https://community.databricks.com/t5/warehousing-analytics/insufficient-permissions-error-when-reading-data-from-s3-in/m-p/109007#M1867 <DIV>I am using a Shared Databricks Compute and trying to read data from an S3 bucket via an Instance Profile. However, I am encountering the following error:</DIV><DIV>&nbsp;</DIV><DIV>[INSUFFICIENT_PERMISSIONS] Insufficient privileges: User does not have permission SELECT on any file. SQLSTATE: 42501</DIV><DIV><STRONG>My Setup:</STRONG></DIV><DIV>I am a Databricks workspace user.</DIV><DIV>The Instance Profile is correctly configured, and I can see it while creating the compute.</DIV><DIV>The S3 bucket has the necessary permissions for the instance profile.</DIV><DIV><STRONG>Troubleshooting Steps Tried:</STRONG></DIV><DIV><SPAN>1. Verified that the instance profile is attached to the shared compute.</SPAN></DIV><DIV><SPAN>2. Checked S3 bucket permissions (s3:GetObject, s3:ListBucket).</SPAN></DIV><DIV><SPAN>3. Tried using a single-user cluster instead of shared compute (its working fine with single user compute).</SPAN></DIV><DIV>&nbsp;</DIV><DIV>Is this the expected behavior or a limitation of Shared Databricks Compute?</DIV><DIV>&nbsp;</DIV><DIV>&nbsp;</DIV> Wed, 05 Feb 2025 17:43:37 GMT vidya_kothavale 2025-02-05T17:43:37Z https://community.databricks.com/t5/warehousing-analytics/insufficient-permissions-error-when-reading-data-from-s3-in/m-p/109007#M1867 <DIV>I am using a Shared Databricks Compute and trying to read data from an S3 bucket via an Instance Profile. However, I am encountering the following error:</DIV><DIV>&nbsp;</DIV><DIV>[INSUFFICIENT_PERMISSIONS] Insufficient privileges: User does not have permission SELECT on any file. SQLSTATE: 42501</DIV><DIV><STRONG>My Setup:</STRONG></DIV><DIV>I am a Databricks workspace user.</DIV><DIV>The Instance Profile is correctly configured, and I can see it while creating the compute.</DIV><DIV>The S3 bucket has the necessary permissions for the instance profile.</DIV><DIV><STRONG>Troubleshooting Steps Tried:</STRONG></DIV><DIV><SPAN>1. Verified that the instance profile is attached to the shared compute.</SPAN></DIV><DIV><SPAN>2. Checked S3 bucket permissions (s3:GetObject, s3:ListBucket).</SPAN></DIV><DIV><SPAN>3. Tried using a single-user cluster instead of shared compute (its working fine with single user compute).</SPAN></DIV><DIV>&nbsp;</DIV><DIV>Is this the expected behavior or a limitation of Shared Databricks Compute?</DIV><DIV>&nbsp;</DIV><DIV>&nbsp;</DIV> Wed, 05 Feb 2025 17:43:37 GMT https://community.databricks.com/t5/warehousing-analytics/insufficient-permissions-error-when-reading-data-from-s3-in/m-p/109007#M1867 vidya_kothavale 2025-02-05T17:43:37Z https://community.databricks.com/t5/warehousing-analytics/insufficient-permissions-error-when-reading-data-from-s3-in/m-p/109238#M1873 <P>Hi&nbsp;<a href="https://community.databricks.com/t5/user/viewprofilepage/user-id/113924">@vidya_kothavale</a>&nbsp;, Greetings!</P> <P>Can you please refer to this article and check if it helps you to resolve your issue :&nbsp;<A href="https://kb.databricks.com/en_US/data/user-does-not-have-permission-select-on-any-file" target="_blank">https://kb.databricks.com/en_US/data/user-does-not-have-permission-select-on-any-file</A></P> <P><SPAN>Please note that these permissions are only required for a shared cluster. The security implications of granting ANY FILE permissions on a filesystem. You should only grant ANY FILE to privileged users. Users with lower privileges on the cluster should never access data by referencing an actual storage location. Instead, they should access data from tables that are created by privileged users, thus ensuring that Table ACLS are enforced.</SPAN></P> <P><SPAN>Please let me know if this helps and leave a like if this information is useful, followups are appreciated.<BR />Kudos<BR />Ayushi</SPAN></P> Thu, 06 Feb 2025 15:56:55 GMT https://community.databricks.com/t5/warehousing-analytics/insufficient-permissions-error-when-reading-data-from-s3-in/m-p/109238#M1873 Ayushi_Suthar 2025-02-06T15:56:55Z