CERTIFIED-DATA-ENGINEER-PROFESSIONAL · Question #46
Although the Databricks Utilities Secrets module provides tools to store sensitive credentials and avoid accidentally displaying them in plain text users should still be careful with which credentials
The correct answer is E. The Databricks REST API can be used to list secrets in plain text if the personal access token. This is the correct answer because it describes a limitation of Databricks Secrets. Databricks Secrets is a module that provides tools to store sensitive credentials and avoid accidentally displaying them in plain text. Databricks Secrets allows creating secret scopes, which are
Question
Although the Databricks Utilities Secrets module provides tools to store sensitive credentials and avoid accidentally displaying them in plain text users should still be careful with which credentials are stored here and which users have access to using these secrets. Which statement describes a limitation of Databricks Secrets?
Options
- ABecause the SHA256 hash is used to obfuscate stored secrets, reversing this hash will display
- BAccount administrators can see all secrets in plain text by logging on to the Databricks Accounts
- CSecrets are stored in an administrators-only table within the Hive Metastore; database
- DIterating through a stored secret and printing each character will display secret contents in plain
- EThe Databricks REST API can be used to list secrets in plain text if the personal access token
How the community answered
(59 responses)- A2% (1)
- B3% (2)
- D2% (1)
- E93% (55)
Explanation
This is the correct answer because it describes a limitation of Databricks Secrets. Databricks Secrets is a module that provides tools to store sensitive credentials and avoid accidentally displaying them in plain text. Databricks Secrets allows creating secret scopes, which are collections of secrets that can be accessed by users or groups. Databricks Secrets also allows creating and managing secrets using the Databricks CLI or the Databricks REST API. However, a limitation of Databricks Secrets is that the Databricks REST API can be used to list secrets in plain text if the personal access token has proper credentials. Therefore, users should still be careful with which credentials are stored in Databricks Secrets and which users have access to using these secrets.
Topics
Community Discussion
No community discussion yet for this question.