March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount! Early bird discount ends December 31.
Register NowBe one of the first to start using Fabric Databases. View on-demand sessions with database experts and the Microsoft product team to learn just how easy it is to get started. Watch now
Are there any resources available for best practices when it comes to protecting secrets and other sensitive information related to APIs (or in general) when using the new MS Fabric Notebooks? Traditionally an (dot)env file would be used to protect these sensitive items. I have failed to find any information regarding implementing something similar with Notebooks so any feedback would be helpful.
" storing things in keyvault and getting those details in notebook for the use " is desired, but accessing keyvault requires client_id/secret from notebook. The question is how secure client_id/secret inside Fabric notebook? Fabric should support managed entity integration as Synapse has linked service and managed entity
Hi, I am trying to access the keyvault from fabric notebook using below code. My keyvault is configured to Allow public access from specific virtual networks and IP addresses. So its throwing the firewall issue. There is a service principal created for secret. I have tried providing access to service principal in IAM and access policies. But still not working. Please help.
from trident_token_library_wrapper \ import PyTridentTokenLibrary as tl
#2 key_vault_name = '<unique-keyvault-name>' key_name = "AHV-name" # key name added to vault
# 3 access_token = mssparkutils.credentials.getToken("keyvault")
# 4 ai_services_key = tl.get_secret_with_token( \ f"https://{key_vault_name}.vault.azure.net/", \ key_name, \ access_token)
I've similar question - from MS Fabric notebook to access key vault,
mssparkutils.credentials.getSecret('https://<name>.vault.azure.net/', 'secret name') always throws AKV10032: Invalid issuer
Did you ever find a good way of doing this?
@davidwag @Scott_Powell What details needed to be hidden ??
have you tried storing thing sin keyvault and getting those details in notebook for the use
this is more standard way
This is a great question I'd like to know the answer to also. Thinking about using a notebook python script to call Power BI dataset refreshes when a specific event occurs, in a specific order. But I'll need to be able to hide the service account details we use when calling the API.
Thx,
Scott
March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!
Your insights matter. That’s why we created a quick survey to learn about your experience finding answers to technical questions.
Arun Ulag shares exciting details about the Microsoft Fabric Conference 2025, which will be held in Las Vegas, NV.
User | Count |
---|---|
8 | |
4 | |
3 | |
2 | |
2 |
User | Count |
---|---|
8 | |
7 | |
6 | |
5 | |
4 |