Resource logs in Azure Databricks Workspaces should be enabled

What does this mean?

This recommendation ensures that resource logs (diagnostic logs) are enabled on Azure Databricks workspaces. These logs capture workspace-level events, cluster operations, and user activities critical for security monitoring.

Benefits of implementation

• Enables monitoring of data processing activities
• Essential for detecting unauthorized access to Databricks environments
• Required for audit and compliance purposes

Drawbacks and considerations

• Databricks log volumes can be significant
• Storage costs scale with workspace activity
• Requires Log Analytics workspace or storage destination configuration

Implementation

Implementation guidance coming soon.

Related recommendations

Related recommendations will be linked here.