Database Integration

Snowflake

Integrate TigerIdentity with Snowflake for dynamic user provisioning, warehouse access control, and comprehensive query auditing.

Book a DemoView Documentation

Key Features

Dynamic Users

Generate temporary Snowflake users with scoped roles and warehouse access.

Role Hierarchy

Sync Snowflake role hierarchy and grant management for complete visibility.

Query History

Track all queries executed by temporary users across all warehouses and databases.

Row Access Policies

Integrate with Snowflake row access policies and column masking for data governance.

Auto-Cleanup

Automatically drop temporary users and revoke grants when access expires.

Warehouse Control

Control which users can access which warehouses based on context and cost.

How It Works

1

Configure Admin Access

Provide TigerIdentity with ACCOUNTADMIN credentials for user and role management.

2

Sync Account

TigerIdentity syncs all users, roles, grants, databases, and warehouses.

3

Request Access

Users request Snowflake access through TigerIdentity specifying roles and warehouses.

4

Provision User

Temporary Snowflake users are created with appropriate role grants and automatic expiration.

Configuration Example

connector:
  type: snowflake
  name: "snowflake-production"

  config:
    account: "company.us-east-1"
    user: "${SNOWFLAKE_ADMIN_USER}"
    password: "${SNOWFLAKE_ADMIN_PASSWORD}"
    warehouse: "ADMIN_WH"
    role: "ACCOUNTADMIN"

  sync:
    users: true
    roles: true
    databases: true
    warehouses: true
    grants: true

  provisioning:
    enabled: true
    user_prefix: "TIGER_"
    default_role: "PUBLIC"
    default_warehouse: "COMPUTE_WH"
    ttl: 14400
    revocation_statements:
      - "DROP USER IF EXISTS {{name}}"

Use Cases

Data Analyst Access

Provide analysts with temporary Snowflake access to specific databases and warehouses.

Cost Control

Prevent unauthorized warehouse usage by requiring approval for large warehouse access.

Production Data Governance

Enforce strict controls on production data access with approval workflows and time limits.

Partner Data Sharing

Grant temporary access to external partners for specific data shares with automatic revocation.

Ready to connect Snowflake?

See how TigerIdentity transforms Snowflake access management in a personalized demo.

Schedule Your Demo