| subcategory |
|---|
Unity Catalog |
-> Private Preview This feature is in Private Preview. Contact your Databricks representative to request access.
Each databricks_metastore requires an IAM role that will be assumed by Unity Catalog to access data. databricks_metastore_data_access defines this
resource "databricks_metastore" "this" {
name = "primary"
storage_root = "s3://${aws_s3_bucket.metastore.id}/metastore"
owner = "uc admins"
force_destroy = true
}
resource "databricks_metastore_data_access" "this" {
metastore_id = databricks_metastore.this.id
name = aws_iam_role.metastore_data_access.name
aws_iam_role {
role_arn = aws_iam_role.metastore_data_access.arn
}
is_default = true
}The following arguments are required:
name- Name of Data Access Configuration, which must be unique within the databricks_metastore. Change forces creation of a new resource.metastore_id- Unique identifier of the parent Metastore
aws_iam_role optional configuration block for credential details for AWS:
role_arn- The Amazon Resource Name (ARN) of the AWS IAM role for S3 data access, of the formarn:aws:iam::1234567890:role/MyRole-AJJHDSKSDF
azure_service_principal optional configuration block for credential details for Azure:
directory_id- The directory ID corresponding to the Azure Active Directory (AAD) tenant of the applicationapplication_id- The application ID of the application registration within the referenced AAD tenantclient_secret- The client secret generated for the above app ID in AAD. This field is redacted on output
This resource can be imported by ID:
$ terraform import databricks_metastore_data_access.this <id>