WEEK 9 ASSIGNMENT
.docx
keyboard_arrow_up
School
Bellevue University *
*We aren’t endorsed by this school
Course
605
Subject
Information Systems
Date
May 14, 2024
Type
docx
Pages
6
Uploaded by Manojmanu7 on coursehero.com
1
CIS605-T301 Advanced Database Management (2241-1)
PROFESSOR: Dr. Nicki Susman
WEEK 9 ASSIGNMENT NAME: RAHITHYA KILARU
STUDENT ID: 21400585
October 29, 2023
2
1. USING SSMS Object Explorer (Not T-SQL), create a new condition that will enable password
expiration for the DBMS instance.
For the Name field enter conditionPWEnabled.
For the Facet select Login Options.
In the Expression builder select @PasswordExpirationEnabled.
For the Operator choose =.
In the Value field select True.
Locate the newly created condition and script it as a new query.
Copy and paste the query into your assignment document.
QUESTION: Why do we create the condition before we create the policy.
Conditions are created before policies in SQL Server to establish a set of predefined criteria that
policies will evaluate. This approach offers several advantages, including reusability, as conditions can
be used by multiple policies, ensuring consistency; it also separates the evaluation criteria from policy
configuration, making it easier to manage and maintain policies over time. Conditions with clear and
meaningful names enhance the readability of policies, facilitating understanding for those reviewing
the policies. Additionally, conditions provide flexibility to define complex criteria independently and
then reference them in policies, streamlining the policy configuration process. Overall, creating
conditions before policies contributes to well-organized and efficient policy management in SQL
Server.
*****
2. USING SSMS Object Explorer (Not T-SQL), create a new policy that will evaluate the
conditionPWEnabled condition. The new policy will check a PW change and reject new logins that
do not comply with password expiration rules.
For the Name field enter policyPWRuleCheck.
For the Check Condition select conditionPWEnabled.
Accept the default target of Every Login.
For Evaluation select On change prevent.
Check the Enabled checkbox.
Save the policy.
Locate the newly created policy and script it as a new query.
Copy and paste the query into your assignment document.
3
*****
3. USING SSMS Object Explorer (Not T-SQL), create a new condition that will create a surface
area configuration for the DBMS instance.
For the Name field enter conditionSurfaceConfig.
For the Facet select Surface Area Configuration.
In the Expression builder select XPCmdShellEnabled.
For the Operator choose =.
In the Value field select False.
Locate the newly created condition and script it as a new query.
Copy and paste the query into your assignment document.
Question: What is XPCmdShellEnabled?
What does it do?
XPCmdShellEnabled is a configuration setting in Microsoft SQL
Server that determines whether the SQL Server instance is allowed to execute operating system
commands using the extended stored procedure "xp_cmdshell." When XPCmdShellEnabled is set to
"True," it enables the execution of system commands from within SQL Server, potentially allowing for
interaction with the underlying operating system. In contrast, when set to "False," it restricts the
execution of such commands, enhancing security by preventing potential misuse or unauthorized
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help