Integrating Snowflake with Josys lets the IT Admin view and manage user accounts.
Key benefits
When you integrate Josys with Snowflake, you can:
- View: List of user accounts, including their status, roles, and timestamps for the user account creation and last login activity.
- Perform Action: Add and delete user accounts.
Note: Josys supports multiple Snowflake integrations.
Prerequisites
Before you begin with the integration, make sure that you have:
- A Snowflake ACCOUNTADMIN, USERADMIN (It is not possible to remove privileged access rights such as ACCOUNTADMIN)
- A Client ID, Client Secret, Authorization Endpoint, Token Endpoint, and Account Identifiers.
- A Standard, Enterprise, Business Critical, or Virtual Private Snowflake plan
Generating Client ID, Authorization Endpoint, and Token Endpoint
Step 1: Log in to Snowflake using an account with admin privileges.
Step 2: Click Create and select SQL Worksheet on the left.
Step 3: Copy the following code in the worksheet and execute it.
CREATE SECURITY INTEGRATION MY_SNOWSQL_CLIENT_JOSYS
TYPE = OAUTH
ENABLED = TRUE
OAUTH_CLIENT = CUSTOM
OAUTH_CLIENT_TYPE = 'CONFIDENTIAL'
OAUTH_REDIRECT_URI = 'https://app.josys.it/admin/integrations/callback/snowflake'
OAUTH_ISSUE_REFRESH_TOKENS = TRUE
OAUTH_REFRESH_TOKEN_VALIDITY = 7776000
;* If you are using ACCOUNTADMIN permissions, please run the following command. This is not required, if you are connecting using USERADMIN permissions.
alter account set OAUTH_ADD_PRIVILEGED_ROLES_TO_BLOCKED_LIST = false;
Step 4: Copy the following code in the worksheet and execute it to generate the Client ID, Authorization Endpoint, and Token Endpoint.
DESC SECURITY INTEGRATION MY_SNOWSQL_CLIENT_JOSYSStep 5: Copy the Client ID, Authorization Endpoint, and Token Endpoint to use later in the integration steps.
Step 6: Copy the following code into the worksheet to generate and execute it.
select SYSTEM$SHOW_OAUTH_CLIENT_SECRETS( 'MY_SNOWSQL_CLIENT_JOSYS' );Step 7: Copy the Client Secret to use later in the integration steps.
Steps to Integrate
Step 1: Select Snowflake from the App Catalog in the Apps section.
Step 2: Provide a suitable Label in the respective field.
Step 3: Enter the Client ID, Client Secret, Authorization Endpoint, Token Endpoint, and Account Identifiers in their respective fields.
Account Identifiers is formed by joining the Organisation ID and the account ID (in lowercase) with a hyphen. In the example below, this would be iocljwh-vm76765
Step 4: Click Next to proceed.
Step 5: Log in to Snowflake using an admin account. Follow the guided steps to authorize Josys and complete the integration.
Step 6: After the integration is complete, allow some time for data synchronization. You can now view and perform required actions from the Managed Apps in the Apps section.