Snowflake Certification Practice Test

Which statement is TRUE regarding the administration permissions in Snowflake?

• A. Drop User and Create User can be granted by an administrator
• B. Only Create User is granted without restrictions
• C. Drop Role cannot be granted
• D. Only selected users can see the roles

The correct answer is: Drop User and Create User can be granted by an administrator

An administrator in Snowflake has the ability to manage users and roles effectively, which includes the permissions to create and drop users. The statement regarding Drop User and Create User being granted by an administrator is true because an administrator possesses the necessary privileges to manage user accounts, ensuring that they can add new users or remove existing ones as needed. In Snowflake, administrative roles are specifically designed to handle user and role management. This includes the ability to grant and revoke permissions related to user lifecycle management, which encompasses both the creation and deletion of users. The other statements do not hold true in this context. For example, while it's correct that certain permissions might come with restrictions, the ability for an administrator to create users is crucial for maintaining control over the user access within the system. Additionally, Drop Role can be granted under certain conditions in Snowflake, indicating that management of roles, including their deletion, is part of an administrator’s capabilities. The visibility of roles is also generally broader, ensuring that users with the appropriate roles can see the roles assigned to them, hence the statement about selected users being able to see roles is not accurate in the broader context of how roles function in Snowflake.