@KahanDataSolutions With the custom field mappings (8:26), can you map a whole group to gain access to only to a specific database, with a specific warehouse, with specific rights like Read, or read write?
I followed the same steps and in snowflake, describe user shows default_role correctly. But when I m doing SSO, it doesnt see that role at all. And there are no grants. It just uses PUBLIC role. What am i missing?
Do you need to have the roles setup first on snowflake? If for example, you have a Database called DB1 and you want to assign a role DB1_RW to it, can you do that from the AD side?
The silly thing that tripped me up about the link around 08:11 is that you have to go to that link and then navigate to provisioning from the same tab. If you are jumping between tabs or going back another day, you aren't going to get the options you want.