|
Which two statements are true? A. A role cannot be assigned external
authentication.
--- Answer: The correct answers are B and C. Explanation: In Oracle Database, a role is a named set of privileges that can be granted to one or more users. Roles allow database administrators to manage privileges more efficiently by grouping related permissions into a single object that can be granted or revoked from users as needed. Roles in Oracle Database can contain both system privileges, which grant permissions to perform specific actions in the database, and object privileges, which grant permissions on specific database objects, such as tables, views, or procedures. Roles can also be granted to other roles, allowing for hierarchical management of privileges. This means that a role can inherit the privileges of another role, simplifying the management of permissions in large and complex database environments. Roles can be created using the CREATE ROLE statement in Oracle Database, and privileges can be granted to roles using the GRANT statement. Once a role has been created and granted appropriate privileges, it can be granted to users using the GRANT statement, and revoked using the REVOKE statement. Roles are an essential component of database security in Oracle Database, providing a flexible and efficient mechanism for managing user permissions and enforcing access controls. By using roles, administrators can ensure that users have only the privileges they need to perform their work, reducing the risk of accidental or intentional data breaches and improving overall database security. B is true because a role can be granted to other roles in Oracle Database. This allows for hierarchical role management, where a role can inherit privileges from another role. C is true because a role in Oracle Database can contain both system and object privileges. System privileges are permissions that allow a user to perform specific actions in the database, while object privileges grant permissions on specific objects in the database, such as tables or views. A is false because a role can be assigned external authentication in Oracle Database. D is false because the predefined resource role in Oracle Database does not include the unlimited_tablespace privilege. E is false because not all roles in Oracle Database are owned by the sys user. Roles can be owned by any user in the database. F is false because the predefined connect role is not always automatically granted to all new users at the time of their creation in Oracle Database. It depends on the configuration of the database.
Oracle Books
Oracle Application
Oracle Home
All the site contents are Copyright © www.erpgreat.com
and the content authors. All rights reserved.
|