Migrating to a SAML2 security integration¶

Important

The SAML_IDENTITY_PROVIDER and SSO_LOGIN_PAGE parameters used for SAML SSO configuration and management are deprecated. Snowflake configurations should use a SAML2 security integration instead of these parameters.

Snowflake will continue to support these deprecated parameters as long as there are implementations that use them.

If you are implementing federated authentication for the first time, refer to Configuring Snowflake to use federated authentication.

If you have an existing SSO implementation that uses the SAML_IDENTITY_PROVIDER account parameter, follow the steps below to migrate your SSO implementation to a SAML2 security integration:

  1. Run the SYSTEM$MIGRATE_SAML_IDP_REGISTRATION function.

  2. Confirm that a SAML2 security integration was created by running the following SQL statement:

    desc security integration <integration_name>;
    
    Copy

If you want to configure your security integration, refer to Configuring Snowflake to use federated authentication.