Intro
This article explains how to use the Databricks OAuth M2M Authentication connector to configure OAuth 2.0 client credentials, connect to your Databricks workspace, and import Databricks data into Domo.Prerequisites
To configure this connector, you must have the following:- Databricks server hostname
- Databricks port number
- HTTP path
- OAuth client ID
- OAuth client secret
Configure Databricks OAuth Machine-to-Machine (M2M) Authentication
To configure OAuth 2.0 client credentials (M2M) authentication for Databricks, complete the following tasks:- Create a Databricks service principal in your Databricks workspace, and create an OAuth secret for it. For instructions, see Authorize service principal access to Databricks with OAuth. Make a note of the service principal UUID (Application ID) and the secret value.
- Grant the service principal access to the compute resources it needs. See Compute permissions or Manage a SQL warehouse.
- Create a Databricks service principal. See Add service principals to your account.
- On the service principal’s Configuration tab, select the entitlements it needs for this workspace.
- On the Permissions tab, grant access to any Databricks users, service principals, and groups that need to manage or use this service principal. For details, see Who can manage and use service principals?.
Add a service principal to your account
As an account admin, use the account console to add a service principal.- Sign in to the account console.
- In the sidebar, select User management.
- Select the Service principals tab, and then select Add service principal.
- Enter a name for the service principal.
- Select Add.
Create an OAuth secret
To authorize access to your Databricks resources with OAuth, create an OAuth secret. Databricks uses this secret to generate OAuth access tokens for authentication. Each service principal can have up to five OAuth secrets, and each secret can be valid for up to two years. Account admins and workspace admins can create OAuth secrets for service principals.- In the Databricks workspace, select your username, and then select Settings.
- Select the Identity and access tab.
- Next to Service principals, select Manage.
- Select the service principal.
- Select the Secrets tab.
- Select Generate secret.
- Set the secret lifetime in days (maximum 730).
- Select Generate.
- Copy the displayed secret and client ID, and then select Done. The secret appears only once. The client ID is the same as the service principal application ID.
Note: Account admins can also create an OAuth secret in the account console. On the User management tab, select the service principal, and then go to the Credentials & secrets tab.
Configure the Connection
This section describes the options in the Credentials and Details panes on the Databricks using OAuth M2M Authentication connector page. The components of the Scheduling and Name & Describe Your DataSet panes are universal across most connector types and are discussed in Add a DataSet Using a Data Connector.Enter your credentials
The Credentials pane contains fields for entering credentials to connect to your Databricks account. The following table describes what is needed for each field.
After you enter valid credentials, you can use the same account any time you set up a new Databricks using OAuth M2M Authentication connection. You can manage connector accounts in the Accounts tab in the Data Center. For more information about this tab, see Manage User Accounts for Connectors.