|
Question required!!!
|
Question 1. If an object is created statically by a role within a trusted context and the ROLE AS OBJECT OWNER clause is specified, who becomes the object owner when executing the package? A. The role B. The schema name C. The owner keyword D. The current SQLID (if set) Answer: A Question 2. A company uses TRUSTED CONTEXT "ERP1" and ROLE "ERP_ROLE" as a security mechanism to limit security exposure for an application. All the DB2 objects (databases, table spaces, tables, indexes, views, plans and packages) have been created by that ROLE. The ROLE "ERP_ROLE" has been assigned to User ID "DBA01" in order to perform DBA related tasks. When the user "DBA01" leaves the company, the authorization ID is removed. Which of the following statements are correct? (Select two answers) A. None of these DB2 objects need to be recreated to re-grant the privileges. B. The related plans and packages have to be recreated and the privileges re-granted. C. When removing user "DBA01" privileges, none of these DB2 objects need to be dropped. D. Only the related databases, table spaces, tables, indexes and views need to be recreated and the privileges re-granted. E. To remove the privileges of user "DBA01" on these related plans and packages, they have to be dropped and as a result all associated privileges are revoked. Answer: A, C Question 3. A DBA wishes to audit all access to the non-audited table OWNER.EMPLOYEE. Assuming no audit traces are started, which of the following steps are needed to audit access to this table? A. -START TRACE AUDIT CLASS (5) B. -START TRACE AUDIT CLASS (4,5) C. -START TRACE AUDIT CLASS (4,5) and ALTER TABLE OWNER.EMPLOYEE AUDIT ALL D. -START TRACE AUDIT CLASS (4,5) and ALTER TABLE OWNER.EMPLOYEE DATA CAPTURE CHANGES Answer: C Question 4. A DBA needs to use the DSN command processor to delete DB2 packages that are no longer needed. Which of the following choices is correct for the DBA to use? A. SPUFI or QMF with the DROP statement B. FREE Package (. . ) C. DROP Package ( . . ) D. DROP PLAN ( ) PKLIST ( . . ) Answer: B Question 5. At which of the following times is the access control authorization routine (DSNX@XAC) invoked? A. At DB2 startup. B. When executing a DB2 GRANT statement. C. When DB2 has cached authorization information. D. During any authorization check if NO was specified in the USE PROTECTION field of the DSNTIPP panel. Answer: A Question 6. Which of the following RACF profiles would be used to allow IMS to access DB2 DSN1? A. DSN1.IMS B. DSNR.IMS C. DSN1.MASS D. DSN1.SASS Answer: C Question 7. An audit trace shows that TSO user TSOID1 with DBADM authority, is continually attempting to update a table in DB2 subsystem DSN1 that is not supposed to be updated. Which of the following will prevent access to the DB2 subsystem? A. REVOKE DBADM FROM TSOID1 B. Change TSOID1 's access to DSNR resource class DSN1.TSO to NONE C. Change TSOID1 's access to DSNR resource class DSN1.BATCH to READ D. Change TSOID1 's access to DSNR resource class DSN1.BATCH to NONE Answer: D Question 8. A DBA has been required by a new company policy to implement a new DB2 security method. The company would like to separate the authorization IDs that can execute plans and packages from the authorization IDs that can create new plans and packages. Which of the following explicit system privileges allows the user to create new plans and packages without being able to also execute them? A. BINDADD B. CREATEIN C. BINDAGENT D. CREATEDBA Answer: C Question 9. Which of the following DSNZPARMs is necessary to influence access path selection for certain queries? A. STDSQL B. OPTHINTS C. PARTKEYU D. DESCSTAT Answer: B Question 10. What is the purpose of the following catalog health query? SELECT BNAME, BCREATOR, BTYPE, DNAME FROM SYSIBM.SYSPLANDEP PD WHERE BTYPE IN ('T', 'V', 'A') AND NOT EXISTS (SELECT * FROM SYSIBM.SYSTADLES WHERE CREATOR = PD.BCREATOR AND NAME = PD.BNAME AND TYPE = PD.STYPE); A. For every row in SYSTABLES that indicates a dependency upon a table, view, or alias, there should be a corresponding row in SYSPLANDEP. B. For every row in SYSPLANDEP that indicates a dependency upon a table, view, or alias, there should be a corresponding row in SYSTABLES. C. For every row in SYSPLANDEP that indicates a dependency upon a table space, view, or a table that has been altered, there should be a corresponding row in SYSTASLES. D. For every row in SYSPLANDEP that indicates a dependency upon a table space, a table with a VARCHAR column, or alias, there should be a corresponding row in SYSTABLES. Answer: B
Copyright © 2004 CertsBraindumps.com Inc. All rights reserved.