Answer-first summary for fast verification
Answer: The schema owner role, The role with the MANAGE GRANTS privilege
In a managed access schema, the ability to grant privileges on objects is restricted to specific roles to enhance security and control. The schema owner role (A) inherently has the authority to manage grants within the schema. Additionally, any role explicitly granted the MANAGE GRANTS privilege (D) can perform grant operations, as this privilege overrides the managed access restrictions. Option B (ORGADMIN) is incorrect because it focuses on account-level management, not schema-specific grants. Option C (USERADMIN) is incorrect as it manages user and role creation, not object privileges. Option E (the role that owns the object) is incorrect because managed access schemas revoke the object owner's ability to grant privileges, centralizing control to the schema owner or roles with MANAGE GRANTS. The community discussion, with 100% consensus and upvoted comments referencing Snowflake documentation, confirms that A and D are the correct choices.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In a managed access schema, which roles are authorized to grant privileges on objects within the schema to other roles? (Select two.)
A
The schema owner role
B
The ORGADMIN system role
C
The USERADMIN system role
D
The role with the MANAGE GRANTS privilege
E
The role that owns the object in the schema
No comments yet.