cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Databricks certificate expired

Daniela_Boamba
New Contributor III

โ€Ž10-17-2025 06:52 AM

Hello,

I have a databricks workspace with sso authentication. the IDP is on azure.

The client certificate expired and now, I can't log on to databricks to add the new one.

How can I do? Any idea is welcomed.

Thank you!!

Best regards,

daniela

 

0 Kudos
1 REPLY 1

MoJaMa
Databricks Employee
Databricks Employee

โ€Ž01-23-2026 02:51 PM

This is an AWS Databricks workspace and your SSO is with EntraID?

You'll need to create a Support Ticket and then Engineering can disable-SSO temporarily allowing you to login with user+OTP.

The long term solution here is that you should:

  1. Set up Account SSO: https://docs.databricks.com/aws/en/security/auth/single-sign-on/#overview-of-sso-setup
  2. Set up Emergency Access: https://docs.databricks.com/aws/en/security/auth/single-sign-on/emergency-access
  3. Use Unified Login: https://docs.databricks.com/aws/en/security/auth/single-sign-on/unified-login

[2] allows you to be able to login even if SSO issues arise.

[3] allows you to not have to setup per-workspace SSO which is considered legacy.

Announcements