P_SECAUTH_21 Exam Details

  • Exam Code
    :P_SECAUTH_21
  • Exam Name
    :SAP Certified Technology Professional - System Security Architect
  • Certification
    :SAP Certifications
  • Vendor
    :SAP
  • Total Questions
    :80 Q&As
  • Last Updated
    :Dec 01, 2024

SAP P_SECAUTH_21 Online Questions & Answers

  • Question 1:

    You are setting up your SAP NetWeaver AS in a SSL client scenario. What are the reasons to choose an "anonymous SSL Client PSE" setup? Note: There are 2 correct answers to this question.

    A. To support mutual authentication
    B. To support server-side authentication and data encryption
    C. To use as a container for the list of CAs that the server trusts
    D. To have an individual identity when accessing a specific application

  • Question 2:

    The SSO authentication using X.509 client certificates is configured. Users complain that they can't log in to the back-end system. The trace file shows the following error message: "HTTP request [2/5/9] Reject untrusted forwarded certificate".

    What is missing in the configuration? Note: There are 2 correct answers to this question.

    A. On the back-end, the profile parameter icm/HTTPS/verify client must NOT be set to 0
    B. On the web-dispatcher, the SAPSSLS.pse must be signed by a trusted certification authority
    C. On the web-dispatcher, the profile parameter icm/HTTPS/verify_client must be set to 0
    D. The web dispatcher's SAPSSLC.PSE certificate must be added to the trusted reverse proxies list in icm/trusted_reverse_proxy_

  • Question 3:

    A system user created a User1 and a schema on the HANA database with some data. User2 is developing modelling views and requires access to objects in User1's schema. What needs to be done?

    A. User1 should grant _SYS_REPO with SELECT WITH GRANT privilege
    B. User2 needs to be granted with the same roles like User1
    C. System user should grant User2 with SELECT privilege to User 1schema
    D. ROLE ADMIN needs to be granted to User2

  • Question 4:

    In your SAP HCM system, you are implementing structural authorizations for your users. What are the characteristics of this authorization type? Note: There are 2 correct answers to this question.

    A. The structural profile is maintained and assigned to users using the Profile Generator
    B. The structural profile determines the access mode which the user can perform
    C. The structural profile is maintained and assigned to users using the Implementation Guide
    D. The structural profile determines the accessible object in the organizational structure

  • Question 5:

    What does the SAP Security Optimization Service provide? Note: There are 2 correct answers to this question.

    A. Configuration check of the SAP systems and the SAP middleware components against defined configurations
    B. Results with recommendations on how to resolve identified vulnerabilities without prioritization
    C. Analysis of security vulnerabilities within an enterprise's SAP landscape to ensure optimal protection against intrusions
    D. Analysis of your operating system, database, and entire SAP system to ensure optimal performance and reliability

  • Question 6:

    Why should you create multiple dispatchers in SAP Identity Management? Note: There are 2 correct answers to this question.

    A. To accommodate scalability
    B. To support fail-over scenarios
    C. To handle password provisioning
    D. To handle special network access requirements

  • Question 7:

    When re-configuring the user management engine (UME) of an AS Java system, what do you need to consider to change the data source from system database to an ABAP system successfully?

    A. The logon security policy for the existing users is aligned with the logon security policy in the ABAP system.
    B. All users and groups in the system database must have different IDs than existing users and groups in the ABAP system.
    C. You need to import the users from the system database into the ABAP system.
    D. You must manually replace the UME configuration file dataSourceConfiguration_database_only.xmlwith an appropriate dataSourceConfiguration_abap.xmlfile.

  • Question 8:

    What authorization object is checked when a user selects an A BAP Web Dynpro application to execute?

    A. S_PROGRAM
    B. S_START
    C. S_TCODE
    D. S_SERVICE

  • Question 9:

    You are running a 3-tier SAP system landscape. Each time you are accessing STMS_IMPORT on any of these systems, you are prompted for a TMSADM password. How can you stop this prompt from appearing?

    A. Run the report RSUSR405 on the domain controller.
    B. Reset the TMSADM user's password on the system you are trying to access STMS_ IMPORT.
    C. Change the TMSA DM user's password directly in the TMS RFC destination in transact on SM59.
    D. Run the report TMS_ UPDATE_PWD_OF_TMSADM on the domain controller.

  • Question 10:

    Which of the following events will create security alerts in the CCMS Alert Monitor of SAP Solution Manager? Note: There are 2 correct answers to this question.

    A. Manual table changes
    B. Changes to the instance profile
    C. Call of RFC functions
    D. Start of reports

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only SAP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your P_SECAUTH_21 exam preparations and SAP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.