Exam SnowPro Advanced Architect All QuestionsBrowse all questions from this exam
Go to Exam
Question 37

A company is using a Snowflake account in Azure. The account has SAML SSO set up using ADFS as a SCIM identity provider. To validate Private Link connectivity, an Architect performed the following steps:

Confirmed Private Link URLs are working by logging in with a username/password account

Verified DNS resolution by running nslookups against Private Link URLs

Validated connectivity using SnowCD

Disabled public access using a network policy set to use the company’s IP address range

However, the following error message is received when using SSO to log into the company account:

IP XX.XXX.XX.XX is not allowed to access snowflake. Contact your local security administrator.

What steps should the Architect take to resolve this error and ensure that the account is accessed using only Private Link? (Choose two.)

    Correct Answer: A, D

    To ensure the account is accessed using only Private Link and resolve the error message indicating that the IP is not allowed to access Snowflake, the Architect should alter the Azure security integration to use the Private Link URLs. This will align the security settings with the Private Link configuration. Additionally, updating the configuration of Azure AD SSO to use the Private Link URLs ensures that all authentication traffic is routed through the private connectivity, thereby avoiding any conflicts with network policy restrictions.

Discussion
jjordanOptions: BD

B&D is correct.

hillcat111Options: BD

Answer is B,D and is validated

starkbiOptions: BD

I assume B & D

hillcat111Options: BD

i think its B & D

hillcat111

Changing answer to A&D