Snowflake · Capability
Snowflake Security and Access
Unified workflow for managing users, roles, grants, database roles, network policies, and account administration. Used by Platform Administrators and Security Engineers to govern access control and security posture.
What You Can Do
GET
List users
— List users
/v1/users
POST
Create user
— Create a user
/v1/users
GET
List roles
— List roles
/v1/roles
POST
Create role
— Create a role
/v1/roles
POST
Grant privilege
— Grant a privilege
/v1/grants
GET
List grants
— List grants
/v1/grants
GET
List network policies
— List network policies
/v1/network-policies
POST
Create network policy
— Create a network policy
/v1/network-policies
GET
List accounts
— List accounts
/v1/accounts
MCP Tools
list-users
List all users
read-only
create-user
Create a new user
fetch-user
Fetch user details
read-only
delete-user
Delete a user
list-roles
List all roles
read-only
create-role
Create a new role
grant-privilege
Grant a privilege to a role
revoke-privilege
Revoke a privilege from a role
list-grants
List grants to a role
read-only
list-database-roles
List database roles
read-only
create-database-role
Create a database role
list-network-policies
List network policies
read-only
create-network-policy
Create a network policy
list-accounts
List accounts
read-only
list-managed-accounts
List managed accounts
read-only
APIs Used
snowflake-user
snowflake-role
snowflake-grant
snowflake-database-role
snowflake-network-policy
snowflake-account
snowflake-managed-account