Databricks Community

NOOR_BASHASHAIK · ‎05-27-2023

Hi all

we have set-up metastore, and were doing certain activities as part of MVP.

we realized in a particular databricks workspace that was enabled with UC, in admin settings > "Add Groups" section, user groups from other platforms/projects which leverage UC are also appearing. Does this not lead this some unnecessary conflicts with regards to access management between projects/platforms/divisions in organization?

I am curious to know experiences of others in this regard. Is there a way to initially restrict and selectively choose other divisions user groups when a need arises (keeping in mind delta sharing across other divisions in a marge organization).

Note: the same goes for service principals also.

Ismail1 · ‎05-29-2023

Good question, didn't think of it that way, from my understanding UC uses users pushed from the account console and not from workspaces, One way to restrict would be to restrict other workspaces from using said catalog and also control ACLs with the right Workspace groups.

In any case following this thread to see what is the most valid solution for this

Databricks Community

Unity Catalog - addition of account groups/users to workspaces

Connect with Databricks Users in Your Area

South Florida Databricks User Group: Accelerate Projects to Value with GenAI

Struggling with BI? We want to hear from you!

Introducing Databricks Apps

Databricks Community Champion - September 2024 - Szymon Dybczak

Intelligent Data Engineering: Beyond the AI Hype