search

databricks-industry-solutions / security-analysis-tool

Security Analysis Tool (SAT) analyzes customer's Databricks account and workspace security configurations and provides recommendations that help them follow Databrick's security best practices. When a customer runs SAT, it will compare their workspace configurations against a set of security best practices and delivers a report.
Other
91 stars 41 forks source link

403 error when using SAT on GCP databricks #62

Closed zhichaoleo closed 1 year ago

zhichaoleo commented 1 year ago

Hi Team, We are using this tool on GCP databricks. Following the document: https://github.com/databricks-industry-solutions/security-analysis-tool/blob/main/docs/setup.md, but we still get the 403 error when we run the notebook: security_analysis_initializer.

image

This notebook create a new job to run notebook configure_sa_auth_tokens, here we got the error:

image

Service accounts SA1 & SA2 has been added to this workspace by our account admin, these two service accounts has been added to this workspace's admin. Also, account-console-id is my account_id, PAT was generated using my account.

image image

Don't know why we got this 403 error.

Could you help me with this error?

Thanks, Alex

arunpamulapati commented 1 year ago

Hi Alex, Please reach me at arun@databricks.com with a few days and time slots that work best for you. I am in EST time zone. We can go over your setup and review the configuration.

Thank you Arun

zhichaoleo commented 1 year ago

Sure, Arun. Will have a contact via email. Thanks!

Regards, Alex

zhichaoleo commented 1 year ago

Thanks for your kindly help. The problem is service account don't have the permission.