Skip to content
DOCS
User Guide API Guide

Configure a JSON Web Token (JWT) Credential Provider

A JSON Web Token (JWT), defined by the open standard RFC 7519, is a compact and self-contained method for securely transmitting information as a JSON object between parties.

It is important to note that Aembit’s current support for JWT generation is specifically tailored for Snowflake.

Credential Provider configuration

Section titled “Credential Provider configuration”

To configure a JSON Web Token (JWT) Credential Provider, follow the steps outlined below.

  1. Log into your Aembit Tenant.

  2. Once you are logged into your tenant, click on the Credential Providers tab in the left sidebar. You are directed to the Credential Providers page displaying a list of existing Credential Providers. In this example, there are no existing Credential Providers.

    Credential Providers - Main Page Empty

  3. Click on the New button to open the Credential Providers dialog window.

    Credential Providers - Dialog Window Empty

  4. In the Credential Providers dialog window, enter the following information:

    • Name - Name of the Credential Provider.
    • Description - An optional text description of the Credential Provider.
    • Credential Type - A dropdown menu that enables you to configure the Credential Provider type. Select JSON Web Token (JWT).
    • Token Configuration - By default, this field is pre-selected as Snowflake Key Pair Authentication for connecting to Snowflake.
    • Snowflake Account ID - Use this field to input the Snowflake Locator, a unique identifier that distinguishes a Snowflake account within the organization.
    • Username - The username is your access credential for Snowflake, allowing authentication to access a Server Workload. It is your unique Snowflake username associated with the account.
    • Snowflake Alter User Command - After saving the Credential Provider, an auto-generated SQL command is produced in this field. This command incorporates a public key, which is essential for establishing trust between your Snowflake account and the JWT tokens issued by Aembit. To execute this command on your Snowflake account, utilize a Snowflake-compatible tool of your choice.

    Credential Providers - Dialog Window Completed

  5. Click Save when finished. You will be directed back to the Credential Providers page, where you will see your newly created Credential Provider.

    Credential Providers - Main Page With New Credential Provider