请帮我解决这个问题 [英] please help me in solving the question

问题描述

•请至少执行以下其中一项：

案例4-1 Oracle安全

您被聘为小型经销商公司的数据库管理员，以实施和管理其主要应用程序的数据库组件。该应用程序的数据模型如图4-20所示。架构所有者称为DBSEC。



a。使用提供的脚本来创建架构。

b。根据表4-7中列出的条件创建三个不同的配置文件。

表4-7配置文件配置要求

配置文件资源密码

DBSEC_ADMIN_PROF SESSIONS_PER_USER = 5

CONNECT_TIME = 8小时

IDLE_TIME = 1小时PASSWORD_LIFE_TIME = 1个月

PASSWORD_GRACE_TIME = 7天

DBSEC_DEVELOPER_PROF CONNECT_TIME = 12小时

IDLE_TIME = 2小时

CPU_PER_CALL = 1分钟PASSWORD_LIFE_TIME = 1个月

PASSWORD_GRACE_TIME = 14天

DBSEC_DEVELOPER_PROF SESSIONS_PER_USER = 1

CPU_PER_CALL = 5秒

CONNECT_TIME = 8小时

IDLE_TIME = 30分钟

LOGICAL_READS_PER_CALL = 10 KB FAILED_LOGIN_ATTEMPTS = 1

PASSWORD_LIFE_TIME = 1个月

PASSWORD_LOCK_TIME = 3天

PASSWORD_GRACE_TIME = 14天



c。根据表4-8中列出的规范创建具有权限的四个不同角色。

表4-8角色和权限配置要求

角色名称权限

所有DBSEC表上的DBSEC_ADMIN_ROLE SELECT和ALTER

所有DBSEC表上的DBSEC_CLERK_ROLE SELECT，INSERT和UPDATE

所有DBSEC上的DBSEC_SUPERVISOR_ROLE SELECT，INSERT，UPDATE和DELETE表格

所有DBSEC表格上的DBSEC_QUERY_ROLE SELECT



d。创建这些配置文件和角色后，根据表4-9中的规范创建用户。

用户名角色配置文件

DBSEC_ADMIN DBSEC_ADMIN_ROLE DBSEC_ADMIN_PROF

DBSEC_CLERK DBSEC_CLERK_ROLE DBSEC_CLERK_PROF

DBSEC_SUPER DBSEC_SUPERVISOR_ROLE DBSEC_CLERK_PROF

DBSEC_QUERY1 DBSEC_QUERY_ROLE DBSEC_CLERK_PROF

DBSEC_QUERY2 DBSEC_QUERY_ROLE DBSEC_CLERK_PROF

DBSEC_DEVELOPER DBSEC_ADMIN_ROLE + DBSEC_SUPERVISOR_ROLE DBSEC_DEVELOPER_PROF

e。通过查看数据字典验证您的实现。

案例4-2 SQL Server安全性

您是Acme Corporation的DBA。您被要求实现新的数据库服务器使用Microsoft SQL Server。在任何实现中，安全性都需要成为整个项目的主题，而不是事后的想法。设计一个允许您实施策略的实现。设计还应包括基于角色的安全结构。数据库的业务需求如下：

•任何用户都不应对任何对象具有删除权限。

•人力资源需要能够完全管理员工数据。

•客户服务需要能够对现有客户和查看订单数据进行更改。

•客户客户经理需要能够完全管理客户数据和订单。< b / b $ b•销售需要能够查看客户数据并完全管理订单。

•营销需要能够提取季度销售数据进行分析。

按照以下步骤生成解决方案：

1.使用Windows集成安全模式安装SQL Server。

2.将Window用户用于服务帐户。 />
3.将内置的\管理员降级为安全性并为系统管理员创建一个DBA窗口组。

4.根据最佳实践设置密码策略。

a。至少使用八个字符

b。使用复杂的密码

c。三次尝试后设置帐户锁定

d。保留历史记录中的五个密码

e。 30天后密码过期

5.设置表4-10到4-14中列出的角色。

表4-10 Human_Resources

表格选择插入更新删除

员工√√√X

表4-11 Customer_Service

表格选择插入更新删除

客户√√X

订单√X

订单详情√X

表4-12 Account_Managers

表格选择插入更新删除

客户√√√X

订单√√√X

订单详情√√√X

表4-13销售额

表格选择插入更新删除

客户√X

订单√√√X

订单详情√√√X

表4-14营销

表格选择插入更新删除

地区√X
订单√X

订单详情√X

• Please do at least one of the following:
Case 4-1 Oracle Security
You are hired as a database administrator for a small reseller company to implement and administer the database component of their main application.Tthe data model of this application is presented inFigure 4-20. The schema owner is called DBSEC.

a. Use the scripts provided to create a schema.
b. Create three different profiles based on the criteria listed in Table 4-7.
Table 4-7 Profile configuration requirements
Profile Resources Password
DBSEC_ADMIN_PROF SESSIONS_PER_USER = 5
CONNECT_TIME = 8 hours
IDLE_TIME = 1 hour PASSWORD_LIFE_TIME = 1 month
PASSWORD_GRACE_TIME = 7 days
DBSEC_DEVELOPER_PROF CONNECT_TIME = 12 hours
IDLE_TIME = 2 hours
CPU_PER_CALL = 1 minute PASSWORD_LIFE_TIME = 1 month
PASSWORD_GRACE_TIME = 14 days
DBSEC_DEVELOPER_PROF SESSIONS_PER_USER = 1
CPU_PER_CALL = 5 seconds
CONNECT_TIME = 8 hours
IDLE_TIME = 30 minutes
LOGICAL_READS_PER_CALL = 10 KB FAILED_LOGIN_ATTEMPTS = 1
PASSWORD_LIFE_TIME = 1 month
PASSWORD_LOCK_TIME = 3 days
PASSWORD_GRACE_TIME = 14 days

c. Create four different roles that have privileges according to the specification outlined inTable 4-8.
Table 4-8 Roles and privileges configuration requirements
Role Name Privileges
DBSEC_ADMIN_ROLE SELECT and ALTER on all DBSEC tables
DBSEC_CLERK_ROLE SELECT,INSERT,and UPDATE on all DBSEC tables
DBSEC_SUPERVISOR_ROLE SELECT,INSERT,UPDATE,and DELETE on all DBSEC tables
DBSEC_QUERY_ROLE SELECT on all DBSEC tables

d. After creating these profiles and roles,create users according to the specifications in Table 4-9.
User Name Role Profile
DBSEC_ADMIN DBSEC_ADMIN_ROLE DBSEC_ADMIN_PROF
DBSEC_CLERK DBSEC_CLERK_ROLE DBSEC_CLERK_PROF
DBSEC_SUPER DBSEC_SUPERVISOR_ROLE DBSEC_CLERK_PROF
DBSEC_QUERY1 DBSEC_QUERY_ROLE DBSEC_CLERK_PROF
DBSEC_QUERY2 DBSEC_QUERY_ROLE DBSEC_CLERK_PROF
DBSEC_DEVELOPER DBSEC_ADMIN_ROLE + DBSEC_SUPERVISOR_ROLE DBSEC_DEVELOPER_PROF
e. Verify your implementation by viewing the data dictionary.
Case 4-2 SQL Server Security
You are the DBA for Acme Corporation.You’re asked to implement a new database server usingMicrosoft SQL Server.In any implementation,security needs to be a theme woven throughouttheproject,not an afterthought. Design an implementation that allows you to implement policies. The design should also include a role-based security structure. The business requirements for the database are as follows:
• No user should have delete access to any object.
• Human Resources needs to be able to fully manage employee data.
• Customer Service needs to be able to make changes to existing customers and vieworder data.
• Customer account managers need to be able to fully manage customer data and orders.
• Sales needs to be able to view customer data and fully manage orders.
• Marketing needs to able to pull quarterly sales numbers to analyze.
Follow these steps to produce a solution:
1. Install SQL Server using the Windows Integrated security mode.
2. Use a Window user for the service accounts.
3. Demote built-in\administrators to security and create a DBA windows group for systemadministrators.
4. Set up password policies based on best practices.
a. Use a minimum of eight characters
b. Use complex passwords
c. Set account lock-out for after three tries
d. Keep five passwords in history
e. Expire passwords after 30 days
5. Set up the roles listed in Tables 4-10 through 4-14.
Table 4-10 Human_Resources
Table Select Insert Update Delete
Employees √ √ √ X
Table 4-11 Customer_Service
Table Select Insert Update Delete
Customers √ √ X
Orders √ X
Order Details √ X
Table 4-12 Account_Managers
Table Select Insert Update Delete
Customers √ √ √ X
Orders √ √ √ X
Orders Details √ √ √ X
Table 4-13 Sales
Table Select Insert Update Delete
Customers √ X
Orders √ √ √ X
Order Details √ √ √ X
Table 4-14 Marketing
Table Select Insert Update Delete
Territory √ X
Orders √ X
Order Details √ X

推荐答案

你还有吗？ ally希望其他人为你做功课？



这根本就不会发生。

Do you really expect other people to do your homework for you?

That's simply not going to happen.

我们不做你的家庭作业，这是有原因的。

这样设置是为了让你练习你被告知的内容，这样你的导师可以检查你是否已经正确地学习了它，对他做了更正。他继续教学。



亲自尝试，你可能会发现它并不像你想象的那么难！

We do not do your homework, it is set for a reason.
It is set so that you get to practice what you have been told, and so that your tutor can check that you have learned it properly, making corrections to his teaching as he goes along.

Try it yourself, you may find it is not as difficult as you think!

这篇关于请帮我解决这个问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！