My pleasure!

Cheers Anna, great to hear that! :)

Excellent! Thanks!

Thank you 🙂

Glad it helped!

I appreciate that!

Glad you think so Fabio!

Glad you like them!

@@AdamMarczakYT I watch your videos regularly and they have been immensely educative. Is it possible to do one that demonstrates streaming scenario that integrate kafka and azure databrickd

Glad it was helpful! I surely will consider AZ-104 after I'm done with AZ-900.

Thanks again! My pleasure!

Thanks man!

Hey, thanks for watching. For video do you mean by using data factory or databricks?

Try spark.read.json function :) Thanks for stopping by! :)

Thanks Vinny!

My pleasure!

Glad to hear that!

And how are you planning to pass service principal Client ID and Secret :) ? Managed Identities are not yet supported for Databricks. But in general, this is relevant for any information that should not be placed directly in the code.

Adam Marczak - Azure for Everyone Got it , thanks .

@@AdamMarczakYT Can you please do a video on the security considerations and best practices when deploying databricks in production ?

Hey, unfortunately I don't think there is API available externally for this. Looks like they target Q3 2020 github.com/databricks/databricks-cli/issues/262

I'm not sure if you can do this on community edition, but I never used it so I won't be of much help.

Seems like you are missing 'list' permission in Key Vault. You principal should have assigned Get and List in Key Vault access policies. This is shown during the video in case you have troubles finding this.

As far as I remember AKV with scopes is not premium feature. Only granular permissions are, you should be able to set it up.

Hi adam I could able create AKV backed scope and I can see azure databricks permission in AKV - ACL with get, list secrets and other privilege but I was getting bad request failure to pick the secrets , would because of any firewall or network issues ? Can you please let me know do I need to check any other permission ( off course I made SP to grant get and list for the same AKV)

I could not establish the connection between databricks and AKV after creating AKV backed secret?? I need help here

I could create scope .. thank you

That's the plan for the future tutorials. Right now try Microsoft tutorials Azure SQL Using JDBC docs.microsoft.com/en-us/azure/databricks/data/data-sources/sql-databases?WT.mc_id=AZ-MVP-5003556 Azure SQL Using Apache Spark connector docs.microsoft.com/en-us/azure/databricks/data/data-sources/sql-databases-azure?WT.mc_id=AZ-MVP-5003556 Azure SQL DW (synapse) docs.microsoft.com/en-us/azure/databricks/data/data-sources/azure/synapse-analytics?WT.mc_id=AZ-MVP-5003556

Thanks!

You can, but you shouldn't expose your keys in the notebooks. You should always use secret scopes! It's a big security risk!

@@AdamMarczakYT not on note book on CLI ?

My pleasure!

Thank you, I will

Unfortunately can't debug issues over youtube comments. I have not seen this issue. Try again all commands step by step as in my video, if you still encounter the same issue than I'd try databricks forums. This seems to be generic issue.

If the secret scope is managed with backend as AzureKeyVault, you will not be able to add or manage keys with access token provided from databricks user settings. If you had followed this video, Adam has accessed databricks workspace from CLI using access token from user settings provided in databricks UI. Refer command: databricks configure --token. You need an Azure AD user token to create an Azure Key Vault-backed secret scope with the Databricks CLI. We can't use databricks personal token to manage key vault based scopes through CLI.

@@AdamMarczakYT Thank you Adam for such a good video. Keep posting more for us on databricks. You need an Azure AD user token to create an Azure Key Vault-backed secret scope with the Databricks CLI. You cannot use an Azure Databricks personal access token or an Azure AD application token that belongs to a service principal.

Thanks! You are active as always, glad to see your back. You can control ACLs for scopes using databricks CLI. It's not as granular and won't solve all scenarios but it's helpful. Too bad it requires premium plan of databricks. docs.databricks.com/security/secrets/secret-acl.html

​@@AdamMarczakYT ​ Yeap , I did had a look earlier..Example if a person has access at work space level, can you stop that user accessing a particular Notebook or data set or a secret scope within that as I believe it would inherit the accessibility from parent. On the other hand if we grant access to a user on a Notebook and not workspace then from which pane he would access the Notebook .... in his own-workspace? Bit unclear how the access levels are defined in Databricks..like Workspace -> Notebook ->Datasets...so on...

Unfortunately there is no linkage like this because those items are no in child-parent relationships. You manage secrets scopes apart from managing notebooks/datasets etc.

@@AdamMarczakYT : Ok good to know. On the related access query , someone has workspace level admin access be prevented to access a Table API? I understand its premium feature so not able to check myself.

I got video on ADLS introduction where I show how to mount it in databricks. Just replace the value with secret scope and you are good to go :)

I'm currently running Cosmos DB project at work so definitely some detail and lessons learned projects are coming in future, so far I got introduction video on my channel. For synapse I'm waiting for new Synapse UI to come out to make a video.

@@AdamMarczakYT Can I ask you for one suggestion. I want to go for synapse & Cosmos db expertise/certification.Can you guide me pls.

I personally learn from the Microsoft docs and blogs. Can't recommend external training websites because I haven't seen them.

@@AdamMarczakYT Thanks. Will wait for your next video on above topics.

Hope this can help you. There is you tube video "Best practices for Azure Cosmos DB: Data modeling Partitioning and RUs - BRK3054" is very good. kzbin.info/www/bejne/mIKlloebjrqliJo

Thanks!

I might :) Thanks!

@@AdamMarczakYT you said might that means definitely yes : )

I just might. In the meanwhile I highly recommend this article and azure friday video as it already covers the topic docs.microsoft.com/en-us/azure/data-factory/continuous-integration-deployment

Nice explanation . Can you please make video azure synapse

I plan to! But currently synapse has any barely any new features released over old SQL DW so I might wait till they release some.

@@AdamMarczakYT : I agreed...but just overview of synapse arc hitecture ..how it will replace datwarehouse?

Will do as soon as they release unified workspace experience otherwise entire video would be using user interface that will change completely very soon.

Thank you :)

Maybe it was your connection. I checked entire video and it's 4k recording. in case you experience issues let me know at which part! Thanks for watching!

thanks :)