Administration guide

To manage your Azure Databricks service, you need a few different kinds of administrator:

  • A user with the Azure Contributor or Owner role who can view and make changes to your Azure Databricks service, Azure subscription, and diagnostic logging configurations. The person who signed up for or created your Azure Databricks service typically has one of these roles.

  • Azure Databricks admins, who manage users and groups—including single sign-on, provisioning, access to Databricks SQL, and access control—and workspace storage. Your account can have as many admins as you like, and admins can delegate some management tasks to non-admin users (like cluster management, for example). Most Azure Databricks admin tasks are performed using the Admin Console.

    Azure Databricks admins are members of the admins group. To give a user admin privileges, add them to the admins group using the Admin Console, the Groups API, the SCIM API, or a SCIM-enabled Identity Provider.

  • Azure Active Directory administrators with permission to enable Azure Active Directory conditional access.

In this guide: