SOL-C01 · Question #43
SOL-C01 Question #43: Real Exam Question with Answer & Explanation
The correct answer is E: ALTER TABLE SALES_TABLE MODIFY COLUMN email. The correct approach involves applying the masking policy to the email' column using SALTER TABLE ... MODIFY COLUMN SET MASKING POLICY. The 'GRANT SELECT statement allows the 'REPORTING_TEAW to query the 'SALES_TABLE. There is no need to grant 'APPLY MASKING POLICY to the REPORTI
Question
You are designing a data warehouse in Snowflake. You need to ensure that users in the 'REPORTING TEAM' can only view data in the 'SALES TABLE table after it has been masked to hide sensitive information. You have implemented a masking policy called 'EMAIL MASK' that replaces email addresses with asterisks. How do you apply the masking policy and grant the correct privileges to the 'REPORTING TEAM' role?
Options
- AGRANT APPLY MASKING POLICY ON ACCOUNT TO ROLE REPORTING_TEAM;
- BGRANT UNMASK ON TABLE SALES_TABLE TO ROLE REPORTING_TEAM;
- CCREATE MASKING POLICY EMAIL_MASK
- DALTER TABLE SALES_TABLE MODIFY COLUMN email SET MASKING POLICY EMAIL_MASK;
- EALTER TABLE SALES_TABLE MODIFY COLUMN email
Explanation
The correct approach involves applying the masking policy to the email' column using SALTER TABLE ... MODIFY COLUMN SET MASKING POLICY. The 'GRANT SELECT statement allows the 'REPORTING_TEAW to query the 'SALES_TABLE. There is no need to grant 'APPLY MASKING POLICY to the REPORTING TEAM' role, as that privilege is needed for creating or altering masking policies. The `CREATE MASKING POLICY' in option C is redundant since the question states the policy already exists. GRANT UNMASK' would defeat the purpose of the
Topics
Community Discussion
No community discussion yet for this question.