• Home
  • Articles
  • Free SAP P_SECAUTH_21 Exam 2024 Practice Materials Collection [Q47-Q62]

Free SAP P_SECAUTH_21 Exam 2024 Practice Materials Collection [Q47-Q62]

Share

Free SAP P_SECAUTH_21 Exam 2024 Practice Materials Collection

P_SECAUTH_21 Exam Info and Free Practice Test All-in-One Exam Guide Feb-2024


To prepare for the SAP P_SECAUTH_21 certification exam, candidates are encouraged to take training courses and gain hands-on experience with SAP technologies. There are a variety of resources available to help candidates prepare for the exam, including study materials, practice exams, and online forums where they can ask questions and get advice from other professionals.

 

NEW QUESTION # 47
Which SAP product supports General Data Privacy Regulation (GDPR) compliance through mitigating control testing and validation?

  • A. SAP Process Control
  • B. SAP Access Control
  • C. SAP Solution Manager
  • D. SAP Identity Access Governance

Answer: A

Explanation:
Explanation
SAP Process Control is a SAP product that supports General Data Privacy Regulation (GDPR) compliance through mitigating control testing and validation. SAP Process Control enables you to define and monitor controls for various business processes and regulations, such as GDPR, SOX, or ISO standards. It also allows you to perform control testing and validation activities, such as self-assessments, surveys, issue management, or remediation plans. References: https://help.sap.com/viewer/product/SAP_PROCESS_CONTROL/en-US


NEW QUESTION # 48
How can you protect a table containing sensitive data using the authorization object S_TABU_DIS?

  • A. The tables containing sensitive data must be associated with table groups in the TBRG table.
  • B. The DICBERCLS field of the authorization object must enumerate all table names of the tables containing sensitive data.
  • C. Authorization table groups containing tables with sensitive data must be defined in the TDDAT table and these must be omitted for anyone who does not need access to these tables.
  • D. The tables containing sensitive data must be named using the authorization object S_TABU_NAM for all responsible administrators. The DICBERCLS fields of the S_TABU_DIS object can then be filled with *.

Answer: D

Explanation:
Explanation
This is one of the ways that you can protect a table containing sensitive data using the authorization object S_TABU_DIS. S_TABU_DIS is an authorization object that controls access to tables based on authorization groups, which are groups of tables that share the same access restrictions. The DICBERCLS field of this authorization object contains the name of the authorization group for a table or a range of tables. To protect a table containing sensitive data using this authorization object, you must assign it to an authorization group and enumerate all table names of the tables containing sensitive data in the DICBERCLS field. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?


NEW QUESTION # 49
Which SAP tool provides functions to support Data Destruction, Business Rules Maintenance, and Processing of Audit Areas?

  • A. SAP Business Rule Framework Plus
  • B. SAP Information Retrieval Framework
  • C. SAP Information Lifecycle Management
  • D. SAP Data Controller Rule Framework

Answer: D


NEW QUESTION # 50
What are main characteristics of the Logon ticket throughout an SSO logon procedure? Note: There are 2 correct answers to this question.

  • A. The Logon ticket session is held in the working memory
  • B. The Logon ticket is domain restricted
  • C. The Logon ticket is used for user-to-system communication
  • D. The Logon ticket has an unconfigurable lifetime validity

Answer: B,C


NEW QUESTION # 51
What are the characteristics of the Audit Information System (AIS)? Note: There are 2 correct answers to this question.

  • A. The roles are built from nodes in the Implementation Guide (IMG).
  • B. It can be launched directly using transaction SECR.
  • C. It offers two types of audit reports: system and business.
  • D. The report selection variables are configured during setup.

Answer: A,C

Explanation:
Explanation
The Audit Information System (AIS) is a tool that supports internal and external audits by providing access to relevant data and reports from various SAP systems and modules. It offers two types of audit reports: system reports that focus on technical aspects, such as security, performance, and configuration; and business reports that focus on functional aspects, such as financial accounting, controlling, and materials management. The roles for accessing AIS are built from nodes in the Implementation Guide (IMG), where you can also customize the report selection variables and parameters. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


NEW QUESTION # 52
You have created an RFC destination with a registered external RFC server program. When you try to connect to the external RFC destination you receive a
"SERVER_NOT_REGISTERED" error message. How can you resolve the issue? Note: There are 2 correct answers to this question.

  • A. Maintain the entries in the REGINFO file
  • B. Maintain the access list in the transaction SMMS
  • C. Maintain the profile parameter gw/acl_mode = 0
  • D. Maintain the entries in the SECINFO file

Answer: A,B

Explanation:
Explanation
These are some of the tasks that you would perform to resolve the issue of a
"SERVER_NOT_REGISTERED" error message when trying to connect to an external RFC destination with a registered external RFC server program. The REGINFO file is a file that contains rules for allowing or denying registration requests from external RFC server programs to the gateway of an SAP system. The access list in transaction SMMS is a list that contains rules for allowing or denying connection requests from external RFC clients to an SAP system. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


NEW QUESTION # 53
Who can revoke a runtime role from a user in the SAP HANA tenant database? Note: There are 2 correct answers to this question.

  • A. The DBACOCKPIT user
  • B. The granting user
  • C. The owner of the HDI container
  • D. Anyone with "ROLE ADMIN"

Answer: B,D

Explanation:
Explanation
These are some of the users who can revoke a runtime role from a user in the SAP HANA tenant database. A runtime role is a role that is granted dynamically to a user when they connect to a database using an application or service, such as XSODATA or XSJS. A runtime role can be revoked by the user who granted it, or by anyone who has the "ROLE ADMIN" system privilege, which allows them to create, grant, and revoke roles in the database. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33


NEW QUESTION # 54
Which communication methods does the SAP Fiori Launchpad use to retrieve business data? Note: There are 3 correct answers to this question.

  • A. Secure Network Communication (SNC)
  • B. Trusted RFC
  • C. HTIP(S)
  • D. Info Access (InA)
  • E. Data

Answer: A,B,D


NEW QUESTION # 55
You want to allow your trainee colleagues to use the SAP GUI to connect directly to your SAP S/4HANA (on-premise) demo system from a public internet connection. Which of the following SAP solutions is suited for this purpose?

  • A. SAProuter
  • B. SAP NetWeaver Gateway
  • C. SAP Cloud Connector
  • D. SAP Web Dispatcher

Answer: A

Explanation:
Explanation
This is one of the SAP solutions that is suited for this purpose of allowing your trainee colleagues to use the SAP GUI to connect directly to your SAP S/4HANA (on-premise) demo system from a public internet connection. SAProuter is a program that acts as an application-level gateway between SAP systems and networks using TCP/IP protocol. SAProuter can be used to establish secure and encrypted connections between SAP systems and external networks using SNC (Secure Network Communication) certificates and keys. SAProuter can also be used to control access to SAP systems based on various criteria, such as source IP address, destination IP address, service name, or port number. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?


NEW QUESTION # 56
An end user has indicated that they are getting an authorization error when attempting to call a Transaction Code (TCD). However, the TCD exists in their User Menu. What could be the issue and where would you check?

  • A. The TCD is assigned to the user via multiple roles; check in PFCG.
  • B. This user is blocked from calling the TCD; check in SM01 .
  • C. An entry in table USRBF prevents them from calling the TCD; check in SE1 6
  • D. Additional authorization checks are required for the TC; check in SE93.

Answer: D

Explanation:
Explanation
This could be the issue that causes the end user to get an authorization error when attempting to call a Transaction Code (TCD) that exists in their User Menu. SE93 is a transaction that allows you to create and maintain transaction codes and their properties. One of the properties is the authorization check, which determines whether additional authorization objects are checked when a transaction code is executed. If the authorization check for a transaction code is set to Yes, the user needs to have the corresponding authorization objects in their role or profile, otherwise they will get an error message. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/48/9e2e3f6f8e41e8a283aaf2ad2c64c4/content.htm?n


NEW QUESTION # 57
You want to carry out some preparatory work for running the SAP Security Optimization Selfservice on a customer system. Which of the following steps do you have to run on the managed systems? Note: There are 2 correct answers to this question.

  • A. Configure Secure Network Communications
  • B. Install the ST-A/PI plug-in
  • C. Configure specific authorizations
  • D. Grant operating system access

Answer: B,C

Explanation:
Explanation
These are some of the steps that you have to run on the managed systems to prepare for running the SAP Security Optimization Self-service on a customer system. The SAP Security Optimization Self-service is a service that allows you to perform security checks on your SAP systems using predefined questionnaires and automated analysis tools. The service requires specific authorizations on the managed systems, such as RFC authorizations or Security Audit Log authorizations, which you have to configure using PFCG transaction or RZ10 transaction respectively. The service also requires the ST-A/PI plug-in on the managed systems, which is a plug-in that provides various functions and tools for service delivery, such as data collection or remote analysis. References: https://support.sap.com/en/security/security-optimization-services.html
https://support.sap.com/en/security/security-optimization-services.html


NEW QUESTION # 58
Where does SAP HANA store the values for the default Password Policy parameter? Note:
There are 2 correct answers to this question.

  • A. indexserver.ini
  • B. global.ini
  • C. attributes.ini
  • D. nameserver.ini

Answer: A,B

Explanation:
Explanation
SAP HANA stores the values for the default Password Policy parameter in two configuration files: global.ini and indexserver.ini. The global.ini file contains the global settings that apply to all services and tenants in a multitenant database system. The indexserver.ini file contains the settings that apply to a specific tenant database or a single-container system. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33


NEW QUESTION # 59
How is the role concept applied for modeled authorizations based on Core Data Services (CDS) views?

  • A. CDS roles are defined for the CDS views and implicitly applied to each user
  • B. CDS roles are defined in the WHERE clause when calling a CDS view in Open SQL
  • C. CDS roles are mapped to the CDS view in the access rules
  • D. CDS roles are defined for CDS views in Object Navigator

Answer: C


NEW QUESTION # 60
How does the SAP SSO wizard (transaction SNCWIZARD) simplify the SNC configuration process?

  • A. It creates the SNC_LIB environment variable in OS user profile
  • B. It sets the profile parameter for SAP SNC in the instance profile
  • C. It restarts the SAP application server for all profile changes to take effect
  • D. It set the profile parameters for SAP SNC in the default profile

Answer: D


NEW QUESTION # 61
You want to carry out some preparatory work for executing the SAP Security Optimization Self-service on a customer system. Which of the following steps do you have to execute on the managed systems? Note: There are 2 correct answers to this question.

  • A. Configure Secure Network Communications
  • B. Install the ST-A/PI plug-in
  • C. Configure specific authorizations
  • D. Grant operating system access

Answer: B,C


NEW QUESTION # 62
......

Pass SAP P_SECAUTH_21 Actual Free Exam Q&As Updated Dump: https://surepass.free4dump.com/P_SECAUTH_21-real-dump.html

Related Articles

more
SAP P_SECAUTH_21 Certification Practice Exam