[2023] New P-SECAUTH-21 exam Free Sample Questions to Practice [Q30-Q52]

Published date September 7, 2023

Rate this post

[2023] New P-SECAUTH-21 exam Free Sample Questions to Practice

Cover Real P-SECAUTH-21 Exam Questions Make Sure You 100% Pass

SAP P-SECAUTH-21 (Certified Technology Professional – System Security Architect) Certification Exam is a professional certification designed for IT professionals who specialize in system security architecture. Certified Technology Professional – System Security Architect certification is offered by SAP, one of the world’s leading software companies, and is recognized globally as a benchmark for excellence in system security architecture. Certified Technology Professional – System Security Architect certification is designed to validate the candidate’s expertise in SAP system security and their ability to design, implement and maintain secure SAP systems.

NEW QUESTION 30
What are the key capabilities of Event Analyzer in Enterprise Threat Detection 1.0? Note: There are 2 correct answers to this question.

Synchronization of user contexts from ABAP Systems

Predictive threat notification

Pseudonymize user identities for data protection

Baseline detection

NEW QUESTION 31
What can you maintain in transaction SU24 to reduce the overall maintenance in PFCG? Note:
There are 3 correct answers to this question.

The authorization objects that are not linked to transaction codes correctly

The default authority check settings for the role maintenance tool

The default values so they are appropriate for the transactions used in the roles

The default values in the tables USOBX and USOBT

The authorization objects that have unacceptable default values

Explanation
You can maintain these aspects in transaction SU24 to reduce the overall maintenance in PFCG. By doing so, you can define which authorization objects are checked by default for each transaction code, what values are proposed for each authorization field, and which authorization objects are excluded from the proposal. This way, you can avoid manual adjustments in PFCG and ensure consistency across roles. References:
https://help.sap.com/viewer/df185fd53bb645b1bd99284ee4e4a750/7.5.21/en-US/4a0c1f51bb571014e10000000a
https://help.sap.com/viewer/df185fd53bb645b1bd99284ee4e4a750/7.5.21/en-US/4a0c1f51bb571014e10000000a

NEW QUESTION 32
What connection type is used for restricted users?

JDBC

ODBC

OLEDB

HTTP/S

Explanation
This is the connection type that is used for restricted users in SAP HANA systems. Restricted users are users that can only access SAP HANA via HTTP/S connections using predefined services or applications, such as XSODATA or XSJS services or SAP Fiori applications. Restricted users cannot use other connection types, such as JDBC, ODBC, or OLEDB, which allow direct SQL access to SAP HANA. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33

NEW QUESTION 33
What are the key capabilities of Enterprise Threat Detection? Note: There are 2 correct answers to this question

Blocking user access

Predictive threat notification

Dashboard-based analysis for security risks

Real time capture of abnormal user activities

NEW QUESTION 34
What are the key capabilities of Enterprise Threat Detection? Note: There are 2 correct answers to this question.

Dashboard-based analysis for security risks

Predictive threat notification

Real time capture of abnormal user activities

Blocking user access

Explanation
Enterprise Threat Detection is a security solution that provides dashboard-based analysis for security risks and real time capture of abnormal user activities. It enables you to monitor and detect cyberattacks and internal fraud by analyzing log data from various sources, such as SAP systems, operating systems, databases, firewalls, and routers. References:
https://help.sap.com/viewer/product/SAP_ENTERPRISE_THREAT_DETECTION/en-US
https://help.sap.com/viewer/product/SAP_ENTERPRISE_THREAT_DETECTION/en-US

NEW QUESTION 35
Which authorization object is required to support trusted system access by an RFC user following the configuration of a Managed System in SAP Solution Manager?

S_RFCACL

S_ACL_HIST

S_RFC_TT

S_RFC_TTAC

Explanation
Authorization object S_RFCACL is required to support trusted system access by an RFC user following the configuration of a Managed System in SAP Solution Manager. This authorization object allows you to restrict access to RFC calls from trusted systems based on the RFC user name and the name of the calling system.
References:
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a

NEW QUESTION 36
What are the characteristics of HTTP security session management? Note: There are 3 correct answers to this question

Refers to the session context through the session identifier

Checks the logon credentials again for every request

Starts security sessions with a short user-based expiration time

Deletes security sessions at logoff

Creates security sessions at logon

NEW QUESTION 37
What is the SAP Best Practice to delete a security SAP role from the landscape running SAP systems?

Transport the SAP role and delete the role using Profile Generator

Delete the SAP role in all clients using Profile Generator

Delete the SAP role in all clients in all systems using Profile Generator

Delete the SAP role using Profile Generator, and then put it in the transport

Explanation
The SAP Best Practice to delete a security SAP role from the landscape running SAP systems is to delete the SAP role using Profile Generator (transaction PFCG), and then put it in a transport request that can be moved across systems using Change and Transport System (CTS). This way, you can ensure that the role is deleted consistently and completely from all systems. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US

NEW QUESTION 38
Which communication methods does the SAP Fiori Launchpad use to retrieve business data?
Note: There are 2 correct answers to this question.

IIOP

InA

OData

SNC

Explanation
These are the communication methods that the SAP Fiori Launchpad uses to retrieve business data from various data sources and services. InA (Information Access) is a protocol that enables analytical queries and data visualization using SAP Analytics Cloud or SAP Lumira. OData (Open Data Protocol) is a protocol that enables CRUD (Create, Read, Update, Delete) operations on data using RESTful web services. References:
https://help.sap.com/viewer/product/SAP_FIORI_LAUNCHPAD/en-US

NEW QUESTION 39
A system user created a User1 and a schema on the HANA database with some dat a. User2 is developing modelling views and requires access to objects in User1’s schema. What needs to be done?

User1 should grant _SYS_REPO with SELECT WITH GRANT privilege

User2 needs to be granted with the same roles like User1

System user should grant User2 with SELECT privilege to User 1schema

ROLE ADMIN needs to be granted to User2

NEW QUESTION 40
Which features do SAP HANA SQL-based analytic privileges offer compared to classic XMLbased ones?
Note: There are 2 correct answers to this question.

Control of read-only access to SQL views

Control of read-only SAP HANA procedures

Transportable

Complex filtering

Explanation
These are some of the features that SAP HANA SQL-based analytic privileges offer compared to classic XML-based ones. Analytic privileges are privileges that restrict access to data in analytical views or calculation views based on certain conditions or filters. SAP HANA supports two types of analytic privileges:
SQL-based and XML-based. SQL-based analytic privileges are defined using SQL statements and stored as database objects. XML-based analytic privileges are defined using XML files and stored as repository objects.
SQL-based analytic privileges offer more features and flexibility than XML-based ones, such as control of read-only access to SQL views, which prevents users from modifying data in the views, and complex filtering, which allows users to define multiple filters with different operators and expressions. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33

NEW QUESTION 41
How would you control access to the ABAP RFC function modules? Note: There are 2 correct answers to this question.

Block RFC Callback Whitelists

Restrict RFC authorizations

Deactivate switchable authorization checks

Implement UCON functionality

NEW QUESTION 42
You verified the password of the TMSADM user in your SAP landscape to be SAP defaulted. You want to reset this password by using program TMS_UPDATE_PWD_OF_TMSADM. What steps would you take to reset this password?
Note: There are 2 correct answers to this question

Run this program in the Domain Controller (client 000)

Lock TMSADM in all the system/clients including 000

Assign “SAP_ALL” to TMSADM in all systems/clients including 000

Deactivate the SNC option

NEW QUESTION 43
You want to check the custom ABAP codes in your system for security vulnerabilities and you want to use the Code Vulnerability Analyzer (CVA) for carrying out these extended security checks. What needs to be done for this purpose? Note: There are 2 correct answers to this question.

Execute transaction ST12 to start the analysis

Execute program RSLIN_SEC_LICENSE_SETUP

Run CVA from the ABAP Test Cockpit

Run CVA from the ABAP Trace

NEW QUESTION 44
Which authorization object is required to support trusted system access by an RFC user following the configuration of a Managed System in SAP Solution Manager?

S_RFCACL

S_ACL_HIST

S_RFC_TT

S_RFC_TTAC

NEW QUESTION 45
What information constitutes an indirect connection to an individual, in the context of GDPR?
Note: There are 3 correct answers to this question.

Postal Address

IP Address

National Identifier

License plate number

Date of Birth

Explanation
These are some of the information that constitutes an indirect connection to an individual, in the context of GDPR (General Data Protection Regulation). GDPR is a regulation that aims to protect the privacy and personal data of individuals in the European Union (EU) and the European Economic Area (EEA). Personal data is any information that relates to an identified or identifiable individual, either directly or indirectly. An indirect connection means that the information can be used in combination with other information or identifiers to identify an individual. Examples of such information are IP address, license plate number, date of birth, location data, or online identifiers. References: https://gdpr-info.eu/art-4-gdpr/
https://gdpr-info.eu/art-4-gdpr/

NEW QUESTION 46
Based on your company guidelines you have set the password expiration to 60 days. Unfortunately, there is an RFC user on your SAP system which must not have a password change for 180 days. Which option would you recommend to accomplish such a request?

Change profile parameter login/password_expiration_time to 180

Create a security policy via SECPOL and assign it to tile RFC users

Create additional authorizations for RFC users and assign it to them

Create enhancement spot I user-exit

NEW QUESTION 47
SAP GRC Access Control provides risk analysis for which of the following? Note: There are 2 correct answers to this question.

Business Rule Framework

Business Role Management

Access Request Management

Password Self-Service

NEW QUESTION 48
You are evaluating the “Cross-client object change” option using transact on SCC4 for your Unit Test Client in the development environment. Which setting do you recommend?

Changes to repository and cross-client customizing allowed

No changes to repository and cross-client customizing objects

No changes to cross-client customizing objects

No changes to repository objects

NEW QUESTION 49
Which authorizations are required for an SAP Fiori Launchpad user? Note: There are 2 correct answers to this question.

/UI2/PAGE_BUILDER_CUST

/UI2/INTEROP

/UI2/PAGE_BUILDER_PERS

/UI2/CHIP

Explanation
These are some of the authorizations that are required for an SAP Fiori Launchpad user. /UI2/INTEROP is an authorization object that controls the access to interoperability features, such as opening SAP GUI transactions or Web Dynpro applications from the Fiori Launchpad. /UI2/PAGE_BUILDER_PERS is an authorization object that controls the access to personalization features, such as adding or removing tiles or groups from the Fiori Launchpad. References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f

NEW QUESTION 50
What reference is used to connect multiple Cloud Connectors to one SAP Cloud Platform subaccount?

System Alias

Location ID

Instance ID

Virtual Host

NEW QUESTION 51
The security administrator is troubleshooting authorization errors using transaction SU53. While running transaction MM50, the user received the following error.
“You are not authorized to use transaction MM01”
The user’s position in the organization makes it inappropriate for them to have direct access to transaction MM01 because it creates a Segregation of Duties conflict.
How can the security administrator resolve the issue and still provide the user with the needed access to MM50?

Set the check indicator (for the transaction authorization called by the MM01 transaction) to NO, using transaction SE97 for transaction MM50.

Set the check indicator value for object S_TCODE in the SU24 data for transaction MM01 to Do Not Check.

Remove transaction MM01 as a CALLING transaction from table TCDCOUPLES.

Set the value form instance parameter auth/no_check_in_some_cases to N.

NEW QUESTION 52
The SAP HANA database is installed with multi database container (MDC) mode with multiple tenant databases configured. What are the required activities to enable access between tenants? Note: There are 2 correct answers to this question.

Create user mapping between local and remote tenant databases

Configure smart data access (SDA) between the relevant HANA tenants

Set whitelist of cross-tenant database communication channel

Decrease the level of isolation mode on all MDC tenants

Loading …

Real P-SECAUTH-21 Quesions Pass Certification Exams Easily: https://www.passtestking.com/SAP/P-SECAUTH-21-practice-exam-dumps.html

Categories:P-SECAUTH-21SAP

Tags:P-SECAUTH-21 latest practice questions free P-SECAUTH-21 reliable test objectives pdf P-SECAUTH-21 valid study questions ebook P-SECAUTH-21 valid test labs

admin

C_S4CS_2202 / SAP

Free Oct-2022 C_S4CS_2202 Dumps are Available for Instant Access [Q51-Q75]
C-TS422-2020 / SAP

Get Ready to Boost your Prepare for your C-TS422-2020 Exam with 150 Questions [Q86-Q107]
C_S4CPS_2302 / SAP

[Apr 05, 2023] Latest C_S4CPS_2302 PDF Dumps & Real Tests Free Updated Today [Q13-Q28]
C-S4CMA-2108 / SAP

[Jun 20, 2022] New 2022 SAP C-S4CMA-2108 Exam Dumps with PDF from PassTestking (Updated 109 Questions) [Q64-Q81]
C_TS452_2021 / SAP

Valid SAP Certified Application Associate C_TS452_2021 Dumps Ensure Your Passing [Q36-Q59]
E-S4CPE-2023 / SAP

Actual E-S4CPE-2023 Exam Recently Updated Questions with Free Demo [Q33-Q54]