Skip to content

[FEATURE]: Create External Location ACL for Principals based on Interactive cluster permission using SPN #1192

Closed
#1487
Closed
[FEATURE]: Create External Location ACL for Principals based on Interactive cluster permission using SPN#1192
#1487
Assignees
HariGS-DB
Labels
cloud/azureissues related to Azuremigrate/access-controlAccess Control to thingsmigrate/externalgo/uc/upgrade SYNC EXTERNAL TABLES step
@HariGS-DB

Description

@HariGS-DB
HariGS-DB
opened on Mar 31, 2024

Is there an existing issue for this?

  • I have searched the existing issues

Problem statement

Currently Users access interactive clusters using SPN configured which has permission on the underlying azure storage.
When migrating to UC, we need to create permission to interactive clusters users on the external location, catalog and schema based on the underlying spn access on the storage

Related issues:

Proposed Solution

  • identify interactive clusters with spn configured.
  • check spn permission on the underlying storage
  • grant appropriate permission on the external location to the users of the interactive clusters
  • grant use permission on the catalog and schema equivalent tin UC for the users of the interactive clusters

Additional Context

No response

Metadata

Metadata

Assignees

Labels

cloud/azureissues related to Azuremigrate/access-controlAccess Control to thingsmigrate/externalgo/uc/upgrade SYNC EXTERNAL TABLES step

Type

No type

Projects

UCX

Status

No status

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions