We will need to confirm if python connections are impacted.

For Python:

• Disable local login for a test user in CDTFA Snowflake account
• Confirm local login is disabled
• Confirm user can still login using Okta SSO
• Confirm DUO Mobile MFA is disabled
• Confirm python connection works using Okta credentials
• Notify users of updates

Performed a test connection with Arman in the CDTFA account. We disabled his local login and disabled DUO mobile MFA.

We confirmed the following:

• User was unable to login using the old password
• User was still able to login using SSO
• The original python connection did not work after the original local password was disabled
• The python connection was restored after parameters were updated with Okta sign in credentials

We added:
authenticator='externalbrowser'

i.e.,
Pass authenticator='https://<okta_account_name>.okta.com' to the snowflake.connector.connect() function

According to online guidance:

• HERE and
• HERE

Marking this issue completed, but I am creating a new one for troubleshooting errors encountered when passing the okta url to the snowflake connector function. Currently the authenticator='externalbrowser' approach is working for Okta integrated users.