/
Managing Snowflake Accounts in Kyvos for AWS SaaS

Managing Snowflake Accounts in Kyvos for AWS SaaS

For AWS SaaS, Kyvos now supports a self-service feature that allows you to connect and manage your Snowflake accounts directly from the Kyvos. This feature establishes a secure trust between your Snowflake account and the IAM role created in the Kyvos account. The integration enables Kyvos to connect seamlessly to Snowflake. With this capability, you can:

  • Generate required Snowflake SQL commands from the Kyvos UI.

  • Set up stages and integrations in Snowflake.

  • Register their Snowflake account in Kyvos.

  • Use the configured account when creating Snowflake connections.

Configuring Snowflake Accounts

You can connect or manage Snowflake account by adding a connection or directly from Manage Snowflake Account option.

To manage Snowflake account, perform the following steps.

  1. From the Toolbox, click Connections.

  2. To manage Snowflake account, do one of the following:

    • From the Actions menu () click Manage Snowflake Account.

      image-20250916-120937.png

      -or-

    • On the Snowflake Connection page, click Connect to Snowflake Account link.
      The Connect a Snowflake Account wizard is displayed.

      e3a9be62-89db-43e0-8811-0e65cd359b46.png

  3. In the Fill Snowflake Details section, enter Snowflake account details as:

    1. Snowflake account name: A user-defined identifier for your Snowflake account, used within Kyvos to recognize and reference the account. This is primarily for display and selection purposes inside the Kyvos platform. Helps user to distinguish between multiple Snowflake accounts when connecting or managing data sources.

    2. Snowflake Account ID: A unique identifier for your Snowflake account. This is required for authentication and establishing a connection between Kyvos and Snowflake.

    3. Server: The hostname or endpoint of the Snowflake instance (often in the format <account>.snowflakecomputing.com).

    4. Integration name to be created in Snowflake account.

    5. Staging Database name to be created in Snowflake account.

    6. Role: The Snowflake role to be assigned to the user account for this connection. Roles define access permissions, including which databases, schemas, and tables the Kyvos platform can access.

  4. Click Next. The Storage Integration section is displayed. Kyvos generates SQL commands required to set up a stage and a storage integration.

    image-20250916-123456.png

  5. Copy these commands and execute them in your Snowflake account using your preferred client. For example, Snowflake Web UI.

  6. Return to the Connect a Snowflake Account wizard and provide the values for STORAGE AWS IAM USER ARN and STORAGE AWS EXTERNAL ID retrieved from the DESC INTEGRATION query. Kyvos uses these details to update the IAM role trust policy, allowing Snowflake to assume the role securely. ­

  7. Click Next, the Stage Creation section is displayed.

    image-20250916-142306.png

  8. Copy and execute command generated on next page. This command will create stage in the Snowflake account.

  9. Click Finish. On next screen you can select this account and click Apply.

Note

  • You can execute all SQL commands in your Snowflake environment; Kyvos does not directly modify Snowflake objects.

  • You must add the kyvos.connection.snowflake.stage property on the snowflake connection. The value of the property must be @mydb.myschema.Sample_stage where as mydb is the database name, myschema is the schema name, and Sample_stage is the stage created.

 

 

Copyright Kyvos, Inc. 2025. All rights reserved.