Perhaps like others, we use Snowflake through Azure single sign-on. At present, account provisioning in Snowflake is performed by Azure on a regular schedule after a user is granted a Snowflake associated group. SSO accounts provide great benefits around user experience, but it seems like the out-of-box connector isn’t SSO aware.
Our requirement is to speed this process up, preferably using SailPoint.
We’d like to see SailPoint create an Azure-compatible account, with all properties needed to map from Azure to Snowflake.
The following articles imply this might be possible, but it appears that the schema might need the externalID field.
Attempts to add this to the account schema are not yielding any values in the field on accounts.
Is there any way to have SailPoint step in to this otherwise offline provisioning process?
Reference links:
How to set up Snowflake custom attributes in Microsoft Entra ID SCIM user provisioning