P_SECAUTH_21 SAP Certified Technology Professional – System Security Architect exam is a hot SAP certification exam, Exam4Training offers you the latest free online P_SECAUTH_21 dumps to practice. You can get online training in the following questions, all these questions are verified by SAP experts. If this exam changed, we will share new update questions.
Which features does the SAP Router support? Note: There are 2 correct answers to this question.
A . Balancing the load to ensure an even distribution across the back-end servers
B . Terminating, forwarding and (re)encrypting requests, depending on the SSL configuration
C . Password-protecting connections from unauthorized access from outside the network
D . Controlling and logging network connections to SAP systems
Answer: C,D
A user has the authorization to execute SP01 .
What can this user access with authorization object S_ SPO_ ACT when the ‘Value for Authorization Check’ field is set to "_USER.
A . All spool requests for all users in the client
B . All spool requests for users in the same user group
C . User’s own spool requests
D . All spool requests for a specific user in the client
Answer: A
You are running an SAP HANA database in a multi database container (MDC) mode with a single tenant configured. The global_auditing_state parameter has been set to "true" on the global.ini.After restarting the system and tenant databases, the tenant did not come up.
When checking the cause, it was discovered that a tenant configuration parameter has been changed. The audit logging did NOT show any events.
What could be the reason for this? Note: There are 2 correct answers to this question.
A . The system was offline when the changes were done
B . The audit level was set to INFO
C . The global_auditing_state parameter on the nameserver.ini file needs to be activated
D . The configuration parameter was changed from the OS level
Answer: C,D
How do you handle user "SAP ‘in AS ABAP? Note: There are 3 correct answers to this question.
A . Remove all authorizations from the user
B . Lock and expire the user in all clients
C . Set profile parameter login/no_automatic_user_sapstar to 0
D . Set profile parameter login/no_automatic_user_sapstar to 1
E . Lock and expire the user in all clients except 000
Answer: A,B,D
What is required when you configure the PFCG role for an end-user on the front-end server? Note: There are 2 correct answers to this question.
A . The catalog assignment for the start authorization
B . The S_RFC authorization object for the OData access
C . The Fiori Launchpad designer assignment
D . The group assignment to display it in the Fiori Launchpad
Answer: A,D
SNC is configured in the production system. For emergency purposes, you want to allow certain accounts to be able to access the system with password logon .
What do you need to set up for this purpose? Note: There are 2 correct answers to this question.
A . Use profile parameter SNC/ACCEPT_ INSECURE_GUI with value ‘U’
B . Use profile parameter SNC/ONLY_ENCRYPTED_GUI with value ‘O’
C . Maintain the user access control list in table USRACLEXT
D . Use the ‘Unsecure communication permitted option’ In SU01 for specific users
Answer: A,D
Why do you use table logging in AS ABAP?
A . To log changes in application data
B . To log changes in master data
C . To log changes in table technical settings
D . To log changes in customizing tables
Answer: D
A user reports an issue with data not showing up in the visualization of the SAP Fiori tiles. You want to verify the target mapping.
At what level are you going to check the target mapping?
A . O At the catalog level in the SAP Fiori front-end server
B . O At the group level in the SAP Fiori front-end server
C . O At the group level in the SAP Fiori Launchpad
D . O At the application level in the Web IDE
Answer: A
To prevent session fixation and session hijacking attacks, SAP’s HTTP security session management is highly recommended .
What are the characteristics of HTTP security session management? Note: There are 2 correct answers to this question.
A . It uses URLs containing sap-context d to identify the security session
B . The system is checking the logon credentials again for every request
C . The security sessions are created during logon and deleted during logoff.
D . The session identifier is a reference to the session context transmitted through a cookie.
Answer: C,D
What are characteristics only valid for the MDC high isolation mode?
A . Every tenant has its own set of OS users
B . All internal database communication is secured using SNC
C . Every tenant has its own set of database users
D . Every tenant has its own set of database users belonging to the same sapsys group
Answer: A