ExamTopics Logo
Mail Us[email protected]
Menu
Snowflake Discussions
exam questions

Exam SnowPro Advanced Architect All Questions

View all questions & answers for the SnowPro Advanced Architect exam
Go to Exam

Exam SnowPro Advanced Architect topic 1 question 37 discussion

Actual exam question from Snowflake's SnowPro Advanced Architect
Question #: 37
Topic #: 1
[All SnowPro Advanced Architect Questions]

A company is using a Snowflake account in Azure. The account has SAML SSO set up using ADFS as a SCIM identity provider. To validate Private Link connectivity, an Architect performed the following steps:
Confirmed Private Link URLs are working by logging in with a username/password account
Verified DNS resolution by running nslookups against Private Link URLs
Validated connectivity using SnowCD
Disabled public access using a network policy set to use the company’s IP address range
However, the following error message is received when using SSO to log into the company account:
IP XX.XXX.XX.XX is not allowed to access snowflake. Contact your local security administrator.
What steps should the Architect take to resolve this error and ensure that the account is accessed using only Private Link? (Choose two.)

  • A. Alter the Azure security integration to use the Private Link URLs.
  • B. Add the IP address in the error message to the allowed list in the network policy.
  • C. Generate a new SCIM access token using system$generate_scim_access_token and save it to Azure AD.
  • D. Update the configuration of the Azure AD SSO to use the Private Link URLs.
  • E. Open a case with Snowflake Support to authorize the Private Link URLs’ access to the account.
Show Suggested Answer Hide Answer
Suggested Answer: BC 🗳️
by hillcat111 at June 9, 2023, 12:23 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
laksnarn
3 months ago
Selected Answer: AD
After changing the private links , if the SSO want to work the first step is update the security integration and other mandatory step is update the config in azure ad level sso.
upvoted 3 times
...
jjordan
10 months, 1 week ago
Selected Answer: BD
B&D is correct.
upvoted 2 times
potatosack
3 months ago
Blocked list gets validated first, since the pub access blocked, doesn't matter if anything is in the allowed list
upvoted 1 times
...
...
hillcat111
1 year, 3 months ago
Answer is B,D and is validated
upvoted 1 times
...
starkbi
1 year, 4 months ago
I assume B & D
upvoted 1 times
...
hillcat111
1 year, 4 months ago
i think its B & D
upvoted 1 times
hillcat111
1 year, 4 months ago
Changing answer to A&D
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago