{"type":"doc","content":[{"type":"paragraph","content":[{"text":"This page provides general guidelines on how to set up Snowflake Storage to work with Storage Management.","type":"text"},{"type":"hardBreak"}]},{"type":"extension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"toc","parameters":{"macroParams":{},"macroMetadata":{"macroId":{"value":"e4f72a59-b656-4e34-ba25-982c06e69da2"},"schemaVersion":{"value":"1"},"title":"Table of Contents"}},"localId":"65f3341f-2752-419a-94e7-55bbb919158b"}},{"type":"paragraph"},{"type":"heading","attrs":{"level":1},"content":[{"text":"1. General prerequisites","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"1.1 Network Connectivity","type":"text"}]},{"type":"paragraph","content":[{"text":"To enable communication of SAP systems with the Snowflake host, the following hosts/port needs to be reachable from the SAP system:","type":"text"}]},{"type":"table","attrs":{"layout":"default","localId":"5b45e880-4b4c-4247-9b65-350db051f8fa"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"background":"#f0f0f0","rowspan":1,"colwidth":[80.0]},"content":[{"type":"paragraph","content":[{"text":"Port","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[680.0]},"content":[{"type":"paragraph","content":[{"text":"Address","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[80.0]},"content":[{"type":"paragraph","content":[{"text":"443","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[680.0]},"content":[{"type":"paragraph","content":[{"text":"...snowflakecomputing.com","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[80.0]},"content":[{"type":"paragraph","content":[{"text":"443","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[680.0]},"content":[{"type":"paragraph","content":[{"text":"ocsp.snowflakecomputing.com","type":"text"}]}]}]}]},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"If your Snowflake account is hosted in a particular cloud environment like AWS or MS Azure, make sure their respective domains are reachable from the SAP system as well (e.g. *.amazonaws.com, *.windows.net); port 443.","type":"text"},{"type":"hardBreak"},{"text":"This is needed for file upload to the Snowflake staging area.","type":"text"},{"type":"hardBreak"},{"text":"There is an automatic redirect happening during PUT operation when transferring data to Snowflake internal stage, which goes to the respective vendor’s file service (example: ","type":"text"},{"text":"customer-stage.s3.us-east-2.amazonaws.com","type":"text","marks":[{"type":"link","attrs":{"href":"http://sfc-oh-ds1-9-customer-stage.s3.us-east-2.amazonaws.com"}}]},{"text":").","type":"text"}]},{"type":"paragraph","content":[{"text":"In case of connectivity problems, Snowflake offers SnowCD utility to check connectivity towards Snowflake service endpoints possibly involved in the communication: ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://docs.snowflake.com/en/user-guide/snowcd.html#"}},{"text":" ","type":"text"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"1.2 Warehouse and Database","type":"text"}]},{"type":"paragraph","content":[{"text":"Snowflake warehouse and database must already exist.","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"1.3 Snowflake user","type":"text"}]},{"type":"paragraph","content":[{"text":"Snowflake technical users must be created with full privileges on chosen Snowflake DB schema.","type":"text"},{"type":"hardBreak"},{"text":"Recommended privilege for the Snowflake technical user is OWNERSHIP of the Snowflake database.","type":"text"},{"type":"hardBreak"},{"text":"In case ownership of the database cannot be assigned to the technical user, minimal requirements are the following:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"sql"},"content":[{"text":"GRANT ALL ON DATABASE TO ROLE \nGRANT USAGE ON WAREHOUSE TO ROLE \nGRANT ALL ON SCHEMA TO ROLE ","type":"text"}]},{"type":"paragraph","content":[{"text":"There should be one-to-one relation between Snowflake schemas and every SAP system connected, ensuring replicated data isolation.","type":"text"}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"2. OS prerequisites (On SAP host)","type":"text"}]},{"type":"paragraph","content":[{"text":"This group of requirements relates to the operating systems underlying the SAP system with all its application servers. SNP products (e.g. SNP Glue™, SNP OutBoard™ Data Tiering) have been developed and tested in the SUSE Linux environment and Windows Server 2012. However, by design, they are not limited by the choice of an operating system, if the requirements listed in this guide are met.","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"2.1 OS directory and JDBC Driver","type":"text"}]},{"type":"paragraph","content":[{"text":"JDBC protocol is used to connect to Snowflake. Snowflake JDBC driver needs to be manually copied to the operating system and accessible to the connector. ","type":"text"},{"text":"Download Snowflake JDBC driver","type":"text","marks":[{"type":"link","attrs":{"href":"https://docs.snowflake.com/en/user-guide/jdbc-download.html#downloading-the-driver"}}]},{"text":". The latest version of the Snowflake JDBC driver is recommended.","type":"text"},{"type":"hardBreak"},{"text":"It is recommended to store the drivers in a directory shared between application servers, organized in sub-directories to avoid possible conflicts (some customers connect to multiple different platforms/services).","type":"text"}]},{"type":"paragraph","content":[{"text":"The default directory used to store drivers needed for communication with remote storages/services is:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"shell"},"content":[{"text":"$ ls -ld /sapmnt//global/security/dvd_conn\nrwx------ 2 dvqadm sapsys 4096 --- /sapmnt//global/security/dvd_conn","type":"text"}]},{"type":"paragraph","content":[{"text":"The actual Snowflake JDBC driver should be put into a dedicated sub-directory, for example:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"shell"},"content":[{"text":"$ ls -ld /sapmnt//global/security/dvd_conn/*\ndrwxr-xr-x 2 dvqadm sapsys 4096 --- /sapmnt//global/security/dvd_conn/snowflake\n\n$ ls -l /sapmnt//global/security/dvd_conn/snowflake\ndrwxr-xr-x 2 dvqadm sapsys 4096 --- /sapmnt//global/security/dvd_conn/snowflake/snowflake-jdbc-3.12.9.jar","type":"text"}]},{"type":"paragraph","content":[{"text":"Set its ownership and permissions appropriately to ","type":"text"},{"text":"adm[:sapsys]","type":"text","marks":[{"type":"code"}]},{"text":".","type":"text"}]},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"Be aware that there was an issue with SSL handshake in older versions of driver (3.13.x), this issue was fixed in ","type":"text"},{"text":"snow-jdbc-3.13.21","type":"text","marks":[{"type":"link","attrs":{"href":"https://repo1.maven.org/maven2/net/snowflake/snowflake-jdbc/3.13.21/snowflake-jdbc-3.13.21.jar"}}]},{"text":" version.","type":"text"}]}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"3. SAP configuration","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"3.1 JAVA connector","type":"text"}]},{"type":"paragraph","content":[{"text":"Java connector is a critical middle-ware component. Follow the steps in ","type":"text"},{"text":"Java Connector Setup","type":"text","marks":[{"type":"link","attrs":{"href":"/wiki/spaces/DATAVARD/pages/4265115808"}}]},{"text":" to set it up/upgrade to a new version before you continue. ","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":50.0},"content":[{"type":"media","attrs":{"width":1060,"id":"194b65db-8a66-4a94-8dbc-38200c04a6da","collection":"contentId-4263773065","type":"file","height":337}}]},{"type":"paragraph","content":[{"text":"The ","type":"text"},{"text":"(SM-2305) Java Connector Setup","type":"text","marks":[{"type":"link","attrs":{"href":"/wiki/spaces/DATAVARD/pages/4265115808"}}]},{"text":" is narrowed per Snowflake JDBC driver requirement and must be installed in a 64-bit environment and requires Java 1.8 (or higher), link to the official page: ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://docs.snowflake.com/en/user-guide/jdbc.html"}},{"text":".","type":"text"}]},{"type":"paragraph","content":[{"text":"WARNING:","type":"text","marks":[{"type":"strong"}]},{"text":" In case of JCo running on JDK 16, add a custom argument in the Advanced tab → Additional java starting arguments: ","type":"text"},{"text":"-Djdk.module.illegalAccess=permit","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"JDK 16 introduced strong encapsulation of JDK internals (see the documentation ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://www.oracle.com/java/technologies/javase/16-all-relnotes.html#JDK-8256299"}},{"text":") that cause problems in combination with the Snowflake JDBC driver.","type":"text"},{"type":"hardBreak"},{"text":"In JDK 17 option ","type":"text"},{"text":"-Djdk.module.illegalAccess=permit","type":"text","marks":[{"type":"code"}]},{"text":" does not work anymore and is therefore unusable for connection using the current Snowflake JDBC driver (for more information see ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://www.oracle.com/java/technologies/javase/17all-relnotes.html"}},{"text":" ).","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"3.2 Storage Management setup","type":"text"}]},{"type":"paragraph","content":[{"text":"The final step in SAP & Snowflake connectivity is the creation of two storages in transaction ","type":"text"},{"text":"/DVD/SM_SETUP","type":"text","marks":[{"type":"code"}]},{"text":" - Snowflake storage which represents the table level of Snowflake infrastructure and the Snowflake stage that handles temporary files.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"3.2.1 Snowflake Stage (SNOW_STAGE)","type":"text"}]},{"type":"paragraph","content":[{"text":"Binary storage points to the Internal Stage of the Snowflake user. It is used for data transfer leveraging the extended functionality of the Snowflake JDBC driver. ","type":"text"}]},{"type":"paragraph","content":[{"text":"Storage ID","type":"text","marks":[{"type":"code"}]},{"text":": Logical name of the storage connection.","type":"text"},{"type":"hardBreak"},{"text":"Storage type","type":"text","marks":[{"type":"code"}]},{"text":": SNOW_STAGE (Snowflake internal stage).","type":"text"},{"type":"hardBreak"},{"text":"Java connector RFC","type":"text","marks":[{"type":"code"}]},{"text":": TCP/IP RFC destination used for communication with Java connector.","type":"text"},{"type":"hardBreak"},{"text":"Account name","type":"text","marks":[{"type":"code"}]},{"text":": Name of the Snowflake account without ","type":"text"},{"text":".snowflakecomputing.com","type":"text","marks":[{"type":"code"}]},{"text":" domain, in the format: .. (more information can be found in ","type":"text"},{"text":"Snowflake account name doc","type":"text","marks":[{"type":"link","attrs":{"href":"https://docs.snowflake.com/en/user-guide/connecting.html#your-snowflake-account-name"}}]},{"text":").","type":"text"},{"type":"hardBreak"},{"text":"User role","type":"text","marks":[{"type":"code"}]},{"text":": Role to be used when connecting to Snowflake (parameter is not mandatory, default role is PUBLIC).","type":"text"},{"type":"hardBreak"},{"text":"JAVA Call Repeat","type":"text","marks":[{"type":"code"}]},{"text":": Number of times failed calls should be retried.","type":"text"},{"type":"hardBreak"},{"text":"Repeat delay (seconds","type":"text","marks":[{"type":"code"}]},{"text":": Delay between retried calls.","type":"text"},{"type":"hardBreak"},{"text":"Driver path","type":"text","marks":[{"type":"code"}]},{"text":": Absolute path to the directory containing the Snowflake JDBC driver.","type":"text"},{"type":"hardBreak"},{"text":"NOTE: In previous versions of Storage Management, SAP logical file of type DIR (directory) was used. This is now automatically converted to a physical path.","type":"text"},{"type":"hardBreak"},{"text":"Connection pool size","type":"text","marks":[{"type":"code"}]},{"text":": Number of connections that can be kept open in the pool, reducing resource-expensive establishment of JDBC connections.","type":"text"},{"type":"hardBreak"},{"text":"Username","type":"text","marks":[{"type":"code"}]},{"text":": Snowflake user.","type":"text"},{"type":"hardBreak"},{"text":"Password","type":"text","marks":[{"type":"code"}]},{"text":": User password.","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":50.0},"content":[{"type":"media","attrs":{"width":1106,"id":"ac42d27d-9f8d-4534-b694-859762692b68","collection":"contentId-4263773065","type":"file","height":713}}]},{"type":"paragraph","content":[{"text":"If Key Pair authentication is established according to ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://docs.snowflake.com/en/user-guide/key-pair-auth.html#key-pair-authentication-key-pair-rotation"}},{"text":", it can be configured with or without a passphrase as follows:","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":50.0},"content":[{"type":"media","attrs":{"width":1107,"id":"87cded5d-a905-4c6e-9115-192c28c161ee","collection":"contentId-4263773065","type":"file","height":274}}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"3.2.2 Snowflake Storage (SNOWFLAKE)","type":"text"}]},{"type":"paragraph","content":[{"text":"Transparent storage pointing to Snowflake Database. For sending SQL command data use the Snowflake JDBC driver. ","type":"text"}]},{"type":"paragraph","content":[{"text":"Storage ID","type":"text","marks":[{"type":"code"}]},{"text":": Logical name of the storage connection.","type":"text"},{"type":"hardBreak"},{"text":"Storage type","type":"text","marks":[{"type":"code"}]},{"text":": SNOWFLAKE (Snowflake transparent storage).","type":"text"},{"type":"hardBreak"},{"text":"Referenced storage","type":"text","marks":[{"type":"code"}]},{"text":": Storage ID of Snowflake stage area for temporary file upload/download.","type":"text"},{"type":"hardBreak"},{"text":"Java connector RFC","type":"text","marks":[{"type":"code"}]},{"text":": RFC Destination used for communication with JCo.","type":"text"},{"type":"hardBreak"},{"text":"Account name","type":"text","marks":[{"type":"code"}]},{"text":": .. (more information can be found in ","type":"text"},{"text":"Snowflake account name doc","type":"text","marks":[{"type":"link","attrs":{"href":"https://docs.snowflake.com/en/user-guide/connecting.html#your-snowflake-account-name"}}]},{"text":").","type":"text"},{"type":"hardBreak"},{"text":"Warehouse","type":"text","marks":[{"type":"code"}]},{"text":": Optional parameter, you can select the existing warehouse in the Snowflake account to be used.","type":"text"},{"type":"hardBreak"},{"text":"Database","type":"text","marks":[{"type":"code"}]},{"text":": Name of an existing database in Snowflake.","type":"text"},{"type":"hardBreak"},{"text":"Database schema","type":"text","marks":[{"type":"code"}]},{"text":": Name of an existing database schema in Snowflake.","type":"text"},{"type":"hardBreak"},{"text":"Role","type":"text","marks":[{"type":"code"}]},{"text":": Default role in Snowflake (parameter is not mandatory).","type":"text"},{"type":"hardBreak"},{"text":"Driver path","type":"text","marks":[{"type":"code"}]},{"text":": Snowflake driver directory.","type":"text"},{"type":"hardBreak"},{"text":"Hints","type":"text","marks":[{"type":"code"}]},{"text":": Additional string added to connection string when JDBC driver establishes a connection.","type":"text"},{"type":"hardBreak"},{"text":"Connection pool size","type":"text","marks":[{"type":"code"}]},{"text":": Number of connections that can be kept open in the pool, reducing resource-expensive establishment of JDBC connections.","type":"text"},{"type":"hardBreak"},{"text":"Table name prefix","type":"text","marks":[{"type":"code"}]},{"text":": Optional text value for naming prefix of all Glue tables created within this storage.","type":"text"},{"type":"hardBreak"},{"text":"Wrap values in staged CSV files","type":"text","marks":[{"type":"code"}]},{"text":": Depending on table content, it may be necessary to encapsulate field values to avoid errors during INSERT into the Snowflake table from staging CSV files.","type":"text"},{"type":"hardBreak"},{"text":"Data delivery guarantee","type":"text","marks":[{"type":"code"}]},{"text":": Data transfer behavior. More information can be found in the chapter ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://datavard.atlassian.net/wiki/spaces/DATAVARD/pages/4265771355"}},{"text":".","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start"},"content":[{"type":"media","attrs":{"width":887,"id":"b1498b6e-8042-43c0-af59-6cb8c691910c","collection":"contentId-4263773065","type":"file","height":681}}]},{"type":"paragraph"}],"version":1}

Browser not supported