Row-Level Security (RLS) in Azure Synapse Analytics: Filter and Block Predicates Explained

Correct Answer: A.

RLS supports both filter and block predicates, generally with SQL server, Azure Managed SQL server, etc., but not with Azure synapse Analytics.

To be precise, the filter predicates are supported, but the block predicates are not.

So, statement one is true and statement 2 is false.

Row-Level Security (RLS) is a security feature that restricts data access for users based on certain filters or predicates. Azure Synapse Analytics is a cloud-based analytics service provided by Microsoft that allows users to ingest, prepare, manage, and serve data for immediate business intelligence and machine learning needs.

The given statements describe the behavior of RLS in Azure Synapse Analytics, and we need to determine which statement(s) is/are correct.

Statement 1: Filter predicates silently filter the rows available to read operations for Azure Synapse Analytics.

This statement is correct. Filter predicates define a condition that restricts the rows that can be returned by a query. When RLS is applied, filter predicates are used to restrict data access to rows that meet the defined conditions. These filters are applied silently, without affecting the query results or returning any error messages to the user.

Statement 2: Block predicates explicitly block write operations that violate the predicate for Azure Synapse analytics.

This statement is incorrect. Block predicates are not used in Azure Synapse Analytics for RLS. Block predicates define conditions that block write operations that do not meet the defined conditions. However, Azure Synapse Analytics does not support block predicates as part of RLS. Instead, it uses filter predicates to restrict data access based on the defined conditions.

Therefore, the correct option is A. Statement 1 is correct, and Statement 2 is incorrect.