Reputation: 251
Managed identities with databricks cluster
Can we use managed identities with databricks? What I'm actually trying to achieve is, I have a cluster in databricks, I want it to be able to access secrets or keys stored in an azure key vault.
We generally perform this with VM, by enabling the managed identity and allowing that identity via access policy or Role-based access policy(RBAC) in key vaults.
Can we leverage the concept of manged identities in a similar way with databricks as well? Or is there any other way possible which I can use to access the secrets in key vault from databricks clusters?
P.S. The secret accessed in key vault will be used in init script of the databricks cluster, to perform decrypt opertations.
Upvotes: 3
Views: 2671
Answers (1)
Reputation: 87069
Managed identity in Azure Databricks isn't supported yet. But right now you can pass the value of secret as an environment variable, and it will be available in your init script - just specify in cluster configuration:
MY_PASSWORD={{secrets/scope/key}}
and then use in the init script:
if [ -n "$MY_PASSWORD" ]; then
use password
else
exit 1
fi
Upvotes: 1
Related Questions
- Create Azure Key Vault backed secret scope in Databricks with AAD Token
- KeyVault -> Databricks automatic integration
- Azure - Using a Managed Identity to authenticate AKS to KeyVault and other resources
- Credential pass through for Databricks Sql
- Connect to Databricks from python via managed identity
- Azure Identity and Key Vault: How to use managed identities to authenticate?
- Can I access ADLS from Azure Databricks using an ADF managed identity?
- Connecting to Azure Databricks with user assigned managed identity
- Is it possible to connect azure databricks secret scope to a keyvault on other resource group
- Azure Databricks Cluster API Authentication