Answer-first summary for fast verification
Answer: VIEW DATABASE STATE
The `VIEW DATABASE STATE` permission is the correct choice for this scenario because: - **Principle of Least Privilege**: `VIEW DATABASE STATE` provides the minimum required permissions to query the `sys.dm_pdw_exec_requests` dynamic management view, which displays information about current and recent requests in the dedicated SQL pool. - **Permission Scope**: This permission grants access to view the state of the database without allowing modifications to database objects, data, or server-level configurations. - **Alternative Permissions Analysis**: - **SHOWPLAN**: This permission allows viewing execution plans but does not grant access to request information in `sys.dm_pdw_exec_requests`. - **CONTROL SERVER**: This is a server-level permission that provides extensive administrative access, violating the principle of least privilege by granting unnecessary elevated permissions. - **VIEW ANY DATABASE**: This permission allows viewing metadata across all databases on the server, which exceeds the requirement to monitor only SQL1 and violates the principle of least privilege. In Azure Synapse Analytics dedicated SQL pools, dynamic management views like `sys.dm_pdw_exec_requests` require database-level permissions rather than server-level permissions for security and isolation. The `VIEW DATABASE STATE` permission specifically enables monitoring and troubleshooting capabilities without compromising security.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You have an Azure Synapse Analytics dedicated SQL pool named SQL1 and a user named User1.
You need to ensure User1 can query the sys.dm_pdw_exec_requests dynamic management view to view requests associated with SQL1, following the principle of least privilege.
Which permission should you grant to User1?
A
VIEW DATABASE STATE
B
SHOWPLAN
C
CONTROL SERVER
D
VIEW ANY DATABASE
No comments yet.