Snowflake Service User Usage

urn:js:virtue:aspire:standard:342.1

TL;DR

Snowflake service users should only be used by services and applications when accessing Snowflake Production. Usage by individuals is prohibited.

Definition

Snowflake service users should only be used by services and applications when accessing Snowflake Production. Usage by individuals is prohibited.

Appendix

Optional - Misc details related to what is being proposed.

Adherance

The following SQL will provide details of all Production service user logins to the Snowflake web portal in the last 30 days:

select * from snowflake.account_usage.login_history where event_timestamp > dateadd(day, -30, current_timestamp()) and user_name not like ‘%@%’ and user_name not like ‘%_ADMIN’ and reported_client_type = ‘SNOWFLAKE_UI’ and user_name like ‘%\\_PROD%’ escape ‘\\’;