1Z0-116試験無料問題集（92題）「Oracle Database Security Administration 認定」

出題：1

You are Implementing a security policy that makes use of the USERENV namespace.
Which USERRENV value does not change for the duration of a session?

A. CLIENT_INFO

B. SESSION_CSER

C. CURRENT SCHEMA

D. CURRENT_OSER

正解：B 解答を投票する

出題：2

Examine these commands and the output used to configure Real Application Security:

What does this output mean?

A. You treated an access control list that references a non-existent policy.

B. You created a policy that references a non-existent realm.

C. You created an access control list that references a non-existent realm.

D. You created a realm that references a non-existent policy.

E. You created a policy that references a non-existent access control list.

F. You created a realm and an access control list that reference a non-existent policy.

正解：D 解答を投票する

出題：3

Which three are true concerning command rules?

A. A command can have only one command rule that applies to it.

B. System privileges override command rules.

C. If a command rule's associated rule set Is disabled, then the rule set evaluates to true.

D. For DML statement command rules, you can specify a wildcard for the object owner.

E. If a command rule's associated rule set evaluation results In an error, the command is not allowed to execute.

F. For DML statement command rules, you can specify a wildcard for the object name.

G. Object privileges override command rules.

正解：B,D,F 解答を投票する

出題：4

Which two statements are true about Valid Node Checking for Registration (VNCR)?

A. It can only be used with Oracle RAC.

B. It is a replacement for Class of Secure Transport (COST).

C. It enforces the Listener connectivity through TCPS.

D. It denies Instance registration through IPC.

E. It restricts specific instances from registering with the Listener.

正解：B,D 解答を投票する

出題：5

Examine this security parameter and Its value:
SEC_USER_ONAUTHORIZED_ACCESS_BANNER=/opt/oracla/admin/data/unauthwarninq.txt In which file must you include this parameter?

A. tnsnaroes.ora

B. aqlnet.ora

C. server.xml

D. names.ora

E. listener.ora

F. init. era

正解：E 解答を投票する

出題：6

Examine this list:
1. You must monitor access to email column or salary column In the employees table.
2. If any activity is detected, the action must be audited and a notification sent out by email.
3. The database has Unified Auditing enabled.
4. You have created and successfully tested the email sending procedure, sysadmin_fga.emaii._ai.ert.
You create the audit policy:

A user with select privilege on hr.employees executes this :
SELECT email FROM HR.EMPLOYEES;
What will be the result?

A. The query will be executed, an entry will be created In FGA_LOG$ table, and the mall will be sent.

B. The query will be executed, no audit entry will be created but the mall will be sent.

C. The query will be executed, but no audit entry will be created nor any mail sent.

D. The query will be executed, an entry will be created in the unified audit trail, and the mail will be sent.

正解：C 解答を投票する

出題：7

You must rekey encrypted sensitive credential data In your database.
You run the command alter database dictionary rekey credentials.
Which three options ate true about the bkkey process?

A. The rekey process only applies to the SYS.SCHEDULES$ credential table.

B. The process of rekeylng does not automatically open the keystore.

C. The rekey process prompts the user to provide a new key algorithm If needed.

D. The credential data encryption process does not de-obfuscate the obfuscated passwords before re-encrypts begin.

E. Credential Data Is automatically encrypted using aes2S6.

F. The rekey process only applies to the sys.ltnks CREDENTUIALS table.

G. Both sys. links and sys . SCHEDULER_CREDENTIAL tables are rekeyed.

正解：A,D,F 解答を投票する

出題：8

Which two tasks should you perform initially to Implement native network encryption without disrupting client applications?

A. Verify which clients have encrypted connections using the view vSsession_CONNECT_INFO.

B. Upgrade all OCI-basod clients to match the database version.

C. Set the client side sqinec.ora parameter SQLNET.ENCRYPTION _client = required.

D. Modify all JDBC Thin based clients to include network encryption parameters in Java.

E. Set the server side sqinot.ora parameter SQLNET.CRYPTO_CHECKSOM_SERVER - accepted.

F. Configure the listener with an endpoint for protocol TCPS.

G. Set the server side sqinet.oia parameter sqlnet.encryption_server = requested.

正解：F 解答を投票する

出題：9

You connect to the database Instance over a network to change the password of user scott.
Which two methods avoid the new password for user scott from being compromised by network sniffing?

A. Use ALTER USER SCOTT PASSWORD EXPIRE.

B. Use ALTER USER SCOTT IDENTIFIED BY <password>.

C. Use the SQL"PIus command password SCOTT.

D. Set the server side sqlnet.ora parameter SQLNET.CRYPTO_CHECKSUM_SERVER-REQUESTED.

E. Set the server side sqlnet.ora parameter SQLNET.ENCRYPTION_SERVER=REQUESTED.

F. Use ALTER USER SCOTT IDENTIFIED BY VALUES '<value>*.

正解：D,F 解答を投票する

1Z0-116試験無料問題集「Oracle Database Security Administration 認定」