Snowflake

Integrate via Direct Connect

Steps

  1. Create a role, name it KUBIT.
    CREATE ROLE KUBIT;
    
  2. Create a user and name it KUBIT.
    1. You will need to attach a public key to the user, it will be provided by the Kubit team.
    2. When setting a password to the user, please make sure it is at least 30 mixed characters.
      CREATE USER KUBIT PASSWORD='*****'DEFAULT_ROLE = KUBIT RSA_PUBLIC_KEY = ...;
      
  3. Share the user credentials securely with the Kubit team.
  4. Create a database called KUBIT.
    CREATE DATABASE KUBIT;
    
  5. Make the KUBIT role owner of the KUBIT database. This will allow us to create and execute tasks which are only available to an owner role.
    GRANT OWNERSHIP ON DATABASE KUBIT TO ROLE KUBIT;
    
  6. Create a Data Warehouse called KUBIT (size depends on your data volume)
    1. Grant the KUBIT role the following privileges: MONITOR | USAGE | OPERATE
      CREATE OR REPLACE WAREHOUSE KUBIT WAREHOUSE_SIZE=... INITIALLY_SUSPENDED=TRUE;
      GRANT MONITOR ON WAREHOUSE KUBIT TO ROLE KUBIT;
      GRANT USAGE ON WAREHOUSE KUBIT TO ROLE KUBIT;
      GRANT OPERATE ON WAREHOUSE KUBIT TO ROLE KUBIT;
      
  7. Add read-only (SELECT permissions to the KUBIT role to your intended data tables/views.

👍

Best practice

Create one more user, role and warehouse for development purposes in order to isolate the impact on the production environment and avoid accidents.