為大家收集整理了《微軟認(rèn)證考試70-432練習(xí)試題7》供大家參考,希望對(duì)大家有所幫助!??!
QUESTION 31 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a Windows group named Wiikigo\Service. According to the security policy, members of this group are allowed to set up new connections to the SQL Server instance. But this is can only be done during office time from 8:00-20:00. Other users may connect to the SQL Server instance any time. You write the following Transact-SQL statements. CREATE TABLE Security.RestrictedLogonHours ( Id int NOT NULL IDENTITY(1,1), GroupName sysname NOT NULL, RestrictedTimeStart time NOT NULL, RestrictedTimeStop time NOT NULL, CONSTRAINT RestrictedLogonHours_pk PRIMARY KEY CLUSTERED(Id) ); INSERT INTO Security.RestrictedLogonHours ( GroupName, RestrictedTimeStart, RestrictedTimeStop ) VALUES ( 'WIIKIGO\Service', CAST('07:00' AS time), CAST('19:00' AS time) ); You need to implement the company security policy which is stored in the RestrictedLogonHours table. What should you do? A.You should create a SQL Server Agent job. The job causes the SQL Server Windows service to pause during non-business hours. B.You should create a logon trigger. The trigger disallows the connection to the WIIKIGO\Service group during non-business hours C.You should create a SQL Server Agent job. The job periodically looks for and kills connections made by the WIIKIGO\Service group during non-business hours. D.You should create a policy. The policy uses a condition based on the Server Audit facet and disallows the connection to the WIIKIGO\Service group during non-business hours Answer: B QUESTION 32 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database developer who is named UserJack. UserJack views the definitions of all database objects in a database to read data from all user-defined tables, views, and table-valued functions. For UserJack, you have to assign the required permissions. Besides this, you must make sure that other developers can also be given the same permissions, but this should be achieved by executing as little Transact-SQL statements as possible. In the options below, which Transact-SQL statements should you execute? A.GRANT VIEW ANY DEFINITION TO UserJack;EXEC sp_addrolemember 'db_datareader', 'UserJack'; B.CREATE ROLE Developers;GRANT CONTROL TO Developers;EXEC sp_addrolemember 'Developers', 'UserJack'; C.CREATE ROLE Developers;GRANT VIEW DEFINITION TO Developers;GRANT SELECT TO Developers;EXEC sp_addrolemember 'Developers', 'UserJack'; D.CREATE ROLE Developers;EXEC sp_addrolemember 'sp_dbdatareader', 'Developers';EXEC sp_addrolemember 'sp_dbddladmin', 'Developers';EXEC sp_addrolemember 'Developers', 'UserJack'; Answer: C QUESTION 33 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database named DB1 in the instance. Now you are checking and configuring the security of the instance. According to the requirement of the security audit policy, only successful and failed logon attempts are recorded in log files and if records cannot be written to the log files, the SQL Server instance is shut down. You must configure the SQL Server instance making it not violate the security audit policy. In the options below, which Transact-SQL statements should you run? A.sp_configure 'show advanced options', 1;GORECONFIGURE;GOsp_configure 'default trace enabled', 1;GORECONFIGUREGO B.sp_configure 'show advanced options', 1;GORECONFIGURE;GOsp_configure 'common criteria compliance enabled', 1;GORECONFIGUREGO C.CREATE SERVER AUDIT Srv_Audit TO FILE ( FILEPATH ='\\MAIN_SERVER\Audit\' ) WITH (ON_FAILURE = SHUTDOWN);GOCREATE SERVER AUDIT SPECIFICATION Audit_SpecificationFOR SERVER AUDIT Srv_Audit ADD (SUCCESSFUL_LOGIN_GROUP),ADD (FAILED_LOGIN_GROUP) WITH (STATE=ON);GOALTER SERVER AUDIT Srv_Audit WITH (STATE=ON);GO D.CREATE SERVER AUDIT Srv_Audit TO FILE ( FILEPATH ='\\MAIN_SERVER\Audit\' ) WITH (ON_FAILURE = SHUTDOWN);GOCREATE DATABASE AUDIT SPECIFICATION Audit_SpecificationFOR SERVER AUDIT Srv_Audit ADD (SUCCESSFUL_LOGIN_GROUP),ADD (FAILED_LOGIN_GROUP) WITH (STATE=ON);GOALTER SERVER AUDIT Srv_Audit WITH (STATE=ON);GO Answer: C QUESTION 34 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a text file which is named SQL01.log on the E: drive. A SQL Server Agent job executes every 2 minutes and logs information to the text file. You get a report from users saying that the sever doesn't make response. As the technical support, you check and find that the SQL Server Agent service does not run and the SQL Server Agent job no longer functions. You have to identify the reason why the SQL Server Agent service is unresponsive. In the options below, which log should you check? A.You should check SQL1.log B.You should check SQLAGENT.OUT C.You should check log_xx.trc D.You should check ERRORLOG Answer: B QUESTION 35 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database named DB1 in the instance. DB1 has a table which is named Table01 and a stored procedure named Procedure01. Procedure01 choose data from Table01 by using a sp_executesql Transact-SQL statement. You company security rules forbid users to access tables directly in any database. Look at the exception below: "Msg 229, Level 14, State 5, Line 1 The SELECT permission was denied on the object 'Table01', database 'DB1', schema 'dbo'." The exception is raised when Procedure01 is executed by users. You must make sure that e user can successfully execute Procedure1 complying with the company rules. So what action should you perform to achieve this goal? A.You should execute the GRANT SELECT ON dbo.Table01 TO User1 Transact-SQL statement. B.You should execute the GRANT EXECUTE ON dbo.Procedure1 TO User1 Transact-SQL statement. C.You should alter Procedure01 and add the WITH EXECUTE AS OWNER option to its header D.You should alter Procedure01 and add the EXECUTE AS USER = 'dbo' option immediately before the call to the sp_executesql stored procedure. Answer: C
QUESTION 31 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a Windows group named Wiikigo\Service. According to the security policy, members of this group are allowed to set up new connections to the SQL Server instance. But this is can only be done during office time from 8:00-20:00. Other users may connect to the SQL Server instance any time. You write the following Transact-SQL statements. CREATE TABLE Security.RestrictedLogonHours ( Id int NOT NULL IDENTITY(1,1), GroupName sysname NOT NULL, RestrictedTimeStart time NOT NULL, RestrictedTimeStop time NOT NULL, CONSTRAINT RestrictedLogonHours_pk PRIMARY KEY CLUSTERED(Id) ); INSERT INTO Security.RestrictedLogonHours ( GroupName, RestrictedTimeStart, RestrictedTimeStop ) VALUES ( 'WIIKIGO\Service', CAST('07:00' AS time), CAST('19:00' AS time) ); You need to implement the company security policy which is stored in the RestrictedLogonHours table. What should you do? A.You should create a SQL Server Agent job. The job causes the SQL Server Windows service to pause during non-business hours. B.You should create a logon trigger. The trigger disallows the connection to the WIIKIGO\Service group during non-business hours C.You should create a SQL Server Agent job. The job periodically looks for and kills connections made by the WIIKIGO\Service group during non-business hours. D.You should create a policy. The policy uses a condition based on the Server Audit facet and disallows the connection to the WIIKIGO\Service group during non-business hours Answer: B QUESTION 32 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database developer who is named UserJack. UserJack views the definitions of all database objects in a database to read data from all user-defined tables, views, and table-valued functions. For UserJack, you have to assign the required permissions. Besides this, you must make sure that other developers can also be given the same permissions, but this should be achieved by executing as little Transact-SQL statements as possible. In the options below, which Transact-SQL statements should you execute? A.GRANT VIEW ANY DEFINITION TO UserJack;EXEC sp_addrolemember 'db_datareader', 'UserJack'; B.CREATE ROLE Developers;GRANT CONTROL TO Developers;EXEC sp_addrolemember 'Developers', 'UserJack'; C.CREATE ROLE Developers;GRANT VIEW DEFINITION TO Developers;GRANT SELECT TO Developers;EXEC sp_addrolemember 'Developers', 'UserJack'; D.CREATE ROLE Developers;EXEC sp_addrolemember 'sp_dbdatareader', 'Developers';EXEC sp_addrolemember 'sp_dbddladmin', 'Developers';EXEC sp_addrolemember 'Developers', 'UserJack'; Answer: C QUESTION 33 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database named DB1 in the instance. Now you are checking and configuring the security of the instance. According to the requirement of the security audit policy, only successful and failed logon attempts are recorded in log files and if records cannot be written to the log files, the SQL Server instance is shut down. You must configure the SQL Server instance making it not violate the security audit policy. In the options below, which Transact-SQL statements should you run? A.sp_configure 'show advanced options', 1;GORECONFIGURE;GOsp_configure 'default trace enabled', 1;GORECONFIGUREGO B.sp_configure 'show advanced options', 1;GORECONFIGURE;GOsp_configure 'common criteria compliance enabled', 1;GORECONFIGUREGO C.CREATE SERVER AUDIT Srv_Audit TO FILE ( FILEPATH ='\\MAIN_SERVER\Audit\' ) WITH (ON_FAILURE = SHUTDOWN);GOCREATE SERVER AUDIT SPECIFICATION Audit_SpecificationFOR SERVER AUDIT Srv_Audit ADD (SUCCESSFUL_LOGIN_GROUP),ADD (FAILED_LOGIN_GROUP) WITH (STATE=ON);GOALTER SERVER AUDIT Srv_Audit WITH (STATE=ON);GO D.CREATE SERVER AUDIT Srv_Audit TO FILE ( FILEPATH ='\\MAIN_SERVER\Audit\' ) WITH (ON_FAILURE = SHUTDOWN);GOCREATE DATABASE AUDIT SPECIFICATION Audit_SpecificationFOR SERVER AUDIT Srv_Audit ADD (SUCCESSFUL_LOGIN_GROUP),ADD (FAILED_LOGIN_GROUP) WITH (STATE=ON);GOALTER SERVER AUDIT Srv_Audit WITH (STATE=ON);GO Answer: C QUESTION 34 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a text file which is named SQL01.log on the E: drive. A SQL Server Agent job executes every 2 minutes and logs information to the text file. You get a report from users saying that the sever doesn't make response. As the technical support, you check and find that the SQL Server Agent service does not run and the SQL Server Agent job no longer functions. You have to identify the reason why the SQL Server Agent service is unresponsive. In the options below, which log should you check? A.You should check SQL1.log B.You should check SQLAGENT.OUT C.You should check log_xx.trc D.You should check ERRORLOG Answer: B QUESTION 35 You work in a company which is named Wiikigo Corp. The company uses SQL Server 2008. You are the administrator of the company database. Now you are in charge of a SQL Server 2008 instance. There is a database named DB1 in the instance. DB1 has a table which is named Table01 and a stored procedure named Procedure01. Procedure01 choose data from Table01 by using a sp_executesql Transact-SQL statement. You company security rules forbid users to access tables directly in any database. Look at the exception below: "Msg 229, Level 14, State 5, Line 1 The SELECT permission was denied on the object 'Table01', database 'DB1', schema 'dbo'." The exception is raised when Procedure01 is executed by users. You must make sure that e user can successfully execute Procedure1 complying with the company rules. So what action should you perform to achieve this goal? A.You should execute the GRANT SELECT ON dbo.Table01 TO User1 Transact-SQL statement. B.You should execute the GRANT EXECUTE ON dbo.Procedure1 TO User1 Transact-SQL statement. C.You should alter Procedure01 and add the WITH EXECUTE AS OWNER option to its header D.You should alter Procedure01 and add the EXECUTE AS USER = 'dbo' option immediately before the call to the sp_executesql stored procedure. Answer: C