...
Log in to Snowflake using the ACCOUNTADMIN role.
Enter the following command in the Snowflake Console:
Code Block CREATE OR REPLACE SECURITY INTEGRATION <name of the integration> TYPE = SAML2 ENABLED = TRUE SAML2_ISSUER = '<Generate this variable from OKTA server side>' SAML2_SSO_URL = '<Generate this variable from OKTA server side>' SAML2_PROVIDER = 'OKTA' SAML2_X509_CERT = '<Generate this variable from OKTA server side>' SAML2_SP_INITIATED_LOGIN_PAGE_LABEL = 'OKTASSO' SAML2_ENABLE_SP_INITIATED = TRUE;
For detailed instructions about how to generate the variables, refer to How to Configure SAML 2.0 for Snowflake.
Validate your Snowflake OAuth2 Account for external authentication.
In the Snowflake OAuth account settings, use the credentials generated in step 2.
After you have successfully created the Okta integration from step 2, the Sign in using OKTASSO option is displayed on the redirect page above regular logins. If you already have SSO login enabled for Snowflake, Sign in using OKTASSO appears on the login page.
Click Sign in using OKTASSO, which will trigger a permission request. Click Allow to complete the authentication process.
...