cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

On-behalf-of token creation for service principals is not enabled for this workspace

Ajay-Pandey
Esteemed Contributor III

โ€Ž03-19-2024 03:49 AM

Hi All

I just wanted to create PAT for Databricks Service Principle but getting below code while hitting API or using CLI - 

AjayPandey_0-1710845262519.pngAjayPandey_1-1710845276557.png

Please help me to create PAT for the same.

#dataengineering #databricks

Ajay Kumar Pandey
0 Kudos
5 REPLIES 5

Ajay-Pandey
Esteemed Contributor III
In response to Retired_mod

โ€Ž03-19-2024 05:25 AM

@Retired_mod I have already referred this one but still having issue
I have created Service Account in Databricks and I am not using Azure Service Principle

Ajay Kumar Pandey
0 Kudos

Ajay-Pandey
Esteemed Contributor III

โ€Ž03-19-2024 08:04 AM

Hi @Retired_mod ,

I have given all the permissions (Admin) to Service Principle and still having the same issue.

Please find all the details below - 

AjayPandey_0-1710860431811.png

AjayPandey_1-1710860497811.png

 

 

Ajay Kumar Pandey
0 Kudos

Ajay-Pandey
Esteemed Contributor III

โ€Ž04-07-2024 09:59 PM

Hi @Retired_mod 
Have you got any update on this ?

Ajay Kumar Pandey
0 Kudos

MorpheusGoGo
New Contributor II

โ€Ž09-19-2024 02:48 AM - edited โ€Ž09-19-2024 03:11 AM

This only works if you are on AWS or GCP, no support for Azure ๐Ÿ˜ž 

Check the API documentation AWS - https://docs.databricks.com/api/workspace/tokenmanagement/createobotoken

No such documentation exists for Azure.

0 Kudos

JackB
New Contributor II

โ€Ž04-24-2025 01:43 PM

You can generate the token while logged in as the Service Principle via the Azure CLI in a Command Prompt window.  To do so, make sure to install the Azure CLI and the Databricks CLI with it.

I used the following commands in the Command Prompt window.  Hope this helps.

First Command โ€“ Log in as the Service Principal using the secret value.  The secret value is created via https://learn.microsoft.com/en-us/entra/identity-platform/howto-create-service-principal-portal#opti...

az login --service-principal -t <tenant id> -u <client id> -p <secret value> --allow-no-subscriptions

 Second Command while logged in as the Service Principal

databricks tokens create --lifetime-seconds 15780096 --comment <service principle name>

 

0 Kudos

Join Us as a Local Community Builder!

Passionate about hosting events and connecting people? Help us grow a vibrant local communityโ€”sign up today to get started!

Sign Up Now
Announcements