Source
Using programmatic access tokens for authentication
The user must be subject to a network policy to generate and use programmatic access tokens. If the user is subject to a network policy, the network policy is enforced during authentication.
ALTER AUTHENTICATION POLICY
Modifies the properties of an authentication policy.
DESCRIBE AUTHENTICATION POLICY
OWNERSHIP is a special privilege on an object that is automatically granted to the role that created the object, but can also be transferred using the GRANT OWNERSHIP command to a different role by the owning role (or any role with the…
Use row access policies
The SECURITYADMIN system role grants privileges to custom roles to manage and implement row access policies.
Snowflake Openflow version history
Snowflake Openflow version history This topic provides version history for Snowflake Openflow.
DROP AUTHENTICATION POLICY
OWNERSHIP is a special privilege on an object that is automatically granted to the role that created the object, but can also be transferred using the GRANT OWNERSHIP command to a different role by the owning role (or any role with the…
Configuring access control
By default, each account has one user who has been designated as an account administrator (that is, user granted the system - defined ACCOUNTADMIN role). We recommend designating at least one other user as an account administrator.
Configure key pair authentication in Snowflake Open Catalog
With key pair authentication, you can allow a user programmatic access to Open Catalog for various custom roles with permissions on the appropriate catalogs. For example: ANALYST custom role: Can only access catalogA. ENGINEER custom role:…
Access control best practices
This topic describes best practices and important considerations for managing secure access to your Snowflake account and data stored within the account. Primarily, it provides general guidance for configuring role - based access control…
Managing access to collaborations, resources, and data
Managing access to collaborations, resources, and data Feature — Generally Available Currently available in these regions. Not available in government and VPS deployments.