The Real MTCS SQL Server 2008 Exam 70/432 Prep Kit- P29: Congratulations on your journey to become certified in SQL Server 2008. This book will help prepare you for your exam and give you a practical view of working with SQL Server 2008. | 122 Chapter 3 Configuring SQL Server 2008 Self Test Quick Answer Key 1. D 11. B and C 2. A 12. B 3. C 13. A 4. A and C 14. C 5. D 15. B 6. B 16. C 7. D 17. A 8. A 18. B 9. C 19. C 10. A and C 20. A Chapter 4 MCTS SQL Server 2008 Exam 432 Managing Security Exam objectives in this chapter Principals Roles The Principle of Least Privilege Users Schemas Permissions Auditing The SQL Server Configuration Manager Security and SQL Agent Exam objectives review 0 Summary of Exam Objectives 0 Exam Objectives Fast Track 0 Exam Objectives Frequently Asked Questions 0 Self Test 0 Self Test Quick Answer Key 123 124 Chapter 4 Managing Security Introduction Security is an often overlooked factor when designing an application. In this chapter all aspects of security will be discussed. Logins and Users will be covered as well as SQL Server 2008 s built-in roles. Some new features are available for policy management. This chapter will also review user roles and schemas as well as the pros and cons of granting access to objects. The tradeoff between more granular security and less granular security will be discussed. SQL Authentication will be covered in great detail along with the pros and cons of each method. The SQL Server Surface Area Configuration tool will be covered as well as the provisioning of the accounts used for SQL Server Services. Principals As we begin to look at SQL Server 2008 security management a good place to start is to define what SQL Server considers a principal. Principals are entities that can request SQL Server resources and their scope of influence depends on the definition scope of the principal. Windows-level principals have a Windows permission scope SQL Server-level principals have server-level permissions and Database-level principals have database-level permissions. A Security identifier SID is assigned to every principal. The following shows the hierarchy of SQL Server 2008 principals and how logins and database users can be mapped to security .