SnowPro Advanced Architect Exam

Exam SnowPro Advanced Architect All QuestionsBrowse all questions from this exam

Question 97

A Snowflake Architect created a new data share and would like to verify that only specific records in secure views are visible within the data share by the consumers.

What is the recommended way to validate data accessibility by the consumers?

Create reader accounts as shown below and impersonate the consumers by logging in with their credentials.

create managed account reader_acct1 admin_name = user1 , admin_password = 'Sdfed43da!44' , type = reader;

Create a row access policy as shown below and assign it to the data share.

create or replace row access policy rap_acct as (acct_id varchar) returns boolean -> case when 'acct1_role' = current_role() then true else false end;

Set the session parameter called SIMULATED_DATA_SHARING_CONSUMER as shown below in order to impersonate the consumer accounts.

alter session set simulated_data_sharing_consumer = 'Consumer Acct1'

Alter the share settings as shown below, in order to impersonate a specific consumer account.

alter share sales_share set accounts = 'Consumer1' share_restrictions = true

Correct Answer: C

The correct way to validate data accessibility by the consumers is by setting the session parameter called SIMULATED_DATA_SHARING_CONSUMER. This allows the Snowflake Architect to simulate the consumer account within their own session, thereby ensuring that they see the data exactly as the consumer would, including any restrictions applied by secure views.

Discussion

Atomic_GeckoOption: C

C is correct: Specifies the name of a consumer account to simulate for testing/validating shared data, particularly shared secure views. When this parameter is set in a session, shared views return rows as if executed in the specified consumer account rather than the provider account.