL><P></P> Wed, 23 Jun 2021 01:14:56 GMT https://community.databricks.com/t5/data-engineering/setting-cluster-settings-through-scim/m-p/21601#M14744 Anonymous 2021-06-23T01:14:56Z https://community.databricks.com/t5/data-engineering/setting-cluster-settings-through-scim/m-p/21602#M14745 <P><B>Credential passthrough</B></P><P>This actually needs some setting up in AWS IAM to get started. Once you've created the right instance profiles, you'll need to add them to your Databricks workspace. There's pretty exhaustive guides here that has each of the steps. </P><P>AWS: <A href="https://docs.databricks.com/security/credential-passthrough/iam-passthrough.html" target="test_blank">https://docs.databricks.com/security/credential-passthrough/iam-passthrough.html</A></P><P>Azure: <A href="https://docs.microsoft.com/en-us/azure/databricks/security/credential-passthrough/adls-passthrough" target="test_blank">https://docs.microsoft.com/en-us/azure/databricks/security/credential-passthrough/adls-passthrough</A></P><P></P><P><B>Single user access</B></P><P>Do you mean restricting access to a cluster for a single user? You can't directly do this with only SCIM APIs. You'll need to utilize the permissions API to set which users can attach to/run/manage a cluster and simply restrict that to a single user or group.</P><P>The SCIM APIs allow you to set whether that user is part of a particular group or whether they can access the Databricks DE/DS or SQL analytics workspace in the first place. It also allows you to specify if someone has global cluster creation/editing privileges.</P><P></P><P><B>Permission settings</B></P><P>See above, you might want to look at the permissions API. </P><P><A href="https://docs.databricks.com/dev-tools/api/latest/permissions.html" target="test_blank">https://docs.databricks.com/dev-tools/api/latest/permissions.html</A></P><P></P><P>Heads up some of the advanced permissions settings also need to be enabled by logging in, going to the Admin console from the dropdown in the top right, and then 'Workspace Settings' tab at the top.</P> Wed, 23 Jun 2021 17:36:16 GMT https://community.databricks.com/t5/data-engineering/setting-cluster-settings-through-scim/m-p/21602#M14745 Taha 2021-06-23T17:36:16Z