Skip to content

CSP Tags are not visible in some of the subcriptions. #31044

@Harsha5445

Description

@Harsha5445

Describe the bug

User attempted to enable the Compliance Profile Security (CSP) tag on PCI workspaces. They have an existing automation process designed to uplift workspaces and enable CSP. However, when running this process on certain workspaces, the enhanced security compliance profile is not available. The user's uplift automation, which works well in QA and Englab subscriptions, struggles with some subscriptions. While the CSP tag updates correctly in a few subscriptions, it fails to do so in others, particularly in Dev, PAT, and Prod environments.

Related command

az resource update --name {adb_workspace_name} --resource-group {adb_resource_group_name} --resource-type Microsoft.Databricks/workspaces --set properties.enhancedSecurityCompliance.complianceSecurityProfile.value=Enabled properties.enhancedSecurityCompliance.complianceSecurityProfile.complianceStandards="['PCI_DSS']" properties.enhancedSecurityCompliance.automaticClusterUpdate.value=Enabled properties.enhancedSecurityCompliance.enhancedSecurityMonitoring.value=Enabled --api-version 2024-09-01-preview

Errors

N/A

Issue script & Debug output

N/A

Expected behavior

CSP tag is updated.

Environment Summary

Databricks CLI version - 1.0.1 and azure CLI version - 2.65.0

Additional context

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    Data BricksService AttentionThis issue is responsible by Azure service team.bugThis issue requires a change to an existing behavior in the product in order to be resolved.customer-reportedIssues that are reported by GitHub users external to the Azure organization.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions