Snowflake Integration with Grip Security - Posture (SSPM)

Overview

This guide outlines the integration of Snowflake with Grip Security, enabling Grip Security to deliver insights on Session Settings, Passwords, Authentication, User Provisioning, Role Management, and Network.

Prerequisites

• You need to provide Grip with Snowflake’s Account ID, username, password, and the Warehouse ID.

• To get the above, you will need a Snowflake administrator role.

Note.

If you have a network policy, add or update the “allow list” to include Grip IP, so Grip can access and query Snowflake’s database.

US - 18.117.54.181

EU - 99.80.233.188

For more details on adding the IP to the 'Allow list' policy, see Snowflake’s article, 'Controlling network traffic with network policies.'

Once you add the IP, ensure the policy is activated.

Get Snowflake Information

Account ID (Identifier)

Open your user options on the bottom left (1), go to the account name (2) >> “View account details”(3) >> Copy the “Account Identifier”.

Warehouse ID

• Go to “Projects >> Worksheets” (5)

• Select a warehouse worksheet that can run queries or create a new one using the plus+ icon (6) and copy the following code:

USE ROLE orgadmin; SELECT CURRENT_WAREHOUSE();

• Click the worksheet and copy the Warehouse ID (7).

Connecting Snowflake to Grip SaaS Security Posture Management.

• From the Grip portal, go to “Posture >> “Add Tenant”(1).

• Click on “Snowflake” (2).

• Enter the required information in the “Tenant Details” fields (3): Display Name, Account ID, Snowflake Username and Password, and Warehouse ID.

• Click on “Add Tenant.”

Once the tenant is added, you will be directed to the tenant's page.

Click the tenant to see and filter your policy statuses, assess your security posture, and begin fixing it.