cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Help
Warehousing & Analytics
Engage in discussions on data warehousing, analytics, and BI solutions within the Databricks Community. Share insights, tips, and best practices for leveraging data for informed decision-making.
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Insufficient Permissions Error When Reading Data from S3 in Shared Databricks Compute

Go to solution
vidya_kothavale
New Contributor III

‎02-05-2025 09:43 AM

I am using a Shared Databricks Compute and trying to read data from an S3 bucket via an Instance Profile. However, I am encountering the following error:
 
[INSUFFICIENT_PERMISSIONS] Insufficient privileges: User does not have permission SELECT on any file. SQLSTATE: 42501
My Setup:
I am a Databricks workspace user.
The Instance Profile is correctly configured, and I can see it while creating the compute.
The S3 bucket has the necessary permissions for the instance profile.
Troubleshooting Steps Tried:
1. Verified that the instance profile is attached to the shared compute.
2. Checked S3 bucket permissions (s3:GetObject, s3:ListBucket).
3. Tried using a single-user cluster instead of shared compute (its working fine with single user compute).
 
Is this the expected behavior or a limitation of Shared Databricks Compute?
 
 
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Ayushi_Suthar
Databricks Employee
Databricks Employee

‎02-06-2025 07:56 AM

Hi @vidya_kothavale , Greetings!

Can you please refer to this article and check if it helps you to resolve your issue : https://kb.databricks.com/en_US/data/user-does-not-have-permission-select-on-any-file

Please note that these permissions are only required for a shared cluster. The security implications of granting ANY FILE permissions on a filesystem. You should only grant ANY FILE to privileged users. Users with lower privileges on the cluster should never access data by referencing an actual storage location. Instead, they should access data from tables that are created by privileged users, thus ensuring that Table ACLS are enforced.

Please let me know if this helps and leave a like if this information is useful, followups are appreciated.
Kudos
Ayushi

View solution in original post

0 Kudos
1 REPLY 1

Go to solution
Ayushi_Suthar
Databricks Employee
Databricks Employee

‎02-06-2025 07:56 AM

Hi @vidya_kothavale , Greetings!

Can you please refer to this article and check if it helps you to resolve your issue : https://kb.databricks.com/en_US/data/user-does-not-have-permission-select-on-any-file

Please note that these permissions are only required for a shared cluster. The security implications of granting ANY FILE permissions on a filesystem. You should only grant ANY FILE to privileged users. Users with lower privileges on the cluster should never access data by referencing an actual storage location. Instead, they should access data from tables that are created by privileged users, thus ensuring that Table ACLS are enforced.

Please let me know if this helps and leave a like if this information is useful, followups are appreciated.
Kudos
Ayushi

0 Kudos

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you won’t want to miss the chance to attend and share knowledge.

If there isn’t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements
Top