Back to Databricks Navigator

Governance Blueprint

Home / Technologies / ABAC (Attribute-Based Access Control)

ABAC (Attribute-Based Access Control)

Access ControlMedium Complexity📚 Medium

Dynamic, policy-driven access control using tags

Decision Guide

✓

When to Use

→Managing 20+ groups and it's becoming unmanageable
→Need row-level security (different users see different rows)
→Need column masking (hide/mask sensitive fields)
→Access rules are dynamic (based on department, region, clearance)
→100+ users with complex, changing access needs

✗

When NOT to Use

→<50 users with simple access patterns
→Don't have Databricks Runtime 16.4+ or serverless
→Team lacks policy management experience
→Only need table/schema level access

Controls Using This Technology

The following 2 controls use ABAC (Attribute-Based Access Control) for implementation:

Implement Attribute-Based Access Control (ABAC)

Access Control • 4-8 hours initial setup, ongoing policy management

Enforce Tag Policies for Governance

Data Governance • 2-3 hours

Need to Compare Options?

See how ABAC (Attribute-Based Access Control) compares to other access control approaches with our detailed comparison table.

Compare Technologies →

← Back to Technologies Browse Controls →