<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Infrastructure question in Get Started Discussions</title>
    <link>https://community.databricks.com/t5/get-started-discussions/infrastructure-question/m-p/48044#M1464</link>
    <description>&lt;P&gt;We've noticed that the GKE worker nodes which are automatically created when Databricks workspace is created inside GCP project are using the default compute engine SA which's not the best security approach, even Google doesn't recommend using default resources inside production environments. Is there any option when creating the workspace to avoid using the Google default service account ?&lt;/P&gt;</description>
    <pubDate>Wed, 04 Oct 2023 10:30:51 GMT</pubDate>
    <dc:creator>horatiug</dc:creator>
    <dc:date>2023-10-04T10:30:51Z</dc:date>
    <item>
      <title>Infrastructure question</title>
      <link>https://community.databricks.com/t5/get-started-discussions/infrastructure-question/m-p/48044#M1464</link>
      <description>&lt;P&gt;We've noticed that the GKE worker nodes which are automatically created when Databricks workspace is created inside GCP project are using the default compute engine SA which's not the best security approach, even Google doesn't recommend using default resources inside production environments. Is there any option when creating the workspace to avoid using the Google default service account ?&lt;/P&gt;</description>
      <pubDate>Wed, 04 Oct 2023 10:30:51 GMT</pubDate>
      <guid>https://community.databricks.com/t5/get-started-discussions/infrastructure-question/m-p/48044#M1464</guid>
      <dc:creator>horatiug</dc:creator>
      <dc:date>2023-10-04T10:30:51Z</dc:date>
    </item>
    <item>
      <title>Re: Infrastructure question</title>
      <link>https://community.databricks.com/t5/get-started-discussions/infrastructure-question/m-p/48337#M1481</link>
      <description>&lt;P&gt;Hi&amp;nbsp;&lt;a href="https://community.databricks.com/t5/user/viewprofilepage/user-id/9"&gt;@Retired_mod&lt;/a&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;we are already using custom VPC but the service account used is the &lt;SPAN&gt;the default compute engine. Expectation from our security team would be that when deploying the workspace a new SA is created in the project with required rights and not using the default compute engine SA.&amp;nbsp;&amp;nbsp;&lt;/SPAN&gt;&lt;/P&gt;</description>
      <pubDate>Thu, 05 Oct 2023 08:12:12 GMT</pubDate>
      <guid>https://community.databricks.com/t5/get-started-discussions/infrastructure-question/m-p/48337#M1481</guid>
      <dc:creator>horatiug</dc:creator>
      <dc:date>2023-10-05T08:12:12Z</dc:date>
    </item>
  </channel>
</rss>

