Azure provides a Secure Cluster option for Databricks Workspaces upon resource creation. Selecting the 'No Public IP' option will configure this feature and ensure that even if a public subnet is defined, it is still unable to be used for routing to and from the public internet. This feature can help prevent accidental exposure due to misconfiguration. For more information, see the Azure documentation for Secure Cluster Connectivity.
The Secure Cluster Connectivity (No Public IP) feature can only be enabled upon cluster creation. For more information on custom configurations, see the Azure documentation.
In Azure Console -
In Terraform -
References:
https://learn.microsoft.com/en-us/azure/databricks/security/network/secure-cluster-connectivity/
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/databricks_workspace