๐ก๏ธ Azure Databricks Unity Catalog is not configured๐ขโช
- Contextual name: ๐ก๏ธ Databricks Unity Catalog is not configured๐ขโช
- ID:
/ce/ca/azure/databricks/unity-catalog - Tags:
- โช Impossible policy
- ๐ข Policy with categories
- ๐ข Policy with type
- Policy Type:
COMPLIANCE_POLICY - Policy Categories:
SECURITY
Descriptionโ
Descriptionโ
Unity Catalog is a centralized governance model for managing and securing data in Azure Databricks. It provides fine-grained access control to databases, tables, and views using Microsoft Entra ID identities. Unity Catalog also enhances data lineage, audit logging, and compliance monitoring, making it a critical component for security and governance.
Rationaleโ
- Enforces centralized access control policies and reduces data security risks.
- Enables identity-based authentication via Microsoft Entra ID.
- Improves compliance with industry regulations (e.g. GDPR, HIPAA, SOC 2) by providing audit logs and access visibility.
- Prevents unauthorized data access through table-, row-, and column-level security (RLS & CLS).
Impactโ
- Improperly configured permissions may lead to data exfiltration or unauthorized access.
- Unity Catalog requires structured governance policies to be effective and prevent overly permissive access.
Auditโ
Method 1: Verify unity catalog deployment:
- As an Azure Databricks account admin, log into the account console.
... see more
Remediationโ
Remediationโ
Use the remediation procedure written in this article: https://learn.microsoft.com/en-us/azure/databricks/data-governance/unity-catalog/get-started.
policy.yamlโ
Linked Framework Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| ๐ผ CIS Azure v5.0.0 โ ๐ผ 2.1.5 Ensure that Unity Catalog is configured for Azure Databricks (Manual) | 1 | no data | |||
| ๐ผ Cloudaware Framework โ ๐ผ Data Protection and Recovery | 18 | no data |