Catégories :

Fonctions système (Contrôle du système)

SYSTEM$REGISTER_CMK_INFO

Registers your customer-managed key (CMK) for use with Tri-Secret Secure.

Voir aussi :

Understanding CMK self-registration with support activation of Tri-Secret Secure

Syntaxe

AWS:

SYSTEM$REGISTER_CMK_INFO( '<cmk_arn>' [ , '<privatelink_enabled>' ] )
Copy

Azure :

SYSTEM$REGISTER_CMK_INFO( '<vault_uri>' , '<key_name>' [ , '<privatelink_enabled>' ] )
Copy

Google Cloud:

SYSTEM$REGISTER_CMK_INFO( '<project_id>' , '<location>', '<key_ring>' , '<key_name>' [ , '<privatelink_enabled>' ] )
Copy

Arguments

Required:

AWS

cmk_arn

Spécifie le numéro de ressource Amazon Web Services (ARN) qui détermine la clé gérée par le client (CMK) à utiliser avec Tri-Secret Secure.

Azure

vault_uri

Spécifie l’identificateur de point de terminaison unique Microsoft Azure de votre Azure Key Vault.

key_name

Spécifie le nom de votre CMK dans Microsoft Azure.

Google Cloud

project_id

Specifies the unique identifier for your project in Google Cloud.

location

Specifies the Google Cloud region that hosts your Snowflake account.

key_ring

Specifies the key ring for your CMK in Google Cloud.

key_name

Specifies the name for your CMK in Google Cloud.

Optional:

privatelink_enabled

Specify whether or not to use your private connectivity endpoint for Tri-Secret Secure by passing in one of the following values:

Important

If you omit this argument or pass in an empty string, Snowflake doesn’t use a private connectivity endpoint for Tri-Secret Secure.

'TRUE'

Specifies that Snowflake uses the provisioned private connectivity endpoint for Tri-Secret Secure.

'FALSE' (par défaut)

Specifies that Snowflake doesn’t use a private connectivity endpoint for Tri-Secret Secure.

''

Chaîne vide. Même comportement que 'FALSE'.

Renvoie

Returns a status message stating that the registration is complete.

Exigences en matière de contrôle d’accès

Seuls les administrateurs de comptes (utilisateurs dotés du rôle ACCOUNTADMIN) peuvent appeler cette fonction.

Exemples

Activez votre CMK pour votre compte Snowflake sur Amazon Web Services :

SELECT SYSTEM$REGISTER_CMK_INFO('arn:aws:kms:us-west-2:736112632310:key/ceab36e4-f0e5-4b46-9a78-86e8f17a0f59');
Copy

Activez votre CMK pour votre compte Snowflake sur Microsoft Azure :

SELECT SYSTEM$REGISTER_CMK_INFO('https://trisecretsite.vault.azure.net/', 'trisecretazkey');
Copy

Register your CMK for your Snowflake account on Google Cloud:

SELECT SYSTEM$REGISTER_CMK_INFO('my-env', 'us-west1', 'trisecrettest', 'trisecretgcpkey');
Copy

Register your CMK with a privatelink endpoint for your Snowflake account on Amazon Web Services:

SELECT SYSTEM$REGISTER_CMK_INFO('arn:aws:kms:us-west-2:736112632310:key/ceab36e4-f0e5-4b46-9a78-86e8f17a0f59', 'true');
Copy

Register your CMK with a privatelink endpoint for your Snowflake account on Microsoft Azure:

SELECT SYSTEM$REGISTER_CMK_INFO('https://trisecretsite.vault.azure.net/', 'trisecretazkey', 'true');
Copy

Register your CMK with a privatelink endpoint for your Snowflake account on Google Cloud:

SELECT SYSTEM$REGISTER_CMK_INFO('my-env', 'us-west1', 'trisecrettest', 'trisecretgcpkey', 'true');
Copy
Langage: Français