Reputation: 61
Snowflake 403 error using Google as Identity Provider IdP
I'm trying to configure google IdP on my Snowflake following this tutorial from Snowflake community: https://community.snowflake.com/s/article/configuring-g-suite-as-an-identity-provider?t=1630354048853
After the whole configuration is complete when I click on the SSO button on the login page SSO Screen
I receive the following error: Error Message
I have already double-checked the SAML configuration on both platforms SAML Configurations
And APP configuration on Google seems correct Google Snowflake App configurations Google Snowflake App configurations
But the 403 error still persists. How can I identify exactly where is the problem (Snowflake or Google) and how to fix it? Is there any log I should be checking or any configuration missing? Thanks!
Upvotes: 2
Views: 1449
Answers (2)
Reputation: 5273
We ran into this error as well, but fortunately the solution was rather simple in our case:
- Either use incognito mode
- Or log out & back in to the Google account
Afterwards, it works flawlessly! 👌
Upvotes: 5
Reputation: 1170
I found this article from Google Support:
403 app_not_configured_for_user To resolve the 403 app_not_configured_for_user error:
Verify that the value in the saml:Issuer tag in the SAMLRequest matches the Entity ID value configured in the SAML Service Provider Details section in the Admin console. This value is case-sensitive.
Upvotes: 3
Related Questions
- snowflake.connector.errors.OperationalError: Failed to get the response
- Snowflake Unsupported Grant Type
- Snowflake and Google Authentication Limitations
- Connecting using SnowSQL denied 403 error
- User Validation Unsuccessful
- Snowflake Function GRANTS
- Snowflake privileges
- 403 error running data unload with snowsql GET
- Snowflake to google cloud storage - bucket security
- When trying to authorize using OAuth endpoint i'm getting Invalid consent request [Snowflake]