Certified Data Engineer Professional Exam QuestionsBrowse all questions from this exam
Go to Exam

Certified Data Engineer Professional Exam - Question 84

The data architect has decided that once data has been ingested from external sources into the

Databricks Lakehouse, table access controls will be leveraged to manage permissions for all production tables and views.

The following logic was executed to grant privileges for interactive queries on a production database to the core engineering group.

GRANT USAGE ON DATABASE prod TO eng;

GRANT SELECT ON DATABASE prod TO eng;

Assuming these are the only privileges that have been granted to the eng group and that these users are not workspace administrators, which statement describes their privileges?

Show Answer
Correct Answer: DE

Group members have been granted USAGE and SELECT privileges on the prod database. The USAGE privilege allows them to access the database context and list tables, while the SELECT privilege allows them to run queries on tables and views. They do not have permissions to create or modify tables or views. Thus, they are only able to query all tables and views in the prod database, but cannot create or edit anything in the database.

Discussion

6 comments
Sign in to comment
sturcuOption: D
Oct 25, 2023

Usage and Select ....sa abasically they can only select

DileepvikramOption: D
Nov 9, 2023

D is answer

aragorn_bregoOption: D
Nov 21, 2023

The GRANT USAGE ON DATABASE statement gives the eng group the ability to access the prod database. This means they can enter the database context and list the tables. The GRANT SELECT ON DATABASE statement additionally grants them permission to perform SELECT queries on all existing tables and views within the prod database. However, these privileges do not include creating new tables or views, modifying existing tables, or assigning permissions to other users or groups.

divingbell17Option: D
Jan 1, 2024

D is correct assuming unity catalog is not enabled

vctrhugoOption: D
Feb 6, 2024

The GRANT statements provided in the logic grant the USAGE privilege, allowing the group members to see the existence of the database, and the SELECT privilege, allowing them to query tables and views. However, they do not have permissions to create or edit anything in the database. Therefore, the correct description is that group members can query all tables and views in the prod database but cannot create or edit any objects in the database.

Curious76Option: D
Feb 27, 2024

D is correct