- 2831 Views
- 1 replies
- 0 kudos
Instance Profile Access Controls
I manage instance profiles assigned to specific user groups. For example, instance profile A provides access solely to group A. Currently, any user within group A has the ability to update the permissions of a cluster using instance profile A, which ...
- 2831 Views
- 1 replies
- 0 kudos
- 0 kudos
Hi @Retired_mod,Thank you for your guidance. I am following the strategies outlined in steps 1 and 2, and I remain concerned about a specific scenario.Consider instance profile A, which is designed to grant access exclusively to group A. If user A, ...
- 0 kudos
- 2298 Views
- 2 replies
- 0 kudos
Defaulting or overriding the cluster policy list order
I have numerous cluster policies varying that varies in sizes (Job - xsmall, Job - small, Job - medium...). However, when I create a new job and create a new job cluster the default policy selected from the drop down menu is on the bigger size. Is th...
- 2298 Views
- 2 replies
- 0 kudos
- 0 kudos
I checked on our sorting, and there does not seem to be any logic in it.They are not sorted by ID or description for sure.
- 0 kudos
- 9296 Views
- 3 replies
- 1 kudos
Resolved! Networking reduction cost for NATGateway and Shared Catalog
Use case and context:We have a databricks workspace in a specific region, reading and writing files from/to the same region.We also read from a Shared Catalog in a different company, a data provider, which is pointing to multi-region s3 buckets.The r...
- 9296 Views
- 3 replies
- 1 kudos
- 1 kudos
Thanks @Retired_mod for all the suggestions.After some days of monitoring NAT cost, I realized that the implementation of the S3 Gateway Endpoint it was actually working, the problem was that I thought that this change would be reflected right away i...
- 1 kudos
- 30819 Views
- 1 replies
- 0 kudos
Resolved! Error: default auth: cannot configure default credentials, please check...
Hola all, I'm experiencing a quite strange error. The problem is that and happens inside a GITLAB pipeline:$ databricks current-user meError: default auth: cannot configure default credentials, please check https://docs.databricks.com/en/dev-tools/au...
- 30819 Views
- 1 replies
- 0 kudos
- 0 kudos
Hola Kaniz, the problem is not on Databricks CLI but is due to some interactions happening inside the Gitlab pipeline. According to the documentation reported here: Databricks personal access token authentication | Databricks on AWS ( at the bottom o...
- 0 kudos
- 10634 Views
- 1 replies
- 2 kudos
External locations being shared across workspaces
Currently, we have 3 Unity Catalog enabled workspaces sharing the same metastore. Now, when we create an external location or storage credential in any of the workspaces, it gets reflected across all workspaces. We are looking for some best practices...
- 10634 Views
- 1 replies
- 2 kudos
- 2 kudos
Hi @Debi-Moha Currently we do not have a mechanism to isolate the external locations and storage credentials based on workspaces, since the metastore is shared across the workspaces. Please check below document for recommendations on securing extern...
- 2 kudos
- 19962 Views
- 2 replies
- 0 kudos
Bitbucket Cloud Repo Integration with Token
Hey,I am using Bitbucket Cloud and I want to connect my repository to Databricks. I am able to connect with my personal app password but what I am looking for is an authentication of a technical user.I need the integration to point to my dbt repo, wh...
- 19962 Views
- 2 replies
- 0 kudos
- 0 kudos
Hi @Retired_mod,thank you for your response! With this link you provided, I was able to authenticate with Bitbucket Cloud. The solution was to use x-token-auth as a username. I have tried with the generated email address before which didn't work. Tha...
- 0 kudos
- 3674 Views
- 1 replies
- 0 kudos
Monitor and Alert Databricks Resource Utilization and Cost Consumption
We want to build monitoring and Alerting solution for Azure Databricks that should capture Resource Utilization details (like Aggregated CPU%, Memory% etc.) and Cost consumption at the Account Level.We have Unity Catalog Enabled and there are multipl...
- 3674 Views
- 1 replies
- 0 kudos
- 0 kudos
@smehta_0908 Greetings! You can utilize Datadog for monitoring CPU and memory of clusters. https://docs.datadoghq.com/integrations/databricks/?tab=driveronly For Cost consumption at accounts level you can make use of billable usage logs using the Acc...
- 0 kudos
- 9859 Views
- 2 replies
- 0 kudos
Is there a way to configure a cluster to have no internet access?
When experimenting with LLMs on Databricks clusters, I have become interested in knowing if the LLM (Llama2 or otherwise), tries to make calls to the internet (i.e., the settings for use_remote_code=True in Huggingface models, as just one example).Mo...
- 9859 Views
- 2 replies
- 0 kudos
- 3986 Views
- 1 replies
- 1 kudos
Resolved! Install xml maven library
When I`m trying to install xml package, I`m getting error PERMISSION_DENIED
- 3986 Views
- 1 replies
- 1 kudos
- 1 kudos
Hey @FlavioSM The error message indicates that the library you're trying to install (com.databricks:spark-xml_2.13:0.17.0) is not on the allowlist for shared clusters in your Databricks workspace. Shared clusters are clusters that multiple users can ...
- 1 kudos
- 7367 Views
- 4 replies
- 0 kudos
Resolved! SCIM Synchronization for Email Change Cases in Azure AD
Hi everyone,I would like to know if the following behavior is expected or if it is a misconfiguration in SCIMWe are going through a change in the email of some users. So we did a test, changing the email of one of them, but the result was not OK beca...
- 7367 Views
- 4 replies
- 0 kudos
- 0 kudos
Hi @rfreitas , It is an expected behaviour because we don't support email or username updates/edits in the SCIM as of now. As per Databricks documentation, an email update is not supported in SCIM. You cannot update the username or email address of a...
- 0 kudos
- 15756 Views
- 4 replies
- 0 kudos
Resolved! Databricks job creator update with API
Hi team,Greetings.Do you know if there is a way to update the creator of a databricks_job using the API? the Documentation does not show "the creator" property and when I tried setting the creator, this property is not updated in the workspace UI.The...
- 15756 Views
- 4 replies
- 0 kudos
- 0 kudos
Hi @danmlopsmaz , Thanks for bringing up your concerns, always happy to help I understand the customer wanted to change the creator of the job but at this moment we could change the owner but not the creator. But you should be able to clone an exist...
- 0 kudos
- 13921 Views
- 2 replies
- 0 kudos
how register a published app
Is there a way to register a web app with Databricks to enable it to access a user's data using OAuth2? i.e., be included in the list of published apps with a pre-negotiated scope?
- 13921 Views
- 2 replies
- 0 kudos
- 6133 Views
- 7 replies
- 2 kudos
Resolved! CloudWatch Agent Init Script Fails
Hi,I am trying to install the CloudWatch log agent on my cluster, using this tutorial from AWS https://aws.amazon.com/blogs/mt/how-to-monitor-databricks-with-amazon-cloudwatch/They provide an init script there but when I try to start my cluster I get...
- 6133 Views
- 7 replies
- 2 kudos
- 2 kudos
Hi @Yeshwanth I have the exact same issue here. I have tried to update my cluster with the init script that you kindly shared in this thread. However, my error is still:Init script failure:Cluster scoped init script s3://databricks-init-scripts-caden...
- 2 kudos
- 8091 Views
- 0 replies
- 0 kudos
workspace local group once workspace has been migrated/Associated to Unity Catalog
Hello,Once we associate/migrate Databricks workspace to Unity Catalog, all the workspaces group will sync with Unity Catalog and workspace group would be renamed to workspace-local group. Databricks recommends to remove workspace-local group. Do we k...
- 8091 Views
- 0 replies
- 0 kudos
- 10113 Views
- 5 replies
- 1 kudos
Is a central UC Catalog management a Good Practice?
I am working at large company with many more or less independent divisions and we are currently working on the roll out of Unity Catalog in Azure. The idea was to have a central infrastructure repository (deployed via Terraform) to manage all central...
- 10113 Views
- 5 replies
- 1 kudos
- 1 kudos
Workspace Admins: Consider configuring permissions for workspace admins in the Account console to strike a balance between autonomy and governance.@Retired_mod Do you have any information about this configuration? I cannot find such thing in the Acco...
- 1 kudos
