COF-C03 - Account Management and Data Governance - Section 2.1
Explain role-based access control including system-defined roles, custom roles, the role hierarchy, securable objects, and privilege grants.
Explain how Snowflake controls access through roles rather than users: the system-defined roles (ORGADMIN, ACCOUNTADMIN, SECURITYADMIN, USERADMIN, SYSADMIN, PUBLIC), how custom roles are granted to other roles to build a hierarchy, and how privileges on securable objects are granted to roles. Recognise ownership and the principle of least privilege.
role-based access controlsystem-defined rolesACCOUNTADMIN SECURITYADMIN SYSADMINrole hierarchyprivileges and grants
More in this domain
Back to all Account Management and Data Governance objectives, or the COF-C03 cert hub.
Examworthy is not affiliated with or endorsed by Snowflake. Original, blueprint-aligned practice material only.