New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Snowflake ARA-R01 Exam - Topic 3 Question 5 Discussion

Actual exam question for Snowflake's ARA-R01 exam
Question #: 5
Topic #: 3
[All ARA-R01 Questions]

Role A has the following permissions:

. USAGE on db1

. USAGE and CREATE VIEW on schemal in db1

. SELECT on tablel in schemal

Role B has the following permissions:

. USAGE on db2

. USAGE and CREATE VIEW on schema2 in db2

. SELECT on table2 in schema2

A user has Role A set as the primary role and Role B as a secondary role.

What command will fail for this user?

Show Suggested Answer Hide Answer
Suggested Answer: B

This command will fail because while the user has USAGE permission on db2 and schema2 through Role B, and can create a view in schema2, they do not have SELECT permission on db1.schemal.table1 with Role B. Since Role A, which has SELECT permission on db1.schemal.table1, is not the currently active role when the view v2 is being created in db2.schema2, the user does not have the necessary permissions to read from db1.schemal.table1 to create the view. Snowflake's security model requires that the active role have all necessary permissions to execute the command.


by Bea at Apr 20, 2024, 05:48 PM

Limited Time Offer

25%

Off

Get Premium ARA-R01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Clement
3 months ago
Just a fact, Role A has no permissions on db2.
upvoted 0 times
...
Fanny
3 months ago
B looks tricky, but I think it’s fine.
upvoted 0 times
...
Mila
3 months ago
Wait, why can't they access db2? Seems odd.
upvoted 0 times
...
Theodora
4 months ago
Totally agree, D is the one that won't work.
upvoted 0 times
...
Tayna
4 months ago
Role A can't access db2, so D will fail.
upvoted 0 times
...
Soledad
4 months ago
I’m leaning towards option B failing because it uses db2, but I’m not confident about the specifics of the permissions.
upvoted 0 times
...
Linette
4 months ago
I practiced a similar question, and I feel like option D might fail since it tries to select from a table in db2 without the right permissions.
upvoted 0 times
...
Rana
4 months ago
I'm not entirely sure, but I remember something about needing permissions on both databases for creating views.
upvoted 0 times
...
Eva
5 months ago
I think the command that will fail is A because Role A doesn't have access to db2.
upvoted 0 times
...
Sylvie
5 months ago
Hmm, I'm not sure. I think I need to double-check the permissions for each role and make sure I fully understand how the primary and secondary roles interact. This is a tricky one.
upvoted 0 times
...
Devora
5 months ago
I'm pretty confident that option B is the correct answer. The user doesn't have permission to create a view that selects from db1.schema1.table1 since their primary role only gives them SELECT on that table, not CREATE VIEW.
upvoted 0 times
...
Jerilyn
5 months ago
Okay, I think I've got this. The user has Role A as the primary role, which gives them USAGE on db1, CREATE VIEW on schema1 in db1, and SELECT on table1 in schema1. But they also have Role B as a secondary role, which gives them USAGE on db2, CREATE VIEW on schema2 in db2, and SELECT on table2 in schema2.
upvoted 0 times
...
Tyisha
5 months ago
Hmm, I'm a bit confused by the different databases and schemas. Let me re-read the question and try to break it down step-by-step.
upvoted 0 times
...
Ezekiel
5 months ago
This looks like a tricky permissions question. I'll need to carefully analyze the roles and permissions to determine which command will fail.
upvoted 0 times
...
Antione
5 months ago
This looks straightforward, I'll just need to identify the three key benefits of Tanzu Mission Control from the options provided.
upvoted 0 times
...
Brandon
5 months ago
I feel pretty confident about this one. The global and local commodity assignments are the tricky part, but I think I understand the concept.
upvoted 0 times
...
Rosalind
5 months ago
This looks like a tricky one. I'd want to carefully review the logs and file details to determine if this is a legitimate activity or a potential security incident.
upvoted 0 times
...
Dorothy
2 years ago
I'm confused, but if Role A is primary, shouldn't db2 commands be tricky? I'll go with A failing.
upvoted 0 times
...
Tyra
2 years ago
I think D won't fail since it's only selecting from db2. My guess is A or B as well.
upvoted 0 times
...
Reita
2 years ago
But A involves using db1 and accessing table2 in db2.
upvoted 0 times
...
Tula
2 years ago
B sounds right. Role A doesn't have permissions on db2.
upvoted 0 times
...
Aretha
2 years ago
Really? I'm leaning towards B because it involves accessing db1 from db2.
upvoted 0 times
...
Reita
2 years ago
This question is tricky. I think the command that will fail is A.
upvoted 0 times
...
Mona
2 years ago
That's correct. The user does not have permission to select from different databases
upvoted 0 times
...
Mila
2 years ago
The command that will fail is option C
upvoted 0 times
...

Save Cancel