A redaction policy was added to the SAL column of the SCOTT.EMP table:
BEGIN
DBMS_REDACT.ADD_POLICY(
OBJECT_SCHEMA => 'SCOTT',
OBJECT_NAME => 'EMP',
POLICY_NAME => 'SCOTT_EMP',
COLUMN_NAME => 'SAL',
EXPRESSION => 'SYS_CONTEXT (''SYS_SESSION_ROLES'',''MGR'') = ''FALSE'');
END;
/
All users have their default set of system privileges.
For which three situations will data not be redacted? (Choose three.)
所有用户都有其默认的系统权限集。
对于哪三种情况,数据将不被编辑(选择三个。)
A. SYS sessions, regardless of the roles that are set in the session
A.SYS会话,而不考虑在会话中设置的角色
B. SYSTEM sessions, regardless of the roles that are set in the session
B.系统会话,而不考虑在会话中设置的角色
C. SCOTT sessions, only if the MGR role is set in the session
D. SCOTT sessions, only if the MGR role is granted to SCOTT
D.SCOTT会话,仅当MGR角色被授予SCOTT时
E. SCOTT sessions, because he is the owner of the table
F. SYSTEM session, only if the MGR role is set in the session
Correct Answer: ABD
Both users SYS and SYSTEM automatically have the EXEMPT REDACTION POLICY system privilege.
(SYSTEM has the EXP_FULL_DATABASE role, which includes the EXEMPT REDACTION POLICY system privilege.) This means that the SYS and SYSTEM users can always bypass any existing Oracle Data Redaction policies, and will always be able to view data from tables (or views) that have Data Redaction policies defined on them
QUESTION 107- SYS and SYSTEM users can always bypass any existing Oracle Data Redaction policies
最新推荐文章于 2021-06-16 21:12:20 发布