cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

DLT-Asset bundle : Pipelines do not support a setting a run_as user that is different from the owner

Go to solution
erigaud
Honored Contributor

โ€Ž01-30-2025 08:13 AM

Hello !

We're using Databricks asset bundles to deploy to several environments using a devops pipeline. The service principal running the CICD pipeline and creating the job (owner) is not the same as the SPN that will be running the jobs (run_as).

This is not an issue for workflows but somehow it is an issue for DLT pipelines as we run into this error : 

Pipelines do not support a setting a run_as user that is different from the owner

Is there a way to solve this issue or is it going to be supported by the DLT pipelines ? It seems like a very big constraint.

 

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
erigaud
Honored Contributor
In response to NandiniN

โ€Ž02-05-2025 12:20 AM

Hello again,

I've created an idea for that issue if someone wants to give it an upvote. It can be a very blocking issue for architectures where you cannot allow to use the same SPN for deployment and runs

https://feedback.azure.com/d365community/idea/61e1a9e4-99e3-ef11-b542-00224854717c

View solution in original post

5 REPLIES 5

Go to solution
saurabh18cs
Honored Contributor II

โ€Ž01-31-2025 05:29 AM

Hi @erigaud 

yes observed same behaviour either remove run_as and it will automatically take the same information as owner.

OR

if owner can be mapped to run_as

Go to solution
NandiniN
Databricks Employee
Databricks Employee

โ€Ž01-31-2025 09:14 AM

By default who creates pipeline is the owner/run_as.

Go to solution
erigaud
Honored Contributor
In response to NandiniN

โ€Ž02-05-2025 12:20 AM

Hello again,

I've created an idea for that issue if someone wants to give it an upvote. It can be a very blocking issue for architectures where you cannot allow to use the same SPN for deployment and runs

https://feedback.azure.com/d365community/idea/61e1a9e4-99e3-ef11-b542-00224854717c

Go to solution
no2
New Contributor II

yesterday

I can't believe I have to say this, but this issue should not be marked as "Solved" until the actual problem is... solved. 

0 Kudos

Go to solution
Coffee77
Contributor III

13 hours ago

Maybe I'm not catching this or missing something else but I've got the following job in one of my demo workspaces:

Coffee77_0-1762937681592.png

Creator is my user and the job runs as a service principal account. Those are different identities. I got this by deploying the job with Databricks Asset Bundles and changing in there the "run_as" property while keeping same job identifiers.

Coffee77_1-1762937864425.png

 

 


Lifelong Learner Cloud & Data Solution Architect | https://www.youtube.com/@CafeConData
0 Kudos

Join Us as a Local Community Builder!

Passionate about hosting events and connecting people? Help us grow a vibrant local communityโ€”sign up today to get started!

Sign Up Now
Announcements