cancel
Showing results for 
Search instead for 
Did you mean: 
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Showing results for 
Search instead for 
Did you mean: 

Azure Entra SSO Error: Your user has not been registered

lgepp11
New Contributor III

I have set up SSO within databricks and automatic user provisioning with Azure Entra and confirmed it is working for all users. However 1 user is presented with this when signing in. The user is in the enterprise app within Azure Entra and the user is also account admin from within the databricks user management console. the user can still login using their email and password but when going through the SSO login process the user always finishes here, even after being re-directed through the entra portal.

lgepp11_0-1696914264539.png

 

5 REPLIES 5

lgepp11
New Contributor III

I have gone ahead and removed the user from the Entra enterprise applications removed the user from the workspace and replaced all the ownership of that user to a service principal & service user. 

I re-added the user the the correct enterprise application and the re-enabled the user for the workspace within the databricks admin console and gave the user, account admin privileges to the workspace.

I told the user to attempt to sign in using SSO to the workspace and this is the error now.

Quick FYI. This Databricks account and workspaces were setup before SSO was seamlessly enabled for subsequent workspaces when enabled on the admin console. The SSO setup in Entra looks like 3 Applications each with their own SSO configuration.
1 Enterprise SSO App in Entra for the databricks admin console
1 Enterprise SSO App in Entra for the databricks development workspace
1 Enterprise SSO App in Entra for the databricks production workspace

This user has the correct permissions (GA) in Entra and is assigned to the enterprise applications for all 3 applications. Yet we are still facing SSO sign in issues.

Another FYI, this user we are trying to remediate is the email used to sign up for databricks admin console.

lgepp11_0-1700439454930.png

 

nj28sharp
New Contributor II

We are seeing the same error with 2 users after enabling SSO 

 

imsabarinath
New Contributor III

Try asking them to launch ADB workspace from Azure Portal and see if it works...

lgepp11
New Contributor III

Sorry @imsabarinath I should mention this is an AWS databricks instance.

nj28sharp
New Contributor II

Figured out the issue, it seems like Email is case sensitive 

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you won’t want to miss the chance to attend and share knowledge.

If there isn’t a group near you, start one and help create a community that brings people together.

Request a New Group