• Home
  • Articles
  • [Nov-2023] Use Real P-SECAUTH-21 Dumps Free Sample Questions and Practice Test Engine [Q40-Q64]

[Nov-2023] Use Real P-SECAUTH-21 Dumps Free Sample Questions and Practice Test Engine [Q40-Q64]

Share

[Nov-2023] Use Real P-SECAUTH-21 Dumps Free Sample Questions and Practice Test Engine

Pass SAP P-SECAUTH-21 exam - questions - convert Tets Engine to PDF

NEW QUESTION # 40
How can you register an SAP Gateway service? Note: There are 2 correct answers to this question.

  • A. Use transaction SEGW on the back-end server
  • B. Use transaction /IWFND/MA INT_SERVICE on the front-end server
  • C. Use SAP_GAT EWAY_BASIC_CONFIG in transact on STCO 1 on the frontend server
  • D. Use SAP_GAT EWAY_ACTIVATE_ODATA_SERV in transact on STC01 on the front-end server

Answer: A,B


NEW QUESTION # 41
How can you protect a table containing sensitive data using the authorization object S_TABU_DIS?

  • A. Authorization table groups containing tables with sensitive data must be defined in table TDDAT and these must be omitted for all employees who do not need access to these tables
  • B. The tables containing sensitive data must be associated with table groups in table TBRG.
  • C. The field DICBERCLS of the authorization object must enumerate all table names of the tables containing sensitive data.
  • D. The tables containing sensitive data must be named using the authorization object S_TA BU_NAM for all responsible administrator employees. The fields DICBERCLS of the object S_TABU_DIS can then be filled with *.

Answer: A


NEW QUESTION # 42
What are the characteristics of the Audit Information System (AIS)? Note: There are 2 correct answers to this question.

  • A. The roles are built from nodes in the Implementation Guide (IMG).
  • B. It offers two types of audit reports: system and business.
  • C. The report selection variables are configured during setup.
  • D. It can be launched directly using transaction SECR.

Answer: A,B

Explanation:
Explanation
The Audit Information System (AIS) is a tool that supports internal and external audits by providing access to relevant data and reports from various SAP systems and modules. It offers two types of audit reports: system reports that focus on technical aspects, such as security, performance, and configuration; and business reports that focus on functional aspects, such as financial accounting, controlling, and materials management. The roles for accessing AIS are built from nodes in the Implementation Guide (IMG), where you can also customize the report selection variables and parameters. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


NEW QUESTION # 43
What must be included in a PFCG role for an end user on the Fiori front-end server to run an app?

  • A. The S_RFC authorization object for the OData access
  • B. The catalog assignment for the start authorization
  • C. The group assignment to display it in the Fiori Launchpad
  • D. The S_START authorization object for starting the OData service

Answer: B

Explanation:
Explanation
This must be included in a PFCG role for an end user on the Fiori front-end server to run an app. The catalog assignment for the start authorization defines which apps can be started by the user from the Fiori Launchpad.
The catalog assignment is done using the authorization object S_CTS_ADMI with field CTS_ADMI_RUN = SAP_CATALOG_ALL. References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f


NEW QUESTION # 44
When re-configuring the user management engine (UME) of an AS Java system, what do you need to consider to change the data source from system database to an ABAP system successfully?

  • A. The UME configuration file dataSourceConfiguration_database_only.xml is automatically updated with an appropriate dataSourceConfiguration_abap.xml file.
  • B. All users and groups in the system database must have different IDs than existing users and groups in the ABAP system.
  • C. You need to import the users from the system database into the ABAP system.
  • D. The logon security policy for the existing users is aligned with the logon security policy in the ABAP system.

Answer: B

Explanation:
Explanation
This is one of the tasks that you need to consider to change the data source from system database to an ABAP system successfully when re-configuring the user management engine (UME) of an AS Java system. The UME is a component that handles user administration and authentication for AS Java systems. The UME can use different data sources for storing user and group data, such as system database, ABAP system, or LDAP directory. When changing the data source from system database to an ABAP system, you need to ensure that all users and groups in the system database have different IDs than existing users and groups in the ABAP system, otherwise there will be conflicts and errors during the migration process. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/48/9e2e3f6f8e41e8a283aaf2ad2c64c4/content.htm?n


NEW QUESTION # 45
Which features do SAP HANA SQL-based analytic privileges offer compared to classic XMLbased ones?
Note: There are 2 correct answers to this question.

  • A. Complex filtering
  • B. Control of read-only SAP HANA procedures
  • C. Control of read-only access to SQL views
  • D. Transportable

Answer: A,C

Explanation:
Explanation
These are some of the features that SAP HANA SQL-based analytic privileges offer compared to classic XML-based ones. Analytic privileges are privileges that restrict access to data in analytical views or calculation views based on certain conditions or filters. SAP HANA supports two types of analytic privileges:
SQL-based and XML-based. SQL-based analytic privileges are defined using SQL statements and stored as database objects. XML-based analytic privileges are defined using XML files and stored as repository objects.
SQL-based analytic privileges offer more features and flexibility than XML-based ones, such as control of read-only access to SQL views, which prevents users from modifying data in the views, and complex filtering, which allows users to define multiple filters with different operators and expressions. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33


NEW QUESTION # 46
How are security relevant objects related in the Cloud Foundry? Note: There are 2 correct answers to this question

  • A. Role Templates have 1 or many scopes
  • B. Role Collections have 0 or many role templates
  • C. Role Collections have 0 or many roles
  • D. Role Templates have 0 or many attributes

Answer: B,D


NEW QUESTION # 47
You want to check the custom ABAP codes in your system for security vulnerabilities and you want to use the SAP Code Vulnerability Analyzer to carry out these extended security checks. What need to be done for this purpose? Note: There are 2 correct answers to this question

  • A. Run the extended syntax check from the SLIN transaction
  • B. Run the transaction ST12 to start the analysis
  • C. Run SAP Code Vulnerability Analyzer from the ABAP Test Cockpit
  • D. Run SAP Code Vulnerability Analyzer from the transaction ST01

Answer: A,C


NEW QUESTION # 48
Where can we store the Security Audit Log events? Note: There are 2 correct answers to this question.

  • A. In the database table RSAU_BUF_DATA
  • B. In a central fi e system
  • C. In the SAP Solution Manager system
  • D. In the file system of the application servers

Answer: C,D


NEW QUESTION # 49
What is the purpose of the parameter rec/client in an AS ABAP based SAP system?

  • A. To generate source code versions
  • B. To log changes in tables
  • C. To log changes in Core Data Services views
  • D. To generate changes in documents

Answer: B


NEW QUESTION # 50
The SSO authentication using X.509 client certificates is configured. Users complain that they can't log in to the back-end system. The trace file shows the following error message: "HTTP request [2/5/9] Reject untrusted forwarded certificate". What is missing in the configuration? Note: There are 2 correct answers to this question.

  • A. On the web-dispatcher, the profile parameter icm/HTTPS/verify_client must be set to 0
  • B. On the back-end, the profile parameter icm/HTTPS/verify client must NOT be set to 0
  • C. On the web-dispatcher, the SAPSSLS.pse must be signed by a trusted certification authority
  • D. The web dispatcher's SAPSSLC.PSE certificate must be added to the trusted reverse proxies list in icm/trusted_reverse_proxy_<xx>

Answer: B,C


NEW QUESTION # 51
You are using the SAP Web Dispatcher for load-balancing purposes. Which actions are performed by the SAP Web Dispatcher in this scenario? Note: There are 2 correct answers to this question.

  • A. Authenticates the user's credentials
  • B. Uses SAP logon groups to determine which requests are directed to which server
  • C. Decrypts the HTTPS request and then selects the server
  • D. Checks current state of the message server

Answer: B,D


NEW QUESTION # 52
The SAP HANA database is installed with multi database container (MDC) mode with multiple tenant databases configured. What are the required activities to enable access between tenants? Note: There are 2 correct answers to this question.

  • A. Set whitelist of cross-tenant database communication channel
  • B. Configure smart data access (SDA) between the relevant HANA tenants
  • C. Decrease the level of isolation mode on all MDC tenants
  • D. Create user mapping between local and remote tenant databases

Answer: A,D


NEW QUESTION # 53
You want to use Configuration Validation functionality in SAP Solution Manager to check the consistency of settings across your SAP environment. What serves as the reference basis for Configuration Validation? Note: There are 2 correct answers to this question.

  • A. A result list of configuration items from SAP Early Watch Alert (EWA)
  • B. A list of recommended settings attached to a specific SAP Note
  • C. A virtual set of manually maintained configuration itsems
  • D. A target system in your system landscape

Answer: C,D


NEW QUESTION # 54
What authorization object is checked when a user selects an ABAP Web Dynpro application to run?

  • A. S_PROGRAM
  • B. S_TCODE
  • C. S_SERVICE
  • D. S_START

Answer: C

Explanation:
Explanation
The authorization object S_SERVICE is checked when a user selects an ABAP Web Dynpro application to run. This authorization object controls the access to Web services and Web Dynpro applications based on the service name and type. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


NEW QUESTION # 55
You want to use Configuration Validation functionality in SAP Solution Manager to check the consistency of settings across your SAP environment. What serves as the reference basis for Configuration Validation? Note: There are 2 correct answers to this question.

  • A. A virtual set of manually maintained configuration items
  • B. A list of recommended notes from RSECNOTE
  • C. A result list of configuration items from Solution Finder for SAP EarlyWatch Alert
  • D. A target system in your system landscape

Answer: A,D

Explanation:
Explanation
Configuration Validation in SAP Solution Manager allows you to check the consistency of settings across your SAP environment by comparing them with a reference basis. The reference basis can be either a virtual set of manually maintained configuration items or a target system in your system landscape that serves as a template or best practice example. References:
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a
https://help.sap.com/viewer/bf82e6b26456494cbdd197057c09979f/7.2.10/en-US/4a0c1f51bb571014e10000000a


NEW QUESTION # 56
Which tasks would you perform to allow increased security for the SAP Web Dispatcher Web Administration interface? Note: There are 2 correct answers to this question.

  • A. Use subparameter ALLOWPUB = FALSE of the profile parameter icm/server_port_<xx>
  • B. Use a separate port for the content
  • C. Use access restrictions with the icm/HTTP/auth_<xx> profile parameter
  • D. Use Secure Socket Layer (SSL) for password encrypt on

Answer: A,B


NEW QUESTION # 57
Which authorizations are required for an SAP Fiori Launchpad user? Note: There are 2 correct answers to this question

  • A. /UI2/PAGE_BUILDER_PERS
  • B. /UI2/PAGE_BUILDER_CUST
  • C. /UI2/CHIP
  • D. /UI2/INTEROP

Answer: A,D


NEW QUESTION # 58
Which transaction or report can be used to audit profile assignments in an SU01 user master record? Note: There are 2 correct answers to this question.

  • A. RSUSR1 00
  • B. RSUSR002
  • C. ST01
  • D. SM20N

Answer: A,B

Explanation:
Explanation
These are some of the transactions or reports that can be used to audit profile assignments in an SU01 user master record. A user master record is a record that contains information about a user in an SAP system, such as personal data, logon data, defaults, parameters, or authorizations. A profile assignment is an assignment of a profile to a user master record, which grants the user certain authorizations or permissions in the system.
RSUSR002 is a transaction or report that displays users by complex selection criteria, such as profiles, authorizations, or transactions. RSUSR100 is a transaction or report that displays users according to logon date and password change date, along with their profiles and roles. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?


NEW QUESTION # 59
The security administrator is troubleshooting authorization errors using transaction SU53. While running transaction MM50, the user received the following error: "You are not authorized to use transaction MM01" The users position in the organization makes it inappropriate for them to have direct access to transaction MM01 because it creates a Segregation of Duties conflict.
What would cause the system to run an authority check using object S_TCODE for transaction MM01 while running transaction MM50?

  • A. The proposal value for the object S_TCODE in the SU24 data for transaction MM50 was incorrectly set to YES
  • B. The instance parameter auth/no_check_in_some_cases has been set to Y
  • C. MM01 was maintained as the CALLING transaction in table TCDCOUPLES with field OKFLAG value X
  • D. The developer who wrote the program for transaction MM50 issues the ABAL command CALL TRANSACTION for transaction MM01

Answer: D


NEW QUESTION # 60
Because of which security threat would you need to make additional configuration settings to run the SAP Fiori Launchpad from within your SAP NetWeaver Portal?

  • A. Cross-Site Scripting
  • B. Clickjacking
  • C. Content Spoofing
  • D. Cross-Site Request Forgery

Answer: B


NEW QUESTION # 61
You are consolidating user measurement results and transferring them to SAP. What act on do you take?

  • A. Run transact on USMM
  • B. Run report RSLAW_PLUGIN
  • C. Run report RFAUDI06_BCE
  • D. Run report RSUSR200

Answer: A


NEW QUESTION # 62
You are evaluating the "Cross-client object change" option using transaction SCC4 for your Unit Test Client in the development environment. Which setting do you recommend?

  • A. No changes to repository and cross-client customizing objects
  • B. No changes to cross-client customizing objects
  • C. Changes to repository and cross-client customizing allowed
  • D. No changes to repository objects

Answer: C

Explanation:
Explanation
This is the recommended setting for the "Cross-client object change" option using transaction SCC4 for your Unit Test Client in the development environment. This setting allows you to make changes to repository objects (such as programs, function modules, classes, etc.) and cross-client customizing objects (such as number ranges, message classes, etc.) in your Unit Test Client without affecting other clients in the same system. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


NEW QUESTION # 63
Which tools can you use to troubleshoot an authorization issue with a Fiori application? Note:
There are 2 correct answers to this question.

  • A. /IWFND/ERROR_LOG
  • B. /IWBEP/ERROR_LOG
  • C. /UI2/FLC
  • D. /UI2/GW_APPS_LOG

Answer: A,B

Explanation:
Explanation
These are some of the tools that you can use to troubleshoot an authorization issue with a Fiori application.
/IWFND/ERROR_LOG is a transaction that displays the error log for the SAP Gateway framework, which handles the OData requests and responses between the Fiori front-end server and the back-end system.
/IWBEP/ERROR_LOG is a transaction that displays the error log for the SAP Gateway service implementation, which contains the business logic and data access for the OData services. References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f


NEW QUESTION # 64
......

Pass Your P-SECAUTH-21 Exam Easily - Real P-SECAUTH-21 Practice Dump Updated Nov 01, 2023: https://www.certkingdompdf.com/P-SECAUTH-21-latest-certkingdom-dumps.html

Related Articles

more
SAP P-SECAUTH-21 Certification Practice Exam

Our certkingdom pdf dumps are the best exam preparation study material for all of you. You can try three different versions of certkingdom free download demo and do your decision. Our exam pdf trainingcan boost your personal ability for 100% pass.

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Copyright © 2026 CertkingdomPDF NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy