i would like to rephrase my question as
currently matillion is able to see objects defined in snowflake with certain role that was created by snowflake security
admin .
question :where do we define in matillion to use SPECIFIC snowflake ROLE when accessing snowflake objects .
-OR is by default that matillion see only created by snowflake security admin.?
Thanks.
Hi @S2022, the role in which Matillion uses by default is defined within the Environment(s) defined in your project. Here is a typical scenario... When you create a project and define 1 or more environments you may select SYSADMIN as the default role for that environment. In this situation many objects that the SECURITYADMIN has created or owns will not be accessible or operated on by Matillion because the role is SYSADMIN.
The proper way but sometimes not the most convenient way to ensure Matillion has access to all the objects required is to create a Snowflake role specifically for ETL/ELT. Grant this role all the required privileges and then grant the role to the Matillion service/user account defined in your project Environment.
If you struggle with roles and privileges like many of us Snowflake users, you should consider investing some time in Terraform. It's a great platform for managing privileges and grants on your Snowflake objects.
Hopefully this helps!