Jey*_*jee 2 snowflake-cloud-data-platform
寻找有关何时利用 USERADMIN 与 SECURITYADMIN 的输入,根据文档 SECURITYADMIN 继承了 USERADMIN 的权限
利用这两个角色进行用户、角色和拨款管理的正确方法是什么?我正在使用如下
USERADMIN - 用于以下用途
SECURITYADMIN - 用于以下用途
问题是,谁应该执行以下操作。是 USERADMIN 还是 SECURITYADMIN?如果这两个角色在技术上都可以执行,是否有任何标准指导?
谢谢。
The USERADMIN role didn\'t exist before April 2020, as this new role was introduced as an improvement to enable accounts to separate the management of users and roles from the SECURITYADMIN role - if desired.
You can use either system role to GRANT ROLE. The best practice should be determined by your own security policy.
\n\nBecause the USERADMIN role is assigned to the SECURITYADMIN role, users with the SECURITYADMIN role can still administer users and roles. However, companies can now assign the USERADMIN role to separate the management of users and roles from the management of all grants.
\n
\n\nUse of the USERADMIN role to separate these duties is optional. The decision to use the USERADMIN role is driven entirely by the security model implemented for your account.
\n
我自己的建议:既然USERADMIN可以GRANT ROLE,是更受限制的角色 \xe2\x80\x94 那么在授予角色时USERADMIN选择使用。USERADMIN