Managing Security in Snowflake

.

Related Topics

• Managing Your Snowflake Account

• Continuous Data Protection

• OCSP Configuration

These topics describe the administrative concepts and tasks associated with managing account, user, and data security in Snowflake. These topics are intended primarily for administrators (i.e. users with the ACCOUNTADMIN, SYSADMIN, or SECURITYADMIN roles).

• Summary of Security Features

  List of security features, grouped by category (access, authentication, etc.).

• Network Policies

  Concepts and tasks for controlling site access through network policies and to allow or block IP addresses.

• AWS PrivateLink & Snowflake

  Use AWS PrivateLink to secure private/direct communication between Snowflake and your other VPCs.

• Azure Private Link & Snowflake

  Use Azure Private Link to secure private/direct communication from your Azure VNet to Snowflake.

• Multi-Factor Authentication (MFA)

  Concepts and tasks for managing and using multi-factor authentication for more secure user login.

• Federated Authentication & SSO

  • Overview of Federated Authentication and SSO

  • Configuring an Identity Provider (IdP) for Snowflake

  • Configuring Snowflake to Use Federated Authentication

  • Managing/Using Federated Authentication

  • Advanced SAML SSO Features

  • SAML Error Codes

• OAuth

  • Introduction to OAuth

  • Snowflake OAuth

  • External OAuth

• Access Control in Snowflake

  • Overview of Access Control

  • Access Control Privileges

  • Configuring Access Control

  • Access Control Considerations

• Data Encryption

  Concepts related to how Snowflake automatically encrypts your data, as well as additional features you can enable for enhanced levels of encryption.

• SCIM

  • Okta SCIM Integration with Snowflake

  • Azure SCIM Integration with Snowflake

  • Custom SCIM Integration with Snowflake

  • Making a SCIM API Request

• Column-level Security

  • Understanding Column-level Security

  • Dynamic Data Masking

  • External Tokenization