cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Get Started Discussions
Start your journey with Databricks by joining discussions on getting started guides, tutorials, and introductory topics. Connect with beginners and experts alike to kickstart your Databricks experience.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Schema owned by Service Principal shows error in PBI

Go to solution
AdamStra2
New Contributor III

‎10-25-2023 04:34 AM - edited ‎10-25-2023 04:36 AM

Background info:
1. We have unity catalog enabled. 
2. All of our jobs are run by Service Principal that has all necessary access it needs.

Issue:

One of the jobs checks existing schemas against the ones it is supposed to create in that given run and if it does not exists, it creates one. Hence, the SP sometimes becomes an owner of the schema. After that, given users, such as myself, get appropriate access to that schema and its objects (in this case all privileges, I am also Unity Catalog owner). Then, I start to share the schema via Delta Sharing. However, when I try to access it in PBI, I get the error following error (also shown in the attached picture): The column 'name' of the table wasn't found. 

pic.png
If I switch the schema owner to myself or another developer, the error disappears. I have tried this with my colleague - he was given all the necessary access privileges he needed but once SP became owner of the schema, he got the same error. Once I switched the owner of the schema to myself again, it all became visible. 

Any ideas why this behavior occurs? What could be the possible fix?

Thanks. 



1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Kaniz_Fatma
Community Manager
Community Manager

‎10-25-2023 05:29 AM

Hi @AdamStra2, This may be related to ownership chaining in SQL Server. Ownership chaining is a security feature in SQL Server that's designed to allow users to access objects in a database without requiring explicit permissions on the object itself.

However, if ownership chaining is broken, users may encounter issues with access to objects that should be accessible. The fact that switching the schema owner to yourself or another developer resolves the issue suggests that there may be a problem with the ownership chaining for the Service Principal.

View solution in original post

0 Kudos
1 REPLY 1

Go to solution
Kaniz_Fatma
Community Manager
Community Manager

‎10-25-2023 05:29 AM

Hi @AdamStra2, This may be related to ownership chaining in SQL Server. Ownership chaining is a security feature in SQL Server that's designed to allow users to access objects in a database without requiring explicit permissions on the object itself.

However, if ownership chaining is broken, users may encounter issues with access to objects that should be accessible. The fact that switching the schema owner to yourself or another developer resolves the issue suggests that there may be a problem with the ownership chaining for the Service Principal.

0 Kudos

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you won’t want to miss the chance to attend and share knowledge.

If there isn’t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements