cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Unable to create Databricks workspace using Terraform on AWS

Go to solution
karthik_p
Esteemed Contributor

โ€Ž06-09-2022 07:26 PM

HI Team,

we are using below workspace config scripts, when we try to create workspace previously from EC2 Instance, we are able to create Workspace without any issue. but when we are trying to run through Github actions, we are getting below error

Error: cannot create mws credentials: MALFORMED_REQUEST: Failed credential validation checks: please use a valid cross account IAM role with permissions setup correctly

it says IAM role creation Issue (which should be cross account role), we are using iam.tf script to create that, as far as recommendation if we run that script once cross account role should be created. some how it is not able to create it, we have tried to manually create and map in terraform, that is not working. what are the option that we have . what can we pass in credentialID ( If directly we need to pass)

https://github.com/databrickslabs/terraform-provider-databricks/blob/master/docs/guides/aws-workspac...

1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Prabakar
Databricks Employee
Databricks Employee

โ€Ž08-02-2022 02:31 AM

@karthik pโ€‹ this can be fixed by setting timeout. Please check this https://kb.databricks.com/en_US/cloud/failed-credential-validation-checks-error-with-terraform

View solution in original post

3 REPLIES 3

Go to solution
karthik_p
Esteemed Contributor
In response to Retired_mod

โ€Ž06-10-2022 08:26 AM

@Kaniz Fatmaโ€‹ we have followed steps as a part of both terraform website and Databricks AWS article and also we have raised git issue, git team said that, issue is related to iam and we can reach Databricks. but in logs it is clearly saying it is unable complete creation of credential set. it is holding our development environment build, can you please point to right team.

if we manually create IAM role, are we going to provide role name in credential ID section

https://docs.databricks.com/dev-tools/terraform/e2-workspace.html

"credentials_id = databricks_mws_credentials.this.credentials_id" (we tried to pass role name also with arn, but no luck)

 imageplease find git issue that was raised

https://github.com/databrickslabs/terraform-provider-databricks/issues/1363

let me know please know if anything needed

Preview file
91 KB
0 Kudos

Go to solution
Prabakar
Databricks Employee
Databricks Employee

โ€Ž08-02-2022 02:31 AM

@karthik pโ€‹ this can be fixed by setting timeout. Please check this https://kb.databricks.com/en_US/cloud/failed-credential-validation-checks-error-with-terraform

Go to solution
jose_gonzalez
Databricks Employee
Databricks Employee
In response to Prabakar

โ€Ž08-08-2022 01:49 PM

Hi @karthik pโ€‹,

Just a friendly follow-up. Did you see Prabakar's response? did it hep to solved your issue?

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโ€™t want to miss the chance to attend and share knowledge.

If there isnโ€™t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements