ALTER SERVICE ACCOUNT - Firebolt Documentation

ALTER SERVICE ACCOUNT SET

Updates the configuration of the specified service account.

For more information, see Service accounts.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> SET 
      [ NETWORK_POLICY = <network_policy_name> | DEFAULT ] 
      [ DESCRIPTION = <description> | DEFAULT ]
      [ IS_ORGANIZATION_ADMIN = { TRUE | FALSE } ]
      [ CONNECTION_PREFERENCE = { PUBLIC_ONLY | PRIVATE_ONLY | PREFER_PUBLIC | PREFER_PRIVATE | DEFAULT } ]
      [ IS_ENABLED = { TRUE | FALSE } ]

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to edit.
`<description>`	An optional description for the service account.
`<network_policy_name>`	An optional parameter to define the network policy to link to the edited service account. Specifying `DEFAULT` will detach any linked network policy.
`IS_ORGANIZATION_ADMIN`	A `BOOLEAN` value specifying if the service account is an organization admin. By default, this value is `FALSE`.
`IS_ENABLED`	A `BOOLEAN` value specifying whether authentication with this service account should be possible. Disable the service account to prevent access without dropping it.
`CONNECTION_PREFERENCE`	Defines how the service account connects to Firebolt. The default value is `PREFER_PUBLIC` if not specified. See Connection preferences for details.
`<new_name>`	The new name of the service account. Must start with a letter and may contain only alphanumeric, digit, or underscore (_) characters.

Connection Preferences

The CONNECTION_PREFERENCE parameter determines how a service account accesses Firebolt:

PUBLIC_ONLY: Allows access only through public APIs.
PRIVATE_ONLY: Allows access only through AWS PrivateLink.
PREFER_PUBLIC (Default): Prefers public APIs but can use AWS PrivateLink if needed.
PREFER_PRIVATE: Prefers AWS PrivateLink but can use public APIs if needed.

Example

The following code example assigns the network policy my_network_policy to the serviceaccount1 service account:

ALTER SERVICE ACCOUNT "serviceaccount1" SET NETWORK_POLICY = "my_network_policy";

ALTER SERVICE ACCOUNT RENAME TO

Renames a service account.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> RENAME TO <new_service_account_name>;

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to rename.
`<new_service_account_name>`	The new name of the service account.

Example

The following command will rename the service account “machine_user” to “ai_agent”.

ALTER SERVICE ACCOUNT "machine_user" RENAME TO "ai_agent";

ALTER SERVICE ACCOUNT OWNER TO

Changes the owner of a service account.

You can view the current owner in the service_account_owner column of the information_schema.service_accounts view.

For more information, see ownership.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> OWNER TO <identity>

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to change the owner of.
`<identity>`	The new owner of the service account, which can be the name of another login or service account.

On this page

ALTER SERVICE ACCOUNT SET
Syntax
Parameters
Connection Preferences
Example
ALTER SERVICE ACCOUNT RENAME TO
Syntax
Parameters
Example
ALTER SERVICE ACCOUNT OWNER TO
Syntax
Parameters

ALTER SERVICE ACCOUNT SET

Updates the configuration of the specified service account.

For more information, see Service accounts.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> SET 
      [ NETWORK_POLICY = <network_policy_name> | DEFAULT ] 
      [ DESCRIPTION = <description> | DEFAULT ]
      [ IS_ORGANIZATION_ADMIN = { TRUE | FALSE } ]
      [ CONNECTION_PREFERENCE = { PUBLIC_ONLY | PRIVATE_ONLY | PREFER_PUBLIC | PREFER_PRIVATE | DEFAULT } ]
      [ IS_ENABLED = { TRUE | FALSE } ]

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to edit.
`<description>`	An optional description for the service account.
`<network_policy_name>`	An optional parameter to define the network policy to link to the edited service account. Specifying `DEFAULT` will detach any linked network policy.
`IS_ORGANIZATION_ADMIN`	A `BOOLEAN` value specifying if the service account is an organization admin. By default, this value is `FALSE`.
`IS_ENABLED`	A `BOOLEAN` value specifying whether authentication with this service account should be possible. Disable the service account to prevent access without dropping it.
`CONNECTION_PREFERENCE`	Defines how the service account connects to Firebolt. The default value is `PREFER_PUBLIC` if not specified. See Connection preferences for details.
`<new_name>`	The new name of the service account. Must start with a letter and may contain only alphanumeric, digit, or underscore (_) characters.

Connection Preferences

The CONNECTION_PREFERENCE parameter determines how a service account accesses Firebolt:

PUBLIC_ONLY: Allows access only through public APIs.
PRIVATE_ONLY: Allows access only through AWS PrivateLink.
PREFER_PUBLIC (Default): Prefers public APIs but can use AWS PrivateLink if needed.
PREFER_PRIVATE: Prefers AWS PrivateLink but can use public APIs if needed.

Example

The following code example assigns the network policy my_network_policy to the serviceaccount1 service account:

ALTER SERVICE ACCOUNT "serviceaccount1" SET NETWORK_POLICY = "my_network_policy";

ALTER SERVICE ACCOUNT RENAME TO

Renames a service account.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> RENAME TO <new_service_account_name>;

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to rename.
`<new_service_account_name>`	The new name of the service account.

Example

The following command will rename the service account “machine_user” to “ai_agent”.

ALTER SERVICE ACCOUNT "machine_user" RENAME TO "ai_agent";

ALTER SERVICE ACCOUNT OWNER TO

Changes the owner of a service account.

You can view the current owner in the service_account_owner column of the information_schema.service_accounts view.

For more information, see ownership.

Syntax

ALTER SERVICE ACCOUNT <service_account_name> OWNER TO <identity>

Parameters

Parameter	Description
`<service_account_name>`	The name of the service account to change the owner of.
`<identity>`	The new owner of the service account, which can be the name of another login or service account.

On this page

ALTER SERVICE ACCOUNT SET
Syntax
Parameters
Connection Preferences
Example
ALTER SERVICE ACCOUNT RENAME TO
Syntax
Parameters
Example
ALTER SERVICE ACCOUNT OWNER TO
Syntax
Parameters

​ALTER SERVICE ACCOUNT SET

​Syntax

​Parameters

​Connection Preferences

​Example

​ALTER SERVICE ACCOUNT RENAME TO

​Syntax

​Parameters

​Example

​ALTER SERVICE ACCOUNT OWNER TO

​Syntax

​Parameters

Firebolt Core

​ALTER SERVICE ACCOUNT SET

​Syntax

​Parameters

​Connection Preferences

​Example

​ALTER SERVICE ACCOUNT RENAME TO

​Syntax

​Parameters

​Example

​ALTER SERVICE ACCOUNT OWNER TO

​Syntax

​Parameters

ALTER SERVICE ACCOUNT SET

Syntax

Parameters

Connection Preferences

Example

ALTER SERVICE ACCOUNT RENAME TO

Syntax

Parameters

Example

ALTER SERVICE ACCOUNT OWNER TO

Syntax

Parameters

ALTER SERVICE ACCOUNT SET

Syntax

Parameters

Connection Preferences

Example

ALTER SERVICE ACCOUNT RENAME TO

Syntax

Parameters

Example

ALTER SERVICE ACCOUNT OWNER TO

Syntax

Parameters