True or False: When Snowflake is configured to use Single Sign-On (SSO), Snowflake receives the usernames and credentials from the SSO service and loads them into the customer's Snowflake account.
True or False: When Snowflake is configured to use Single Sign-On (SSO), Snowflake receives the usernames and credentials from the SSO service and loads them into the customer's Snowflake account.
When Snowflake is configured to use Single Sign-On (SSO), it does not receive or load the usernames and credentials from the SSO service into the customer's Snowflake account. Instead, the Identity Provider (IdP) handles authentication, and only a token or assertion is passed to Snowflake to grant access. The actual user credentials remain with the IdP, ensuring a secure authentication process.
No. it does not save any credentials in an Account. Purpose of Federated and SSO is to authenticate the User and pass the authorization to SSO/Snowflake. user authentication is separated from user access through the use of one or more external entities that provide independent authentication of user credentials. The authentication is then passed to one or more services, enabling users to access the services through SSO. A federated environment consists of the following components: Service provider (SP): In a Snowflake federated environment, Snowflake serves as the SP. Identity provider (IdP): The external, independent entity responsible for providing the following services to the SP: Creating and maintaining user credentials and other profile information. Authenticating users for SSO access to the SP.
There's no sending credential info between SSO and SF.
Correcting the vote to false as the credentials will be verified from IdP(Identity Provider)
https://docs.snowflake.com/en/user-guide/admin-security-fed-auth-overview.html
What do you mean by 'loads'
B.False
Correct Answer: B
B. False
False, SCIM does auto user provisioning not SSO
Should be B
Yes it does. Supported SSO Workflows Federated authentication enables the following SSO workflows: Logging into Snowflake. Logging out of Snowflake. System timeout due to inactivity. The behavior for each workflow is determined by whether the action is initiated within Snowflake or your IdP. https://docs.snowflake.com/en/user-guide/admin-security-fed-auth-overview.html#supported-sso-workflows
that means that you just logs into your organisation SSO and if you click on snowflake you dont need to login to snowflake as you are using SSO and your user data is provided - I think that is what 'loads' mean
B is correct