Company details three stages to remove single factor logins by end of 2025.
Snowflake has announced that it will block sign-ins using single-factor authentication with passwords by November 2025.
In an announcement, the company said this will be enabled in three stages:
By April 2025, all human users in accounts without a custom authentication policy will be required to enroll in MFA upon their next password-based sign-in to Snowflake.
By August 2025, even if the customer has a custom authentication policy already defined, all ‘human users’ - users who are human and normally use an interactive login to sign in to Snowflake - will be required to use MFA when signing in with passwords.
By November 2025, the LEGACY_SERVICE will be deprecated, and all LEGACY_SERVICE users will be migrated to SERVICE users. This will conclude the process of blocking sign-in to Snowflake using single-factor authentication with passwords for all users (human or service).
The announcement follows the addition of mandatory MFA earlier this year.
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
