Databricks Community

Soma · ‎10-07-2022

Hi Team for secure connection we created secured cluster with

NPIP(https://learn.microsoft.com/en-us/azure/databricks/security/secure-cluster-connectivity) WORKSPACE hosted in a private VNET.

We had a hub vnet with private endpoint for key vault ,

We peered the ADB Vnet with Hub Vnet.

When I tried connecting to key vault url from ADB notebook it is resolving the IP

But when I tried connecting to key vault to create secret scope the dns for this key vault is not getting resolved but at the same time it is working with without NPIP WORKSPACE hosted in a private VNET

Hubert-Dudek · ‎10-16-2022

It works from Notebook as the notebook is executed on the driver on your vnet. The Control panel is in a different place. In databricks subnets there is a need to create a service endpoint (Create service endpoint policies to allow traffic to specific azure resources from your virtual network over service endpoints)

View solution in original post

Debayan · ‎10-10-2022

Hi @somanath Sankaran , did you face any error? if yes, could you please paste the error snapshot here?

Soma · ‎10-13-2022

@Kaniz Fatma @Debayan Mukherjee

ScreenShot

We see an issue in docs because only for premium workspace we can create NPIP as per docs

but I created one through non-premium workspace .

Resolution : We created a cluster with Managed Own Vnet without NPIP.

Hubert-Dudek · ‎10-16-2022

It works from Notebook as the notebook is executed on the driver on your vnet. The Control panel is in a different place. In databricks subnets there is a need to create a service endpoint (Create service endpoint policies to allow traffic to specific azure resources from your virtual network over service endpoints)