Snowflake SnowPro Advanced Administrator ADA-C02 - SnowPro Advanced Administrator ADA-C02 Exam
Page: 2 / 13
Total 62 questions
Question #6 (Topic: Topic 1, Snowflake Security, RBAC, and User Administration
)
What is required for stages, without credentials, to limit data exfiltration after a storage Integration and associated stages are created?
A. 
B. 
C. 
D. 
B.
C.
D.
Answer: D
Question #7 (Topic: Topic 1, Snowflake Security, RBAC, and User Administration
)
Which Snowflake objects can be managed using SCIM integration? (Choose two.)
A. Stages
B. Users
C. Warehouses
D. Roles
E. Shares
Answer: BD
Question #8 (Topic: Topic 1, Snowflake Security, RBAC, and User Administration
)
The following commands were executed:
Grant usage on database PROD to role PROD_ANALYST;
Grant usage on database PROD to role PROD_SUPERVISOR;
Grant ALL PRIVILEGES on schema PROD.WORKING to role PROD_ANALYST;
Grant ALL PRIVILEGES on schema PROD.WORKING to role PROD_SUPERVISOR;
Grant role PROD_ANALYST to user A;
Grant role PROD_SUPERVISOR to user B;
What authority does each user have on the WORKING schema?
Grant usage on database PROD to role PROD_ANALYST;
Grant usage on database PROD to role PROD_SUPERVISOR;
Grant ALL PRIVILEGES on schema PROD.WORKING to role PROD_ANALYST;
Grant ALL PRIVILEGES on schema PROD.WORKING to role PROD_SUPERVISOR;
Grant role PROD_ANALYST to user A;
Grant role PROD_SUPERVISOR to user B;
What authority does each user have on the WORKING schema?
A. Only user B can create tables, because all privileges were transferred to PROD_SUPERVISOR.
B. Tables created by either user A or user B will be visible to both users.
C. All existing tables in schema PROD.WORKING will be visible to both users.
D. Both user A and user B can create tables in the PROD.WORKING schema.
Answer: D
Question #9 (Topic: Topic 1, Snowflake Security, RBAC, and User Administration
)
What steps are required to set up OKTAAPI token integration in Snowflake?
A. 1. grant role okta_provisioner to role ACCOUNTADMIN;
2. create or replace security integration okta_provisioning
type = scim
scim_client = 'okta'
run_as_role = 'OKTA_PROVISIONER';
3. Update these steps every 12 months. B. 1. use role ACCOUNTADMIN;
2. select system$ generate_scim_access_token ('OKTA_PROVISIONING');
3. Update these steps every 12 months. C. 1. create or replace security integration okta_provisioning
type = scim
scim client = 'okta'
run_as_role = 'OKTA_PROVISIONER';
2. Update this step every 6 months. D. 1. use role ACCOUNTADMIN;
2. select system$ generate_scim_access_token ('OKTA_PROVISIONING');
3. Update these steps every 6 months.
2. create or replace security integration okta_provisioning
type = scim
scim_client = 'okta'
run_as_role = 'OKTA_PROVISIONER';
3. Update these steps every 12 months. B. 1. use role ACCOUNTADMIN;
2. select system$ generate_scim_access_token ('OKTA_PROVISIONING');
3. Update these steps every 12 months. C. 1. create or replace security integration okta_provisioning
type = scim
scim client = 'okta'
run_as_role = 'OKTA_PROVISIONER';
2. Update this step every 6 months. D. 1. use role ACCOUNTADMIN;
2. select system$ generate_scim_access_token ('OKTA_PROVISIONING');
3. Update these steps every 6 months.
Answer: D
Question #10 (Topic: Topic 1, Snowflake Security, RBAC, and User Administration
)
Which command can temporarily disable Multi-factor Authentication (MFA) for the Snowflake username user1 for 24 hours?
A. alter user user1 set MINS_TO_BYPASS_MFA=1440;
B. alter user user1 set DISABLE_MFA=1440;
C. alter user user1 set TEMPORARY_MFA_BYPASS=1440;
D. alter user user1 set HOURS_TO_BYPASS_MFA=24;
Answer: A
