1. Arbor Help Centre
  2. Partners and Integrations
  3. Power BI and Data Warehousing

Using a Programmatic Access Token (PAT) as your BI Connector Credentials

Avatar
Arbor Product Team

Programmatic Access Tokens (PATs) let you authenticate with Snowflake without using your password, which is handy for connecting tools like Power BI or Looker Studio. Think of them as app-specific passwords that you can create and revoke as needed.

 

Why Use PATs Instead of Username and Password?

There are a few good reasons to use PATs rather than your regular credentials:

  • Better security: If a token gets compromised, you can revoke just that token without changing your password or affecting other connections
  • Granular control: You can create separate tokens for different tools or purposes, making it easier to track and manage access
  • No password exposure: Your actual password never gets stored in third-party tools or configuration files
  • Easy rotation: Tokens can expire automatically, and you can refresh them without disrupting your other access
  • Audit trail: It's easier to see what/who's accessing your Snowflake account and when

Basically, PATs give you more flexibility and control while reducing the security risks that come with sharing passwords across multiple applications.

 

Prerequisites

Before you start, make sure you have:

  • An active Snowflake account with appropriate permissions
  • Access to the Snowflake web interface
  • Your target tool at the ready (Power BI or Looker Studio)

 

Generating Your Token

Step 1: Log into Snowflake

Head to your Snowflake account through the web interface at arbor-education.snowflakecomputing.com and sign in with your BI Connector credentials.

 

Step 2: Access Your Profile

Click on your username in the bottom-left corner, then select Settings from the menu.

 

Step 3: Navigate to Security Settings

From the left-menu choose Authentication

 

Step 4: Create a New Token

Under the section Programmatic access tokens click Generate new token

You'll need to:

  • Give your token a descriptive name (e.g., "Power BI" or "Looker Studio")
  • Set an expiration date
  • Grant access to the single role associated with your user name

 

Step 5: Copy and Store Your Token

Once generated, Snowflake will display your token only once. Copy it immediately and store it somewhere secure, like a password manager. If you lose it, you'll need to generate a new one.

 

Using Your Token

For Power BI

In Power BI, when connecting to Snowflake via the data source setup screen, enter your PAT in the password field.

 

For Looker Studio

In Looker Studio's Snowflake connector, when prompted for a username and password, enter your PAT in the password field.
 

Security Best Practices

  • Rotate tokens regularly: Set expiration dates and refresh them periodically
  • Use descriptive names: Makes it easier to identify and manage multiple tokens
  • Revoke unused tokens: Clean up tokens you're no longer using
  • Never share tokens: Each user should have their own

 

Troubleshooting

Token not working? 

Check that:

  • You've copied the entire token without any extra spaces
  • The token hasn't expired

  • Your Snowflake account has the necessary permissions for the data you're accessing

     

Need to revoke a token? 

Go back to your profile security settings, find the token in your list, and click Delete.

Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
I'm still stuck!

Comments

0 comments

Article is closed for comments.