Authenticate using Azure Active Directory tokens

To authenticate to Databricks REST APIs, you can use Azure Databricks personal access tokens or Azure Active Directory tokens.

This section describes how to get, use, and refresh Azure AD tokens. For Azure Databricks personal access tokens, see Authentication using Azure Databricks personal access tokens.

This section describes two ways to get and use Azure AD access tokens:

  • Use the Azure Active Directory Authentication Library (ADAL) to programmatically get an Azure AD access token for a user.
  • Define a service principal in Azure Active Directory and get an Azure AD access token for the service principal rather than a user. You configure the service principal as one on which authentication and authorization policies can be enforced in Azure Databricks. Service principals in an Azure Databricks workspace can have different fine-grained access control than regular users (user principals).

In this section: