This page was exported from Free Exam Dumps Collection [ http://free.examcollectionpass.com ]

Export date:Mon Mar 10 20:17:09 2025 / +0000 GMT

___________________________________________________


Title: [Jan-2023] Exam Sure Pass SAP Certification with P_SECAUTH_21 exam questions [Q11-Q33]

---------------------------------------------------



 [Jan-2023] Exam Sure Pass SAP Certification with P_SECAUTH_21 exam questions
Real SAP P_SECAUTH_21 Exam Questions Study Guide

SAP P_SECAUTH_21 Exam Syllabus Topics:
TopicDetailsTopic 1User Administration and Identity Lifecycle Management in SAP Explain authorization, security and scenarios in SAP HANATopic 2Access Governance and Compliance in SAP SAP Cloud Platform Security Secure an SAP SystemTopic 3Authorization Concept for SAP Business Suite Security Monitoring and Security AuditingTopic 4Describe and implement the authorization concept for SAP Business Suite SAP Netweaver Application Server and Infrastructure SecurityTopic 5Explain how to secure an SAP system and conduct security checks Explain security and scenarios in SAP Cloud platform

 


QUESTION 11The SAP HANA database is installed with multi database container (MDC) mode with multiple tenant databases configured. What are the required activities to enable access between tenants? Note: There are 2 correct answers to this question.
 Create user mapping between local and remote tenant databases
 Configure smart data access (SDA) between the relevant HANA tenants
 Set whitelist of cross-tenant database communication channel
 Decrease the level of isolation mode on all MDC tenants
QUESTION 12What authorization objects do we need to create job steps with external commands in a background job? Note: There are 2 correct answers to this question.
 S_ADMI_FCD
 S_LOG_COM
 S_RZL_ADM
 S_BTCH_EXT
QUESTION 13Which of the following events will create security alerts in the CCMS Alert Monitor of SAP Solution Manager? Note: There are 2 correct answers to this question.
 Manual table changes
 Changes to the instance profile
 Call of RFC functions
 Start of reports
QUESTION 14Which tasks would you perform to allow increased security for the SAP Web Dispatcher Web Administration interface? Note: There are 2 correct answers to this question.
 Use a separate port for the content
 Use access restrictions with the icm/HTTP/auth_<xx> profile parameter
 Use subparameter ALLOWPUB = FALSE of the profile parameter icm/server_port_<xx>
 Use Secure Socket Layer (SSL) for password encrypt on
QUESTION 15You are consolidating user measurement results and transferring them to SAP. What act on do you take?
 Run report RSUSR200
 Run report RFAUDI06_BCE
 Run report RSLAW_PLUGIN
 Run transact on USMM
QUESTION 16How does the SAP SSO wizard (transaction SNCWIZARD) simplify the SNC configuration process?
 It installs the CA certificate response
 It exports an SNC SAPCRYPTOLIB certificate and imports it into the partner system
 It creates the SNC_LIB environment variable
 It sets the profile parameters for SAP SNC and SPNego in the default profile
QUESTION 17Which authorization object controls access to the trusting system between the managed system and SAP Solution Manager?
 S_RFCACL
 S_RFC
 S_SERVICE
 S_ ICM
QUESTION 18What reference is used to connect multiple Cloud Connectors to one SAP Cloud Platform subaccount?
 System Alias
 Location ID
 Instance ID
 Virtual Host
QUESTION 19Your company is running SAP S/4HANA on premise, with the requirement to run the SAP Fiori Launchpad in the SAP Cloud Platform. What would be the recommended scenario for user authentication for internet browser access to the SAP Fiori Launchpad?
 SAML2 and OData Provisioning
 SAP Logon Tickets
 Principal Propagation
 X.509 Client Certificates
QUESTION 20Which communication methods does the SAP Fiori Launchpad use to retrieve business data? Note: There are 3 correct answers to this question.
 HTIP(S)
 Trusted RFC
 Secure Network Communication (SNC)
 Info Access (InA)
 Data
QUESTION 21Why should you create multiple dispatchers in SAP Identity Management? Note: There are 2 correct answers to this question.
 To accommodate scalability
 To support fail-over scenarios
 To handle password provisioning
 To handle special network access requirements
QUESTION 22Where can we store the Security Audit Log events? Note: There are 2 correct answers to this question.
 In the database table RSAU_BUF_DATA
 In the file system of the application servers
 In the SAP Solution Manager system
 In a central fi e system
QUESTION 23A system user created a User1 and a schema on the HANA database with some dat a. User2 is developing modelling views and requires access to objects in User1’s schema. What needs to be done?
 User1 should grant _SYS_REPO with SELECT WITH GRANT privilege
 User2 needs to be granted with the same roles like User1
 System user should grant User2 with SELECT privilege to User 1schema
 ROLE ADMIN needs to be granted to User2
QUESTION 24What authorization object is checked when a user selects an A BAP Web Dynpro application to execute?
 S_PROGRAM
 S_START
 S_TCODE
 S_SERVICE
QUESTION 25What are main characteristics of the Logon ticket throughout an SSO logon procedure? Note: There are 2 correct answers to this question.
 The Logon ticket is used for user-to-system communication
 The Logon ticket is domain restricted
 The Logon ticket has an unconfigurable lifetime validity
 The Logon ticket session is held in the working memory
QUESTION 26You have a load balancer in a DMZ network zone (called natl.mydomain.com) in front of 2 SAP NetWeaver AS systems (hostl.mydomain.com, host2.mydomain.com). What is the recommended common name part of the distinguished name on the SSL Server’s PSE?
 It should be a combined DNS alias for host 1.mydomain.com and host2.mydomain.com and nat1.mydomain.com
 It should be host 1.mydomain.com, host2.mydornain.com individually for each PSE
 It should be natl.mydomain.com
 It should be *.mydomain.com (wildcard) names
QUESTION 27A user has the authorization to execute SP01. What can this user access with authorization object S_ SPO_ ACT when the ‘Value for Authorization Check’ field is set to “_USER.
 All spool requests for all users in the client
 All spool requests for users in the same user group
 User’s own spool requests
 All spool requests for a specific user in the client
QUESTION 28What is the User Management Engine (UME) property “connect on pooling” used for? Note: There are 2 correct answers to this question.
 To improve performance of requests to the LDAP directory server
 To avoid unauthorized request to the LDAP directory server
 To create a new connect on to the LDAP directory server for each request
 To share server resources among requesting LDAP clients
QUESTION 29You are evaluating the “Cross-client object change” option using transact on SCC4 for your Unit Test Client in the development environment. Which setting do you recommend?
 Changes to repository and cross-client customizing allowed
 No changes to repository and cross-client customizing objects
 No changes to cross-client customizing objects
 No changes to repository objects
QUESTION 30You have implemented CUA in your organization and you want to set the field distribution attribute as follows: Maintain a default value in the central system that is automatically distributed to the child systems when you create a user. After distribution, the data is maintained only locally and is no longer distributed if you change it in the central or child system. Which field distribution parameter do you maintain?
 Redistribution
 Local
 Global
 Proposal
QUESTION 31What is required when you configure the PFCG role for an end-user on the front-end server? Note: There are 2 correct answers to this question.
 The catalog assignment for the start authorization
 The S_RFC authorization object for the OData access
 The Fiori Launchpad designer assignment
 The group assignment to display it in the Fiori Launchpad
QUESTION 32How can you protect a table containing sensitive data using the authorization object S_TABU_DIS?
 The tables containing sensitive data must be associated with table groups in table TBRG.
 The field DICBERCLS of the authorization object must enumerate all table names of the tables containing sensitive data.
 Authorization table groups containing tables with sensitive data must be defined in table TDDAT and these must be omitted for all employees who do not need access to these tables
 The tables containing sensitive data must be named using the authorization object S_TA BU_NAM for all responsible administrator employees. The fields DICBERCLS of the object S_TABU_DIS can
then be filled with *.QUESTION 33To prevent session fixation and session hijacking attacks, SAP’s HTTP security session management is highly recommended. What are the characteristics of HTTP security session management? Note: There are 2 correct answers to this question.
 It uses URLs containing sap-context d to identify the security session
 The system is checking the logon credentials again for every request
 The security sessions are created during logon and deleted during logoff.
 The session identifier is a reference to the session context transmitted through a cookie.
 Loading …






	
	

Updated and Accurate P_SECAUTH_21 Questions for passing the exam Quickly: https://www.examcollectionpass.com/SAP/P_SECAUTH_21-practice-exam-dumps.html


---------------------------------------------------


Images: https://free.examcollectionpass.com/wp-content/plugins/watu/loading.gif
https://free.examcollectionpass.com/wp-content/plugins/watu/loading.gif


---------------------------------------------------




---------------------------------------------------


Post date: 2023-01-05 14:16:42

Post date GMT: 2023-01-05 14:16:42

Post modified date: 2023-01-05 14:16:42

Post modified date GMT: 2023-01-05 14:16:42