Databricks unable to connect Azure Data Lake Storage Gen2: AADSTS7000222 The provided client secret keys for app are expired
We have databricks connecting to Azure Data Lake Storage Gen2. Recently it is throwing error:
AADSTS7000222 The provided client secret keys for app are expired.
So we create new secret in App Registration and then update in Azure Key Vault.
But the error remain the same.
We test connecting to other Azure service with the same secret scope and it is working. The only problem is connecting to Azure Data Lake Storage Gen2 storage account.
What could be the problem?
Usually the mount is configured like below.
configs = {"fs.azure.account.auth.type": "OAuth",
"fs.azure.account.oauth.provider.type": "org.apache.hadoop.fs.azurebfs.oauth2.ClientCredsTokenProvider",
"fs.azure.account.oauth2.client.id": "<client-id>",
"fs.azure.account.oauth2.client.secret": dbutils.secrets.get(scope="jgscope",key="fordbx"),
"fs.azure.account.oauth2.client.endpoint": "https://login.microsoftonline.com/<directory-id>/oauth2/token"}
dbutils.fs.mount(
source = "abfss://<container-name>@<storage-name>.dfs.core.windows.net/",
mount_point = "/mnt/jadls2",
extra_configs = configs)
If anything, you updated in portal you again set these configurations properly.
You mentioned creation of new app registration then you need to set the client id,
dbutils.secrets.get(scope="jgscope",key="fordbx")
generated new secret and updated in key vault it should be also configure in while mounting, pass the scope and key name correctly here.
So, after getting new client id and secret unmount current mount point and create new mount with these new values using above code.
And check the refreshed secret using below code.
dbutils.fs.ls("/mnt/jadls2/csv/")
It should display the files under the folder.
Next, check once more the expiry date and time of secret properly.
Follow this document for more information about mounting.
- Adaptive Query Execution Spark on Databricks with Coalesce
- How to run R scripts on Databricks Jobs / workflows
- How to map coefficient values to names from {sparklyr} fitted pipeline?
- How to mount Azure Fabric OneLake with Databricks Notebook
- Does auto compaction break z-ordering?
- How to enable User Authentication in MLFLOW?
- How can I apply a JSON->PySpark nested dataframe as a mapping to another dataframe?
- how to use dbt for data lakehouse when using Python or Spark for transformations
- Can I access a row's file information in a Databricks external table?
- Logic Apps trigger Databricks notebook give response back to logic apps
- Databricks DeltaLake : Cannot time travel Delta table to version 1. Available versions: [3, 23]
- Start Azure Databricks clusters during business hours
- In pyspark, what is the difference between dlt.read_stream() and spark.readstream()?
- Should spark configuration be applied before loading jars?
- View Only Access to Azure Databricks Notebooks
- How does Spark read unpartitioned Delta tables?
- How can I import a local module using Databricks asset bundles?
- CalledProcessError when running dbt in Databricks
- Databricks connection attempt fails with 403 HTTP response status code
- Can we perform DML and write operations when optimation of delta table is in progress?
- How to rename a column in Databricks
- How can I use a PySpark UDF in a for loop?
- Databricks + confluent schema registry - Schema not found error
- Changing Databricks Liquid Clustering Keys
- How to stream data from a Databricks model serving endpoint?
- Databricks Community Edition Cluster won't start
- How do I access the fields within a VARIANT column while reading from Kafka using Spark?
- Databricks Workflows Connections to On Premise Resources
- How do I programmatically install Maven libraries to a cluster using init scripts?
- PySpark datetime patterns with day-of-week