Unit 7
All of the following statements about application roles are true except for one. Which one?
Unlike a standard database role, an application role can contain only one member.
schema
collection of database objects
A user who's granted the REFERENCES object permission can do what?
create objects that refer to the object
Which statement do you use to transfer a database object from one schema to another?
ALTER SCHEMA
After you create a schema, you can create any object within that schema by
qualifying the object name with the schema name
The entities that can be secured on a server are called
securables
The highest level at which you can grant permissions is the ________________ level.
server
Where would you go to create, modify, or delete logins using the Management Studio?
the Security folder for the server
Which option can you use to make SQL Server prompt the user for a new password the first time the login ID is used?
MUST_CHANGE
Which statement is true about the DENY and REVOKE statements?
A denied permission can't be granted by role membership, but a revoked permission can
Each of the outcomes listed below is a result of executing the following script except for one. Which one? CREATE ROLE ExampleRole; ALTER ROLE db_datareader ADD MEMBER ExampleRole; GRANT INSERT,UPDATE ON Vendors TO ExampleRole; DENY INSERT ON Vendors TO ASmith; ALTER ROLE ExampleRole ADD MEMBER ASmith;
By being assigned to the role db_datareader, a user would be granted INSERT and UPDATE permission to the Vendors table and SELECT permission to all user tables.
Which of the following statements creates a SQL Server login ID for a user named TomBrown with the password 'abc123XYZ'.
CREATE LOGIN TomBrown WITH PASSWORD = 'abc123XYZ';
Which of the following statements creates a login ID for a Windows user named AliceJackson in a domain named Sales?
CREATE LOGIN [Sales\AliceJackson] FROM WINDOWS;
Which statement can you use to create a user-defined database role?
CREATE ROLE
Which of the following statements creates a database user in the current database from the SQL Server login ID for TomBrown?
CREATE USER TomBrown;
To log on to SQL Server using your SQL Server login ID, you use ________________ authentication.
SQL Server
To log on to SQL Server using your Windows login ID, you use ________________ authentication.
Windows
A user who's granted the EXECUTE object permission can execute what?
a stored procedure or function
You can use the GRANT statement to give users permission to use each of the following items except for one. Which one?
all the objects in a database
The users, groups, logins, and roles that have access to a server are called
principals
Before you can delete a user-defined server role, you must
delete all of its members
With the ALTER LOGIN statement, you can
enable or disable a login ID change the name for a login ID change the default database or language all of the above
Users who are involved in the administration of the server are typically assigned to one of the ________________ roles that are built into SQL Server.
fixed server
The dbcreator role
is intended for those users who need to be able to work with database objects lets members create, alter, and drop databases allows new members to be added to the role all of the above
To allow users to log on using either type of authentication, you need to set the SQL Server authentication to ________________ mode.
mixed
DDL
objects in a database
