7. You have a user who requires the permissions to drop a database and perform
any configuration and maintenance tasks. Which of the following actions
would violate “The Principle of Least Privilege”?
A. Adding the user to the db_datareader role
B. Adding the user to the db_owner role
C. Adding the user to the sysadmin role
D. Giving the user permission to modify tables
The correct answer is C. Adding the user to the sysadmin role would provide
him with permissions greatly exceeding his needs, which violates “The Principle
of Least Privilege.” Answers A and D are incorrect since the permissions for
these roles are less then what is required. Answer B is the appropriate role
with the best permissions fit. This answer is incorrect since it does not violate
the principle.
Bạn đang xem 7. - THE REAL MTCS SQL SERVER 2008 EXAM 70 432 PREP KIT P145 PPSX