roles snowflake-cloud-data-platform privileges multi-factor-authentication

Disable MFA for couple of minutes?

snowflake

Is it possible to disable MFA for couple of minutes if I'm not account admin?

If yes ... which privileges do I need to grant to specific user/role in order to get the rights to disable MFA for couple of minutes?

ALTER USER xxx SET MINS_TO_BYPASS_MFA = 10

Solution

Yes you need a role that is the owner of the user.

See how to grant ownership: https://docs.snowflake.net/manuals/sql-reference/sql/grant-ownership.html

Privileges for reference are listed here: https://docs.snowflake.net/manuals/user-guide/security-access-control-privileges.html#user-and-role-privileges

The provided execution role does not have permissions to call DescribeNetworkInterfaces on EC2
How to insert/update standard table AGR_USERS?
Error while creating test user on Facebook "The ability to create test users is disabled temporarily"
Is there a way to running a role until it succeeds in a play?
@RolesAllowed in Apache CXF
Redirect to URL if the user isnt the author of the post
What is the sure-fire way to find role assignments with "Identity not found." on Azure with Powershell?
How to actually implement Roles in Blazor WebApp and Identity?
How to create Postgres role that is not "on" by default
Return the user's role when we authenticate with ASP.NET WebApi
Flask Security Permissions of Roles
ASP.NET Core 8 + Keycloak: Role-based Authorization for Derived Controllers without Code Duplication
Is setting Roles in JWT a best practice?
Calling voters in twig without second object
Create PostgreSQL ROLE (user) if it doesn't exist
Translating a custom user role name in WordPress
Symfony User Logout After Role Change
EasyAdmin choiceField bug Symfony
How to find which Database Roles are associated with a given User?
Cannot drop PostgreSQL role. Error: `cannot be dropped because some objects depend on it`
Symfony - Efficient access control for (dynamic) hierarchical roles
Target class [Spatie\Permission\Middlewares\RoleMiddleware] does not exist
How to pass context from a command to the callback in discord.py
Ansible: how to run a play with hosts with different passwords?
Add a client role to a keycloak user using java
Symfony 2 - Adding user roles under the ROLE_USER
How to grant some users partial user management rights in Keycloak?
Group-level role authorization in Node.js
How to check future ownership in Snowflake Database objects?
How do I know a function is a service role?