Summary

Summary

Role-Based Access Control is slowly changing Solaris away from a monolithic administrative model where power is concentrated around a single superuser, to a more distributed set of delegated authorities to execute discrete tasks. While this removes the risk inherent in a centralized model, it also makes effectively managing multiple administrators difficult.

Questions

1. 

What is the purpose of sudo?

  1. Upgrade the su command.

  2. Revert the effects of so.

  3. Allow privileged roles to be assigned to users.

  4. Allow RBAC databases to be updated.

 C. The purpose of sudo is to allow privileged roles to be assigned to users.

2. 

What is the main configuration file for sudo?

  1. /etc/sudo

  2. /etc/sudoers

  3. /var/sudo

  4. /etc/susers

 B.  /etc/sudoers is the main configuration file for sudo.

3. 

Which of the following is not an RBAC role?

  1. Primary Administrator

  2. System Administrator

  3. Operator

  4. Security Administrator

 D. Security Administrator is not an RBAC role.

4. 

What is an RBAC profile?

  1. Definitions stored in each user’s .profile file

  2. A command for which an authorization can be granted

  3. A role for which an authorization can be granted

  4. A user who is allowed to execute RBAC commands

 C. An RBAC profile is a role for which an authorization can be granted.

5. 

What is an RBAC authorization?

  1. A privilege granted to a role

  2. A privilege granted to a profile

  3. A privilege granted to a user

  4. A Kerberos security level

 A. An RBAC authorization is a privilege granted to a role.

6. 

What is the purpose of the smexec command?

  1. Execute commands using the su facility.

  2. Execute commands using the sudo facility.

  3. Execute commands symmetrically.

  4. Create, read, update, and delete rows in the exec_attr database.

 D. The purpose of the  smexec  command is to create, read, update, and delete rows in the exec _ attr database.

7. 

What is the purpose of the smmultiuser command?

  1. Allocate one role to multiple users.

  2. Execute commands symmetrically for multiple users.

  3. To perform batch functions.

  4. Create, read, update, and delete rows in the exec_attr database.

 C. The purpose of the  smmultiuser  command is to perform batch functions.

8. 

What is the purpose of the smuser command?

  1. Allocate multiple roles to single users

  2. Execute commands symmetrically for multiple users.

  3. To perform user account operations.

  4. Create, read, update, and delete rows in the exec_attr database.

 C. The purpose of the smuser command is to perform user account operations.

Answers

1. 

C. The purpose of sudo is to allow privileged roles to be assigned to users.

2. 

B. /etc/sudoers is the main configuration file for sudo.

3. 

D. Security Administrator is not an RBAC role.

4. 

C. An RBAC profile is a role for which an authorization can be granted.

5. 

A. An RBAC authorization is a privilege granted to a role.

6. 

D. The purpose of the smexec command is to create, read, update, and delete rows in the exec_attr database.

7. 

C. The purpose of the smmultiuser command is to perform batch functions.

8. 

C. The purpose of the smuser command is to perform user account operations.



Part I: Solaris 9 Operating Environment, Exam I