Administrating a Database Lesson 7

Question 1

Security, like every other aspect of the database
project, must be carefully designed, implemented,
and tested. (True or False)

Answer 1

True

Question 2

is used to grant an entity (such as a
user access) to an object (such as another user or
a database).

Answer 2

permission

Question 3

In SQL Server, the security model is based on what
is referred to as ___

Answer 3

“securables”

Question 4

is the process by which an
individual’s access to a computer system is
controlled by identification of that user using
credentials provided by that user.

Answer 4

login or logon

Question 5

The most common login method is using a

Answer 5

username and password

Question 6

is a logical representation of
a person within a electronic system.

Answer 6

user account

Question 7

A security System that requires two distinct forms of identification in order to access something

Answer 7

Two-Factor Authentication (2FA)

Question 8

The three different methods for which a user can
be initially identified include:

Answer 8

– Windows user login
– Membership in a Windows user group
– SQL Server-specific login (if the server uses
mixed-mode security)

Question 9

It is important to remember that at the SQL Server
level, where the database resides, users are known
by their ____. This can be a SQL Server login,
Windows domain, or a username login choice.

Answer 9

login name

Question 10

Even though a user may belong to a fixed
database role and have certain
administrative level permissions, a user still
cannot access the data without first being
granted permission to the database object
itself (True or False)

Answer 10

True

Question 11

All users are automatically members of the
public standard database role. (True or False)

Answer 11

True

Question 12

means the user can access
the object

Answer 12

–Grant permission

Question 13

overrides a grant
permission.

Answer 13

Deny permission

Question 14

removes the permission
assigned, regardless of whether it’s deny or
grant.

Answer 14

–Revoke permission

Question 15

There are three different types of accounts
which are available for the SQL Server
service account:

Answer 15

– Local user account
– Local system account
–Domain user account

Question 16

is the act of establishing or
confirming a user or system identity.

Answer 16

Authentication

Question 17

is superior to
mixed mode because users don’t need to
learn yet another password and because it
leverages the security design of the network

Answer 17

Windows Authentication mode

Question 18

Associated with SQL authentication is the ____, the built-in SQL administrator account
associated with SQL authentication.

Answer 18

sa account or system administrator account

Question 18

A ___ and related passwords
are defined on the SQL server and are not related
to ___.

Answer 18

SQL Server login account, Active Directory or Windows accounts

Question 19

also support mixed mode, which
allows you to connect to the SQL server using
Windows authentication or SQL Server
authentication.

Answer 19

SQL servers

Question 20

SQL Server includes fixed, predefined server roles:

Answer 20

– Bulkadmin
– Dbcreator
– Diskadmin
– Processadmin
– Securityadmin
– Serveradmin
– Setupadmin
– Sysadmin

Question 21

Any user who wishes to access a database but has
not been declared a user within the database will
automatically be granted the user privileges of the __

Answer 21

guest user

Question 22

is not actually created
when a database is created. It must be specifically
added in through the SQL Server Management
Studio interface or through a Transact-SQL
statement.

Answer 22

The guest user account

Question 23

are the permissions that allow
a user to act on the database objects (such as tables, stored procedures, and views):
– Select
– Insert
– Update
– Delete
– DRI (References)
– Execute

Answer 23

Object permissions

Question 24

In SQL Server databases, users often access
data by going through one or several objects. (True or False)

Answer 24

True

Question 25

apply to views, stored
procedures, and user-defined functions.

Answer 25

Ownership chains

Question 26

If the ownership chain is broken (meaning
there’s a different owner between an object
and the next lower object), SQL Server
checks the user’s permission for every
object accessed. (True or False)

Answer 26

True

Question 27

The purpose of a database ___ is so that you have something to restore if data is lost during a business’s daily routine.

Answer 27

backup

Question 28

A user may accidentally delete a table or a
database administrator may need to ___
multiple tables on different servers in order to
combine them into one database.

Answer 28

restore

Question 29

Types of Backups

Answer 29

Full backup
Differential backup:
Incremental backup

Question 30

contains all the data in a
specific database or set of filegroups or files, and
also enough log to allow for recovering that data.

Answer 30

Full backup

Question 31

contains only the data that has changed since the
differential base.

Answer 31

Differential backup

Question 32

is
based on the last backup of the data.

Answer 32

Incremental backup

Question 33

are
designed to provide more flexibility for
backing up databases that contain some
read-only filegroups under the simple
recovery model.

Answer 33

Partial and differential partial backups

Question 34

The files in a database can be backed up
and restored ___

Answer 34

individually

Question 35

Using___ can increase the speed of recovery by letting you restore only damaged files without requiring you to restore the rest of the database.

Answer 35

file backups

Question 36

SQL Server backups are created on backup
devices, such as

Answer 36

disk files or tape media

Question 37

You can append new backups to any existing
backups on a device or overwrite any
existing backups (True or False)

Answer 37

true