โ01-22-2025 06:21 PM
Hi everyone,
Iโve been trying to work with the databricks.sdk Python library to manage service principals programmatically. However, Iโm running into an issue when attempting to create a service principal using the AccountClient class. Below is the code snippet Iโm using:
from databricks.sdk import WorkspaceClient, AccountClient
import time
account_client = AccountClient()
sp_create = account_client.service_principals.create(active=True, display_name=f'sdk-{time.time_ns()}')
sp = account_client.service_principals.get(id=sp_create.id)
# cleanup
account_client.service_principals.delete(id=sp_create.id)
When I execute the above code, I encounter the following error:
NotFound                                  Traceback (most recent call last)
Cell In[12], line 1
----> 1 sp_create = account_client.service_principals.create(active=True, display_name=f'sdk-{time.time_ns()}')
File ~/.pyenv/versions/3.8.13/lib/python3.8/site-packages/databricks/sdk/service/iam.py:2257, in AccountServicePrincipalsAPI.create(self, active, application_id, display_name, entitlements, external_id, groups, id, roles, schemas)
...
NotFound: Endpoint not found for /2.0/accounts/ACCOUNT_ID/scim/v2/ServicePrincipals
Any insights or guidance would be greatly appreciated. Thanks in advance!
โ01-23-2025 01:26 PM
I am facing the same issue
โ01-23-2025 02:56 PM - edited โ01-23-2025 02:57 PM
Hi @Asaph, this could be an authentication or missing configuration issue. Please ensure that the AccountClient class instance is created with the required authentication details. Additionally, since this is an account-level operation, check you have account admin privileges to run it successfully.
Example code:
from databricks.sdk import WorkspaceClient, AccountClient
import time
account_client = AccountClient(
    host='', # databricks account console host
    account_id='', # databricks account id
    # authentication options 
    # client_id/client_secret best practice
    client_id='',
    client_secret=''
)
sp_create = account_client.service_principals.create(active=True, display_name=f'sdk-{time.time_ns()}')
sp = account_client.service_principals.get(id=sp_create.id)
# cleanup
account_client.service_principals.delete(id=sp_create.id)
Mark as resolved if this solves your issue.
โ01-23-2025 09:56 PM
This can be a problem with missing configuration or authentication. Please make sure that the necessary authentication information is included when creating the AccountClient class instance. Additionally, make sure you have account admin capabilities to do this operation correctly, as it is account-level.
โ01-26-2025 01:26 AM
This can be an issue with authentication or configuration being missing. When constructing the AccountClient class instance, please ensure that the required authentication details are present. Additionally, since this action is account-level, make sure you have account admin skills to complete it successfully.
โ05-30-2025 09:02 AM
What are the authentication details that needs to be passed while constructing accountclient. Cant find clear working examples of account client within notebook
โ06-02-2025 05:22 AM - edited โ06-02-2025 05:28 AM
Same here, couldnt find clear details on what needs to be passed, but this worked for me:
โ06-02-2025 09:06 AM
Thank you @Pat. What permissions does the spn needs to have as I get invalid_client: Client authentication failed
 
					
				
				
			
		
 
					
				
				
			
		
Passionate about hosting events and connecting people? Help us grow a vibrant local communityโsign up today to get started!
Sign Up Now