com.databricks.common.client.DatabricksServiceHttpClientException:
PERMISSION_DENIED: Invalid permissions on the specified KeyVault https://azkv*.vault.azure.net/.
Wrapped Message:
Status code 403,
{"error":
{"code":"Forbidden","message":
"Caller is not authorized to perform action on resource.\r\n
If role assignments, deny assignments or role definitions were changed recently, please observe propagation time.\r\n
Caller: name=AzureDatabricks;appid=2vf8v4a6-3304-4ab8-85cb-cd0e6f879c1d;oid=4e924d0e-ad49-4acc-baec-6d612e920502;iss=https://sts.windows.net/552af62d-5878-4131-8695-1e87b0f89945/\r\n
Action: 'Microsoft.KeyVault/vaults/secrets/getSecret/action'\r\n
Resource: '/subscriptions/6b60a61d-3e92-4501-8794-fd7725066113/resourcegroups/streamproject/providers/microsoft.keyvault/vaults/azkv*/secrets/clientsecret'\r\n
Assignment: (not found)\r\n
DecisionReason: 'DeniedWithNoValidRBAC' \r\n
Vault: azkv*;location=eastus\r\n",
"innererror":{"code":"ForbiddenByRbac"}
}
}
我一直在尝试使用服务主体和 secret 范围将 ADLS 安装到 databricks。我似乎无法访问 key 保管库。
我该如何解决这个问题?
最佳答案
关于azure - 权限_拒绝 : Invalid permissions on the specified KeyVault,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/76642169/