Azure · v-pmalreddy · Jul 14, 2025 · Jul 16, 2025
@@ -27,14 +27,28 @@ To enable permanent access via a Programmatic Access Token, configuring a **Netw
 --------------------------------------------------------------------------------------------------------------------
 
 - Log in to your Snowflake account and navigate to a **SQL Worksheet**.
-- Execute the following SQL statements to create and apply a permissive network policy:
-  ```
-  CREATE OR REPLACE NETWORK POLICY allow_all_ips
-    ALLOWED_IP_LIST = ('0.0.0.0/0');
-  ```
-  ```
-  ALTER ACCOUNT SET NETWORK_POLICY = allow_all_ips;
-  ```
+- Execute **only one** of the following configurations based on your specific scenario:
+  #### Scenario 1: No Existing IP Restrictions
+  - If there are no prior IP restrictions, create and apply a permissive network policy that allows access from all IP addresses:
+    ```
+    CREATE OR REPLACE NETWORK POLICY allow_all_ips
+      ALLOWED_IP_LIST = ('0.0.0.0/0');
+    ```
+    ```
+    ALTER ACCOUNT SET NETWORK_POLICY = allow_all_ips;
+    ```
+  #### Scenario 2: Existing IP Restrictions
+  - If your account already has IP restrictions in place, you can create a more flexible policy that allows all IPs but explicitly blocks specific addresses:
+    ```
+    CREATE OR REPLACE NETWORK POLICY allow_all_with_blocks
+      ALLOWED_IP_LIST = ('0.0.0.0/0')
+      BLOCKED_IP_LIST = ('<IP_ADDRESS1>', '<IP_ADDRESS2>');
+    ```
+    ```
+    ALTER ACCOUNT SET NETWORK_POLICY = allow_all_with_blocks;
+    ```
+    > **Note:** If you have multiple blocked IP addresses, provide all IP addresses separated by commas as shown in above query.
+
 Once these commands are successfully executed, the network policy configuration is complete.
 ### Generate Programmatic Access Token
 --------------------------------------------------------------------------------------------

@@ -202,7 +202,7 @@
                         {
                             "type": "Markdown",
                             "parameters": {
-                                "content": "For detailed instructions on retrieving the Account Identifier and Programmatic Access Token, please refer to the [Connector Tutorial](https://github.com/v-pmalreddy/Snowflake/blob/main/README.md)."
+                                "content": "For detailed instructions on retrieving the Account Identifier and Programmatic Access Token, please refer to the [Connector Tutorial](https://github.com/Azure/Azure-Sentinel/blob/master/Solutions/Snowflake/Data%20Connectors/Readme.md)."
                             }
                         },
                         {

@@ -63,6 +63,23 @@
               "text": "This Solution installs the data connector for Snowflake. You can get Snowflake data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
             }
           },
+          {
+            "name": "dataconnectors-link1",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "link": {
+                "label": "Learn more about connecting data sources",
+                "uri": "https://docs.microsoft.com/azure/sentinel/connect-data-sources"
+              }
+            }
+          },
+          {
+            "name": "dataconnectors2-text",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "text": "This Solution installs the data connector for Snowflake. You can get Snowflake custom log data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
+            }
+          },
           {
             "name": "dataconnectors-parser-text",
             "type": "Microsoft.Common.TextBlock",