Manage users

A Databricks admin is a member of the admins group.

A Databricks admin can manage user accounts using the Databricks admin console, the SCIM API, or a SCIM-enabled identity provider like Okta or Azure Active Directory. This article discusses user management using the admin console.

You can use the Users tab on the admin console to:

  • Add and remove users.
  • Grant and revoke Workspace and SQL Analytics entitlements.
  • Grant and revoke the ability to create clusters (if cluster access control has been enabled for the workspace).
  • Grant and revoke membership in the admins group.

You can also perform the following user management tasks in other parts of the admin console, covered in other articles:

Add a user

  1. Go to the admin console.

  2. On the Users tab, click Add User.

  3. Enter the user email ID.

    Add user
  4. Click Send invite.

    Databricks sends a confirmation email with a temporary password. If the user does not receive the confirmation email within 5 minutes, ask the user to check their spam folder.

The user is added to the workspace.

Added user

Although the Workspace access checkbox is not selected, the user inherits this entitlement as a member of the users group, which has the entitlement. Workspace admins can remove the entitlement from the users group and assign it individually to users on the Users page.

For information about the SQL Analytics access entitlement, see Grant a user access to SQL Analytics.

If cluster access control is enabled, and you don’t select the Allow cluster creation checkbox, the user is added without the cluster creation entitlement.

If the user previously existed in the workspace, the user’s previous entitlements are restored.

Tip

Another way to add users is with single sign-on (SSO) or an integration with SCIM.

Remove a user

  1. Go to the admin console.
  2. On the Users tab, find the user and click the Remove User Icon at the far right of the user row.
  3. Click Remove User to confirm.