There are lots of persons contact me to ask for the information about the MBS AX 4.0 exams recently, so I checked the website, but all the exams are still for AX 3.0, so I contacted the tech team from pass4sure. They told me there are two AX 4.0 exams will be available soon:
MB6-510 AX 4.0 Human Resource Management
MB6-511 AX 4.0 Production
The samples will also be posted here as soon as the question pools are repleased, and one can check these links to make sure whether the exams are ready or not: MB6-510 MB6-511
QUESTION 1
You work as an application developer at Certkiller .com. You are in the process of
creating an application that will display confidential employee information.
When your manager informs you that only managers and administrators should be
able to view the information, you utilize windows authentication and .NET
role-based security to guarantee this.
The network administrator in your department informs you that he has noticed that
there are certain users that are not managers or administrators are able to view the
employee information. You immediately analyze your code, and discover an issue
with domain group memberships.
The network administrator asks you to trace the user account and security
identifier (SID) of each user in the application so that he can use this information to
detect users across the enterprise and verify that their group memberships are
correct.
How would you do this?
A. Use the following code:
WindowsIdentity curID = WindowsIdentity.GetCurrent ();
NTAccount account = new NTAccount (curID.Name);
SecurityIdentifier sid = (SecurityIdentifier);
account.Translate (typeof (SecurityIdentifier));
Trace.Write (”User’s SID is” + sid.Value, “User” + account.Value);
B. Use the following code:
WindowsIdentity curID = WindowsIdentity.GetCurrent ();
NTAccount account = new NTAccount (curID.Name);
Trace.Write (”User’s SID is” + sid.Value, “User” + account.Value);
C. Use the following code:
WindowsIdentity curID = WindowsIdentity.GetCurrent ();
Trace.Write (”User’s SID is” + curID.Value, “User” + sid.Name);
D. Use the following code:
WindowsIdentity curID = WindowsIdentity.GetCurrent ();
SecurityIdentifier sid = new SecurityIdentifier (curID.Name);
Trace.Write (”User’s SID is” + curID.Value, “User” + sid.Name);
Answer: A
Explanation: This code retrieves the current WindowsIdentity object associated
with the user, instantiates an NTAccount object using the Name property, invokes
the Translate method to retrieve the current SecurityIdentifier object, and invokes
the Write method on the Trace class to record the Value property of both the
Actualtests.org – The Power of Knowing
SecurityIdentifier and NTAccount objects. The GetCurrent method of the
WindowsIdentity object represents the identity of the application user. The
NTAccount class represents a Windows user group account in the local Security
Accounts Manager (SAM) or in the Active Directory domain. The constructor of the
NTAccount class accepts either a single string representing the account name or two
strings, one representing the domain name and the other representing the account
on that domain. To facilitate SID lookups, the Translate method takes a Type
argument and returns an IdentityReference object. You must convert or cast the
IdentityReference object to a SecurityIdentifier object to retrieve the Sid for the
specified account. The Value property of the SecurityIdentifier and NTAccount
class returns a SID and fully-qualified user name string, respectively. The Write
method of the Trace class outputs the specified message into the specified category.
Incorrect Answers:
B: You should not use the code that does not specify the SecurityIdentifier class because
the NTAccount class does not have a SID property.
C: You should not use the code that does not specify the NTAccount and
SecurityIdentifier classes because there is no SID property in the WindowsIdentity class.
D: You should not use the code that does not specify the NTAccount class because a
SecurityIdentifier object cannot be instantiated using an account name as an argument,
and it does not contain a Name property.
QUESTION 2
You work as an application developer at Certkiller .com. You are currently creating
a sales report application that requires Windows authentication on Certkiller .com’s
domain.
To achieve this, you are required to implement role-based security within the sales
report application.
You establish that the method shown below should only be invoked by members of
the Managers group:
public void UpdateEmpSalesBonus (int empID, double amount)
{
//Update employee’s salary
}
You need to ensure that invocation of the UpdateEmpSalesBonus method is
restricted to only managers.
What should you do? (Choose two)
A. Apply the following attribute to the UpdateEmpSalesBonus method:
[WindowsPricipalPermission (SecurityAction.Demand, Role = "Managers")]
B. Apply the following code to the UpdateEmpSalesBonus method:
WindowsIdentity user = WindowsIdentity.GetCurrent ();
if (user.IsInRole (”Managers”))
{
//Update employee’s salary
}
C. Apply the following attribute to the UpdateEmpSalesBonus method:
Actualtests.org – The Power of Knowing
[PricipalPermission (SecurityAction.Demand, Role = "Managers")]
D. Apply the following code to the UpdateEmpSalesBonus method:
if (Thread.CurrentPricipal.IsInRole (”Managers”))
{
//Update employee’s salary
}
Answer: C, D
Explanation: Imperative role-based security can use the PricipalPermission class or
the IPrincipal object directly. The PricipalPermission class takes a user name and
role as string arguments representing the required membership. The Demand
method indicates that all callers must belong to the user or group membership
specified in the constructor to access the resource. The IPrincipal object can be
retrieved using the Thread.CurrentPricipal property. The IsInRole method takes a
role argument as a string and returns a Boolean value indicating whether the
current caller belongs to that group or not.
Incorrect Answers:
A: You should not use the attribute that applies the WindowsPricipalPermission attribute
because no such attribute exists in the .NET Framework 2.0 class library.
B: You should not use the code that invokes the IsInRole method on the
WindowsIdentity class because no such method exists.
QUESTION 3
You work as the application developer at Certkiller .com. Certkiller .com uses Visual
Studio.NET 2005 as its application development platform. You use a Windwos XP
Professional client computer named Certkiller -WS536 as your development
computer.
You are developing a .NET Framework 2.0 application on Certkiller -WS536. You
are trying to port an old Certkiller .com management application that was written in
unmanaged Windows code with no COM interfaces. The application you are
developing makes calls to the old Certkiller .com management unmanaged library
namedBillPerformance.dll.
You are required to make a call to the GetPerformaceScore method of the
unmanaged Performance.dll library.
What should you do?
A. The Type Library Exporter tool (tlbexp.exe) should be used
B. The Type Library Importer tool (tlbimp.exe) should be used
C. The Assembly Registration tool (regasm.exe) should be used
D. The Platform Invoke (DllImportAttribute) should be used
Answer: D
Explanation: The feature Platform Invoke is used to allow you to call methods that
are in unmanaged libraries but you need to declare the unmanaged method in the
managed code using the extern and static keywords with the DllImport attribute
which is used to specify the unmanaged library.
Incorrect Answers:
A, B, C: The tool should not be considered for usage in the scenario because th