I've set up the network security perimeter with Terraform using Configure an Azure network security perimeter for Azure resources - Azure Databricks | Microsoft Lea... as my guide. All of the resources associated to the NSP, and the Status of each is "Succeeded (View issues)"
When I view the issue, it says
Provisioning state
Succeeded
Issue type
MissingIdentityConfiguration
Description
Enabling a managed identity (MI) is required to support intra-perimeter communication between resources. Only requests authenticated using MI are permitted for intraโperimeter access. While some capabilities for certain resources may continue to function without a MI, enabling one is strongly recommended to ensure secure access within the same perimeter or across linked perimeters.
Suggested access rules
None
Suggested resource IDs
None
Suggested fix
Enable managed identity (MI) to ensure this resource can securely access other resources within the same perimeter or across linked perimeters. This is recommended even though certain capabilities may still operate without one.
I didn't see anything in the docs one way or the other for this, is it a problem or can we ignore it?
Following the "Verify ..." step, I get this response (the path was copied from the table's Details)
[RequestId={guid} ErrorClass=INVALID_PARAMETER_VALUE.LOCATION_OVERLAP] Input path url 'abfss://{container}@{storage account}.dfs.core.windows.net/__unitystorage/schemas/{guid}/tables/{guid}' overlaps with managed storage within 'CheckPathAccess' call.
It looks like that is working, but then again, no discussion one way or the other. Is this expected since all our data access us through UC tables and therefore all locations are UC managed?
