[2023年11月10日] P_SECAUTH_21試験練習テスト問題(更新された80問あります) [Q19-Q35]

Share

[2023年11月10日]Fast2test P_SECAUTH_21試験練習テスト問題(更新された80問あります)

合格させるSAP P_SECAUTH_21試験情報と無料練習テスト


SAP P_SECAUTH_21 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • SAP NetWeaver Application Server および関連するインフラストラクチャ コンポーネントのセキュリティの説明と実装
  • SAP S
  • 4HANA の承認の概念
トピック 2
  • SAP Business Suite
  • SAP Netweaver Application Server および Infrastructure Security の承認コンセプトを説明および実装する
トピック 3
  • Solution Manager を使用してセキュリティを監視し、セキュリティの問題をトラブルシューティングする
  • SAP S
  • 4HANA の承認の概念を説明および実装する
トピック 4
  • SAP ビジネス スイートの承認の概念
  • セキュリティの監視とセキュリティの監査
トピック 5
  • SAP HANA のセキュリティ目標、データ プライバシー ガバナンス
  • 承認、セキュリティ、およびシナリオについて説明する

 

質問 # 19
What connection type is used for restricted users?

  • A. HTTP/S
  • B. OLEDB
  • C. JDBC
  • D. ODBC

正解:A

解説:
Explanation
This is the connection type that is used for restricted users in SAP HANA systems. Restricted users are users that can only access SAP HANA via HTTP/S connections using predefined services or applications, such as XSODATA or XSJS services or SAP Fiori applications. Restricted users cannot use other connection types, such as JDBC, ODBC, or OLEDB, which allow direct SQL access to SAP HANA. References:
https://help.sap.com/viewer/6b94445c94ae495c83a19646e7c3fd56/2.0.05/en-US/fafcbcf9d9101014b3d9a08ce33


質問 # 20
Because of which security threat would you need to make additional configuration settings to run the SAP Fiori Launchpad from within your SAP NetWeaver Portal?

  • A. Content Spoofing
  • B. Clickjacking
  • C. Cross-Site Scripting
  • D. Cross-Site Request Forgery

正解:B


質問 # 21
What can you maintain in transaction SU24 to reduce the overall maintenance in PFCG? Note: There are 3 correct answers to this question.

  • A. The default values in the tables USOBX and USOBT
  • B. The default authority check settings for the role maintenance tool
  • C. The authorization objects that are not linked to transact on codes correctly
  • D. The authorization objects that have unacceptable default values
  • E. The default values so they are appropriate for the transactions used in the roles

正解:C、D、E


質問 # 22
Which tasks would you perform to allow increased security for the SAP Web Dispatcher Web Administration interface? Note: There are 2 correct answers to this question.

  • A. Use Secure Socket Layer (SSL) for password encrypt on
  • B. Use subparameter ALLOWPUB = FALSE of the profile parameter icm/server_port_<xx>
  • C. Use a separate port for the content
  • D. Use access restrictions with the icm/HTTP/auth_<xx> profile parameter

正解:B、C


質問 # 23
In your SAP HCM system, you are implementing structural authorizations for your users. What are the characteristics of this authorization type? Note: There are 2 correct answers to this question.

  • A. The structural profile determines the access mode which the user can perform
  • B. The structural profile is maintained and assigned to users using the Profile Generator
  • C. The structural profile determines the accessible object in the organizational structure
  • D. The structural profile is maintained and assigned to users using the Implementation Guide

正解:C、D


質問 # 24
Which communication protocols are supported by the SAP Cloud Connector? Note: There are 2 correct answers to this question.

  • A. LDAP
  • B. NNTP
  • C. RFC
  • D. SNA

正解:A、C

解説:
Explanation
The SAP Cloud Connector supports these communication protocols: LDAP (Lightweight Directory Access Protocol) and RFC (Remote Function Call). LDAP is used to connect to an on-premise directory service, such as Active Directory, and synchronize user data with the cloud identity provider. RFC is used to connect to an on-premise SAP system and enable remote function calls from the cloud applications. References:
https://help.sap.com/viewer/cca91383641e40ffbe03bdc78f00f681/Cloud/en-US/e6c7616abb5710148cfcf3e75d96
https://help.sap.com/viewer/cca91383641e40ffbe03bdc78f00f681/Cloud/en-US/e6c7616abb5710148cfcf3e75d96


質問 # 25
You want to configure SNC in a newly-installed AS ABAP based SAP system. Besides running SNCWIZARD, what else do you need to perform for this scenario?
Note: There are 2 correct answers to this question

  • A. Enable encrypted HTTP service
  • B. Restart the SAP system
  • C. Set the parameters using sapgenpse
  • D. Manage the PSE

正解:B、D


質問 # 26
Which of the following user types can be used to log on interactively? Note: There are 2 correct answers to this question

  • A. Dialog
  • B. Communication
  • C. Service
  • D. System

正解:A、C


質問 # 27
The security administrator is troubleshooting authorization errors using transaction SU53.
While running transaction MM50, the user received the following error: "You are not authorized to use transaction MM01 ." The user's position in the organization makes it inappropriate for them to have direct access to transaction MM01 because it creates a Segregation of Duties conflict. How can the security administrator resolve the issue and still provide the user with the needed access to MM50?

  • A. Remove transaction MM01 as a CALLING transaction from table TCDCOUPLES.
  • B. Set the check indicator (for the transaction authorization called by the MM01 transaction) to NO, using transaction SE97 for transaction MM50.
  • C. Set the check indicator value for object S_TCODE in the SU24 data for transaction MM01 to Do Not Check.
  • D. Set the value for instance parameter auth/no_check_in_some_cases to N.

正解:B

解説:
Explanation
This is one of the ways that the security administrator can resolve the issue and still provide the user with the needed access to MM50. Transaction SE97 is a tool that allows you to maintain check indicators for called transactions, which determine whether an authority check for object S_TCODE is performed when a transaction calls another transaction. By setting the check indicator to NO for MM01 when it is called by MM50, the user can run MM50 without being authorized for MM01. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


質問 # 28
You want to create a role to provide users the ability to display and change an HR table's content based on the country groupings. Which of the steps would you take to accomplish these requirements? Note: There are 2 correct answers to this question.

  • A. Maintain the authorization object S_TABU_LIN
  • B. Define an organization criterion through transaction SPRO
  • C. Maintain the authorization object S_TABU_NAM
  • D. Create an authorization group with appropriate authorization fields for the table

正解:A、B

解説:
Explanation
These are some of the steps that you would take to accomplish these requirements of creating a role to provide users the ability to display and change an HR table's content based on the country groupings. S_TABU_LIN is an authorization object that controls access to table entries based on organizational criteria, such as country grouping, personnel area, or personnel subarea. You would maintain this authorization object with appropriate values for your role in PFCG transaction. SPRO is a transaction that allows you to access customizing activities for various SAP applications and modules. You would define an organization criterion through this transaction by assigning an authorization field name (such as T500L-LAND1 for country grouping) to a table name (such as T500L for countries) in IMG activity "Maintain Table Names for Organizational Criteria".
References: https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-


質問 # 29
Which OData authorizations are required for a user to see business data in the SAP Fiori Launchpad? Note: There are 2 correct answers to this question.

  • A. Start authorization in the SAP S/4HANA back-end system
  • B. Access authorization in the SAP Fiori front-end system
  • C. Access authorization in the SAP S/4HANA back-end system
  • D. Start authorization in the SAP Fiori front-end system

正解:B、C

解説:
Explanation
These are some of the OData authorizations that are required for a user to see business data in the SAP Fiori Launchpad. OData (Open Data Protocol) is a protocol that enables CRUD (Create, Read, Update, Delete) operations on data using RESTful web services. SAP Fiori Launchpad is a web-based tool that provides access to various SAP Fiori applications and functions. SAP S/4HANA is an ERP (Enterprise Resource Planning) system that provides various business processes and functions. To see business data in the SAP Fiori Launchpad, the user needs to have access authorization in both the SAP Fiori front-end system, which handles the OData requests and responses between the user's browser and the back-end system, and the SAP S/4HANA back-end system, which contains the business logic and data access for the OData services.
References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f


質問 # 30
How can you protect a table containing sensitive data using the authorization object S_TABU_DIS?

  • A. The tables containing sensitive data must be associated with table groups in table TBRG.
  • B. Authorization table groups containing tables with sensitive data must be defined in table TDDAT and these must be omitted for all employees who do not need access to these tables
  • C. The tables containing sensitive data must be named using the authorization object S_TA BU_NAM for all responsible administrator employees. The fields DICBERCLS of the object S_TABU_DIS can then be filled with *.
  • D. The field DICBERCLS of the authorization object must enumerate all table names of the tables containing sensitive data.

正解:B


質問 # 31
Which Object ID is used to integrate Business Rule Framework (BRF+) to Multi Step Multi Process (MSMP) initiator workflow?

  • A. Function ID
  • B. Application ID
  • C. Process ID
  • D. Expression ID

正解:A


質問 # 32
How can you register an SAP Gateway service? Note: There are 2 correct answers to this question.

  • A. Use SAP_GAT EWAY_ACTIVATE_ODATA_SERV in transact on STC01 on the front-end server
  • B. Use transaction SEGW on the back-end server
  • C. Use SAP_GAT EWAY_BASIC_CONFIG in transact on STCO 1 on the frontend server
  • D. Use transaction /IWFND/MA INT_SERVICE on the front-end server

正解:B、D


質問 # 33
You want to allow your trainee colleagues to use the SAP GUI to connect directly to your SAP S/4HANA (on-premise) demo system form a public internet connection Which of the following SAP solutions is suited for this purpose?

  • A. SAP Cloud Connector
  • B. SAP NetWeaver Gateway
  • C. SAP Web Dispatcher
  • D. SAP Prouter

正解:A


質問 # 34
What authorization objects do we need to create job steps with external commands in a background job? Note: There are 2 correct answers to this question.

  • A. S_ADMI_FCD
  • B. S_LOG_COM
  • C. S_BTCH_EXT
  • D. S_RZL_ADM

正解:B、D


質問 # 35
......

あなたを合格させるSAP試験にはP_SECAUTH_21試験問題集:https://jp.fast2test.com/P_SECAUTH_21-premium-file.html

P_SECAUTH_21試験問題集PDF更新された問題集にはFast2test試験合格保証付き:https://drive.google.com/open?id=1GxiZPsHVre3d6doXzA-s1nzED3XxLMqq


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어