Azure Databricks with Key vault backed secret using RBAC

Chand, Anupam SBOBNG-ITA/RX 451 Reputation points
2023-05-17T14:10:08.1633333+00:00

Azure Key vault had launched the RBAC access model in 2021. This allows finer granular access to a particular secret or key or certificate. The previous model was access policies which doesn't allow this granular access.

From my knowledge, Azure keyvault backed secret scopes on Azure databricks only uses Access policies. This means I cannot give different workspaces access to different secrets on the same Key vault.

Looking at a similar question, the solution was to give keyvault secrets user role, but this would give the workspace access to all the secrets within the key vault.

Can you please confirm that this is still the case and if there is any plan to have ADB be compatible with RBAC keyvaults and provide access at a secret level instead of a Key vault level?

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,093 questions
Azure Databricks
Azure Databricks
An Apache Spark-based analytics platform optimized for Azure.
1,901 questions
{count} votes

Accepted answer
  1. PRADEEPCHEEKATLA-MSFT 76,361 Reputation points Microsoft Employee
    2023-05-19T08:27:12.2866667+00:00

    @Chand, Anupam SBOBNG-ITA/RX - Currently, there is no key vault RBAC support for Databricks planned.


0 additional answers

Sort by: Most helpful