Step 1: Configure audit log storage
This article explains how to set up an AWS S3 storage bucket for low-latency delivery of audit logs.
The code examples in these instructions assume you are calling the Databricks API using the Databricks CLI. For more information about using the Databricks CLI, see What is the Databricks CLI?.
Create the S3 bucket
- Log into your AWS Console as a user with administrator privileges and go to the S3 service.
- Click the Create bucket button.
- In Bucket name, enter a name for your bucket. For more bucket naming guidance, see the AWS bucket naming rules.
- Click Create bucket.
Create a Databricks storage configuration record
Next, you need to create a Databricks storage configuration record that represents your new S3 bucket.
Specify your S3 bucket by using the account storage create CLI command or storage configuration API.
The following CLI command creates the storage configuration:
databricks account storage create METASTORE_ID --json `{
"storage_configuration_name": "databricks-workspace-storageconf-v1",
"root_bucket_info": {
"bucket_name": "my-company-example-bucket"
}
}`
storage_configuration_name: New unique storage configuration name.root_bucket_info: A JSON object that contains abucket_namefield that contains your S3 bucket name.
Response:
{
"account_id": "<databricks-account-id>",
"creation_time": 12345678,
"root_bucket_info": {
"bucket_name": "my-company-example-bucket"
},
"storage_configuration_id": "<storage_configuration_id>",
"storage_configuration_name": "databricks-workspace-storageconf-v1"
}
Copy the storage_configuration_id value returned in the response body. You’ll need it when you call the log delivery API.
Next steps
Next, configure an IAM role and create a credential in Databricks. See Step 2: Configure credentials for audit log delivery.