Connectors
...
Databases
Databricks
Grantlist IP Network Connections for Network Security
2min
if your databricks setup and configuration requires hardening the network traffic to restrict access to specific ip addresses/ranges, then in order for dlh io to access your databricks cluster/environment, you'll need to allow the dlh io ip addresses access to your workspace you need the admin access role in your databricks workspace to execute the databricks rest api steps to add an ip access list the main databricks api documentation has methods for listing all current allowed ip addresses and also creating a list of new ones to add to your network policy access list databricks ip acccess list api documentation with your personal access token (pat) (typically of a service account user), create a post call to the create method with the pat as the bearer token the base url for your api endpoint will be your databricks workspace deployment url, for example in your workspace you can copy the first part of your workspace url, which should look similar to, https //\<workspace deployment name> cloud databricks com/api/2 0 for example, your api calls would all be to the endpoint, https //my workspace cloud databricks com/api/2 0 if your workspace deployment was my workspace, thus making the full api call endpoint, https //my workspace cloud databricks com/api/2 0/ip access lists to get a list of existing ips follow these instructions to set up the allow list of ip addresses to allow dlh io access to your workspace create and obtain your pat make a call to the get lists api endpoint to see all lists confirm the list of ip addresses either exists or not if not, then continue to the next step create a call to the create access list endpoint with the following request body json string of objects ip addresses, set to the list of ip addresses from our ip grantlist / whitelist docid\ c8o3pqjm7e e9rhguxn4z be sure to use all of the ip addresses and cidr ranges shown from the dlh io grantlist page label, set to "dlh ip addresses" list type, set to "allow" after submitting the call and receiving a confirming 200 response, you can re run the call to the get lists api endpoint to confirm your create access list call was indeed successful a brief example using curl (otherwise use postman, insomnia, or some other programming language or process) shows how you can simply aadd the ip addresses curl x post n \\ h "authorization bearer \<your service account pat token>" h "content type application/json" h "accept application/json" https //\<workspace deployment name> cloud databricks com/api/2 0/ip access lists d '{ "label" "dlh ip addresses", "list type" "allow", "ip addresses" \[ \<dlh ip addresses> ] }'