Free SnowPro Advanced: Administrator Certification ADA-C01 Exam Practice Test

When a role is dropped, which role inherits ownership of objects owned by the dropped role?

• The SYSADMIN role
• The role above the dropped role in the RBAC hierarchy
• The role executing the command
• The SECURITYADMIN role

What are characteristics of data replication in Snowflake? (Select THREE).

• The ALTER DATABASE ... ENABLE REPLICATION TO ACCOUNTS command must be issued from the primary account.
• Users must be granted REPLICATIONADMIN privileges in order to enable replication.
• To start replication run the ALTER DATABASE ... REFRESH command on the account where thesecondary database resides.
• Replication can only occur within the same cloud provider.
• Databases created from shares can be replicated.
• Users can have unlimited primary databases and they can be replicated to an unlimited number of accounts if all accounts are within the same organization.

An Administrator has been asked to support the company's application team need to build a loyalty program for its customers. The customer table contains PersonalIdentifiable Information (PII), and the application team's role is DEVELOPER.CREATE TABLE customer_data ( customer_first_name string, customer_last_name string, customer_address string, customer_email string,... some other columns,);The application team would like to access the customer data, but the email field must be obfuscated.How can the Administrator protect the sensitive information, while maintaining the usability of the data?

• Create a view on the customer_data table to eliminate the email column by omitting it from the SELECT clause. Grant the role DEVELOPER access to the view.
• Create a separate table for all the non-Pll columns and grant the role DEVELOPER access to the new table.
• Use the CURRENT_ROLE and CURRENT_USER context functions to integrate with a secure view and filter the sensitive data.
• Use the CURRENT_ROLE context function to integrate with a masking policy on the fields that contain sensitive data.

A Snowflake account is configured with SCIM provisioning for user accounts and has bi-directional synchronization for user identities. An Administrator with access to SECURITYADMIN uses the Snowflake UI to create a user by issuing the following commands:use role USERADMIN;create or replace role DEVELOPER_ROLE;create user PTORRES PASSWORD = 'hello world!' MUST_CHANGE_PASSWORD = FALSE default_role = DEVELOPER_ROLE;The new user named PTORRES successfully logs in, but sees a default role of PUBLIC in the web UI. When attempted, the following command fails:use DEVELOPER_ROLE;Why does this command fail?

• The DEVELOPER_ROLE needs to be granted to SYSADMIN before user PTORRES will be able to use the role.
• The new role can only take effect after USERADMIN has logged out.
• USERADMIN needs to explicitly grant the DEVELOPER_ROLE to the new USER.
• The new role will only take effect once the identity provider has synchronized by way of SCIM with the Snowflake account.

An organization's sales team leverages this Snowflake query a few times a day: SELECT CUSTOMER ID, CUSTOMER_NAME, ADDRESS, PHONE NOFROM CUSTOMERSWHERE LAST UPDATED BETWEEN TO_DATE (CURRENT_TIMESTAMP) AND (TO_DATE (CURRENT_TIMESTAMP) -7);What can the Snowflake Administrator do to optimize the use of persisted query results whenever possible?

• Wrap the query in a User-Defined Function (UDF) to match syntax execution.
• Assign everyone on the sales team to the same virtual warehouse.
• Assign everyone on the sales team to the same security role.
• Leverage the CURRENT_DATE function for date calculations.

A team of developers created a new schema for a new project. The developers are assigned the role DEV_TEAM which was set up using the following statements:USE ROLE SECURITYADMIN; CREATE ROLE DEV TEAM;GRANT USAGE, CREATE SCHEMA ON DATABASE DEV_DB01 TO ROLE DEV_TEAM; GRANT USAGE ON WAREHOUSE DEV_WH TO ROLE DEV_TEAM;Each team member's access is set up using the following statements: USE ROLE SECURITYADMIN;CREATE ROLE JDOE_PROFILE;CREATE USER JDOE LOGIN NAME = 'JDOE' DEFAULT_ROLE='JDOE_PROFILE'; GRANT ROLE JDOE_PROFILE TO USER JDOE;GRANT ROLE DEV_TEAM TO ROLE JDOE_PROFILE;New tables created by any of the developers are not accessible by the team as a whole. How can an Administrator address this problem?

• Assign ownership privilege to DEV_TEAM on the newly-created schema.
• Assign usage privilege on the virtual warehouse DEV_WH to the role JDOE_PROFILE.
• Set up future grants on the newly-created schemas.
• Set up the new schema as a managed-access schema.

Which Snowflake objects can be managed using SCIM integration? (Select TWO).

• Stages
• Users
• Warehouses
• Roles
• Shares

Which command can temporarily disable Multi-factor Authentication (MFA) for the Snowflake username user1 for 24 hours?

• alter user userl set MINS_TO_BYPASS_MFA=1440;
• alter user userl set DISABLE_MFA=1440;
• alter user userl set TEMPORARY_MFA_BYPASS=1440;
• alter user userl set HOURS_TO_BYPASS_MFA=24;

Which type of listing in the Snowflake Marketplace can be added and queried immediately?

• Monetized listing
• Standard listing
• Regional listing
• Personalized listing

When adding secure views to a share in Snowflake, which function is needed to authorize users from another account to access rows in a base table?

• CURRENT_ROLE
• CURRENT ACCOUNT
• CURRENT_USER
• CURRENT_CLIENT