Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Databricks Exam Databricks-Certified-Professional-Data-Engineer Topic 5 Question 26 Discussion

Actual exam question for Databricks's Databricks-Certified-Professional-Data-Engineer exam
Question #: 26
Topic #: 5
[All Databricks-Certified-Professional-Data-Engineer Questions]

The data architect has decided that once data has been ingested from external sources into the

Databricks Lakehouse, table access controls will be leveraged to manage permissions for all production tables and views.

The following logic was executed to grant privileges for interactive queries on a production database to the core engineering group.

GRANT USAGE ON DATABASE prod TO eng;

GRANT SELECT ON DATABASE prod TO eng;

Assuming these are the only privileges that have been granted to the eng group and that these users are not workspace administrators, which statement describes their privileges?

Show Suggested Answer Hide Answer
Suggested Answer: D

The GRANT USAGE ON DATABASE prod TO eng command grants the eng group the permission to use the prod database, which means they can list and access the tables and views in the database. The GRANT SELECT ON DATABASE prod TO eng command grants the eng group the permission to select data from the tables and views in the prod database, which means they can query the data using SQL or DataFrame API. However, these commands do not grant the eng group any other permissions, such as creating, modifying, or deleting tables and views, or defining custom functions. Therefore, the eng group members are able to query all tables and views in the prod database, but cannot create or edit anything in the database.Reference:

Grant privileges on a database: https://docs.databricks.com/en/security/auth-authz/table-acls/grant-privileges-database.html

Privileges you can grant on Hive metastore objects: https://docs.databricks.com/en/security/auth-authz/table-acls/privileges.html


by Yvette at Nov 17, 2024, 05:16 PM

Limited Time Offer

25%

Off

Get Premium Databricks-Certified-Professional-Data-Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Carman
6 months ago
I'm not sure, but I think the answer might be E.
upvoted 0 times
...
Isaiah
6 months ago
I disagree, I believe the answer is D.
upvoted 0 times
...
Garry
6 months ago
I think the answer is C.
upvoted 0 times
...
Micheline
6 months ago
D has to be the answer. Granting 'SELECT' without 'CREATE' or 'ALTER' is just cruel, like giving a dog a treat but not letting it play fetch. Poor engineers, they're basically just data janitors at this point.
upvoted 0 times
...
Cristal
6 months ago
Option D sounds like the winner to me. I mean, if they can't even create new tables or views, what's the point of being in the 'core engineering group'? They must be feeling pretty powerless right now.
upvoted 0 times
Anglea
5 months ago
Definitely, it helps maintain data integrity and security.
upvoted 0 times
...
Jerry
5 months ago
It's important to have some level of control over who can create or edit tables.
upvoted 0 times
...
Jess
5 months ago
Yeah, it does seem like they have some restrictions in place.
upvoted 0 times
...
Jacklyn
6 months ago
I agree, option D seems to limit their abilities quite a bit.
upvoted 0 times
...
...
Chantay
7 months ago
Hmm, this is a tricky one. I was going to say C, but after re-reading the question, I think D is the right answer. They can't do anything except view the data, which is a bit disappointing for the core engineering group.
upvoted 0 times
Ernest
5 months ago
Definitely. It's better to have limited access than risk unauthorized modifications to the data.
upvoted 0 times
...
Sherita
6 months ago
It's important to have strict access controls in place to protect the data in the database.
upvoted 0 times
...
Domingo
6 months ago
Yeah, I agree. It seems like they have limited permissions despite being part of the core engineering group.
upvoted 0 times
...
Leanna
6 months ago
I think D is the correct answer. They can query tables but not create or edit anything in the database.
upvoted 0 times
...
...
Valda
7 months ago
I think the correct answer here is D. The granted privileges only allow the eng group to query all tables and views in the prod database, but they don't have the ability to create, edit, or modify anything.
upvoted 0 times
Iluminada
6 months ago
Exactly. It's important to manage permissions carefully in a production environment.
upvoted 0 times
...
Paris
6 months ago
So they can't create new tables or views, just view existing data.
upvoted 0 times
...
Santos
7 months ago
That makes sense. They can query tables but not make any changes.
upvoted 0 times
...
Danilo
7 months ago
I think the correct answer here is D.
upvoted 0 times
...
...

Save Cancel