Created
August 10, 2022 18:50
-
-
Save vvgsrk/a29d5dbf04ce8338882bbd4ce243635f to your computer and use it in GitHub Desktop.
Setup Azure SCIM Integration with Snowflake
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| USE ROLE accountadmin; | |
| CREATE ROLE IF NOT EXISTS aad_provisioner; | |
| GRANT CREATE USER ON ACCOUNT TO ROLE aad_provisioner; | |
| GRANT CREATE ROLE ON ACCOUNT TO ROLE aad_provisioner; | |
| GRANT ROLE aad_provisioner TO ROLE accountadmin; | |
| CREATE OR REPLACE SECURITY INTEGRATION aad_provisioning | |
| type=scim | |
| scim_client='azure' | |
| run_as_role='AAD_PROVISIONER' | |
| comment = 'Azure AD SCIM Provisioning'; | |
| CREATE OR REPLACE NETWORK POLICY scim_network_policy | |
| allowed_ip_list = ( | |
| '00.000.000.000' | |
| ) | |
| COMMENT = 'The IP list is from AzureActiveDirectory Created for SCIM.' | |
| ; | |
| ALTER SECURITY INTEGRATION AAD_PROVISIONING SET NETWORK_POLICY = scim_network_policy; |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment