- (Topic 6)
Which feature of Snowflake's Continuous Data Protection (CDP) has associated costs?
Correct Answer:
A
Snowflake's Continuous Data Protection (CDP) features encompass several mechanisms designed to protect data and ensure its availability and recoverability. Among these features, the one that has associated costs is Fail-safe.
Fail-safe is an additional layer of protection that kicks in after the Time Travel period expires. While Time Travel allows users to access historical data within a defined retention period (which can vary from 1 to 90 days depending on the Snowflake edition), Fail-safe provides a further 7 days (for a total of 7 additional days beyond the Time Travel period) during which Snowflake retains the data. This period is primarily intended for Snowflake's internal operations to recover data in the event of extreme scenarios, such as significant operational failures, and is not directly accessible by customers for data recovery purposes. The associated costs with Fail-safe arise because Snowflake continues to store the data beyond the customer-specified Time Travel period, thereby incurring additional storage costs. It's important to note that while users do not incur direct costs for enabling Fail-safe (as it is an automatic feature of Snowflake), the extended storage of data during this period contributes to overall storage costs.
References:
✑ Snowflake Documentation on Continuous Data Protection: Continuous Data Protection (CDP)
✑ Snowflake Documentation on Fail-safe: Understanding Fail-safe
- (Topic 3)
Which of the following practices are recommended when creating a user in Snowflake? (Choose two.)
Correct Answer:
BC
- (Topic 3)
Which features make up Snowflake's column level security? (Select TWO).
Correct Answer:
BC
Snowflake??s column level security features include Dynamic Data Masking and External Tokenization. Dynamic Data Masking uses masking policies to selectively mask data at query time, while External Tokenization allows for the tokenization of data before loading it into Snowflake and detokenizing it at query runtime5.
- (Topic 5)
A user wants to add additional privileges to the system-defined roles for their virtual warehouse. How does Snowflake recommend they accomplish this?
Correct Answer:
A
Snowflake recommends enhancing the granularity and management of privileges by creating and utilizing custom roles. When additional privileges are needed beyond those provided by the system-defined roles for a virtual warehouse or any other resource, these privileges should be granted to a custom role. This approach allows for more precise control over access rights and the ability to tailor permissions to the specific needs of different user groups or applications within the organization, while also maintaining the integrity and security model of system-defined roles.
References:
✑ Snowflake Documentation: Roles and Privileges
- (Topic 3)
When would Snowsight automatically detect if a target account is in a different region and enable cross-cloud auto-fulfillment?
Correct Answer:
A
Snowsight automatically detects if a target account is in a different region and enables cross-cloud auto-fulfillment when using a paid listing on the Snowflake Marketplace. This feature allows Snowflake to manage the replication of data products to consumer regions as needed, without manual intervention1.