[Nov-2022] P-SECAUTH-21 Dumps PDF - P-SECAUTH-21 Real Exam Questions Answers [Q12-Q31]

[Nov-2022] P-SECAUTH-21 Dumps PDF – P-SECAUTH-21 Real Exam Questions Answers [Q12-Q31]

November 24, 2022 latestexam 0 Comments

Rate this post

[Nov-2022] P-SECAUTH-21 Dumps PDF – P-SECAUTH-21 Real Exam Questions Answers

P-SECAUTH-21 Dumps 100% Pass Guarantee With Latest Demo

NEW QUESTION 12
The SSO authentication using X.509 client certificates is configured. Users complain that they can’t log in to the back-end system. The trace file shows the following error message: “HTTP request [2/5/9] Reject untrusted forwarded certificate”. What is missing in the configuration? Note: There are 2 correct answers to this question.

On the back-end, the profile parameter icm/HTTPS/verify client must NOT be set to 0

On the web-dispatcher, the SAPSSLS.pse must be signed by a trusted certification authority

On the web-dispatcher, the profile parameter icm/HTTPS/verify_client must be set to 0

The web dispatcher’s SAPSSLC.PSE certificate must be added to the trusted reverse proxies list in icm/trusted_reverse_proxy_<xx>

NEW QUESTION 13
Which tasks would you perform to allow increased security for the SAP Web Dispatcher Web Administration interface? Note: There are 2 correct answers to this question.

Use a separate port for the content

Use access restrictions with the icm/HTTP/auth_<xx> profile parameter

Use subparameter ALLOWPUB = FALSE of the profile parameter icm/server_port_<xx>

Use Secure Socket Layer (SSL) for password encrypt on

NEW QUESTION 14
You have configured a Gateway SSO authentication using X.509 client certificates. The configuration of the dual trust relationship between client (browser) and SAP Web Dispatcher as well as the configuration of the SAP Web Dispatcher to accept and forward client certificates were done. Users complain that they can’t log in to the back-end system. How can you check the cause?

Run back-end transaction SMICM and open the trace file

Run back-end system trace using ST12

Run gateway transaction /IWFND/TRACES

Run gateway transaction /IWFND/ ERRORJ.OG

NEW QUESTION 15
What is the SAP Best Practice to delete a security SAP role in SAP landscape?

Transport the SAP role and delete the role using Profile Generator

Delete the SAP role in all clients using Profile Generator

Delete the SAP role using Profile Generator, and then put it in the transport

Delete the SAP role in all clients in all systems using Profile Generator

NEW QUESTION 16
Which basis transaction provides an optimized user interface for evaluating authorization checks only?

STAUTHTRACE

RSECADMIN

ST01

ABAP_TRACE

NEW QUESTION 17
A security consultant has activated a trace via ST01 and is analyzing the authorization error with Return Code 12. What does the Return Code 12 signify?

“Objects not contained in User Buffer”

“No authorizations and does NOT have authorization object in their buffer”

“No authorizations but does have authorization object in their buffer”

“Too many parameters for authorization checks”

NEW QUESTION 18
Where can we store the Security Audit Log events? Note: There are 2 correct answers to this question.

In the database table RSAU_BUF_DATA

In the file system of the application servers

In the SAP Solution Manager system

In a central fi e system

NEW QUESTION 19
You have implemented CUA in your organization and you want to set the field distribution attribute as follows: Maintain a default value in the central system that is automatically distributed to the child systems when you create a user. After distribution, the data is maintained only locally and is no longer distributed if you change it in the central or child system. Which field distribution parameter do you maintain?

Redistribution

Local

Global

Proposal

NEW QUESTION 20
What are the requirements of SPNego SSO configuration in an SAP Fiori front-end system? Note: There are 2 correct answers to this question.

The system requires an identity provider as an issuing system to enable single sign-on with SPNego in an internet-facing deployment scenario.

The system’s users in the ABAP system must have the same user names as the database users in SAP HANA

The system should typically be located within the corporate network.

The system requires Microsoft Active Directory infrastructure in place.

NEW QUESTION 21
In addition to the authorization /UI2/LAUNCHPAD, which other authorizations are required to assign to an SAP Fiori Launchpad user? Note: There are 2 correct answers to this question.

/U12/INTEROP

/UI2JPAGE_BUILDER_CUST

/UI2/FLC

/U12JPAGE_BUILDER_PERS

NEW QUESTION 22
When re-configuring the user management engine (UME) of an AS Java system, what do you need to consider to change the data source from system database to an ABAP system successfully?

The logon security policy for the existing users is aligned with the logon security policy in the ABAP system.

All users and groups in the system database must have different IDs than existing users and groups in the ABAP system.

You need to import the users from the system database into the ABAP system.

You must manually replace the UME configuration file dataSourceConfiguration_database_only.xmlwith an appropriate dataSourceConfiguration_abap.xmlfile.

NEW QUESTION 23
For which purpose do you use instance Secure Storage File System (SSFS) in an SAP HANA system? Note: There are 2 correct answers to this question.

To protect the password of the root key backup

To store root keys for data volume encryption

To store the secure single sign-on configuration

To protect the X.509 public key infrastructure certificates

NEW QUESTION 24
What authorization object is checked when a user selects an A BAP Web Dynpro application to execute?

S_PROGRAM

S_START

S_TCODE

S_SERVICE

NEW QUESTION 25
You have delimited a single role which is part of a composite role, and a user comparison for the composite role has been performed. You notice that the comparison did NOT remove the profile assignments for that single role. What program would you run to resolve this situation?

0 PRGN_COMPRESS_TIMES

0PRGN_COMPARE_ROLE_MENU

0 PRGN_DELETE_ACT IVITY_GROUPS

0 PRGN_MERGE_PREVIEW

NEW QUESTION 26
Because of which security threat would you need to make additional configuration settings to run the SAP Fiori Launchpad from within your SAP NetWeaver Portal?

Cross-Site Request Forgery

Clickjacking

Content Spoofing

Cross-Site Scripting

NEW QUESTION 27
The SAP HANA database has its parameters configured with its default values. How can the SAP_INTERNAL_HA NA_SUPPORT catalog role be used?

The role can be granted to another role (nested)

The role can be granted to multiple users at a time

The role can be granted only with system privileges

The role can be granted to the SYSTEM user

NEW QUESTION 28
You have a load balancer in a DMZ network zone (called natl.mydomain.com) in front of 2 SAP NetWeaver AS systems (hostl.mydomain.com, host2.mydomain.com). What is the recommended common name part of the distinguished name on the SSL Server’s PSE?

It should be a combined DNS alias for host 1.mydomain.com and host2.mydomain.com and nat1.mydomain.com

It should be host 1.mydomain.com, host2.mydornain.com individually for each PSE

It should be natl.mydomain.com

It should be *.mydomain.com (wildcard) names

NEW QUESTION 29
You are running a 3-tier SAP system landscape. Each time you are accessing STMS_IMPORT on any of these systems, you are prompted for a TMSADM password. How can you stop this prompt from appearing?

Run the report RSUSR405 on the domain controller.

Reset the TMSADM user’s password on the system you are trying to access STMS_ IMPORT.

Change the TMSA DM user’s password directly in the TMS RFC destination in transact on SM59.

Run the report TMS_ UPDATE_PWD_OF_TMSADM on the domain controller.

NEW QUESTION 30
You have Reason Codes already defined. Which is the correct sequence of steps to configure a Firefighter ID in Emergency Access Management?

Maintain a Firefighter ID for Controllers and Firefighters
Maintain an Owner for a Firefighter ID
Maintain Access Control Owner

Maintain an Owner for a Firefighter ID
Maintain a Firefighter ID for Controllers and Firefighters
Maintain Access Control Owner

NEW QUESTION 31
In your system, you have a program which calls transaction A. Users with access to this program can still execute transaction A without explicit authorizations given to this transaction.
How do you prevent the access of users to the transaction A from within the program?

Make sure you do NOT assign transact on A to the authorization object S_TCODE in the role that you assign to the unauthorized users.

Maintain SE93 with authorization objects for transact on A.

Maintain the check indicator in table TCDCOUPLES

Ensure that transact on A is NOT assigned into the same program authorization group

Loading …

Dumps Real SAP P-SECAUTH-21 Exam Questions [Updated 2022]: https://www.latestcram.com/P-SECAUTH-21-exam-cram-questions.html

Related Certifications

C-TS450-2020 (1)
C_THR94_2211 (1)
C-TS411-2022 (1)
C-HCADM-01 (1)
C-FIORDEV-22 (1)
E_HANAAW_17 (1)
C-THR96-2205 (1)
C_THR84_2211 (1)
C_THR82_2305 (1)
C_THR86_2205 (1)

Free Cram & Latest Exams Dumps

[Nov-2022] P-SECAUTH-21 Dumps PDF – P-SECAUTH-21 Real Exam Questions Answers [Q12-Q31]

leave a comment Cancel reply

Related Certifications

Recent Posts

Archives

Categories