SOL-C01 Question #44: Real Exam Question with Answer & Explanation

Question

A company wants to implement row-level security in their Snowflake data warehouse to restrict access to sales data based on the user's region. They have a table 'SALES with a 'REGION' column and want to ensure that users can only see sales data for their assigned region. They plan to use row access policies for this. Which of the following steps are REQUIRED to implement this row-level security?

Options

• ACreate a row access policy that references a mapping table or function to determine the user's
• BCreate a row access policy that references a mapping table or function to determine the user's
• CCreate a view on top of the 'SALES' table with a 'WHERE clause that filters data based on the
• DCreate a row access policy that directly embeds the region filtering logic, and then apply the policy
• ECreate a row access policy that references a mapping table or function to determine the user's

Explanation

Row access policies implement row-level security. The policy needs to reference a mapping table or function to determine allowed regions. Applying the policy to the table enforces the security. Users don't need the 'APPLY ROW ACCESS POLICY privilege; this is for managing the policies, not accessing the data secured by them. Creating a view (option C) is an alternative, but row access policies are a dedicated mechanism. Embedded logic (option D) is less flexible and maintainable. Option E is best because after you create the row access policy and apply it to the sales table, any user with select on the sales table will have the Row Access Policy applied to

No community discussion yet for this question.