Wondering if anybody has successfully configured the Snowflake Pipeline to AWS/S3 using Role Authentication with an ExternalId?
We have been able to establish the pipeline and populate data in S3 without an ExternalID so we know the role, permissions, and settings work . We have also found that if we set the AWS Trust Relationship externalId as conditional ("StringEqualsIfExists"), we can configure/validate/populate the pipeline successfully.
However, if we set the externalId as required in the AWS Role Trust Relationship ("StringEquals"), then the pipeline validation fails.
We've combed through the documentation and engaged support, but we still cannot meet this specific security request.
If anybody has set this up successfully, I'd love some advice. Not sure if there is some needed policy permission that's not noted in the docs, if we're doing something wrong, etc.
Thanks
------------------------------
Wes Corbin
Wex Inc
Portland ME
------------------------------