Case 4-1 Oracle Security You are hired as a database administrator for a small r

Question

Case 4-1 Oracle Security

You are hired as a database administrator for a small reseller company to implement and administer the database component of their main application.The data model of this application is presented inFigure 4-20. The schema owner is called DBSEC.

a. Use the scripts provided to create a schema.

b. Create three different profiles based on the criteria listed in Table 4-7.

Table 4-7 Profile configuration requirements

PASSWORD_LIFE_TIME = 1 month
PASSWORD_GRACE_TIME = 7 days

c. Create four different roles that have privileges according to the specification outlined inTable 4-8.

Table 4-8 Roles and privileges configuration requirements

d. After creating these profiles and roles,create users according to the specifications in Table 4-9.

e. Verify your implementation by viewing the data dictionary.

Case 4-2 SQL Server Security

You are the DBA for Acme Corporation.You

Profile Resources Password DBSEC_ADMIN_PROF SESSIONS_PER_USER = 5
CONNECT_TIME = 8 hours
IDLE_TIME = 1 hour

PASSWORD_LIFE_TIME = 1 month
PASSWORD_GRACE_TIME = 7 days

DBSEC_DEVELOPER_PROF CONNECT_TIME = 12 hours
IDLE_TIME = 2 hours
CPU_PER_CALL = 1 minute PASSWORD_LIFE_TIME = 1 month
PASSWORD_GRACE_TIME = 14 days DBSEC_DEVELOPER_PROF SESSIONS_PER_USER = 1
CPU_PER_CALL = 5 seconds
CONNECT_TIME = 8 hours
IDLE_TIME = 30 minutes
LOGICAL_READS_PER_CALL = 10 KB FAILED_LOGIN_ATTEMPTS = 1
PASSWORD_LIFE_TIME = 1 month
PASSWORD_LOCK_TIME = 3 days
PASSWORD_GRACE_TIME = 14 days

Explanation / Answer

SESSIONS_PER_USER 5
CONNECT_TIME 480
IDLE_TIME 60

PASSWORD_LIFE_TIME 30

PASSWORD_GRACE_TIME 7;

CONNECT_TIME 720
IDLE_TIME 120

CPU_PER_CALL 6000

PASSWORD_LIFE_TIME 30

PASSWORD_GRACE_TIME 14;

SESSIONS_PER_USER 1

CPU_PER_CALL 500
CONNECT_TIME 480
IDLE_TIME 30

LOGICAL_READS_PER_CALL 20

FAILED_LOGIN_ATTEMPTS 1

PASSWORD_LIFE_TIME 30

PASSWORD_LOCK_TIME 3

PASSWORD_GRACE_TIME 14;

c. create role DBSEC_ADMIN_ROLE;

Grant Select, Alter on DBSEC to DBSEC_ADMIN_ROLE;

create role DBSEC_CLERK_ROLE;

Grant Select, Insert, Update on DBSEC to DBSEC_CLERK_ROLE;

create role DBSEC_SUPERVISOR_ROLE ;

Grant Select, Insert, Update, Delete on DBSEC to DBSEC_SUPERVISOR_ROLE ;

create role DBSEC_QUERY_ROLE;

Grant Select on DBSEC to DBSEC_QUERY_ROLE;

d. create user DBSEC_ADMIN profile DBSEC_ADMIN_PROF;

grant DBSEC_ADMIN_ROLE to DBSEC_ADMIN;

create user DBSEC_CLERK profile DBSEC_CLERK_PROF;

grant DBSEC_CLERK_ROLE to DBSEC_CLERK;

create user DBSEC_SUPER profile DBSEC_CLERK_PROF;

grant DBSEC_SUPERVISOR_ROLE to DBSEC_SUPER;

create user DBSEC_QUERY1 profile DBSEC_CLERK_PROF;

grant DBSEC_QUERY_ROLE to DBSEC_QUERY1;

create user DBSEC_QUERY2 profile DBSEC_CLERK_PROF;

grant DBSEC_QUERY_ROLE to DBSEC_QUERY2;

create user DBSEC_DEVELOPER profile DBSEC_DEVELOPER_PROF;

grant DBSEC_ADMIN_ROLE, DBSEC_SUPERVISOR_ROLE to DBSEC_DEVELOPER;

e. select * from dba_profiles;

select * from dba_roles;

select * from all_users;

Related Questions

Navigate

• Browse (All)
• Browse C
• Subjects

---

---

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.