It doesn't make sense to me why they don't recommend securityadmin and sysadmin with MFA, but they really only recommend AccountAdmin.
So D is correct.
Answer must be B since 1 June 2024:
At a minimum, Snowflake strongly recommends that all users with the following system-defined roles enable MFA: ACCOUNTADMIN. SECURITYADMIN. SYSADMIN.1 June 2024
The recommended roles for Multi-Factor Authentication (MFA) in Snowflake are:
C. SECURITYADMIN, ACCOUNTADMIN
Here's why:
SECURITYADMIN: This role has broad privileges for managing security policies, users, and access controls. An unauthorized user gaining access to a SECURITYADMIN account could cause significant security risks. Enforcing MFA adds an extra layer of protection for such accounts.
ACCOUNTADMIN: This role can manage account settings, users, and billing. MFA helps safeguard these critical administrative controls.
While not explicitly mentioned in the minimum recommendation:
SYSADMIN: The SYSADMIN role has full control over the Snowflake account. Ideally, MFA should be enabled for this role as well for maximum security.
Public: The PUBLIC role has limited privileges and typically doesn't require MFA.
Answer D is correct:
https://docs.snowflake.com/en/user-guide/security-mfa.html
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
moon2351
Highly Voted 2 years, 11 months agoMohamedBen
Most Recent 3 weeks, 4 days agoShipra123
1 month, 1 week agojiriz
2 months, 3 weeks agogany_man
2 months, 3 weeks agoABRocks
4 months, 1 week agohotflake
4 months, 2 weeks agoMallikharjuna452
5 months, 1 week agoNeerajaVoleti
6 months ago372110c
6 months, 1 week agoAlex_Ovidiu
8 months, 2 weeks agoMayuri917233
1 year, 7 months agoTapasgup007
2 years agoDK69
2 years, 7 months agoDingDongSingSong
2 years, 7 months ago