Answer: SECURITYADMIN, ACCOUNTADMIN, SYSADMIN

Based on the community discussion and Snowflake's official documentation, the correct answer is B (SECURITYADMIN, ACCOUNTADMIN, SYSADMIN). Multiple comments reference Snowflake's updated recommendation as of June 1, 2024, which explicitly states that at a minimum, all users with ACCOUNTADMIN, SECURITYADMIN, and SYSADMIN roles should enable MFA. This is supported by the highest upvoted comments citing official documentation and recent security updates. While some older comments suggest only ACCOUNTADMIN (option D) or SECURITYADMIN and ACCOUNTADMIN (option C), the consensus from recent, well-supported comments indicates that SYSADMIN is also included in the minimum recommendation. Option A includes PUBLIC, which is not part of the minimum recommendation as PUBLIC has limited privileges and doesn't require MFA.

Author: LeetQuiz Editorial Team