[Jan 10, 2024] P-SECAUTH-21 Sample with Accurate & Updated Questions
P-SECAUTH-21 Exam Info and Free Practice Test | DumpsTests
SAP P_SECAUTH_21 certification exam is an excellent way for technology professionals to demonstrate their expertise in system security architecture and design. Certified Technology Professional - System Security Architect certification is highly valued by organizations worldwide and is ideal for individuals who are interested in advancing their careers in this field. With the right preparation and experience, candidates can successfully pass the exam and obtain this prestigious certification.
NEW QUESTION # 15
Your company is running SAP S/4HANA on premise, with the requirement to run the SAP Fiori Launchpad in the SAP Cloud Platform. What would be the recommended scenario for user authentication for internet browser access to the SAP Fiori Launchpad?
- A. X.509 Client Certificates
- B. SAP Logon Tickets
- C. Principal Propagation
- D. SAML2 and OData Provisioning
Answer: A
NEW QUESTION # 16
Which communication methods does the SAP Fiori Launchpad use to retrieve business data? Note: There are 2 correct answers to this question
- A. HOP
- B. OData
- C. SNC
- D. InA
Answer: C,D
NEW QUESTION # 17
The SAP HANA database has its parameters configured with its default values. How can the SAP_INTERNAL_HA NA_SUPPORT catalog role be used?
- A. The role can be granted to multiple users at a time
- B. The role can be granted to another role (nested)
- C. The role can be granted to the SYSTEM user
- D. The role can be granted only with system privileges
Answer: C
NEW QUESTION # 18
Which authorizations are required for an SAP Fiori Launchpad user? Note: There are 2 correct answers to this question.
- A. /UI2/INTEROP
- B. /UI2/CHIP
- C. /UI2/PAGE_BUILDER_PERS
- D. /UI2/PAGE_BUILDER_CUST
Answer: A,C
Explanation:
Explanation
These are some of the authorizations that are required for an SAP Fiori Launchpad user. /UI2/INTEROP is an authorization object that controls the access to interoperability features, such as opening SAP GUI transactions or Web Dynpro applications from the Fiori Launchpad. /UI2/PAGE_BUILDER_PERS is an authorization object that controls the access to personalization features, such as adding or removing tiles or groups from the Fiori Launchpad. References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f
NEW QUESTION # 19
Which data source needs to be integrated into SAP Identity Management via the Virtual Directory Server (VOS)?
- A. AS ABAP
- B. AS Java
- C. SAP HCM
- D. LDAP
Answer: D
NEW QUESTION # 20
You want to use Configuration Validation functionality in SAP Solution Manager to check the consistency of settings across your SAP environment. What serves as the reference basis for Configuration Validation? Note: There are 2 correct answers to this question.
- A. A target system in your system landscape
- B. A result list of configuration items from Solution Finder for SAP EarlyWatch Alert
- C. A list of recommended notes from RSECNOTE
- D. A virtual set of manually maintained configuration items
Answer: A,D
Explanation:
Explanation
Configuration Validation in SAP Solution Manager allows you to check the consistency of settings across your SAP environment by comparing them with a reference basis. The reference basis can be either a virtual set of manually maintained configuration items or a target system in your system landscape that serves as a template or best practice example. References:
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a
NEW QUESTION # 21
Where can we store the Security Audit Log events? Note: There are 2 correct answers to this question.
- A. In the file system of the application servers
- B. In the database table RSAU_BUF_DATA
- C. In a central fi e system
- D. In the SAP Solution Manager system
Answer: A,D
NEW QUESTION # 22
Who can revoke a runtime role from a user in the SAP HANA tenant database? Note: There are 2 correct answers to this question.
- A. Anyone with "ROLE ADMIN"
- B. The DBACOCKPIT user
- C. The granting user
- D. The owner of the HDI container
Answer: A,C
Explanation:
Explanation
These are some of the users who can revoke a runtime role from a user in the SAP HANA tenant database. A runtime role is a role that is granted dynamically to a user when they connect to a database using an application or service, such as XSODATA or XSJS. A runtime role can be revoked by the user who granted it, or by anyone who has the "ROLE ADMIN" system privilege, which allows them to create, grant, and revoke roles in the database. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33
NEW QUESTION # 23
To prevent session fixation and session hijacking attacks, SAP's HTTP security session management is highly recommended. What are the characteristics of HTTP security session management? Note: There are 2 correct answers to this question.
- A. The session identifier is a reference to the session context transmitted through a cookie.
- B. The security sessions are created during logon and deleted during logoff.
- C. The system is checking the logon credentials again for every request
- D. It uses URLs containing sap-context d to identify the security session
Answer: A,B
NEW QUESTION # 24
What are the characteristics of HTTP security session management? Note: There are 3 correct answers to this question.
- A. Creates security sessions at logon
- B. Checks the logon credentials again for every request.
- C. Deletes security sessions at logoff
- D. Starts security sessions with a short user-based expiration time
- E. Refers to the session context through the session identifier
Answer: A,D,E
Explanation:
Explanation
These are some of the characteristics of HTTP security session management in SAP systems. HTTP security session management creates security sessions at logon that store information about the user's identity and authorizations in a session context on the server side. The security sessions start with a short user-based expiration time that can be extended by user activity or terminated by logoff or timeout. The security sessions refer to the session context through a session identifier that is passed between the client and the server using cookies or URL parameters. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
NEW QUESTION # 25
SNC is configured in the production system. For emergency purposes, you want to allow certain accounts to be able to access the system with password logon. What do you need to set up for this purpose? Note: There are 2 correct answers to this question.
- A. Use profile parameter SNC/ACCEPT_ INSECURE_GUI with value 'U'
- B. Use profile parameter SNC/ONLY_ENCRYPTED_GUI with value 'O'
- C. Maintain the user access control list in table USRACLEXT
- D. Use the 'Unsecure communication permitted option' In SU01 for specific users
Answer: A,D
NEW QUESTION # 26
What can you maintain in transaction SU24 to reduce the overall maintenance in PFCG? Note: There are 3 correct answers to this question.
- A. The default values in the tables USOBX and USOBT
- B. The default values so they are appropriate for the transactions used in the roles
- C. The authorization objects that are not linked to transact on codes correctly
- D. The authorization objects that have unacceptable default values
- E. The default authority check settings for the role maintenance tool
Answer: B,C,D
NEW QUESTION # 27
What is required when you configure the PFCG role for an end-user on the front-end server? Note: There are 2 correct answers to this question.
- A. The S_RFC authorization object for the OData access
- B. The catalog assignment for the start authorization
- C. The Fiori Launchpad designer assignment
- D. The group assignment to display it in the Fiori Launchpad
Answer: B
NEW QUESTION # 28
You want to create an SAP Fiori app for multiple users and multiple back-end systems. To support this, you create different roles for the different back-end systems in the SAP Fiori front-end system (central hub). What transactions do you have to use to map a back-end system to one of those roles?
- A. PFCG
- B. /IWFND/MAINT_SERVICE
- C. SEGW
- D. /UI2/GW_SYS_ALIAS
Answer: B
NEW QUESTION # 29
Which communication methods does the SAP Fiori Launchpad use to retrieve business data? Note: There are 3 correct answers to this question.
- A. HTIP(S)
- B. Info Access (InA)
- C. Data
- D. Trusted RFC
- E. Secure Network Communication (SNC)
Answer: B,D,E
NEW QUESTION # 30
What are characteristics only valid for the MDC high isolation mode?
- A. Every tenant has its own set of database users belonging to the same sapsys group
- B. Every tenant has its own set of OS users
- C. Every tenant has its own set of database users
- D. All internal database communication is secured using SNC
Answer: B
NEW QUESTION # 31
......
Pass SAP P-SECAUTH-21 Premium Files Test Engine pdf - Free Dumps Collection: https://pass4sure.dumpstests.com/P-SECAUTH-21-latest-test-dumps.html