Company details three stages to remove single factor logins by end of 2025.
Snowflake has announced that it will block sign-ins using single-factor authentication with passwords by November 2025.
In an announcement, the company said this will be enabled in three stages:
By April 2025, all human users in accounts without a custom authentication policy will be required to enroll in MFA upon their next password-based sign-in to Snowflake.
By August 2025, even if the customer has a custom authentication policy already defined, all ‘human users’ - users who are human and normally use an interactive login to sign in to Snowflake - will be required to use MFA when signing in with passwords.
By November 2025, the LEGACY_SERVICE will be deprecated, and all LEGACY_SERVICE users will be migrated to SERVICE users. This will conclude the process of blocking sign-in to Snowflake using single-factor authentication with passwords for all users (human or service).
The announcement follows the addition of mandatory MFA earlier this year.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
