Administration guide

To manage your Databricks service, you need a few different kinds of administrator:

• The account owner, who manages your Databricks account, including billing, subscription level, workspaces, host AWS accounts, audit logging, and high-level usage monitoring. This is typically the user who signed up for your Databricks subscription.

• Account admins (E2 accounts only), who can perform the same account management tasks as account owners.

• Databricks workspace admins, who manage workspace users and groups—including single sign-on, provisioning, access to Databricks SQL, and access control—and workspace storage. Your account can have as many admins as you like, and admins can delegate some management tasks to non-admin users (like cluster management, for example).

  Databricks workspace admins are members of the admins group. To give a user admin privileges, add them to the admins group using the Admin Console, the Groups API 2.0, the SCIM API 2.0, or a SCIM-enabled identity provider.

• Users with administrative access to AWS to manage networking and security for your Databricks instance and IAM credential passthrough.

In this guide:

• Administration overview
• Manage your Databricks account
• Manage your Databricks account (legacy)
• Access the admin console
• Manage users and groups
• Enable Databricks SQL for users and groups
• Enable access control
• Manage workspace objects and behavior
• Manage cluster configuration options
• Manage AWS infrastructure
• Disaster recovery
• Databricks access to customer workspaces using Genie