When adding a new user and assigning a role, which user role has "read only" rights to theconfiguration and operational states? ()A、userB、read_onlyC、target_operatorD、security_operator
When adding a new user and assigning a role, which user role has "read only" rights to theconfiguration and operational states? ()
- A、user
- B、read_only
- C、target_operator
- D、security_operator
相关考题:
In your multitenant container database (CDB) containing same pluggable databases (PDBs), you execute the following commands in the root container:Which two statements are true?() A. The C # # ROLE1 role is created in the root database and all the PDBs.B. The C # # ROLE1 role is created only in the root database because the container clause is not used.C. Privileges are granted to the C##A_ADMIN user only in the root database.D. Privileges are granted to the C##A_ADMIN user in the root database and all PDBs.E. The statement for granting a role to a user fails because the CONTAINER clause is not used.
You are the administrator of a Junos Pulse Access Control Service implementation. You must restrict authenticated users connected from the branch offices to a few specific resources within the data center. However, when the authenticated users are connected at the corporate office, they are allowed more access to the data center resources.You have created two roles with different levels of access and are trying to determine the best way of controlling when a user is mapped to a specific role. Having the user prompted to manually select their role is possible, but you want to automate the process.Which configuration solves this problem?()A. Implement a RADIUS request attribute policy to assist with realm selection and create different role-mapping rules for the user in each realm.B. Implement a directory/attribute server on the realm and set up this server to determine by group membership the proper role to which a user should be mapped.C. Reorder the role-mapping rules to allow for the more open role to be mapped first and then enable the stop processing rules when this rule matches function on this role.D. Implement a Host Checker policy on the realm that determines the geographic location of the device and restricts the user based on the results of the policy.
A user logs in and is mapped to two roles. The first role has a maximum timeout value of 600 minutes and the default Juniper Networks logo on the user interface page. The second role has a maximum timeout value of 1200 minutes and a custom logo on the user interface page.Based on the merging of these two roles, which two will be applied?()A. A custom logo on the user interface pageB. A maximum timeout value of 600 minutesC. A maximum time out value of 1200 minutesD. A default Juniper Networks logo on the user interface page
Click the Exhibit button.A customer configures the Junos Pulse Access Control Service with a Contractor role, an Employee role, and a Remediation role. A user logs in and is assigned the Remediation role. Referring to the exhibit, to which RADIUS Return Attributes Policy will the user be assigned?()A. CorporateVLANB. EmployeeVLANC. RemediationVLAND. GuestVLAN
You want to restrict access to a role based on the client machine from which the user is accessing the network.Which two role restrictions accomplish this goal? () A. user nameB. password lengthC. certificateD. Host Checker
From the DX WebUI Dashboard, which steps are used for creating a new admin user? () A. Click Admin Users. Enter username, password, role, account status, and email.B. Click Admin Users. Enter username, password, role, account status, and user class.C. Click Users Manage Users. Enter username, password, role, account status, and user class.D. Click Users Manage Users. Enter username, password, ActiveDirectory domain, account status, and role.
When adding a new user and assigning a role, which user role has "read only" rights to theconfiguration and operational states? () A.userB.read_onlyC.target_operatorD.security_operator
You navigate to "UAC" > "Infranet Enforcer" > "Auth Table Mapping" in the admin GUI. You see one policy, which is the unmodified, original default policy.Which statement is true?() A. Dynamic auth table mapping is not enabled.B. A successful authentication attempt will result in a new authentication table entry, which will be delivered only to the Junos enforcer protecting the network from which the user has authenticated.C. To create a static auth table mapping, you must delete the default policy.D. The default policy applies only to the factory-default role User.
Which three statements describe user authentication in Cisco DCNM-LAN? ()A、 Cisco DCNM-LAN server users are local to the Cisco DCNM-LAN server. Creating, changing, and removing Cisco DCNM-LAN server users has no effect on user accounts on managed devices.B、 A Cisco DCNM-LAN server user that has Administrator privileges can push out changes to managed devices even if the Cisco NX-OS role that is used on the discovered device has the network operator role.C、 Cisco DCNM-LAN user roles restrict the ability of users to make changes to Cisco DCNM-LAN server settings. Cisco NX-OS user roles enforce read/write privileges on the discovered devices.D、 Cisco DCNM-LAN allows you to configure unique credentials for each discovered device or use default credentials when you do not configure unique credentials for a device.E、 Cisco DCNM-LAN can use AAA servers to authenticate users. Only TACACS servers are supported.
Which attribute is used to pass the user role back to the Nexus when remote AAA is enabled?()A、 Cisco AV-pairB、 TACACS+ or RADIUS ack frame role attributeC、 DH-CHAP challenge attributeD、 privilege level attribute
A user logs in and is mapped to two roles. The first role has a maximum timeout value of 600 minutes and the default Juniper Networks logo on the user interface page. The second role has a maximum timeout value of 1200 minutes and a custom logo on the user interface page. Based on the merging of these two roles, which two will be applied?()A、A custom logo on the user interface pageB、A maximum timeout value of 600 minutesC、A maximum time out value of 1200 minutesD、A default Juniper Networks logo on the user interface page
A user states that when the user copies files from ‘My Documents’ to a network share, the files are no longer available locally. Which of the following BEST describes the reason the files are no longer visible?()A、The user copied to a read-only folder share.B、The user changed the attributes of the files.C、The user copied the files from the local My Documents folder.D、The user moved instead of copied the files.
From the DX WebUI Dashboard, which steps are used for creating a new admin user? ()A、Click Admin Users. Enter username, password, role, account status, and email.B、Click Admin Users. Enter username, password, role, account status, and user class.C、Click Users Manage Users. Enter username, password, role, account status, and user class.D、Click Users Manage Users. Enter username, password, ActiveDirectory domain, account status, and role.
You navigate to "UAC" "Infranet Enforcer" "Auth Table Mapping" in the admin GUI. You see one policy, which is the unmodified, original default policy.Which statement is true?()A、Dynamic auth table mapping is not enabled.B、A successful authentication attempt will result in a new authentication table entry, which will be delivered only to the Junos enforcer protecting the network from which the user has authenticated.C、To create a static auth table mapping, you must delete the default policy.D、The default policy applies only to the factory-default role User.
You want to restrict access to a role based on the client machine from which the user is accessing the network.Which two role restrictions accomplish this goal? ()A、user nameB、password lengthC、certificateD、Host Checker
View the Exhibit to observe the roles assigned to the SL_REP user. Which statement is true about theassignment of the SELECT_CATALOG_ROLE role to the SL_REP user()A、The user must enable the role explicitly.B、The user can grant the role to other users.C、The user cannot use the role until the DBA enables it explicitly.D、The user can start using the role immediately without any changes
The DBA is defining role for users. Which of the following is not an acceptable method for defining a default role?()A、ALTER USER DEFAULT ROLE ALLB、ALTER USER DEFAULT ROLE ALL EXCEPT ROLE_1C、ALTER USER DEFAULT ROLE NONED、ALTER USER DEFAULT ROLE NONE EXCEPT ROLE_1
You execute the following piece of code with appropriate privileges: User SCOTT has been granted theCREATE SESSION privilege and the MGR role.Which two statements are true when a session logged in as SCOTT queries the SAL column in the viewand the table?()A、Data is redacted for the EMP.SAL column only if the SCOTT session does not have the MGR role set.B、Data is redacted for EMP.SAL column only if the SCOTT session has the MGR role set.C、Data is never redacted for the EMP_V.SAL column.D、Data is redacted for the EMP_V.SAL column only if the SCOTT session has the MGR role set.E、Data is redacted for the EMP_V.SAL column only if the SCOTT session does not have the MGR role set.
Which two statements accurately describe a role?()A、A role can be given to a maximum of 1000 users.B、A user can have access to a maximum of 10 roles.C、A role can have a maximum of 100 privileges contained in it.D、Privileges are given to a role by using the CREATE ROLE statement.E、A role is a named group of related privileges that can be granted to the user.F、A user can have access to several roles, and several users can be assigned the same role.
Examine the code: CREATE ROLE readonly IDENTIFIES USING app.chk_readwrite ; CREATE ROLE readwrite IDENTIFIED USING app.chk_readwrite ; CREATE OR REPLACE PROCEDURE app.chk_readwrite AUTHID CURRENT_USER IS ipchk STRING(30); BEGIN IF sys_context(‘USERENV’,’ISDBA’)=’TRUE’ THEN DBMS_SESSION.SET_ROLE‘READWRITE’) ; ELSE DBMS_SESSION.SET_ROLE(‘READONLY’) ; END; / Which three statements correctly describe the Secure Application role definition?()A、No user or application has to remember or hide a password. B、It prevents everyone except a true DBA session from acquiring the READWRITE role. C、app.chk_readwrite is called whenever a user tries to access rows protected by the READONLY or READWRITE label. D、app.chk_readwrite is called by users or applications when they want to enable the READONLY or READWRITE role.
You create a Web site that is for members only. The behavior of the Web site changes according to the role of the user. The Web site uses the ASP.NET Membership control for creation of user accounts. You need to find out whether a user is a member of a particular role. What should you do?()A、Pass the user names and passwords to Membership.ValidateUser.B、Pass the role names to User.IsInRole.C、Pass the role names to Roles.RoleExists.D、Pass the user names to Membership.GetUser.
单选题When adding a new user and assigning a role, which user role has "read only" rights to theconfiguration and operational states? ()AuserBread_onlyCtarget_operatorDsecurity_operator
多选题When creating a role in a Cisco Nexus 7000 Series Switch, rules are used to define the type of operations that a role will allow the user to perform. Which two of these parameters cannot be applied as a rule? ()Aport-profileBcommandCaccess-listDfeature-groupEOID
单选题View the Exhibit to observe the roles assigned to the SL_REP user. Which statement is true about theassignment of the SELECT_CATALOG_ROLE role to the SL_REP user()AThe user must enable the role explicitly.BThe user can grant the role to other users.CThe user cannot use the role until the DBA enables it explicitly.DThe user can start using the role immediately without any changes
多选题You execute the following piece of code with appropriate privileges: User SCOTT has been granted theCREATE SESSION privilege and the MGR role.Which two statements are true when a session logged in as SCOTT queries the SAL column in the viewand the table?()AData is redacted for the EMP.SAL column only if the SCOTT session does not have the MGR role set.BData is redacted for EMP.SAL column only if the SCOTT session has the MGR role set.CData is never redacted for the EMP_V.SAL column.DData is redacted for the EMP_V.SAL column only if the SCOTT session has the MGR role set.EData is redacted for the EMP_V.SAL column only if the SCOTT session does not have the MGR role set.
单选题View the Exhibit and examine the privileges granted to the MGR_ROLE role. The user SKD has been grantedthe CONNECT and RESOURCE roles only. The database administrator (DBA) grants MGR_ROLE to the userSKD by executing the command: SQL GRANT MGR_ROLE TO SKD WITH ADMIN OPTION; Which statement is true about the user SKD afterhe/she is granted this role()A The user SKD can grant only the MGR_ROLE role to other users, but not the privileges in it.B The user SKD can revoke the MGR_ROLE only from the users for whom he/she is the grantor.C The user SKD can grant the privileges in the MGR_ROLE role to other users, but not with ADMIN OPTION.D The user SKD can grant the privileges in the MGR_ROLE role to other users, but cannot revoke privilegesfrom them
单选题A user states that when the user copies files from ‘My Documents’ to a network share, the files are no longer available locally. Which of the following BEST describes the reason the files are no longer visible?()AThe user copied to a read-only folder share.BThe user changed the attributes of the files.CThe user copied the files from the local My Documents folder.DThe user moved instead of copied the files.