Skip to main content

Snowflake

Visualize Snowflake cloud resources, map Snowflake users to employees, and monitor changes through queries and alerts.

Installation

info

The integration ingests resources from tables in the Snowflake system using SHOW commands. The credentials provided to JupiterOne must be configured with the read permissions required to perform these commands.

Configuration in JupiterOne

To install the Snowflake integration in JupiterOne, navigate to the Integrations tab in JupiterOne and select Snowflake. Click New Instance to begin configuring your integration.

Creating a configuration requires the following:

  • The Account Name used to identify the Addigy account in JupiterOne. Ingested entities will have this value stored in tag.AccountName when the AccountName toggle is enabled.

  • Description to assist in identifying the integration instance, if desired.

  • Polling Interval that you feel is sufficient for your monitoring needs. You may leave this as DISABLED and manually execute the integration.

  • Your Snowflake Account Name(the full name of your Snowflake account).

  • The Username and Password of the Snowflake user to authenticate with.

  • Lastly the Role (or default security role) to use for the session after authentication.

    • Note: If ingesting the ADMIN database:
      1. You must explicitly grant privileges to ACCOUNTADMIN to access ADMIN database
      2. Or you must use the SECURITYADMIN role instead More information about roles here

Click Create once all values are provided to finalize the integration.

Next steps

Now that your integration instance has been configured, it will begin running on the polling interval you provided, populating data within JupiterOne. Continue on to our Instance management guide to learn more about working with and editing integration instances.