Workspace access for Databricks personnel

By default, Databricks personnel do not have access to customer workspaces or to the production multi-tenant environments. Databricks personnel might request temporary access to your workspace in order to investigate an outage, security event, or to support your deployment.

Databricks technology controls enforce the following in such scenarios:

  • Limited personnel can request production access to resolve an engineering support ticket or a customer-reported issue.

  • Time limits are set in advance to the expected duration of the support session.

  • You can configure workspace audit logs to review Databricks personnel access to your workspace’s resources. Logs are delivered in typically under 15 minutes.

  • You configure workspace access for Databricks personnel to disallow workspace access for Databricks personnel or temporarily approve access to your workspace for only the duration of the support session.

Control workspace access for Databricks personnel

Workspace admins can grant Databricks personnel access to their workspace for a temporary session.

Configure workspace access for your workspace

  1. As a workspace admin, go to the admin settings page.

  2. Click the Advanced tab.

  3. In the Access Control section, toggle Workspace access for Databricks personnel to enable or disable access.

    1. For the Enabled option, enter the number of hours to allow access to your workspace. Sessions can last up to 48 hours. You can also choose to always allow access.

    2. For the Not enabled option, confirm that you intend to disallow workspace access for Databricks personnel.

When access is enabled, you can track the expiration time of access in the Access Control section. You can also choose to disallow workspace access for Databricks personnel before the expiration time is up.