cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Unable to create Key Vault secrets scope with NPIP Workspace

Go to solution
Soma
Valued Contributor

โ€Ž10-07-2022 09:50 PM

Hi Team for secure connection we created secured cluster with

NPIP(https://learn.microsoft.com/en-us/azure/databricks/security/secure-cluster-connectivity) WORKSPACE hosted in a private VNET.

We had a hub vnet with private endpoint for key vault ,

We peered the ADB Vnet with Hub Vnet.

When I tried connecting to key vault url from ADB notebook it is resolving the IP

But when I tried connecting to key vault to create secret scope the dns for this key vault is not getting resolved but at the same time it is working with without NPIP WORKSPACE hosted in a private VNET

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Hubert-Dudek
Esteemed Contributor III
In response to Soma

โ€Ž10-16-2022 03:35 AM

It works from Notebook as the notebook is executed on the driver on your vnet. The Control panel is in a different place. In databricks subnets there is a need to create a service endpoint (Create service endpoint policies to allow traffic to specific azure resources from your virtual network over service endpoints)image.png

View solution in original post

Preview file
80 KB
3 REPLIES 3

Go to solution
Debayan
Databricks Employee
Databricks Employee

โ€Ž10-10-2022 08:29 AM

Hi @somanath Sankaranโ€‹ , did you face any error? if yes, could you please paste the error snapshot here?

Go to solution
Soma
Valued Contributor
In response to Retired_mod

โ€Ž10-13-2022 06:55 AM

@Kaniz Fatmaโ€‹ @Debayan Mukherjeeโ€‹ 

ScreenShot

image 

We see an issue in docs because only for premium workspace we can create NPIP as per docs

but I created one through non-premium workspace .

Resolution : We created a cluster with Managed Own Vnet without NPIP.

Preview file
43 KB

Go to solution
Hubert-Dudek
Esteemed Contributor III
In response to Soma

โ€Ž10-16-2022 03:35 AM

It works from Notebook as the notebook is executed on the driver on your vnet. The Control panel is in a different place. In databricks subnets there is a need to create a service endpoint (Create service endpoint policies to allow traffic to specific azure resources from your virtual network over service endpoints)image.png

Preview file
80 KB

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโ€™t want to miss the chance to attend and share knowledge.

If there isnโ€™t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements