Answer-first summary for fast verification
Answer: READ permission on the 'DataOps-Prod' scope
The secret access permissions hierarchy is as follows: MANAGE – Permits changing ACLs, and reading and writing to the secret scope. WRITE – Allows reading and writing to the secret scope. READ – Permits reading the secret scope and listing available secrets. Each permission level encompasses the permissions of the levels below it. Therefore, a principal with WRITE permission can perform all actions that require READ permission. The minimum permission required for DataOps engineers to use the secrets is READ permission on the 'DataOps-Prod' scope. Reference: [Databricks Documentation](https://docs.databricks.com/security/auth-authz/access-control/secret-acl.html#permission-levels)
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A data engineering team utilizes a secret scope named 'DataOps-Prod' to store all necessary secrets for DataOps engineers in a production workspace. What is the minimum permission level required for these engineers to access the secrets within this scope?
A
MANAGE permission on the 'DataOps-Prod' scope
B
READ permission on each secret in the 'DataOps-Prod' scope
C
MANAGE permission on each secret in the 'DataOps-Prod' scope
D
READ permission on the 'DataOps-Prod' scope
E
Workspace Administrator role
No comments yet.