Control Reference

Privileged Access Management - Service Principals

HIGHAccess ControlMedium Complexity2-4 hours

AC-003

Description

Manage and restrict privileged access for service principals (automated accounts used by pipelines, jobs, and integrations) to prevent credential sprawl and enforce least-privilege for non-human identities

Prerequisites

▸Unity Catalog enabled
▸RBAC foundation in place (AC-001)
▸Inventory of existing service principals and their usage

Impact Analysis

SecurityImproves security posture

85%

ComplianceMeets compliance requirements

80%

ComplexityImplementation complexity

45%

CostResource cost impact

10%

Required Permissions

Account Admin

// Related

Related Controls

UC-001

CRITICAL

Enable Unity Catalog Audit Logging

Audit & Compliance

AC-001

CRITICAL

Implement Role-Based Access Control (RBAC)

Access Control

AC-002

HIGH

Implement Attribute-Based Access Control (ABAC)

Access Control

Back to Controls Browse Problems