Sun Certified Solaris 9.0 System and Network Administrator AllinOne Exam Guide [Electronic resources]

Paul Watters

نسخه متنی -صفحه : 265/ 175
نمايش فراداده

Summary

Role-Based Access Control is slowly changing Solaris away from a monolithic administrative model where power is concentrated around a single superuser, to a more distributed set of delegated authorities to execute discrete tasks. While this removes the risk inherent in a centralized model, it also makes effectively managing multiple administrators difficult.

Questions

1.

What is the purpose of sudo?

  1. Upgrade the su command.

  2. Revert the effects of so.

  3. Allow privileged roles to be assigned to users.

  4. Allow RBAC databases to be updated.

2.

What is the main configuration file for sudo?

  1. /etc/sudo

  2. /etc/sudoers

  3. /var/sudo

  4. /etc/susers

3.

Which of the following is not an RBAC role?

  1. Primary Administrator

  2. System Administrator

  3. Operator

  4. Security Administrator

4.

What is an RBAC profile?

  1. Definitions stored in each user’s .profile file

  2. A command for which an authorization can be granted

  3. A role for which an authorization can be granted

  4. A user who is allowed to execute RBAC commands

5.

What is an RBAC authorization?

  1. A privilege granted to a role

  2. A privilege granted to a profile

  3. A privilege granted to a user

  4. A Kerberos security level

6.

What is the purpose of the smexec command?

  1. Execute commands using the su facility.

  2. Execute commands using the sudo facility.

  3. Execute commands symmetrically.

  4. Create, read, update, and delete rows in the exec_attr database.

7.

What is the purpose of the smmultiuser command?

  1. Allocate one role to multiple users.

  2. Execute commands symmetrically for multiple users.

  3. To perform batch functions.

  4. Create, read, update, and delete rows in the exec_attr database.

8.

What is the purpose of the smuser command?

  1. Allocate multiple roles to single users

  2. Execute commands symmetrically for multiple users.

  3. To perform user account operations.

  4. Create, read, update, and delete rows in the exec_attr database.

Answers

1.

C. The purpose of sudo is to allow privileged roles to be assigned to users.

2.

B. /etc/sudoers is the main configuration file for sudo.

3.

D. Security Administrator is not an RBAC role.

4.

C. An RBAC profile is a role for which an authorization can be granted.

5.

A. An RBAC authorization is a privilege granted to a role.

6.

D. The purpose of the smexec command is to create, read, update, and delete rows in the exec_attr database.

7.

C. The purpose of the smmultiuser command is to perform batch functions.

8.

C. The purpose of the smuser command is to perform user account operations.