- 1854 Views
- 2 replies
- 2 kudos
The docs for the CMK for workspace storage states:After you add a customer-managed key for storage, you cannot later rotate the key by setting a different key ARN for the workspace. However, AWS provides automatic CMK master key rotation, which rotat...
- 1854 Views
- 2 replies
- 2 kudos
Latest Reply
Hi @Constantino Schillebeeckx​ , You can update/rotate CMK at a later time (on a running workspace). Please refer: https://docs.databricks.com/security/keys/customer-managed-keys-managed-services-aws.html?_ga=2.214562071.1895504292.1667411694-6435253...
1 More Replies
- 1941 Views
- 2 replies
- 2 kudos
This document (https://docs.databricks.com/security/keys/customer-managed-keys-managed-services-aws.html) describes how to use a customer managed key to encrypt notebooks in the control plane.We would please like to verify: if no CMK is provided, are...
- 1941 Views
- 2 replies
- 2 kudos
Latest Reply
Hello @Nathan Buesgens​ , from a high level point of view, by default, notebooks source code and metadata in the control plane are encrypted at rest in AWS RDS using AWS KMS with a Databricks-managed Key. But there is other data related to notebooks ...
1 More Replies
by
MoJaMa
• Databricks Employee
- 1434 Views
- 0 replies
- 0 kudos
- 1434 Views
- 0 replies
- 0 kudos
by
MoJaMa
• Databricks Employee
- 763 Views
- 0 replies
- 0 kudos
- 763 Views
- 0 replies
- 0 kudos