类别:

系统函数 (系统控制)

SYSTEM$REGISTER_CMK_INFO

注册您的客户管理密钥 (CMK) 以用于 Tri-Secret Secure。

另请参阅:

Understanding CMK self-registration with support activation of Tri-Secret Secure

语法

AWS:

SYSTEM$REGISTER_CMK_INFO( '<cmk_arn>' [ , '<privatelink_enabled>' ] )
Copy

Azure:

SYSTEM$REGISTER_CMK_INFO( '<vault_uri>' , '<key_name>' [ , '<privatelink_enabled>' ] )
Copy

Google Cloud:

SYSTEM$REGISTER_CMK_INFO( '<project_id>' , '<location>', '<key_ring>' , '<key_name>' [ , '<privatelink_enabled>' ] )
Copy

实参

Required:

AWS

cmk_arn

指定指定与 Tri-Secret Secure 一起使用的客户管理密钥 (CMK) 的 Amazon Web Services 资源编号 (ARN)。

Azure

vault_uri

为 Azure 密钥库指定 Microsoft Azure 唯一端点标识符。

key_name

在 Microsoft Azure 中指定 CMK 的名称。

Google Cloud

project_id

Specifies the unique identifier for your project in Google Cloud.

location

Specifies the Google Cloud region that hosts your Snowflake account.

key_ring

Specifies the key ring for your CMK in Google Cloud.

key_name

Specifies the name for your CMK in Google Cloud.

Optional:

privatelink_enabled

Specify whether or not to use your private connectivity endpoint for Tri-Secret Secure by passing in one of the following values:

重要

If you omit this argument or pass in an empty string, Snowflake doesn't use a private connectivity endpoint for Tri-Secret Secure.

'TRUE'

Specifies that Snowflake uses the provisioned private connectivity endpoint for Tri-Secret Secure.

'FALSE' (default)

Specifies that Snowflake doesn't use a private connectivity endpoint for Tri-Secret Secure.

''

Empty string. Same behavior as 'FALSE'.

返回

返回一条状态信息,说明注册已完成。

访问控制要求

只有账户管理员(具有 ACCOUNTADMIN 角色的用户)才能调用此函数。

示例

在 Amazon Web Services 上为您的 Snowflake 账户注册 CMK:

SELECT SYSTEM$REGISTER_CMK_INFO('arn:aws:kms:us-west-2:736112632310:key/ceab36e4-f0e5-4b46-9a78-86e8f17a0f59');
Copy

在 Microsoft Azure 上为您的 Snowflake 账户注册 CMK:

SELECT SYSTEM$REGISTER_CMK_INFO('https://trisecretsite.vault.azure.net/', 'trisecretazkey');
Copy

Register your CMK for your Snowflake account on Google Cloud:

SELECT SYSTEM$REGISTER_CMK_INFO('my-env', 'us-west1', 'trisecrettest', 'trisecretgcpkey');
Copy

在 Amazon Web Services 使用 Privatelink 为您的 Snowflake 账户注册 CMK:

SELECT SYSTEM$REGISTER_CMK_INFO('arn:aws:kms:us-west-2:736112632310:key/ceab36e4-f0e5-4b46-9a78-86e8f17a0f59', 'true');
Copy

在 Microsoft Azure 使用 Privatelink 为您的 Snowflake 账户注册 CMK:

SELECT SYSTEM$REGISTER_CMK_INFO('https://trisecretsite.vault.azure.net/', 'trisecretazkey', 'true');
Copy

Register your CMK with a privatelink endpoint for your Snowflake account on Google Cloud:

SELECT SYSTEM$REGISTER_CMK_INFO('my-env', 'us-west1', 'trisecrettest', 'trisecretgcpkey', 'true');
Copy