SnowPro Advanced: Architect — Question 21

A company’s client application supports multiple authentication methods, and is using Okta.
What is the best practice recommendation for the order of priority when applications authenticate to Snowflake?

Answer options

• A. 1. OAuth (either Snowflake OAuth or External OAuth) 2. External browser 3. Okta native authentication 4. Key Pair Authentication, mostly used for service account users 5. Password
• B. 1. External browser, SSO 2. Key Pair Authentication, mostly used for development environment users 3. Okta native authentication 4. OAuth (ether Snowflake OAuth or External OAuth) 5. Password
• C. 1. Okta native authentication 2. Key Pair Authentication, mostly used for production environment users 3. Password 4. OAuth (either Snowflake OAuth or External OAuth) 5. External browser, SSO
• D. 1. Password 2. Key Pair Authentication, mostly used for production environment users 3. Okta native authentication 4. OAuth (either Snowflake OAuth or External OAuth) 5. External browser, SSO

Correct answer: A

Explanation

The correct answer, A, prioritizes OAuth methods first, which are typically more secure, followed by the external browser for SSO, and then Okta native authentication. Options B, C, and D misplace OAuth and the external browser, lowering the security standards recommended for Snowflake authentication.