A and B are correct:
https://docs.snowflake.com/en/sql-reference/sql/grant-privilege
Only the SECURITYADMIN and ACCOUNTADMIN system roles have the MANAGE GRANTS privilege; however, the privilege can be granted to custom roles.
https://docs.snowflake.com/en/user-guide/security-access-control-configure
With managed access schemas, object owners lose the ability to make grant decisions. Only the schema owner (i.e. the role with the OWNERSHIP privilege on the schema) or a role with the MANAGE GRANTS privilege can grant privileges on objects in the schema, including future grants, centralizing privilege management.
Since SECURITYADMIN and ACCOUNTADMIN have the MANAGE GRANTS global privilege, they can grant privileges on objects in a managed access schema.
AB - SECURITYADMIN or higher....higher is only AccountAdmin
https://docs.snowflake.com/en/user-guide/security-access-control-configure#label-managed-access-schemas
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ahadh7621
4 weeks agonexerSnow
3 months, 2 weeks agoAmitsnowflake
8 months, 2 weeks agoHeetec
8 months, 2 weeks ago