Azure databricks create Azure Key vault secret scope failed

sakuraime 2,326 Reputation points
2021-04-22T13:15:41.92+00:00

I am the contributor of the key vault , and I am the admin of the databricks workspace , and I have the following error while creating the secret scope.

90402-image.png

I know after click create , it would try to add "AzureDatabricks" service principal to the azure key vault .

Actually I can add the 'AzureDatabricks' manually to Azure key vault access policy .

Databricks workspace admin can create the secretscope ? Do I know permission of Azure Active directory ? Is AzureDatabricks the same for all Azure tanents ?

Azure Databricks
Azure Databricks
An Apache Spark-based analytics platform optimized for Azure.
2,162 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. PRADEEPCHEEKATLA-MSFT 88,716 Reputation points Microsoft Employee
    2021-04-23T07:15:55.027+00:00

    Hi @sakuraime ,

    You do need to have Owner permission on the Key Vault so that it can create an access policy for Azure Databricks.

    Can you verify that you have owner permissions on the Keyvault that you are trying to use for this scope?

    You can check this in the IAM settings for Keyvault.

    90662-image.png

    Hope this helps. Do let us know if you any further queries.

    ------------

    Please don’t forget to Accept Answer and Up-Vote wherever the information provided helps you, this can be beneficial to other community members.

    1 person found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.