Unit 7 Review
To log on to SQL Server using your SQL Server login ID, you use ________________ authentication.
SQL Server
You can use the GRANT statement to give users permission to use each of the following items except for one. Which one? A) a database object B) a DDL statement C) all the objects in a schema D) all the objects in a database
all the objects in a database
A user who's granted the REFERENCES object permission can do what?
create objects that refer to the object
Before you can delete a user-defined server role, you must
delete all of its members
Users who are involved in the administration of the server are typically assigned to one of the ________________ roles that are built into SQL Server.
fixed server
To allow users to log on using either type of authentication, you need to set the SQL Server authentication to ________________ mode.
mixed
The users, groups, logins, and roles that have access to a server are called
principals
After you create a schema, you can create any object within that schema by
qualifying the object name with the schema name
The entities that can be secured on a server are called
securables
The highest level at which you can grant permissions is the ________________ level.
server
Where would you go to create, modify, or delete logins using the Management Studio?
the Security folder for the server
Which statement is true about the DENY and REVOKE statements?
A denied permission can't be granted by role membership, but a revoked permission can
Which statement do you use to transfer a database object from one schema to another?
ALTER SCHEMA
Each of the outcomes listed below is a result of executing the following script except for one. Which one? CREATE ROLE ExampleRole; ALTER ROLE db_datareader ADD MEMBER ExampleRole; GRANT INSERT,UPDATE ON Vendors TO ExampleRole; DENY INSERT ON Vendors TO ASmith; ALTER ROLE ExampleRole ADD MEMBER ASmith; A) By being assigned to the role ExampleRole, a user would be granted INSERT and UPDATE permission to the Vendors table and SELECT permission to all user tables. B) The user named ASmith is granted UPDATE permission to the Vendors table and SELECT permission to all user tables. C) By being assigned to the role db_datareader, a user would be granted INSERT and UPDATE permission to the Vendors table and SELECT permission to all user tables. D) The user named ASmith can't be granted INSERT permission to the Vendors table by being assigned to the role ExampleRole.
By being assigned to the role db_datareader, a user would be granted INSERT and UPDATE permission to the Vendors table and SELECT permission to all user tables.
Which of the following statements creates a SQL Server login ID for a user named TomBrown with the password 'abc123XYZ'. A) CREATE TomBrown WITH PASSWORD = 'abc123XYZ'; B) CREATE LOGIN TomBrown WITH 'abc123XYZ'; C) EXEC LOGIN TomBrown WITH PASSWORD = 'abc123XYZ'; D) CREATE LOGIN TomBrown WITH PASSWORD = 'abc123XYZ';
CREATE LOGIN TomBrown WITH PASSWORD = 'abc123XYZ';
Which of the following statements creates a login ID for a Windows user named AliceJackson in a domain named Sales? A) CREATE LOGIN [Sales\AliceJackson]; B) EXEC LOGIN [Sales\AliceJackson] FROM WINDOWS; C) CREATE LOGIN [Sales\AliceJackson] FROM WINDOWS; D) CREATE LOGIN Sales\AliceJackson FROM WINDOWS;
CREATE LOGIN [Sales\AliceJackson] FROM WINDOWS;
Which statement can you use to create a user-defined database role?
CREATE ROLE
Which of the following statements creates a database user in the current database from the SQL Server login ID for TomBrown? A) USER TomBrown; B) CREATE USER TomBrown; C) CREATE DB USER TomBrown; D) EXEC USER TomBrown;
CREATE USER TomBrown;
Which option can you use to make SQL Server prompt the user for a new password the first time the login ID is used?
MUST_CHANGE
All of the following statements about application roles are true except for one. Which one? A) An application role is activated by executing a stored procedure. B) Unlike a standard database role, an application role can contain only one member. C) Once a connection activates the application role, its security profile changes from that of the login ID to that of the application role. D) Once a connection activates an application role, its security profile can only be changed back to that of the login ID if a cookie is created when the role was activated.
Unlike a standard database role, an application role can contain only one member.
To log on to SQL Server using your Windows login ID, you use ________________ authentication.
Windows
A user who's granted the EXECUTE object permission can execute what?
a stored procedure or function
The dbcreator role A) is intended for those users who need to be able to work with database objects B) lets members create, alter, and drop databases C) allows new members to be added to the role D) all of the above
all of the above
With the ALTER LOGIN statement, you can A) enable or disable a login ID B) change the name for a login ID C) change the default database or language D) all of the above
all of the above