Oracle Database 12c: Installation and Administration — Question 38

You are administering a database and you receive a requirement to apply the following restrictions:
1. A connection must be terminated after four unsuccessful login attempts by user.
2. A user should not be able to create more than four simultaneous sessions.
3. User session must be terminated after 15 minutes of inactivity.
4. Users must be prompted to change their passwords every 15 days.
How would you accomplish these requirements?

Answer options

• A. by granting a secure application role to the users
• B. by creating and assigning a profile to the users and setting the REMOTE_OS_AUTHENT parameter to FALSE
• C. By creating and assigning a profile to the users and setting the SEC_MAX_FAILED_LOGIN_ATTEMPTS parameter to 4
• D. By Implementing Fine-Grained Auditing (FGA) and setting the REMOTE_LOGIN_PASSWORD_FILE parameter to NONE.
• E. By implementing the database resource Manager plan and setting the SEC_MAX_FAILED_LOGIN_ATTEMPTS parameters to 4.

Correct answer: C

Explanation

The correct answer is C because setting the SEC_MAX_FAILED_LOGIN_ATTEMPTS parameter to 4 directly addresses the requirement to terminate connections after four unsuccessful login attempts. Options A and B do not address all the specified restrictions, while D focuses on auditing rather than session management and user restrictions. Option E incorrectly suggests using the database resource Manager plan, which is not relevant for the requirements given.