Connect to security partners using Partner Connect
To connect your Azure Databricks workspace to a security partner solution using Partner Connect, you typically follow the steps in this article.
Important
Before you follow the steps in this article, see the appropriate partner article for important partner-specific information. There might be differences in the connection steps between partner solutions. For example, some partner solutions allow you to connect Databricks SQL warehouses (formerly Databricks SQL endpoints) or Azure Databricks clusters, but not both.
Requirements
See the requirements for using Partner Connect.
Important
For partner-specific requirements, see the appropriate partner article.
Steps to connect to a security partner
To connect your Azure Databricks workspace to a security partner solution, do the following:
In the sidebar, click Partner Connect.
Click the partner tile.
If the partner tile has a check mark icon, a workspace admin has already used Partner Connect to connect your workspace to the partner. Click Sign in to sign in to your existing partner account and skip the rest of the steps in this section.
Select a catalog from the drop-down list.
Note
If a partner doesn’t support Unity Catalog with Partner Connect, the default catalog for your Unity Catalog enabled workspace is used. If your workspace isn’t Unity Catalog enabled, the legacy Hive metastore (
hive_metastore
) is used.Click Next.
Partner Connect creates the following resources in your workspace:
- An Azure Databricks service principal named
<PARTNER>_USER
. - An Azure Databricks personal access token that is associated with the
<PARTNER>_USER
service principal. - A SQL warehouse named
<PARTNER>_WAREHOUSE
by default. You can click Edit to change the SQL warehouse name before you click Next.
Partner Connect also grants the following privileges to the
<PARTNER>_USER
service principal:- (Unity Catalog)
USE CATALOG
: Required to interact with objects within the selected catalog. - (Unity Catalog)
CREATE SCHEMA
: Required to create schemas in the selected catalog. - (Legacy Hive metastore)
USAGE
: Required to grant theCREATE
privilege for the catalog you selected. - (Legacy Hive metastore)
CREATE
: Grants the ability to create schemas in the Hive metastore. - CAN USE Grants permissions to use the SQL warehouse that Azure Databricks created on your behalf.
- An Azure Databricks service principal named
Click Next.
Click Connect to
<Partner>
.A new tab that displays the partner website opens in your web browser.
Complete the on-screen instructions on the partner website to create your trial partner account.