Examice

Exam 1z0-149 All QuestionsBrowse all questions from this exam

Question 47

Which three are true regarding code based access control (CBAC)? (Choose three.)

In a multitenant environment, the DELEGATE option of CBAC cannot be used.

CBAC roles can be granted to a program unit only if they are directly granted to its owner.

CBAC roles can be granted to a program unit only if they are the predefined roles automatically defined by the standard scripts as part of database creation.

You can use CBAC to attach database roles to a PL/SQL function or procedure only.

In CBAC, the ADMIN and DELEGATE options cannot both be granted to the same user.

You can use CBAC to attach database roles to a PL/SQL function, procedure, or package.

CBAC cannot be used to secure definer's rights.

Correct Answer: B, E, F

CBAC roles can be granted to a program unit only if they are directly granted to its owner. In CBAC, the ADMIN and DELEGATE options cannot both be granted to the same user. You can use CBAC to attach database roles to a PL/SQL function, procedure, or package.

Discussion

mattiamarraffaOptions: BCF

I think it's B+C+F https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/managing-security-for-definers-rights-and-invokers-rights.html#GUID-D7E76448-152C-4207-9D48-FE562E0D911C

mattiamarraffaOptions: BCF

I think it's B+C+G https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/managing-security-for-definers-rights-and-invokers-rights.html#GUID-D7E76448-152C-4207-9D48-FE562E0D911C

nicola83

In the file is written CAN and not CANNOT: 'Code based access control CAN be used to secure definer’s rights.' G is wrong.

mattiamarraffa

Remove please. It's wrong