account_id |
Databricks Account ID |
string |
n/a |
yes |
iam_cross_account_workspace_role_config |
Configuration object for setting the IAM cross-account role for the Databricks workspace |
object({ role_name = optional(string, null) policy_name = optional(string, null) permission_boundary_arn = optional(string, null) role_description = optional(string, "Databricks IAM Role to launch clusters in your AWS account, you must create a cross-account IAM role that gives access to Databricks.") }) |
{} |
no |
iam_cross_account_workspace_role_enabled |
A boolean flag to determine if the cross-account IAM role for Databricks workspace access should be created |
bool |
true |
no |
label |
A customizable string used as a prefix for naming Databricks resources |
string |
n/a |
yes |
private_access_settings_config |
Configuration for private access settings |
object({ name = optional(string, null) allowed_vpc_endpoint_ids = optional(list(string), []) public_access_enabled = optional(bool, true) }) |
{} |
no |
private_access_settings_enabled |
Indicates whether private access settings should be enabled for the Databricks workspace. Set to true to activate these settings |
bool |
true |
no |
privatelink_dedicated_vpce_config |
Configuration object for AWS PrivateLink dedicated VPC Endpoints (VPCe) |
object({ rest_vpc_endpoint_name = optional(string, null) relay_vpc_endpoint_name = optional(string, null) rest_aws_vpc_endpoint_id = optional(string, null) relay_aws_vpc_endpoint_id = optional(string, null) }) |
{} |
no |
privatelink_dedicated_vpce_enabled |
Boolean flag to enable or disable the creation of dedicated AWS VPC Endpoints (VPCe) for Databricks PrivateLink |
bool |
false |
no |
privatelink_enabled |
Boolean flag to enabled registration of Privatelink VPC Endpoints (REST API and SCC Relay) in target Databricks Network Config |
bool |
false |
no |
privatelink_relay_vpce_id |
AWS VPC Endpoint ID used for Databricks SCC Relay when PrivateLink is enabled |
string |
null |
no |
privatelink_rest_vpce_id |
AWS VPC Endpoint ID used for Databricks REST API if PrivateLink is enabled |
string |
null |
no |
region |
AWS region |
string |
n/a |
yes |
security_group_ids |
Set of AWS security group IDs for Databricks Account network configuration |
set(string) |
n/a |
yes |
storage_dbfs_config |
Configuration for the Databricks File System (DBFS) storage |
object({ bucket_name = optional(string) }) |
{} |
no |
storage_dbfs_enabled |
Flag to enable or disable the use of DBFS (Databricks File System) storage in the Databricks workspace |
bool |
true |
no |
subnet_ids |
Set of AWS subnet IDs for Databricks Account network configuration |
set(string) |
n/a |
yes |
tags |
Assigned tags to AWS services |
map(string) |
{} |
no |
vpc_id |
AWS VPC ID |
string |
n/a |
yes |
workspace_creator_token_enabled |
Indicates whether to enable the creation of a token for workspace creators in Databricks |
bool |
false |
no |