Released SAP P-SECAUTH-21 Updated Questions PDF [Q21-Q45]

Rate this post

Released SAP P-SECAUTH-21 Updated Questions PDF

P-SECAUTH-21 Dumps and Practice Test (80 Exam Questions)

SAP P-SECAUTH-21 certification is a valuable asset for professionals who want to advance their careers in the field of system security architecture. Certified Technology Professional – System Security Architect certification demonstrates that the candidate has the skills and knowledge required to design and implement secure SAP systems. It also proves that the candidate has the ability to understand and apply security concepts to meet the requirements of their organization.

The P-SECAUTH-21 exam covers a range of topics, including SAP security architecture, data protection, user and role management, and authorization concepts. P-SECAUTH-21 exam also tests the candidate’s knowledge of the latest security technologies and trends, such as cloud security and the Internet of Things (IoT). P-SECAUTH-21 exam is divided into two parts: a theoretical exam and a practical exam. Candidates must pass both parts to become certified.

QUESTION 21
You want to use Configuration Validation functionality in SAP Solution Manager to check the consistency of settings across your SAP environment. What serves as the reference basis for Configuration Validation? Note: There are 2 correct answers to this question.

A list of recommended settings attached to a specific SAP Note

A target system in your system landscape

A virtual set of manually maintained configuration itsems

A result list of configuration items from SAP Early Watch Alert (EWA)

QUESTION 22
You are setting up your SAP NetWeaver AS in a SSL client scenario. What are the reasons to choose an “anonymous SSL Client PSE” setup?
Note: There are 2 correct answers to this question.

To support mutual authentication

To support server-side authentication and data encryption

To use as a container for the list of CAs that the server trusts

To have an individual identity when accessing a specific application

QUESTION 23
Which SAP product supports General Data Privacy Regulation (GDPR) compliance through mitigating control testing and validation?

SAP Identity Access Governance

SAP Access Control

SAP Solution Manager

SAP Process Control

QUESTION 24
How can you describe static and dynamic assignments? Note: There are 2 correct answers to this question

Static assignments occur at runtime

Dynamic assignments are based on scope values

Dynamic assignments are based on attribute values

Static assignments are set up via the Cloud Cockpit

QUESTION 25
You want to create an SAP Fiori app for multiple users and multiple back-end systems. To support this, you create different roles for the different back-end systems in the SAP Fiori front-end system (central hub). What transactions do you have to use to map a back-end system to one of those roles?

/UI2/GW_SYS_ALIAS

/IWFND/MAINT_SERVICE

SEGW

PFCG

QUESTION 26
Which of the objects do you assign to an SAP Fiori tile to make it visible in the SAP Fiori Launchpad? Note: There are 2 correct answers to this question.

Group

Role

User

Catalog

QUESTION 27
What are characteristics only valid for the MDC high isolation mode?

Every tenant has its own set of OS users

All internal database communication is secured using SNC

Every tenant has its own set of database users

Every tenant has its own set of database users belonging to the same sapsys group

QUESTION 28
What can you maintain in transaction SU24 to reduce the overall maintenance in PFCG? Note:
There are 3 correct answers to this question.

The authorization objects that are not linked to transaction codes correctly

The default authority check settings for the role maintenance tool

The default values so they are appropriate for the transactions used in the roles

The default values in the tables USOBX and USOBT

The authorization objects that have unacceptable default values

QUESTION 29
Which transaction or report can be used to audit profile assignments in an SU01 user master record? Note: There are 2 correct answers to this question

RSUSR100

ST01

SM20N

RSUSR002

QUESTION 30
To which services packages does SAP Security Optimization Services (SOS) belong?

EarlyWatch Reporting

Performance Optimization

Application Integration Optimization

System Administration Optimization

QUESTION 31
Who can revoke a runtime role from a user in the SAP HANA tenant database? Note: There are 2 correct answers to this question.

The granting user

Anyone with “ROLE ADMIN”

The owner of the HDI container

The DBACOCKPIT user

QUESTION 32
How can you protect a table containing sensitive data using the authorization object S_TABU_DIS?

The tables containing sensitive data must be named using the authorization object S_TABU_NAM for all responsible administrators. The DICBERCLS fields of the S_TABU_DIS object can then be filled with *.

Authorization table groups containing tables with sensitive data must be defined in the TDDAT table and these must be omitted for anyone who does not need access to these tables.

The DICBERCLS field of the authorization object must enumerate all table names of the tables containing sensitive data.

The tables containing sensitive data must be associated with table groups in the TBRG table.

QUESTION 33
Which users should exist in client 000?
Note: There are 2 correct answers to this question

SAP*

EARLYWATCH

SAPCPIC

TMSADM

QUESTION 34
Where does SAP HANA store the values for the default Password Policy parameter? Note:
There are 2 correct answers to this question.

global.ini

attributes.ini

nameserver.ini

indexserver.ini

QUESTION 35
You verified the password of the TMSADM user in your SAP landscape to be SAP defaulted.
You want to reset this password by using the program
TMS_UPDATE_PWD_OF_TMSADM.What steps would you take to reset this password? Note:
There are 2 correct answers to this question.

Run the program in all systems/clients including 000

Run the program in the Domain Controller (client 000)

Deactivate the SNC option

Execute command TP LOCKSYS <SID> pf=<DOMAIN_CONTROLLER_PROFILE>

QUESTION 36
You want to check the custom ABAP codes in your system for security vulnerabilities and you want to use the Code Vulnerability Analyzer (CVA) for carrying out these extended security checks. What needs to be done for this purpose? Note: There are 2 correct answers to this question.

Execute transaction ST12 to start the analysis

Execute program RSLIN_SEC_LICENSE_SETUP

Run CVA from the ABAP Test Cockpit

Run CVA from the ABAP Trace

QUESTION 37
You are asked to set up controls to monitor sensitive objects (such as programs, user exits, and function modules) in a development system before they are transported to the quality assurance system. Which table would you maintain to monitor such sensitive objects before running an import?

TMSBUFFER

TMSCDES

TMSTCRI

TMSMCONF

QUESTION 38
To enable access between tenant databases, what do you need to do in an SAP HANA system for multitenant database containers? Note: there are 3 correct answers to this question.

The bi-directional communication channel must be in the allow list.

The user in the source system must be associated with a user in the target database.

The user in the source system must have sufficient privileges in the target database.

The cross-tenant database communication must be explicitly activated.

The INIFILE ADMIN system privilege must be assigned.

QUESTION 39
Insufficient authorization checks might allow A BAP programs to access the PSE files. Which authorization objects should we check to protect the PSEs? Note: There are 2 correct answers to this question.

S_RZL_ADM

S_DATASET

S_ADMI_FCD

S_DEVELOP

QUESTION 40
You have an HR table for which you want to create a role to provide users the ability to display and change its table content based on the country groupings. Which of the steps would you take to accomplish these requirements? Note: There are 2 correct answers to this question.

Maintain the authorization object S_TABU_LIN

Create an authorization group with appropriate authorization fields for the table

Define an organization criterion through transaction SPRO

Maintain the authorization object S_TABU_NAM

QUESTION 41
How can you register an SAP Gateway service? Note: There are 2 correct answers to this question.

Use SAP_GAT EWAY_BASIC_CONFIG in transact on STCO 1 on the frontend server

Use transaction /IWFND/MA INT_SERVICE on the front-end server

Use SAP_GAT EWAY_ACTIVATE_ODATA_SERV in transact on STC01 on the front-end server

Use transaction SEGW on the back-end server

QUESTION 42
Which features do SAP HANA SQL-based analytic privileges offer compared to classic XMLbased ones?
Note: There are 2 correct answers to this question.

Control of read-only access to SQL views

Control of read-only SAP HANA procedures

Transportable

Complex filtering

QUESTION 43
A user reports an issue with data not showing up in the visualization of the SAP Fiori tiles. You want to verify the target mapping. At what level are you going to check the target mapping?

O At the catalog level in the SAP Fiori front-end server

O At the group level in the SAP Fiori front-end server

O At the group level in the SAP Fiori Launchpad

O At the application level in the Web IDE

QUESTION 44
What authorization objects do we need to create job steps with external commands in a background job? Note: There are 2 correct answers to this question.

S_ADMI_FCD

S_LOG_COM

S_RZL_ADM

S_BTCH_EXT

QUESTION 45
What connection type is used for restricted users?

JDBC

ODBC

OLEDB

HTTP/S

P-SECAUTH-21 Exam Dumps Pass with Updated 2023 Certified Exam Questions: https://www.real4dumps.com/P-SECAUTH-21_examcollection.html

Released SAP P-SECAUTH-21 Updated Questions PDF [Q21-Q45]

Leave a Reply Cancel reply

Related Posts

[Q23-Q41] Real P_S4FIN_2020 dumps – Real SAP dumps PDF in here [Jun-2022]

[May-2024] Pass SAP C-THR85-2305 Exam in First Attempt Guaranteed! [Q47-Q70]

[Feb-2024] The Best SAP Certified Application Associate Study Guide for the C-THR70-2309 Exam [Q41-Q58]