Access Management for Databricks Unity Catalog
This document provides an overview of access management features supported by Privacera for Databricks Unity Catalog.
Access Management
| Topic | Detail |
| Integration methodology | Privacera PolicySync |
| Access Tools | - JDBC
- API
- Databricks UI SQL Editor
|
| Supported User Identities | - LDAP/AD Users
- LDAP/AD Groups
- Privacera Roles
|
| Resource Policy Service Type | privacera_databricks_unity_catalog |
Supported Access Management Features
| Feature | Supported | Native | Using SecureView |
 Catalog Access Control | Yes | Yes | N/A |
| External Location Access Control | Yes | Yes | N/A |
| Storage Credential Access Control | Yes | Yes | N/A |
| Schema Access Control | Yes | Yes | N/A |
| Table Access Control | Yes | Yes | N/A |
| View Access Control | Yes | Yes | N/A |
| Column Access Control | Yes | No | N/A |
| Function Access Control | Yes | Yes | N/A |
| Volume Access Control | Yes | Yes | N/A |
| Row Access Control | Yes | Yes | N/A |
| Column Data Masking | Yes | Yes | N/A |
 Column Data Encryption | No | No | N/A |
| Centralized Access Audit | Yes | N/A | N/A |
| Granular Access Audit Record | No | N/A | N/A |
Limitations for Access Management Features
- Row Filter and Masking: Due to limitations in Databricks Unity Catalog, these features are currently limited to tables and are not supported for views.
- Functions Attached to Tables: If functions are attached to tables, there may be issues when accessing views created on those tables.
- Retrieval Dependency: The retrieval of access audits depends on the Databricks configuration and may be subject to delays in certain scenarios.