Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Snowflake Exam ADA-C01 Topic 4 Question 8 Discussion

Actual exam question for Snowflake's ADA-C01 exam
Question #: 8
Topic #: 4
[All ADA-C01 Questions]

What is required for stages, without credentials, to limit data exfiltration after a storage integration and associated stages are created?

Show Suggested Answer Hide Answer
Suggested Answer: D

According to the Snowflake documentation1, stages without credentials are a way to create external stages that use storage integrations to access data files in cloud storage without providing any credentials to Snowflake. Storage integrations are objects that define a trust relationship between Snowflake and a cloud provider, allowing Snowflake to authenticate and authorize access to the cloud storage. To limit data exfiltration after a storage integration and associated stages are created, the following account-level parameters can be set:

* REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_CREATION: This parameter enforces that all external stages must be created using a storage integration. This prevents users from creating external stages with inline credentials or URLs that point to unauthorized locations.

* REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_OPERATION: This parameter enforces that all operations on external stages, such as PUT, GET, COPY, and LIST, must use a storage integration. This prevents users from performing operations on external stages with inline credentials or URLs that point to unauthorized locations.

* PREVENT_UNLOAD_TO_INLINE_URL: This parameter prevents users from unloading data from Snowflake tables to inline URLs that do not use a storage integration. This prevents users from exporting data to unauthorized locations.

Therefore, the correct answer is option D, which sets all these parameters to true. Option A is incorrect because it sets PREVENT_UNLOAD_TO_INLINE_URL to false, which allows users to unload data to inline URLs that do not use a storage integration. Option B is incorrect because it sets both REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_CREATION and REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_OPERATION to false, which allows users to create and operate on external stages without using a storage integration. Option C is incorrect because it sets all the parameters to false, which does not enforce any restrictions on data exfiltration.


Contribute your Thoughts:

Shenika
5 months ago
Let's discuss this further before the exam, so we can make sure we understand the requirements correctly.
upvoted 0 times
...
Jina
5 months ago
Hmm, maybe option B is the better choice then.
upvoted 0 times
...
Felicidad
5 months ago
I'm not sure about that. I think we should also set PREVENT_UNLOAD_TO_INLINE_URL to true to further limit data exfiltration.
upvoted 0 times
...
Shenika
5 months ago
So, option A seems to be the correct choice then.
upvoted 0 times
...
Jina
5 months ago
Yeah, I agree. I believe we should set REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_CREATION and REQUIRE_STORAGE_INTEGRATION_FOR_STAGE_OPERATION to true.
upvoted 0 times
...
Shenika
5 months ago
I think for limiting data exfiltration after storage integration, we need to set certain requirements.
upvoted 0 times
...
Boris
6 months ago
Candidate 2: It's important to carefully consider all the options and their implications before choosing the best answer for this question.
upvoted 0 times
...
Melodie
6 months ago
Candidate 1: That's a valid point, maybe C is the right answer depending on the specific requirements of the situation.
upvoted 0 times
...
My
6 months ago
Candidate 4: I'm not sure, but I think C could be correct if we don't actually need storage integration for stage creation and operation.
upvoted 0 times
...
Raina
6 months ago
Candidate 3: Option B also looks promising as it sets 'PREVENT_UNLOAD_TO_INLINE_URL' to true, which could help limit data exfiltration.
upvoted 0 times
...
Keneth
7 months ago
Candidate 2: I disagree, I believe the correct answer is D because it includes all the necessary settings to prevent data exfiltration.
upvoted 0 times
...
Alberto
7 months ago
Candidate 1: I think the correct answer is A because requiring storage integration for stage creation and operation would limit data exfiltration.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77