Reputation: 11
Insecure Snowflake Console Access
I have my snowflake warehouse hosted on an address that looks like this : *********.snowflakecomputing.com/console (not sure where it is hosted - maybe within the Snowflake cloud). However, I do not have it configured to go through a VPN connection. Is there a way to require that console access is only through VPN?
Upvotes: 1
Views: 396
Answers (2)
Reputation: 1021
Yes, you can restrict access to your snowflake account using an account-level network policy.
You can define VPN IP(s) in the allowed IP list in the account level network policy and activate the policy.
After account level activation, everyone is required to connect the VPN before accessing the snowflake account.
Upvotes: 1
Reputation: 136
I think you are asking about Network Policies.
Nit: I am not sure "insecure" is the right word to use. All data is transferred over HTTPS and is therefore encrypted. Using SAML you can use your own authentication provider and use MFA. Thus you can easily match the highest standards of security in the industry.
Upvotes: 3
Related Questions
- Snowflake connectivity with GIT
- Can't access snowflake cloud panel
- snowflake.connector.errors.OperationalError: Failed to get the response
- Snowflake Unsupported Grant Type
- schema does not exist and not authorized
- Connecting using SnowSQL denied 403 error
- Snowflake Function GRANTS
- Snowflake privileges
- Snowflake - Privileges required to load data via Web UI
- SSL authentication error for Snow Client when trying to execute from command line