Contents x
    Databricks
    • 2 Minutes to read
    • Print
    • PDF
    Contents

    Databricks

    • 2 Minutes to read
    • Print
    • PDF
    Article Summary

    About this document

    This document gives you the step-by-step procedure to configure Databricks in SAFE.

    Introduction

    SAFE allows you to onboard and assess your Databricks account for its configuration assessment. SAFE admins can configure the Databricks integration in SAFE from the Databricks card available on the SAFE Hooks page. This integration fetches the security misconfigurations from the Databricks account to SAFE.

    Prerequisites

    To configure Databricks in SAFE, you need the following details:

    Important
    • You must have a Databricks Admin user role to create the User Access Token for API authentication.
    • In the Databricks account, Token-based authentication must be enabled. (Token-based authentication is enabled by default for all Databricks accounts launched after January 2018 If token-based authentication is disabled, first enable it before you can perform the tasks described in Manage personal access tokens.)
    • Workspace URL: Instance URL of the user’s Databricks workspace
      (E.g. - https://adb-225584382836118.18.azuredatabricks.net, or https://1234567890123456.7.gcp.databricks.com, or https://dbc-4d1fb446-9d14.cloud.databricks.com)
    • User Access Token: The User Access Token is required for API authentication.

    Generate User Access Token

    To generate a User Access Token:

    1. Log in to your Databricks Account using your Workspace URL.
    2. Click your Username/ID available at the top right corner of the page and click User Settings.
      data1
    3. Click the Access Tokens tab.
    4. Click the Generate New Token button.
      data 2
    5. On the confirmation screen, add a comment and enter the token lifetime in days.
      data 3
      Token Lifetime
      • The API token willonly work for the number of days it is defined in the token lifetime field, and after that, it expires.
      • It means if a user has selected 90 days as the token lifetime and configured SAFE with that token, after 90 days, the user needs to reconfigure the Databricks in SAFE.
    6. The system displays the User Access Token.
    7. Copy this token to use it on the Databricks configuration page in SAFE.data4

    Configure Databricks in SAFE

    To configure Databricks in SAFE:

    1. Go to SAFE Hooks.
    2. Click the Databricks card. 
    3. On the Databricks configuration page, Enter the Workspace URL, API Access Token, and Autosync frequency.
    4. Click the Test Connection button.
    5. Once the connection is validated, click the Save button.
    6. Once the configuration is saved, click the Sync Now button to trigger the on-demand sync outside of the scheduled auto sync.

    data 5

    View results in SAFE

    After a successful sync, the Databricks assets are automatically imported into SAFE.

    To view the assets pulled from Databricks:

    1. Navigate to Technology > Assets.
    2. Filter the asset list for the source as security.safe.saas.databricks.data 6

    To view the results for an asset:

    1. Navigate to the Risk Scenario page, and click the Group Risk tab.
    2. Click the Cloud SaaS Applications Risk.
    3. Scroll down and click the Attack Surface view.
    4. Filter the asset list for the source as security.safe.saas.databricks.
    5. Click a Databricks asset to view the controls and their status.

    Databricks assets

    Was this article helpful?
    What's Next