Free 1Z0-459 Braindumps


  • Exam Number: 1Z0-459
  • Provider: Oracle
  • Questions: 70
  • Updated On: 17-Nov-2018

QUESTION: 1
Which statement is true about the check-in and check-out capabilities in Oracle Privileged
Account Manager (OPAM)? (Choose the best answer.)

A. Authorized users can check out an account, which provisions it; they can then check in the
account, which de-provisions it.
B. Authorized and non-authorized users can check in an account, which provisions it; they can
then check out the account, which de-provisions it.
C. Authorized users can check out an account before using it; they can then check in the
account when they are finished with it.
D. Authorized and non-authorized users can check out an account before using it; they can then
check in the account when they are finished with it.
E. Authorized users can check out an account before using it, but administrators must check in
the account.

Answer(s): C
Explanation:
Oracle Privileged Account Manager requires all authorized users to check out an account before
using it, and then to check that account back in when they are finished with it. Oracle Privileged
Account Manager audits account check outs and check ins by tracking the real identity (the
person's name) of every shared administrator user at any given moment in time. By using this
information, Oracle Privileged Account Manager can provide a complete audit trail that shows
who accessed what, when, and where.
Reference:
https://docs.oracle.com/cd/E27559_01/admin.1112/e27152/und_opam.htm#OPMAG11
QUESTION: 2
Which statement is true about assigning privileged accounts to end users by using Oracle
Privileged Account Manager? (Choose the best answer.)

A. Privileged accounts can be directly assigned to end users but not to groups.
B. Privileged accounts can be directly assigned to groups but not to specific end users.
C. Privileged accounts can be directly assigned to end users and to groups.
D. Privileged accounts can be directly assigned to only one unique end user.
E. Privileged accounts must be directly assigned to more than one end user.

Answer(s): C
Explanation:
In addition to directly assigning privileged accounts to end users, Oracle Privileged Account
Manager allows you to assign privileged accounts to groups. For example, you might want to
create a "Data Center Product UNIX Administrators" group and give that group access to certain
privileged accounts.
When designing your deployment, it is important to ensure that a given end user is granted
access to a privileged account through only one path (either directly or through a single group).
When Oracle Privileged Account Manager discovers multiple grant paths, it picks the first path
retrieved from its back-end, which leads to non-deterministic behavior. This behavior can cause
the effective Usage Policy to be different from the intended Usage Policy.
Reference:
http://docs.oracle.com/cd/E37115_01/admin.1112/e27152/und_security.htm#OPMAG3

Get The Premium Version

Allbraindumps.com
 Test Questions PDF from Myitguides.com

 Test Questions PDF from Myitguides.com