ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam DP-201 All Questions

View all questions & answers for the DP-201 exam
Go to Exam

Exam DP-201 topic 3 question 17 discussion

Actual exam question from Microsoft's DP-201
Question #: 17
Topic #: 3
[All DP-201 Questions]

DRAG DROP -
You are designing a data warehouse in Azure Synapse Analytics for a financial services company. Azure Active Directory will be used to authenticate the users.
You need to ensure that the following security requirements are met:
✑ Department managers must be able to create new database.
✑ The IT department must assign users to databases.
✑ Permissions granted must be minimized.
Which role memberships should you recommend? To answer, drag the appropriate roles to the correct groups. Each role may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: dbmanager -
Members of the dbmanager role can create new databases.

Box 2: db_accessadmin -
Members of the db_accessadmin fixed database role can add or remove access to the database for Windows logins, Windows groups, and SQL Server logins.
Reference:
https://docs.microsoft.com/en-us/azure/sql-database/sql-database-manage-logins
by memo43 at May 23, 2021, 11:33 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
aimless__
3 years, 11 months ago
Why wouldn't IT get db_accessadmin? That is least privilege that allows them to assign user access. db_securityadmin can elevate their own privileges.
upvoted 1 times
...
cadio30
3 years, 12 months ago
Given answers are correct. Refer to the provided link below. Reference: https://docs.microsoft.com/en-us/sql/relational-databases/security/authentication-access/database-level-roles?view=sql-server-ver15
upvoted 4 times
...
Steve92873197
4 years ago
Answer is correct, > https://docs.microsoft.com/en-us/sql/relational-databases/security/authentication-access/database-level-roles?view=sql-server-ver15
upvoted 2 times
...
Steve92873197
4 years ago
Wouldn't the IT group get the loginmanager role?
upvoted 3 times
novice16
3 years, 12 months ago
Assuming users have login access. You are assigning them to different database based on project.
upvoted 2 times
...
...
memo43
4 years ago
%100 ... CORRECT
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel