Snowflake ARA-C01 Exam Practice Test Instant Access

Question 1

An Architect entered the following commands in sequence:

USER1 cannot find the table.

Which of the following commands does the Architect need to run for USER1 to find the tables using the Principle of Least Privilege? (Choose two.)

AGRANT ROLE PUBLIC TO ROLE INTERN;

BGRANT USAGE ON DATABASE SANDBOX TO ROLE INTERN;

CGRANT USAGE ON SCHEMA SANDBOX.PUBLIC TO ROLE INTERN;

DGRANT OWNERSHIP ON DATABASE SANDBOX TO USER INTERN;

EGRANT ALL PRIVILEGES ON DATABASE SANDBOX TO ROLE INTERN;

Answer : B, C

Question 2

An Architect runs the following SQL query:

How can this query be interpreted?

AFILEROWS is a stage. FILE_ROW_NUMBER is line number in file.

BFILEROWS is the table. FILE_ROW_NUMBER is the line number in the table.

CFILEROWS is a file. FILE_ROW_NUMBER is the file format location.

DFILERONS is the file format location. FILE_ROW_NUMBER is a stage.

Answer : A

Question 3

There are two databases in an account, named fin_db and hr_db which contain payroll and employee data, respectively. Accountants and Analysts in the company require different permissions on the objects in these databases to perform their jobs. Accountants need read-write access to fin_db but only require read-only access to hr_db because the database is maintained by human resources personnel.

An Architect needs to create a read-only role for certain employees working in the human resources department.

Which permission sets must be granted to this role?

AUSAGE on database hr_db, USAGE on all schemas in database hr_db, SELECT on all tables in database hr_db

BUSAGE on database hr_db, SELECT on all schemas in database hr_db, SELECT on all tables in database hr_db

CMODIFY on database hr_db, USAGE on all schemas in database hr_db, USAGE on all tables in database hr_db

DUSAGE on database hr_db, USAGE on all schemas in database hr_db, REFERENCES on all tables in database hr_db

Answer : A

Question 4

A healthcare company is deploying a Snowflake account that may include Personal Health Information (PHI). The company must ensure compliance with all relevant privacy standards.

Which best practice recommendations will meet data protection and compliance requirements? (Choose three.)

AUse, at minimum, the Business Critical edition of Snowflake.

BCreate Dynamic Data Masking policies and apply them to columns that contain PHI.

CUse the Internal Tokenization feature to obfuscate sensitive data.

DUse the External Tokenization feature to obfuscate sensitive data.

ERewrite SQL queries to eliminate projections of PHI data based on current_role().

FAvoid sharing data with partner organizations.

Answer : A, B, D

Question 5

Which steps are recommended best practices for prioritizing cluster keys in Snowflake? (Choose two.)

AChoose columns that are frequently used in join predicates.

BChoose lower cardinality columns to support clustering keys and cost effectiveness.

CChoose TIMESTAMP columns with nanoseconds for the highest number of unique rows.

DChoose cluster columns that are most actively used in selective filters.

EChoose cluster columns that are actively used in the GROUP BY clauses.

Answer : A, D

Question 6

A company is using a Snowflake account in Azure. The account has SAML SSO set up using ADFS as a SCIM identity provider. To validate Private Link connectivity, an Architect performed the following steps:

* Confirmed Private Link URLs are working by logging in with a username/password account

* Verified DNS resolution by running nslookups against Private Link URLs

* Validated connectivity using SnowCD

* Disabled public access using a network policy set to use the company's IP address range

However, the following error message is received when using SSO to log into the company account:

IP XX.XXX.XX.XX is not allowed to access snowflake. Contact your local security administrator.

What steps should the Architect take to resolve this error and ensure that the account is accessed using only Private Link? (Choose two.)

AAlter the Azure security integration to use the Private Link URLs.

BAdd the IP address in the error message to the allowed list in the network policy.

CGenerate a new SCIM access token using system$generate_scim_access_token and save it to Azure AD.

DUpdate the configuration of the Azure AD SSO to use the Private Link URLs.

EOpen a case with Snowflake Support to authorize the Private Link URLs' access to the account.

Answer : B, C

Question 7

An Architect would like to save quarter-end financial results for the previous six years.

Which Snowflake feature can the Architect use to accomplish this?

ASearch optimization service

BMaterialized view

CTime Travel

DZero-copy cloning

ESecure views

Answer : D

Snowflake ARA-C01 SnowPro Advanced: Architect Certification Exam Practice Test