Databricks Community

Eibraao · ‎02-10-2026

"How can I disable the dashboard sharing field for dashboard creators who are not admins? I tried changing the creator’s permission from 'CAN_MANAGE' to 'CAN_READ', but it had no effect — the creator still retains the 'CAN_MANAGE' permission

Eibraao · ‎02-10-2026

MoJaMa · ‎02-11-2026

The Creator will always have CAN_MANAGE in addition to the Workspace Admins.

In your screenshot that 3rd row email is a different one from the creator right?

Creator (1st row email) ends with "a". 3rd row email ends with "s".

Are you trying to make sure that 3rd email does not have CAN_MANAGE?

Eibraao · ‎02-12-2026

No — I’m not trying to remove the CAN_MANAGE permission from the third email. That user was added only as a test to see how a newly added user with CAN_MANAGE would appear.

My actual issue is different:

Regular workspace users automatically receive CAN_MANAGE on the dashboards they create, which means they can share those dashboards freely. What I want is to disable the sharing option for non-admin users.

I initially thought that changing the dashboard creator’s permission from CAN_MANAGE to CAN_EDIT could help, but I realized this isn’t possible because:

Creators always inherit CAN_MANAGE by default.
The dashboard can also inherit permissions from the folder where it was created.
So if the user has CAN_MANAGE on that folder, they will automatically have it on the dashboard as well.

Given these constraints, I’m looking for another way to disable the share button for users who are not workspace admins, allowing only admins to share dashboards and change sharing settings.

MoJaMa · ‎02-20-2026

Ah ok. That suggests that your issue lies further up. Try navigating up all the way up to the top and see what your permissions are set up like. In this example, I navigated all the way up to the "Workspace" and I can see that "All workspace users" have View access. Check if yours are more permissible.

But to be clear, there isn't a setting that prevents User1 from creating Dashboard1 and choosing to Share it with User2/Group3.

Eibraao · ‎02-25-2026

Thank you for your response. I wasn’t able to find an ideal way to disable the Share button for regular users, nor to prevent them from adding new users and assigning permission levels directly on the dashboard.

What I’m currently testing is a routine that monitors dashboard permissions through a Databricks API endpoint. The routine checks the ACL list for each dashboard in the workspace, evaluating all users, groups, and their respective permission levels. If it finds that any dashboard has users or groups with permissions beyond the admin group and the owner, it automatically resets those permissions. It also consistently resets the View access for “All workspace users” back to its default state.

My intention with this approach is to enforce stronger control over how sensitive business dashboards and data are shared across users, promoting a stricter “least privilege” access policy.

MoJaMa · ‎02-26-2026

Makes sense. You can't unilaterally disable the "Share" option. Because it is expected that users share objects they own. There have been requests from customers to try and guardrail this such as maybe members of a team/group can share with each other but no broader etc. But that's not a thing today. So your approach seems like a good corrective option.

Databricks Community

Disable the dashboard sharing field for dashboard creators

Solution Accelerator Series | Digital Twins

Community Alert: Free BrickTalk on Supply Chain Management with Databricks!

🌟 Community Pulse: Your Weekly Roundup! April 20 – 26, 2026

The Lakebase Hub: Official Community Space for Lakebase Insights

Take Control: Customer-Managed Keys for Lakebase Postgres