SAP SAP Certifications C_GRCAC_10 Questions & Answers

• Question 1:

  You want to update two authorizations that are shared across multiple roles. How do you accomplish this most efficiently?

  A. Update each authorization in all roles in two mass role update sessions.

  B. Update each authorization in one role in multiple mass role update sessions.

  C. Update both authorizations in all roles in one mass role update session.

  D. Update both authorizations in one role in multiple mass role update sessions.

  Correct Answer: A

• Question 2:

  You want to make Risk Analysis mandatory before an approver submits a request.

  How do you enable this in Access Control?

  A. Activate "Exclude objects for batch risk analysis" in the IMG.

  B. Set "Show all objects in risk analysis" (parameter ID 1036) to YES.

  C. Set "Enable risk analysis on form submission" (parameter ID 1071) to YES.

  D. Activate the corresponding MSMP stage task setting.

  Correct Answer: D

• Question 3:

  You maintain rules in the BRFplus framework. For which rule kind can you activate the "Return all matches found" option for the decision table?

  A. GRC API rule

  B. Agent rule

  C. Routing rule

  D. Initiator rule

  Correct Answer: B

• Question 4:

  Which objects must you activate when you create a BRFplus Routing rule? (Choose three)

  A. Initiator Flat Rule

  B. Function

  C. Application

  D. Decision Table

  E. Result Column

  Correct Answer: BCD

• Question 5:

  You have added a new stage to an existing path and set the approval type to "Any One Approver" (A in the attached screenshot). Now you set the approval type to "All Approvers" in the default stage details of the new stage (B in the attached screenshot).

  

  Which approval type will become effective?

  A. A and B

  B. None

  C. A

  D. B

  Correct Answer: C

• Question 6:

  Which of the following tasks must you perform if you want to enable a user to log on to a Firefighter ID?

  A. Schedule the Firefighter Workflow Sync job periodically.

  B. Run the Firefighter Log Sync job.

  C. Set up the Firefighter log configuration parameters.

  D. Create a reason code.

  Correct Answer: D

• Question 7:

  Which of the following is a feature of centralized Emergency Access Management?

  A. Reason codes are defined once and assigned per system.

  B. The Firefighter is required to log on to each target system to perform Firefighter activities.

  C. The Firefighter IDs are created centrally in Access Control.

  D. Administration, reporting, and Firefighter logon are performed on target systems.

  Correct Answer: A

• Question 8:

  Which BRFplus object is used as a container for all other BRFplus objects?

  A. Expression

  B. Condition Group

  C. Application

  D. Function

  Correct Answer: C

• Question 9:

  Which transaction can you use to customize notification templates?

  A. Change Documentation (SII1)

  B. SAP Documentation (SE61)

  C. Message Maintenance (SE91)

  D. Documentation Message Types (WE64)

  Correct Answer: B

• Question 10:

  What is the purpose of a mitigating control?

  A. To control the access that is allowed to be assigned to a role

  B. To determine which users are allowed to access the system

  C. To assign a compensating control to a risk

  D. To limit the access that is allowed to be assigned to a user

  Correct Answer: C