
2023年最新の実際に出る無料SAP C_GRCAC_13試験問題集と解答
C_GRCAC_13練習テストエンジンで今すぐ試そう81試験問題
質問 # 46
Which of the following are benefits of the role methodology in Business Role Management? Note: There are 2 correct answers to this question.
- A. Enforce a process flow for role maintenance
- B. Allows for the documentation of the role
- C. Is always the same for all roles
- D. Enforce a process flow for role assignment
正解:A、B
質問 # 47
Where can you use a custom field in SAP Access Control? Note: There are 2 correct answers to this question.
- A. End User Personalization
- B. Agent Rule
- C. Control Definition
- D. Simplified Access Request
正解:A、B
解説:
According to the SAP Press blog3, the data synchronized with GRAC_AUTH_SYNCH can be used to populate the Role Analysis Dashboard, which is a tool that provides an overview of roles and authorizations across connected systems. The data can also be used to populate authorization object text descriptions, which are labels that describe what an authorization object does or controls. The data cannot be used to define a new function or roles in Business Role Management, as these tasks require manual input or configuration.
質問 # 48
Which of the following must be specified when defining a mitigating control? Note: There are 2 correct answers to this question.
- A. Organization
- B. Report
- C. Control ID
- D. Risk Owner
正解:A、C
質問 # 49
Which methods can be used to notify a controller of a new EAM session log? Note: There are 2 correct answers to this question
- A. Log Display
- B. Email
- C. Support Message
- D. Workflow
正解:B、D
解説:
According to the SAP Help Portal1, two of the methods that can be used to notify a controller of a new EAM session log are: Email and Workflow (D). These methods can be configured in the Customizing activities for Emergency Access Management. Email notifications can be enabled by setting parameter 4009 to Yes and customizing the notification messages and text. Workflow notifications can be enabled by configuring the Agent ID GRAC_SPM_CNTL_AGENT and assigning it to the relevant workflow paths and stages. Therefore, C and D are the correct answers. A and B are not valid methods for notifying a controller of a new EAM session log, as they are related to other scenarios, such as Support Message (A) and Log Display (B). Reference: 1 https://help.sap.com/doc/e2ccae7ee6354b169cf845cd665e07fe/1.0%202016-07/en-US/frameset.htm?frameset.htm
質問 # 50
You want to configure SAP Access Control to generate alerts to help manage compliance.What are the available alert capabilities that can be configured?Note: There are 3 correct answers to this question.
- A. Identify a user who has executed a critical action and open a support desk message.
- B. Identify a control monitor who has failed to execute defined reports in a timely fashion.
- C. Identify a user who has executed conflicting functions and open a support desk message.
- D. Identify a user who has executed a critical action and generate an email notification.
- E. Identify a user who has executed conflicting functions.
正解:A、C、D
質問 # 51
How can you make sure that a risk analysis is performed when you use access request management?Note: There are 2 correct answers to this question.
- A. Set Enable Offline Risk Analysis parameter to Yes
- B. Configure the MSMP workflow path to require a risk analysis
- C. Set the Enable Rsk Analysis Form on Submission parameter to Yes
- D. Configure the MSMP workflow stage to require a risk analysis
正解:C、D
質問 # 52
You are creating an Initiator rule and want to build a condition using header attributes. Which of the following attributes can you use?
Note: There are 2 correct answers to this question.
- A. Company
- B. Prerequisite
- C. Functional Area
- D. Subprocess
正解:C、D
質問 # 53
You have been asked to change the email message delivered to an end user when their access request is rejected.Which of the following actions should you do?Note: There are 3 correct answers to this question.
- A. Configure the Notification Event for all relevant paths and stages in MSMP Workflow.
- B. Update the required text for the standard document object.
- C. Update the required text using a copy of the standard document object.
- D. Replace the SAP standard document object for the message class with a custom document object.
- E. Define a custom notification template in table GRFNVNOTIFYMSG.
正解:A、C、E
質問 # 54
You are tasked with configuring SAP Access Control to retrieve user and authentication information. SAP Access Control supports a connector configuration for which of the following functions? Note: There are 2 correct answers to this question.
- A. End User Verification SU01
- B. User Detail Data Source data type SU01
- C. User Search Data Source data type HR
- D. User Authentication Data Source data type IDM
正解:B、D
解説:
According to the SAP Help Portal1, SAP Access Control supports a connector configuration for User Authentication Data Source data type IDM and User Detail Data Source data type SU01. These data types are used to retrieve user and authentication information from different sources such as SAP Identity Management (IDM) or SAP User Management (SU01). End User Verification SU01 is not a valid data type, and User Search Data Source data type HR is used to search for users in SAP Human Resources (HR) system, not to retrieve user and authentication information. Reference: 1 https://help.sap.com/docs/connectivity/sap-btp-connectivity-cf/configure-access-control-tcp?locale=en-us
質問 # 55
Which of the following activities can you do in Emergency Access Management (EAM)? Note: There are 2 correct answers to this question.
- A. Maintain EAM master data in the back-end system
- B. Display a log file of performed activities
- C. Log on to the Firefighter ID directly with a password
- D. Perform tasks outside of the normal responsibilities
正解:B、D
解説:
According to the SAP Help Portal, you can perform two activities in Emergency Access Management: perform tasks outside of the normal responsibilities and display a log file of performed activities. Perform tasks outside of the normal responsibilities means that you can use a firefighter ID or a firefighter role to access a target system and perform emergency activities that require elevated authorizations. Display a log file of performed activities means that you can view the usage procedure log or the security audit log of a firefighting session.
質問 # 56
You have created a transportable Initiator BRFplus Flat Rule. Which of the following must be active in BRFplus for MSMP Workflow to utilize your new rule? Note: There are 2 correct answers to this question.
- A. Package
- B. Expression
- C. Path
- D. Application
正解:A、D
解説:
According to the SAP blog1, you need to activate two objects in BRFplus for MSMP Workflow to utilize your new initiator BRFplus flat rule: package and application. Package is an object that contains all the BRFplus artifacts related to a rule, such as function, expression, or data object. Application is an object that contains one or more packages and defines the interface between BRFplus and the calling application.
質問 # 57
Which of the following standard roles does SAP deliver for use by the EAM Owner or EAM Controller or both?Note: There are 2 correct answers to this question.
- A. SAP_GRAC_SUPER_USER MGMT_CNTLR
- B. SAP_GRIA_SUPER_USER_MGMT_ADMIN
- C. SAP_GRAC_SPM_FFID
- D. SAP_GRIA_SUPER_USER_MGMT_USER
正解:A、B
質問 # 58
You are updating an MSMP Workflow. You want the update to apply to both new and existing requests that have not yet been processed.What must you configure to achieve this result?
- A. Task Settings
- B. Stage Details
- C. Access Request Validation Parameters
- D. EUP
正解:A
質問 # 59
You want to configure an approval workflow to require an approval for updates to a defined function. How do you enable this capability?
- A. Flag the function for approval
- B. Set the 1064 Function Maintenance parameter to YES
- C. Configure the GRAC_FUNCTION_APPROVER agent
- D. Activate the SAP_GRAC_FUNC_APPR MSMP Process ID
正解:B
質問 # 60
Which of the following are required to enable Centralized Emergency Access Management (EAM)? Note: There are 2 correct answers to this question.
- A. You are configuring the role of connectors in a landscape.
- B. Set the Enable Decentralized Firefighting parameter for Emergency Access Management to NO
- C. Set the Application Type parameter for Emergency Access Management to value ID in SAP Access Control
- D. Set the Application Type parameter for Emergency Access Management to value Role in the target system GRC plug-in.
- E. Set the Enable Decentralized Firefighting parameter for Emergency Access Management to YES
正解:B、C
解説:
According to the SAP Help Portal1, to enable Centralized Emergency Access Management (EAM), two of the steps that are required are: Set the Enable Decentralized Firefighting parameter for Emergency Access Management to NO and Set the Application Type parameter for Emergency Access Management to value ID in SAP Access Control. These steps ensure that the EAM configuration is centralized on the GRC system and that the Firefighter IDs are maintained on the GRC system. Therefore, B and C are the correct answers. A and D are not valid steps for enabling Centralized EAM, as they would enable Decentralized EAM instead. E is not a valid step for enabling Centralized EAM, as it would set the Application Type parameter to value Role, which is not supported for Centralized EAM. Reference: 1 https://help.sap.com/doc/e2ccae7ee6354b169cf845cd665e07fe/1.0%202016-07/en-US/frameset.htm?frameset.htm
質問 # 61
In the SAP GRC landscape, which of the following activities must be taken to ensure that an update to the access risk rule set in the development system will be available for risk analysis in the production system? Note: There are 2 correct answers to this question.
- A. The connector to the production system must be configured as the Production Environment under Access Control -> 1-1 Maintain Connector Settings.
- B. The access risk rules must be downloaded from the development system and uploaded into the production system.
- C. Each change to a Function ID or Risk ID must be saved to its own transport request and imported into the access risk rule 1-1 set in the production system.
- D. Access risk rules must be generated and inserted into the corresponding tables in the production system.
正解:B、C
質問 # 62
You want to configure your MSMP Workflow stage definition to ensure that a workflow request that has NOT been processed after a certain period of time can be escalated and approved by another approver. Which of the following options can you use to configure escalation? Note: There are 3 correct answers to this question.
- A. Skip to Next Stage
- B. Maintain Fallback Receiver
- C. Define an Alternate Approver
- D. Use Defaults
- E. Escalate to Specified Agent
正解:A、B、E
質問 # 63
Which of the following jobs should be executed before you schedule a User Access Review (UAR)? Note: There are 2 correct answers to this question.
- A. Update Workflow for UAR request
- B. Repository Object Sync
- C. Generate data for access request UAR review
- D. Action Usage Sync
正解:B、D
質問 # 64
How can the data synchronized with GRAC_AUTH_SYNCH be used? Note: There are 2 correct answers to this question.
- A. To populate authorization object text descriptions
- B. To populate the Role Analysis Dashboard
- C. To define a new function
- D. To define roles in Business Role Management
正解:A、C
質問 # 65
Where can you use a custom field in SAP Access Control? Note: There are 2 correct answers to this question.
- A. Agent Rule
- B. Control Definition
- C. End User Personalization
- D. Simplified Access Request
正解:A、D
質問 # 66
Which of the following represent an Agent Type within MSMP Workflow configuration? Note: There are 2 correct answers to this question.
- A. Notification
- B. User Group in SU01
- C. PFCG Roles
- D. Approval
正解:B、C
質問 # 67
......
試験合格保証付きのSAP Certified Application Associate C_GRCAC_13試験問題集:https://jp.fast2test.com/C_GRCAC_13-premium-file.html
SAP C_GRCAC_13日常練習試験は2023年最新のに更新された81問あります:https://drive.google.com/open?id=1cZNb1ccyhitukPD0A_rq-XKqY3svopGk