cancel
Showing results for 
Search instead for 
Did you mean: 
Data Engineering
cancel
Showing results for 
Search instead for 
Did you mean: 

Databricks PAT Logs

Priyam1
New Contributor III

As an admin, how can i check which external applications are being connected with databricks by people through Personal Access Token. I have used the token API to get the token list but i couldn't find any other REST API reference for obtaining the information for the application that are connected with databricks via PAT

3 REPLIES 3

Kaniz
Community Manager
Community Manager

Hi @Priyam1, As an administrator, you can manage personal access tokens (PATs) in your Databricks workspace. These tokens allow users to authenticate to the Databricks REST API.

 

Let’s explore how you can handle PATs and monitor external applications connected via these tokens:

 

Overview of Personal Access Token Management:

  • PATs are enabled by default for Databricks workspaces created in 2018 or later.
  • Users with the appropriate permissions can generate PATs with any expiration date, including indefinite lifetimes.
  • By default, non-admin users cannot create or use PATs.
  • As an admin, you control PATs, including enabling/disabling them, monitoring, and setting maximum lifetimes.

Enable or Disable Personal Access Token Authentication:

  • PAT authentication is enabled by default for workspaces created in 2018 or later.
  • You can change this setting in the workspace settings page.
  • When disabled, users and service principals cannot create new tokens, but existing non-expired tokens remain available.
  • Note that some features like Partner Connect and service principals require PATs to be enabled.

Fine-Grained Permissions:

  • To restrict token access for specific users, keep PAT authentication enabled and set fine-grained permissions for users and groups.
  • Control who can create and use tokens based on your requirements.

Monitoring and Revoking Tokens (REST API only):

  • You can monitor and revoke tokens using the REST API.
  • This allows you to manage token usage effectively.

Service Principals and Automation:

  • For automation calls, consider using service principals.
  • Create a service principal, add it to the corresponding group with data access, permit it to use PATs, and generate a token.
  • Service principals are helpful for external API integrations.

Remember that managing personal access tokens requires the Premium plan or above. For comprehensive guidance, refer to the official Databricks documentation for further details or assistance. 🚀

Priyam1
New Contributor III

Thanks for the reply

The requirement is to grant everyone access to Personal Access Tokens (PAT) and identify which applications are connected using these PATs?

I couldn't find the answer in the above reply

Kaniz
Community Manager
Community Manager

Hi @Priyam1, This article explains how to manage personal access tokens in your workspace.

Welcome to Databricks Community: Lets learn, network and celebrate together

Join our fast-growing data practitioner and expert community of 80K+ members, ready to discover, help and collaborate together while making meaningful connections. 

Click here to register and join today! 

Engage in exciting technical discussions, join a group with your peers and meet our Featured Members.