New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Databricks Certified Data Engineer Professional Exam - Topic 5 Question 26 Discussion

Actual exam question for Databricks's Databricks Certified Data Engineer Professional exam
Question #: 26
Topic #: 5
[All Databricks Certified Data Engineer Professional Questions]

The data architect has decided that once data has been ingested from external sources into the

Databricks Lakehouse, table access controls will be leveraged to manage permissions for all production tables and views.

The following logic was executed to grant privileges for interactive queries on a production database to the core engineering group.

GRANT USAGE ON DATABASE prod TO eng;

GRANT SELECT ON DATABASE prod TO eng;

Assuming these are the only privileges that have been granted to the eng group and that these users are not workspace administrators, which statement describes their privileges?

Show Suggested Answer Hide Answer
Suggested Answer: D

The GRANT USAGE ON DATABASE prod TO eng command grants the eng group the permission to use the prod database, which means they can list and access the tables and views in the database. The GRANT SELECT ON DATABASE prod TO eng command grants the eng group the permission to select data from the tables and views in the prod database, which means they can query the data using SQL or DataFrame API. However, these commands do not grant the eng group any other permissions, such as creating, modifying, or deleting tables and views, or defining custom functions. Therefore, the eng group members are able to query all tables and views in the prod database, but cannot create or edit anything in the database.Reference:

Grant privileges on a database: https://docs.databricks.com/en/security/auth-authz/table-acls/grant-privileges-database.html

Privileges you can grant on Hive metastore objects: https://docs.databricks.com/en/security/auth-authz/table-acls/privileges.html


by Yvette at Nov 17, 2024, 05:16 PM

Limited Time Offer

25%

Off

Get Premium Databricks Certified Data Engineer Professional Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Yuette
3 months ago
Just listing tables without seeing results sounds weird.
upvoted 0 times
...
Susana
3 months ago
I thought they could modify tables too? Seems odd.
upvoted 0 times
...
Kristian
3 months ago
Wait, how can they query but not see results? That doesn't add up.
upvoted 0 times
...
Hermila
4 months ago
Definitely D, makes sense with the permissions given.
upvoted 0 times
...
Shawna
4 months ago
They can query all tables but can't create or edit anything.
upvoted 0 times
...
Charolette
4 months ago
I’m not entirely sure, but I feel like they can query the tables with SELECT, so maybe D is correct? I just hope I remember the details right!
upvoted 0 times
...
Chauncey
4 months ago
This question feels similar to one we practiced where we discussed permissions. I think option D sounds right since they can query but not create or edit.
upvoted 0 times
...
Mammie
4 months ago
I think the SELECT privilege means they can query the tables, but I'm confused about whether they can modify anything.
upvoted 0 times
...
Ciara
5 months ago
I remember that granting USAGE allows users to access the database, but I'm not sure if they can see query results without SELECT on tables.
upvoted 0 times
...
Filiberto
5 months ago
I'm feeling pretty confident about this one. Based on the information provided, option D seems to be the correct answer. The eng group members can query the tables and views in the prod database, but they don't have any administrative or modification privileges.
upvoted 0 times
...
Blondell
5 months ago
I'm a bit confused here. The wording in the options is a bit tricky, and I'm not sure if I fully understand the implications of the USAGE and SELECT privileges. I'll need to double-check my understanding before selecting an answer.
upvoted 0 times
...
Lauryn
5 months ago
I think the answer is D. The question says the eng group members are not workspace administrators, so they can't assign permissions to other users or groups. And the privileges granted only allow them to query the tables and views, not create or modify anything.
upvoted 0 times
...
Theron
5 months ago
Okay, let's see. The question states that the only privileges granted are USAGE and SELECT on the prod database. So the eng group members should have read-only access to the tables and views in that database.
upvoted 0 times
...
Denise
5 months ago
Hmm, this one seems a bit tricky. I'll need to carefully read through the question and the options to understand the exact permissions granted to the eng group.
upvoted 0 times
...
Carman
1 year ago
I'm not sure, but I think the answer might be E.
upvoted 0 times
...
Isaiah
1 year ago
I disagree, I believe the answer is D.
upvoted 0 times
...
Garry
1 year ago
I think the answer is C.
upvoted 0 times
...
Micheline
1 year ago
D has to be the answer. Granting 'SELECT' without 'CREATE' or 'ALTER' is just cruel, like giving a dog a treat but not letting it play fetch. Poor engineers, they're basically just data janitors at this point.
upvoted 0 times
...
Cristal
1 year ago
Option D sounds like the winner to me. I mean, if they can't even create new tables or views, what's the point of being in the 'core engineering group'? They must be feeling pretty powerless right now.
upvoted 0 times
Anglea
1 year ago
Definitely, it helps maintain data integrity and security.
upvoted 0 times
...
Jerry
1 year ago
It's important to have some level of control over who can create or edit tables.
upvoted 0 times
...
Jess
1 year ago
Yeah, it does seem like they have some restrictions in place.
upvoted 0 times
...
Jacklyn
1 year ago
I agree, option D seems to limit their abilities quite a bit.
upvoted 0 times
...
...
Chantay
1 year ago
Hmm, this is a tricky one. I was going to say C, but after re-reading the question, I think D is the right answer. They can't do anything except view the data, which is a bit disappointing for the core engineering group.
upvoted 0 times
Ernest
1 year ago
Definitely. It's better to have limited access than risk unauthorized modifications to the data.
upvoted 0 times
...
Sherita
1 year ago
It's important to have strict access controls in place to protect the data in the database.
upvoted 0 times
...
Domingo
1 year ago
Yeah, I agree. It seems like they have limited permissions despite being part of the core engineering group.
upvoted 0 times
...
Leanna
1 year ago
I think D is the correct answer. They can query tables but not create or edit anything in the database.
upvoted 0 times
...
...
Valda
1 year ago
I think the correct answer here is D. The granted privileges only allow the eng group to query all tables and views in the prod database, but they don't have the ability to create, edit, or modify anything.
upvoted 0 times
Iluminada
1 year ago
Exactly. It's important to manage permissions carefully in a production environment.
upvoted 0 times
...
Paris
1 year ago
So they can't create new tables or views, just view existing data.
upvoted 0 times
...
Santos
1 year ago
That makes sense. They can query tables but not make any changes.
upvoted 0 times
...
Danilo
1 year ago
I think the correct answer here is D.
upvoted 0 times
...
...

Save Cancel