cancel
Showing results forย 
Search instead forย 
Did you mean:ย 
DELETE
cancel
Showing results forย 
Search instead forย 
Did you mean:ย 

Hi Team, I want to configure below two features for Databricks using Terraform. - Account Level Single Sign On Configuration Using Terraform - Workspace Level Single Sign On Configuration Using Terraform

Anonymous
Not applicable
 
2 REPLIES 2

Anonymous
Not applicable

Certainly! Here's an example of how you can configure Account Level Single Sign-On (SSO) and Workspace Level SSO for Databricks using Terraform.

Account level SSO

# Define the Databricks account level SSO configuration
resource "databricks_account_sso_config" "example_account_sso" {
  # Set the necessary parameters for the account level SSO configuration
  domain = "example.com"  # Replace with your domain
  idp_entity_id = "https://idp.example.com/metadata"  # Replace with your IdP entity ID
  sp_entity_id = "https://accounts.cloud.databricks.com"  # Replace with the Databricks SP entity ID
  slo_enabled = true  # Set to true if you want to enable Single Logout (SLO)
 
  # Set the IdP metadata for the account level SSO configuration
  idp_metadata = <<-EOT
    <!-- Replace with your IdP metadata XML -->
    <EntityDescriptor entityID="https://idp.example.com/metadata" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
      ...
    </EntityDescriptor>
  EOT
}

Workspace level SSO

# Define the Databricks workspace level SSO configuration
resource "databricks_workspace_sso_config" "example_workspace_sso" {
  # Set the necessary parameters for the workspace level SSO configuration
  domain = "example.com"  # Replace with your domain
  idp_entity_id = "https://idp.example.com/metadata"  # Replace with your IdP entity ID
  sp_entity_id = "https://accounts.cloud.databricks.com"  # Replace with the Databricks SP entity ID
  slo_enabled = true  # Set to true if you want to enable Single Logout (SLO)
 
  # Set the IdP metadata for the workspace level SSO configuration
  idp_metadata = <<-EOT
    <!-- Replace with your IdP metadata XML -->
    <EntityDescriptor entityID="https://idp.example.com/metadata" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
      ...
    </EntityDescriptor>
  EOT
}

Note: These examples assume that you have already obtained the IdP metadata XML for your IdP (Identity Provider) and have the necessary information to configure the SSO settings for Databricks. Please replace the placeholders with your actual values accordingly. Additionally, make sure that you have the necessary permissions and credentials to create/update resources in your Databricks environment using Terraform.

maiconbaum
New Contributor III

Are you sure what you're talking about? There is no Terraform Resource for Databricks SSO Config at any workspace or account level. Could you provide more information about this?

Welcome to Databricks Community: Lets learn, network and celebrate together

Join our fast-growing data practitioner and expert community of 80K+ members, ready to discover, help and collaborate together while making meaningful connections. 

Click here to register and join today! 

Engage in exciting technical discussions, join a group with your peers and meet our Featured Members.