nerdexam
Databricks

CERTIFIED-DATA-ENGINEER-PROFESSIONAL · Question #46

Although the Databricks Utilities Secrets module provides tools to store sensitive credentials and avoid accidentally displaying them in plain text users should still be careful with which credentials

The correct answer is E. The Databricks REST API can be used to list secrets in plain text if the personal access token. This is the correct answer because it describes a limitation of Databricks Secrets. Databricks Secrets is a module that provides tools to store sensitive credentials and avoid accidentally displaying them in plain text. Databricks Secrets allows creating secret scopes, which are

Security and Governance

Question

Although the Databricks Utilities Secrets module provides tools to store sensitive credentials and avoid accidentally displaying them in plain text users should still be careful with which credentials are stored here and which users have access to using these secrets. Which statement describes a limitation of Databricks Secrets?

Options

  • ABecause the SHA256 hash is used to obfuscate stored secrets, reversing this hash will display
  • BAccount administrators can see all secrets in plain text by logging on to the Databricks Accounts
  • CSecrets are stored in an administrators-only table within the Hive Metastore; database
  • DIterating through a stored secret and printing each character will display secret contents in plain
  • EThe Databricks REST API can be used to list secrets in plain text if the personal access token

How the community answered

(59 responses)
  • A
    2% (1)
  • B
    3% (2)
  • D
    2% (1)
  • E
    93% (55)

Explanation

This is the correct answer because it describes a limitation of Databricks Secrets. Databricks Secrets is a module that provides tools to store sensitive credentials and avoid accidentally displaying them in plain text. Databricks Secrets allows creating secret scopes, which are collections of secrets that can be accessed by users or groups. Databricks Secrets also allows creating and managing secrets using the Databricks CLI or the Databricks REST API. However, a limitation of Databricks Secrets is that the Databricks REST API can be used to list secrets in plain text if the personal access token has proper credentials. Therefore, users should still be careful with which credentials are stored in Databricks Secrets and which users have access to using these secrets.

Topics

#Databricks Secrets#Security#API Access#Credential Management

Community Discussion

No community discussion yet for this question.

Full CERTIFIED-DATA-ENGINEER-PROFESSIONAL Practice