cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

It's possible to sync account group/user to workspace without the need to do it manually?

MarcoRezende
New Contributor II

โ€Ž04-01-2024 09:23 AM

I am using Databricks SCIM for my Databricks Account, so when i add a user or group in the SCIM connector, the user or group its created in Databricks Account. After this, i need to manually assign the user/group to the workspaces. My boss wants to only add user/group in SCIM connector and its reflect in all the workspaces without the need to do manually, is there an option to this?

3 REPLIES 3

byronsalty
New Contributor III

โ€Ž01-30-2025 09:32 AM

Also hopeful that there is an answer to this question.

0 Kudos

Rjdudley
Honored Contributor

โ€Ž01-30-2025 10:13 AM

At this time I don't think you can automatically add a user/group directly to a workspace from EntraId one at a time.  EntraId can sync to the account, but then admins need to assign users/groups to workspaces.  If you have identity federation configured, you can add users/groups directly to a workspace and they will be sync'd up to the account automatically, but I don't think you want that because you're still adding each user/group manually.

The ideal setup for you now would be to have one or more EntraId groups which you assign to a workspace once, and assign permissions once.  Then just put users in the appropriate groups, and they would sync automatically.  These groups would be designed for different personas, like "data analyst" or "data scientist" and have the minimum set of permissions assigned for them to do their job.

saurabh18cs
Honored Contributor

โ€Ž01-31-2025 05:19 AM

Hi , I agree with @Rjdudley 

EntraID groups are better

saurabh18cs_0-1738329524040.png

 

Join Us as a Local Community Builder!

Passionate about hosting events and connecting people? Help us grow a vibrant local communityโ€”sign up today to get started!

Sign Up Now
Announcements