SAP System Security Architect P_SECAUTH_21 Real Questions

1. A user reports an issue with data not showing up in the visualization of the SAP Fiori tiles. You want to verify the target mapping.

At what level are you going to check the target mapping?

At the catalog level in the SAP Fiori front-end server

At the group level in the SAP Fiori front-end server

At the group level in the SAP Fiori Launchpad

At the application level in the Web IDE

2. Which authorizations should you restrict when you create a developer role in an AS ABAP production system? Note: There are 2 correct answers to this question.

The ability to execute class methods through authorization object S_PROGRAM

The ability to execute queries through authorization object S_OUERY

The ability to execute function modules through authorization object S_DEVELOP

The ability to use the ABAP Debugger through authorization object S_DEVELOP

3. What are characteristics only valid for the MDC high isolation mode?

Every tenant has its own set of OS users

All internal database communication is secured using SNC

Every tenant has its own set of database users

Every tenant has its own set of database users belonging to the same sapsys group

4. You have configured a Gateway SSO authentication using X.509 client certificates. The configuration of the dual trust relationship between client (browser) and SAP Web Dispatcher as well as the configuration of the SAP Web Dispatcher to accept and forward client certificates were done. Users complain that they can’t log in to the back-end system.

How can you check the cause?

Run back-end transaction SMICM and open the trace file

Run back-end system trace using ST12

Run gateway transaction /IWFND/TRACES

Run gateway transaction /IWFND/ ERRORJ.OG

5. You want to create an SAP Fiori app for multiple users and multiple back-end systems. To support this, you create different roles for the different back-end systems in the SAP Fiori front-end system (central hub).

What transaction do you have to use to map a back-end system to one of those roles?

/UI2/GW_SYS_ALIAS

PFCG

SM59

/IWFND/MAINT_SERVICE

6. What reference is used to connect multiple Cloud Connectors to one SAP Cloud Platform subaccount?

System Alias

Location ID

Instance ID

Virtual Host

7. You are using the SAP Web Dispatcher for load-balancing purposes.

Which actions are performed by the SAP Web Dispatcher in this scenario? Note: There are 2 correct answers to this question.

Authenticates the user’s credentials

Uses SAP logon groups to determine which requests are directed to which server

Checks current state of the message server

Decrypts the HTTPS request and then selects the server

8. You are consolidating user measurement results and transferring them to SAP.

What act on do you take?

Run report RSUSR200

Run report RFAUDI06_BCE

Run report RSLAW_PLUGIN

Run transact on USMM

9. A security consultant has activated a trace via ST01 and is analyzing the authorization error with Return Code 12.

What does the Return Code 12 signify?

“Objects not contained in User Buffer”

“No authorizations and does NOT have authorization object in their buffer”

“No authorizations but does have authorization object in their buffer”

“Too many parameters for authorization checks”

10. Which basis transaction provides an optimized user interface for evaluating authorization checks only?

STAUTHTRACE

RSECADMIN

ST01

ABAP_TRACE

Free P_SECAUTH_21 Exam Dumps Online For Reading

Leave a Reply Cancel reply