ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam DP-203 All Questions

View all questions & answers for the DP-203 exam
Go to Exam

Exam DP-203 topic 3 question 1 discussion

Actual exam question from Microsoft's DP-203
Question #: 1
Topic #: 3
[All DP-203 Questions]

DRAG DROP -
You have an Azure Active Directory (Azure AD) tenant that contains a security group named Group1. You have an Azure Synapse Analytics dedicated SQL pool named dw1 that contains a schema named schema1.
You need to grant Group1 read-only permissions to all the tables and views in schema1. The solution must use the principle of least privilege.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: More than one order of answer choices is correct. You will receive credit for any of the correct orders you select.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Step 1: Create a database user named dw1 that represents Group1 and use the FROM EXTERNAL PROVIDER clause.
Step 2: Create a database role named Role1 and grant Role1 SELECT permissions to schema1.
Step 3: Assign Role1 to the Group1 database user.
Reference:
https://docs.microsoft.com/en-us/azure/data-share/how-to-share-from-sql
by Rob77 at May 17, 2021, 3:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Rob77
Highly Voted 2 years, 11 months ago
1. create user from external provider for Group1 2. create Role1 with select on schema1 3. add user to the Role1
upvoted 92 times
SameerL
1 year, 9 months ago
Step 1: Create a database user named dw1 that represents Group1 and use the FROM EXTERNAL PROVIDER clause. Step 2: Create a database role named Role1 and grant Role1 SELECT permissions to schema1. Step 3: Assign Role1 to the Group1 database user.
upvoted 10 times
...
AlexLo
2 years, 2 months ago
Sorry, but "add user to the Role1" is not part of the answers. Or, which option is that?
upvoted 4 times
thomas02
2 years, 1 month ago
Assign Role1 to the Group1 database user
upvoted 4 times
...
...
Lotusss
1 year, 11 months ago
UDEMY says this as well. So correct
upvoted 1 times
...
PallaviPatel
2 years, 2 months ago
add user to the role1 option isnt available in the given choices not sure why this answer is suggested then? what is the need for creating external provider for Group1 can you explain?
upvoted 2 times
...
...
patricka95
Highly Voted 2 years, 9 months ago
The suggested answer is wrong. As others have identified, the correct steps are; 1. create user <> from external provider 2. create role <> with select permission on schema 3. add user to role
upvoted 12 times
lukeonline
2 years, 3 months ago
Can somebody explain why we have to create the user first and not the role?
upvoted 3 times
vanrell
2 years ago
They do mention that: : More than one order of answer choices is correct. You will receive credit for any of the correct orders you select. Creating user or role first does not matter. As long as you assign the role to the user in the end.
upvoted 4 times
...
SQLDev0000
2 years, 1 month ago
There is a note in the question that says "More than one order of answer choices is correct". Create role and create user can be interchanged.
upvoted 6 times
...
...
Aditya0891
1 year, 10 months ago
Answer is not wrong. Read the question properly
upvoted 1 times
...
sachabess79
2 years, 6 months ago
Agreed 100%
upvoted 3 times
...
...
kkk5566
Most Recent 7 months, 2 weeks ago
1. create database user in dw1 that represent Group1 and uses From External Provider clause 2. create database role named Role1 with grant Role1 select permission on dw1 3. add Role1 to Group1 database user
upvoted 3 times
...
_Lukas_
9 months ago
CREATE USER security_group_lk FROM EXTERNAL PROVIDER; CREATE ROLE security_group_role; GRANT SELECT ON SCHEMA::app TO security_group_role; ALTER ROLE security_group_role ADD MEMBER security_group_lk;
upvoted 1 times
...
kornat
1 year ago
correct
upvoted 1 times
...
Deeksha1234
1 year, 8 months ago
given answer is correct
upvoted 2 times
...
SabaJamal2010AtGmail
2 years, 3 months ago
1. create database user in dw1 that represent Group1 and uses From External Provider clause 2. create database role named Role1 with grant Role1 select permission on dw1 3. add Role1 to Group1 database user
upvoted 6 times
ADHDBA
2 years ago
it should be least privileged so select on schema is correct not on dw1
upvoted 2 times
...
...
eng1
2 years, 10 months ago
It should be D-E-A
upvoted 1 times
eng1
2 years, 9 months ago
Please ignore my previous answer, it should be D: Create a database user in dw1 that represents Group1 and uses FROM EXTERNAL PROVIDE clause A: Create a database role named Role1 and grant Role1 SELECT permissions to schema1 E: Assign Rol1 to the Group1 database user
upvoted 18 times
...
...
eng1
2 years, 10 months ago
It should be C-A-E
upvoted 1 times
...
SG1705
2 years, 10 months ago
Is the answer correct ??
upvoted 1 times
Marcello83
2 years, 9 months ago
No, in my opinion it is D, A, E. If you give a reader role to the group, the users will have the possibility to query all the tables, not only the selected schema.
upvoted 6 times
Davico93
1 year, 9 months ago
But, the answer shown in solution es D,A,E....
upvoted 2 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago