Here the answer should be SECURITYADMIN as it is parent of USERADMIN (which is the correct answer)
More details: https://docs.snowflake.com/en/user-guide/security-access-control-considerations
Attention
By default, when your account is provisioned, the first user is assigned the ACCOUNTADMIN role. This user should then create one or more additional users who are assigned the USERADMIN role. All remaining users should be created by the user(s) with the USERADMIN role or another role that is granted the global CREATE USER privilege.
ORGADMIN manages operations at the organizational level
ACCOUNTADMIN performs administrative functions
SECURITYADMIN creates and manages users and roles, and manages grants
USERADMIN creates users and roles
SYSADMIN creates and manages databases, schemas, and warehouses
PUBLIC is available to all users, but (by default) cannot do anything but log in
TYPES OF ROLES:
SYSTEM ROLES:
● ORGADMIN manages operations at the organizational level
● ACCOUNTADMIN performs administrative functions
● SECURITYADMIN creates and manages users and roles, and manages grants
● USERADMIN creates users and roles
● SYSADMIN creates and manages databases, schemas, and warehouses
● PUBLIC is available to all users, but (by default) cannot do anything but log in
CUSTOM ROLES:
● Created by the SECURITYADMIN or USERADMIN based on a company's desired hierarchy
● Custom roles generally "roll up" to the SYSADMIN role
B. SECURITYADMIN
The SECURITYADMIN role is specifically designed to handle security-related tasks, including the creation and management of users and roles. This role has the necessary privileges to manage all aspects of user and role administration, which is essential for maintaining a secure and well-managed Snowflake environment.
the best answer is : USERADMIN
The user administrator (USERADMIN) role includes the privileges to create and manage users and roles.
The USERADMIN role is a child of thishttps://docs.snowflake.com/en/user-guide/security-access-control-considerations role in the default access control hierarchy.
The security administrator (i.e users with the SECURITYADMIN system role) role includes the global MANAGE GRANTS privilege to grant or revoke privileges on objects in the account. The USERADMIN role is a child of this role in the default access control hierarchy.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
blazingliverbird
Highly Voted 3 years, 2 months agoc0d3g
Highly Voted 2 years, 1 month agoPrasantSadangi
Most Recent 5 days, 11 hours agotharangaweer
1 month, 4 weeks agohotflake
7 months, 4 weeks agoMallikharjuna452
8 months, 2 weeks agopranalig
9 months, 2 weeks agoPrashantGupta1616
9 months, 4 weeks agoJasMozai
10 months, 4 weeks agoAnireddySaikiranReddy
1 year, 1 month ago_yyukta
1 year, 1 month agoengo
1 year, 1 month agoKritig08
1 year, 2 months agoSuman_Mondal
1 year, 3 months agoKHarish
1 year, 3 months agoShanvi_27
1 year, 6 months agogalicneverdie
1 year, 6 months ago