A data engineer, User A, has promoted a new pipeline to production by using the REST API to programmatically create several jobs. A DevOps engineer, User B, has configured an external orchestration tool to trigger job runs through the REST API. Both users authorized the REST API calls using their personal access tokens.
Which statement describes the contents of the workspace audit logs concerning these events?
When User A and User B use their personal access tokens to authenticate their REST API calls, their individual actions are logged under their respective identities. User A's creation of the jobs will be logged with their identity, and User B's orchestration of the job runs will be logged with their identity. This separation ensures that audit logs accurately attribute actions to the correct user, maintaining accountability and traceability for activities performed within the workspace.
C, because the users has their own personal access tokens.
There is creator_user_name property of a job as well as runs_as property and both can contain different identities assigned.
C is correct, same question earlier.
There is some ambiguity in this question, as has not been explained how this orchestration tool works. If the tool just call the job (run-now), this event is tracking the user who 'triggers an on-demand job run'. But we have other options, like modify/edit a job configuration, and set the trigger. If this situation happens, and the 'run as' is not populated, when the job is triggered automatically, there is not tracked who run the job. Then, the job run is associated to the owner of the job. I'm assuming the the orchestration tool is doing a run-now, so option C should be the right option. https://docs.databricks.com/api/azure/workspace/jobs/getrun https://docs.databricks.com/en/admin/account-settings/audit-logs.html#jobs
PATs for production not a good idea afaik.
suretly C