Snowflake SCIM: included, and how to actually govern it

SCIM included. Iden provisions Snowflake on any plan tier.

2 min read · Last updated June 2026

SCIM includedAny planFull lifecycleAudit trail

Snowflake includes SCIM provisioning on its Standard (all editions) plan, so there is no SCIM tax to pay here. The remaining gap is governance: SCIM creates and deactivates accounts, but it does not run access reviews, enforce least privilege, or produce offboarding evidence. Iden adds that layer on top of Snowflake's SCIM.

How Iden provisions Snowflake on any plan

Iden does not depend on Snowflake’s SCIM endpoint. It connects Snowflake through the method that works on your plan, an API, OAuth, or Iden’s own custom automation, and runs the full lifecycle: onboarding on day one, permission changes as roles move, access requests that replace manual tickets, access reviews with evidence, and offboarding in seconds. Snowflake already gives you SCIM for account create and deactivate; Iden adds the governance layer on top.

See the full technical breakdown on the Snowflake connector page.

Frequently asked questions

Does Snowflake support SCIM provisioning?

Yes. Snowflake includes SCIM provisioning on its Standard (all editions) plan, so you do not pay a premium for it.

Can I automate Snowflake without SCIM?

Yes. Iden connects Snowflake without SCIM and automates provisioning, deprovisioning, and access reviews on any plan, with an exportable audit trail for SOC 2 and ISO 27001.

How does Iden offboard Snowflake users?

When someone is marked as a leaver in your HRIS, Iden revokes their Snowflake access automatically, in seconds, and records it in a timestamped audit trail.

How current is this Snowflake SCIM pricing?

It comes from the SCIM Tax Index, an open dataset (CC-BY), last verified 2026-06-12. Always check Snowflake's current pricing page before you budget.