cancel
Showing results for 
Search instead for 
Did you mean: 
Data Governance
Join discussions on data governance practices, compliance, and security within the Databricks Community. Exchange strategies and insights to ensure data integrity and regulatory compliance.
cancel
Showing results for 
Search instead for 
Did you mean: 

Method of gaining limited access to system tables

sagarsk2
New Contributor III

Hi, 

I am working with a firm that uses Databricks in order to analyze their system tables for cost visualizations and forecasting. I am trying to gain access to just the system tables without being able to view their other sensitive notebooks, artifacts and secrets. Could someone please tell me the steps they and I have to take in order to make this possible? 

 

Thanks 

1 ACCEPTED SOLUTION

Accepted Solutions

szymon_dybczak
Contributor III

Hi @sagarsk2 ,

If your Databricks account has the Premium plan or above, you can use Workspace access control to control who has access to a notebook. The same applies for secrets and other assets, you just need to setup correct ACL for given securable object:
Access control lists | Databricks on AWS 

So what you need to do is to contact your workspace admin and ask him to configure proper set of permission for your account.

PS. Access to system tables is governed by Unity Catalog. No user has access to these system schemas by default. To grant access, a user that is both a metastore admin and an account admin must grant USE and SELECT permissions on the system schemas. 

View solution in original post

2 REPLIES 2

szymon_dybczak
Contributor III

Hi @sagarsk2 ,

If your Databricks account has the Premium plan or above, you can use Workspace access control to control who has access to a notebook. The same applies for secrets and other assets, you just need to setup correct ACL for given securable object:
Access control lists | Databricks on AWS 

So what you need to do is to contact your workspace admin and ask him to configure proper set of permission for your account.

PS. Access to system tables is governed by Unity Catalog. No user has access to these system schemas by default. To grant access, a user that is both a metastore admin and an account admin must grant USE and SELECT permissions on the system schemas. 

sagarsk2
New Contributor III

Hi @szymon_dybczak 

Thank you very much for the clarification! Turns out, the people I am working with are using the regular plan and not the premium so that might not be an option. Would the only other way be to send the system tables to an S3 bucket? If so, is there a script that they can run on their end attached to a CRON so they can push to the S3 bucket? Any resources you might be aware of will be very helpful. 

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you won’t want to miss the chance to attend and share knowledge.

If there isn’t a group near you, start one and help create a community that brings people together.

Request a New Group