Snowflake Integration
Snowflake Integraiton Guide
This document describes how to integrate the Rezonate product with Snowflake, which provides IAM observability to users, groups, roles, and resources as well as detection of different security risks and threats.
If your Snowflake tenant has an IP Restrictions policy, you will have to whitelist Rezonate's collector IP Address. More information available Collectors IP Ranges
Integration Steps (In Snowflake Side)
To integrate, please log-in with a privileged user and perform the following actions
Create a new role for Rezonate integration
Create a new role for Rezonate to log in through to utilize the role. Please replace the PLEASE-PLEASE-PUT-YOUR-PASSWORD-HERE With a random string that will be used as the password.
Grant Rezonate the privileges to query against the information metadata db
Grant Rezonate the privileges to "USAGE" a warehouse in the database. please replace $WAREHOUSE_NAME_HERE$ with one of the warehouses in the database.
Grant Monitor Access (To support querying federation information and security settings)
Grant Rezonate with the ability to use the Rezonate role
You will also need to provide the URL for your tenant ID. To extract its value please go to settings, tenant information and then click on the "Copy link" to show your URL
Integration of the Creation user to Rezonate
After creating the required privileges, go to the Rezonate integration screen. select Snowflake and fill in the following information:
username
created username (rezonate is default)
password
your selected password
account
your snowflake id, in the following format: account.region
warehouse
the warehouse that was enabled for the user.
role
the created role name (default is rezonate_integration)
Last updated