Lab 3: Securing the Database Environment You have been hired as the DBA for Haphazard, Inc. You are asked to fulfill the following needs of the Database environment. You can choose any database, such as Oracle, MySql, Sqlserver, etc. 1. Users, roles, and privileges need to be added to the database. Identify the statements that would be used for creating the following users, roles, and privileges that match the following requirements: a. Create a user account NLitzinger identified by the password Dubrucr90. Solution: CREATE USER NLitzinger IDENTIFIED BY 'DuBrucr 90% b. Grant NLitzinger the SELECT and UPDATE permissions on the table called clients. c. Create a user account HMimnaugh identified by the password EvCsvds01. d. Grant HMimnaugh the SELECT and DELETE permissions on the table called clients. e. Create a user account TylerM identified by the password Fwdtwet12. f. Grant TylerM the SELECT and INSERT permissions on the table called clients. g. Create a role named Most_Privileged without a password. h. Grant the Most_Privileged role the Update and Delete permissions on the clients table. i. Add all users to the Most_Privileged role. 2. Identify the most privileged users. (Which user has the most permissions?) Discuss the way in which the preceding steps could have been made more efficient. 3. A password policy needs to be enforced at Haphazard, Inc. Identify the statements required to create a server-enforced password policy with the following requirements: a. Complexity is a necessity. b. The password should be a minimum of seven characters. C. Allow the user to reuse the password after a minimum of 10 password changes. d. Lock accounts that have had more than 3 failed attempts. e. Expire the password every 60 days. 4. What database security suggestions would you provide to Haphazard in terms of Authentication and Authorization? Explain what policies would you develop as well