how to restrict Azure AD SPN permission with Databricks?
Hello I m using Data bricks, and working with https://docs.databricks.com/api/workspace/statementexecution I m using SQL Api statement with help of Azure ADAP SPN token. I m able to run all queries successfully.
I want to restrict this SPN to use only to read Data. If I Use any delete query or any query apart of read operation I don't want to allow to that SPN. I also dont want to allow that SPN to Do any DML operation or delete job or cluster or Wearhouse kind job. I just want that SPN to allow to read data. Any one have done this
You can restrict the service principal for SQL query execution at the schema level and the table level.
To grant such permission follow below steps:
Go To > Catalog > Select schema or table > Permissions > Grant
After clicking on "Grant," you will see the window below.
Here, search for the service principal you previously added and grant only select permission.
This restricts the service principal to read-only access for an object.
- Unable to write Data from Kafka to Delta Live Table in Databricks
- check if delta table exists on a path or not in databricks
- How can I rollback entire databricks catalog/database to a point in time
- Azure Cost Management - track costs associated with Databricks job
- Spark getItem shortcut
- Check whether boolean column contains only True values
- Is it safe to run VACUUM and DELETE against a Delta Table while there's a Spark Streaming query doing data ingestion
- Dataframe.write() produces csv file on single node jobs cluster, but not on 2+1 nodes cluster
- How to stream data from a Databricks model serving endpoint?
- Check consecutive days in SQL
- I would like to Create a (cron) schedule in Databricks that runs a job on Wednesday after the first Monday of a month
- Databricks job cluster per pipeline not per notebook activity
- Azure CICD pipelines
- PySpark join dataframes with unique ids
- Counting items in an array and making counts into columns
- DeltaLake/DeltaTable merge operation inserts/duplicates matched rows not updating them
- How to set model owner programmatically within databricks and mlflow?
- Giving View permission to Databricks jobs using CLI or API
- What is the correct way to install the delta module in python?
- How to write pandas dataframe into Databricks dbfs/FileStore?
- Clone/Copy repo from AzureDevOps to Databricks
- Integer to date conversion within Databricks
- Databricks String (XML) columns parsing
- Dynamic Transpose of Rows to Columns in Databricks SQL
- Scheduling job every other day in Azure Databricks
- SQL data wrangling help using the Having statement
- Is it possible to disable Databricks Managed Storage Account public access?
- Spark SQL XML Parsing
- Error When Mounting ADLS Gen 2 abfss from Databricks: Error IllegalArgumentException: Unsupported Azure Scheme: abfss
- In pyspark, what is the difference between dlt.read_stream() and spark.readstream()?