SAP C_GRCAC_13 Exam Practice Test Instant Access

Question 1

How can the data synchronized with GRAC_AUTH_SYNCH be used? Note: There are 2 correct answers to this question.

ATo define a new function

BTo populate the Role Analysis Dashboard

CTo define roles in Business Role Management

DTo populate authorization object text descriptions

Answer : A, D

Question 2

Which of the following are required to enable Centralized Emergency Access Management (EAM)? Note: There are 2 correct answers to this question.

ASet the Enable Decentralized Firefighting parameter for Emergency Access Management to YES

BSet the Enable Decentralized Firefighting parameter for Emergency Access Management to NO

CSet the Application Type parameter for Emergency Access Management to value ID in SAP Access Control

DYou are configuring the role of connectors in a landscape.

ESet the Application Type parameter for Emergency Access Management to value Role in the target system GRC plug-in.

Answer : B, C

According to the SAP Help Portal1, to enable Centralized Emergency Access Management (EAM), two of the steps that are required are: Set the Enable Decentralized Firefighting parameter for Emergency Access Management to NO and Set the Application Type parameter for Emergency Access Management to value ID in SAP Access Control. These steps ensure that the EAM configuration is centralized on the GRC system and that the Firefighter IDs are maintained on the GRC system. Therefore, B and C are the correct answers. A and D are not valid steps for enabling Centralized EAM, as they would enable Decentralized EAM instead.E is not a valid step for enabling Centralized EAM, as it would set the Application Type parameter to value Role, which is not supported for Centralized EAM. Reference:1https://help.sap.com/doc/e2ccae7ee6354b169cf845cd665e07fe/1.0%202016-07/en-US/frameset.htm?frameset.htm

Question 3

What can you use a custom end-user personalization configuration for? Note: There are 3 correct answers to this question.

ATo restrict a user's ability to approve their own requests

BTo assign it to an access request template

CTo determine roles that can be assigned on a request

DTo assign it to the standard access request

ETo determine fields shown in a workflow item

Answer : B, C, E

According to the SAP Help Portal, you can use a custom end-user personalization configuration for various purposes, such as assigning it to an access request template, determining roles that can be assigned on a request, and determining fields shown in a workflow item. Assigning it to an access request template means that you can customize the user interface and functionality of a specific template. Determining roles that can be assigned on a request means that you can restrict or allow certain roles based on criteria such as role type, role level, or role owner. Determining fields shown in a workflow item means that you can hide or display certain fields in the access request form.

Question 4

When mapping Action 004 Provisioning, what must you ensure?

AAll connectors in the landscape using provisioning must be mapped as Default to Action 004 Provisioning as Default

BAll connectors in the landscape using provisioning must be mapped to Action 004 Provisioning with one connector marked as V U Default.

CAll connectors classified as Production that are mapped to the PROV Integration Scenario must be mapped to Action 004 L-' Provisioning.

DAll connectors in the landscape must be mapped to Action 004 Provisioning

Answer : B

According to the SAP wiki, when mapping Action 004 Provisioning, you must ensure that all connectors in the landscape using provisioning must be mapped to Action 004 Provisioning with one connector marked as Default. The default connector is used when no other connector matches the criteria defined in the mapping.

Question 5

What are provisioning types that can be used with Auto-Provisioning? Note: There are 2 correct answers to this question.

ADirect

BEnd of each path

CIndirect

DEnd of request

Answer : B, D

According to the SAP Help Portal, you can use end of each path and end of request as provisioning types with auto-provisioning. End of each path means that provisioning is triggered after each stage in a workflow path is completed, and end of request means that provisioning is triggered after all stages in all paths are completed.

Question 6

You are configuring a BRFplus flat rule and you enter the context parameter ITEMNUM into the LINE_ITEM_KEY field in the result set. When the rule is executed, how will line item data be used when calculating a rule result

AIt is averaged.

BIt is compared to other line items.

CIt is aggregated.

DIt is evaluated individually.

Answer : D

According to the SAP blog1, when you enter the context parameter ITEMNUM into the LINE_ITEM_KEY field in the result set of a BRFplus flat rule, it means that each line item data is evaluated individually when calculating a rule result. The ITEMNUM parameter represents the line item number of the access request.

Question 7

You want to create an Initiator rule in BRFplus that will route a request to a path and a specific approver based upon the role Business Process. Which of the following structures contains the attribute you need?

AGRFN_MW_S_AGENT_ID

BGRAC_DT_REQUEST_FIELD_LABELS

CGRAC_S_BRF_ROLE_ATT

DGRAC_S_REQUEST_RULE_LINE

Answer : C

According to the SAP blog1, you need to use the structure GRAC_S_BRF_ROLE_ATT to access the role attributes such as role name, role type, business process, etc. This structure contains the attribute ROLE_BUSINESS_PROCESS that you can use to build a condition based on the role business process.

SAP Certified Application Associate - SAP Access Control 12.0 C_GRCAC_13 Exam Practice Test