Free Oracle Database Security Administration Exam 1Z0-116 Exam Practice Test

You are required to remove embedded passwords from scripts that connect to database instances. Which tool can be used to implement this requirement?

• orapki
• netca
• dbca
• netmgr
• mkstore
• owm

Oracle Database Vault is enabled In the database. You have these requirements:1. Database administrator dbai must export and import data from and to a non-protected schema.2. Database administrator dba2 must export and Import data from and to a protected schema.Which three options together satisfy these requirements?

• Grant become user to dbai.
• Grant sysoper to both users.
• Run d3ms_macadm.authorize_datapump_user procedure granting dbai privileges to impdp and expdp utilities.
• Grant imp_full_database and exp_full_database to dbai and dba2.
• Run dbms_macadm.authobize_datapump_useb procedure granting dba2 privileges to impdp and expdp utilities.
• Grant become user to dba2.
• Grant sysdba to both users.

What does the Application Data Modeling module of the Oracle Data Masking and Subsetting Pack search for?

• data redaction policies
• data masking transformations
• parent/child relationships between the columns holding sensitive information
• encrypted columns

You are Implementing a security policy that makes use of the USERENV namespace.Which USERRENV value does not change for the duration of a session?

• SESSION_CSER
• CURRENT_OSER
• CURRENT SCHEMA
• CLIENT_INFO

For which two are Oracle Label Security policies not applied?

• partitioned tables
• direct path exports
• users with the SYSDA privilege other than sys
• objects in the SYS schema
• conventional path exports

When querying the database view, VSECRYPTION_WALLET, the status Is OPEN_NO_MASTER _KEY. What does this mean?

• You do not have select privileges on this database view.
• The master key has been corrupted.
• The key store is not open.
• The master key has not been created.
• This is expected behavior for this view.

You check the Risk Matrix of the latest Critical Patch Update (CPU).One of the ' Common Vulnerability and Exposure'' reports (CVEs) has Base Score that is above 9 in the Risk Matrix.Which one is not a supported method to address this CVE?

• Request a one off patch exception from Oracle Support.
• Implement a workaround recommended by Oracle Support.
• Upgrade to a new Release.
• Install a new Release Update.
• Install a new Release Update Revision.

To avoid hard coding passwords in scripts, you have elected to create an external password store-Examine this list of steps:1. Set the external password store wallet location.ALTER SYSTEM SET EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION = '/*tc/ORACLE/WALLETS/orcl/external_Btore' SCOPE c SPFILE;2. Log in as a user who has syskm privileges.3. Create an auto-logln keystore that contains the keystore password including the add secret clause.ADMINISTER KEY MANAGEMENT ADD SECRET 'password'FOR CLIENT 'TDE_WALLET'TO LOCAL AUTO_LOGIH KEYSTORE '/etc/0RACLE/WALLETS/orcl/extemal_store';4. Restart the database instance as sysdba.SHUTDOWN IMMEDIATE STARTUP5. Create an auto-logln keystore that contains the keystore password.ADMINISTER KEY MANAGEMENTFOR CLIENT 'TDE_WALLET'TO LOCAL AUTO_L0GIN KEYSTORE ' /etc/ORACLE/WALLETS/orcl/external_store' ;6. Set an Encryption Key.ADMINISTER KEY MANAGEMENT SET ENCRYPTION KEY IDENTIFIED BY keystore_password WITH BACKUPIdentify the minimum number of steps in the correct order that must be performed to create the external password store.

• 2,1,3,4
• 1,2,5,4
• 1,2,3,6,4
• 1,2,6,3,5
• 2,3,6,4
• 1,2,3,4

Examine this security parameter and Its value:SEC_USER_ONAUTHORIZED_ACCESS_BANNER=/opt/oracla/admin/data/unauthwarninq.txt In which file must you include this parameter?

• init. era
• listener.ora
• aqlnet.ora
• tnsnaroes.ora
• names.ora
• server.xml

Which three are true concerning command rules?

• System privileges override command rules.
• If a command rule's associated rule set evaluation results In an error, the command is not allowed to execute.
• A command can have only one command rule that applies to it.
• For DML statement command rules, you can specify a wildcard for the object owner.
• If a command rule's associated rule set Is disabled, then the rule set evaluates to true.
• For DML statement command rules, you can specify a wildcard for the object name.
• Object privileges override command rules.