Can we sync users and groups between AWS IAM and Databricks unity catalog as an effort to unify control access in one place
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-26-2023 11:30 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-26-2023 01:08 PM
@AlberTad As far as i know there is no direct integration between that, because UC is service to your databricks account. you can configure scim with databricks account and from account level --> unity catalog you can assign groups/users.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-26-2023 01:20 PM
With SCIM, you can synchronize everything by using API calls or by using some ready tools available on the market https://docs.databricks.com/dev-tools/api/latest/scim/index.html
If you are on AWS, you can use AWS SSO:
To synchronize groups between Databricks and AWS using AWS SSO, you can follow these general steps:
- Set up AWS SSO and configure the Databricks application in the AWS SSO console.
- Configure the SCIM endpoint in Databricks to use AWS SSO as the SCIM provider.
- Configure the mapping of groups between AWS SSO and Databricks so that the appropriate groups are synced between the two systems.
Other example tools on the market are Okta, OneLogin, Azure AD, auth0, and ping identity.
My blog: https://databrickster.medium.com/
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-30-2023 11:15 PM
Hi @AlberTad
Hope everything is going great.
Just wanted to check in if you were able to resolve your issue. If yes, would you be happy to mark an answer as best so that other members can find the solution more quickly? If not, please tell us so we can help you.
Cheers!
