SAP Certified Application Associate - SAP Access Control 12.0 C_GRCAC_13 Exam Practice Test

Answer : B, C

According to the SAP wiki2, you need to execute two jobs before you schedule a User Access Review (UAR): Generate data for access request UAR review and Repository Object Sync. Generate data for access request UAR review is a job that creates UAR requests based on predefined criteria such as user group, company code, or role name. Repository Object Sync is a job that synchronizes objects such as users, roles, profiles, or transactions from connected systems into the SAP Access Control repository.

Answer : D

According to the SAP wiki3, you can ensure that a coordinator has the opportunity to review UAR request assignments by setting the Admin review required before sending tasks to reviewers parameter for UAR to YES. This parameter controls whether a coordinator can review and modify the UAR request assignments before they are sent to reviewers.

Answer : A, D

According to the SAP Help Portal, two of the possible agent types within MSMP Workflow configuration are approval and notification. Approval agent type means that the agent has the authority to approve or reject a workflow item. Notification agent type means that the agent receives an email notification about a workflow item.

Answer : A, C, E

According to the SAP Help Portal, some of the business configuration (BC) sets that configure a connector group in SAP Access Control are GRAC_RA_RULESET_COMMON, GRAC_RA_RULESET_BASIS, and GRAC_ACCESS_REQUEST_APPL_MAPPING. GRAC_RA_RULESET_COMMON configures a connector group for common rule set definitions. GRAC_RA_RULESET_BASIS configures a connector group for SAP BASIS rule set definitions. GRAC_ACCESS_REQUEST_APPL_MAPPING configures a connector group for application mapping.

Answer : A, C

According to the SAP Blogs2, Service Level Agreement (SLA) time frame options are settings that define how long a workflow task can remain open before it is escalated or expired. There are two types of SLA time frame options: Fixed by Date and Fixed by number of days. Fixed by Date means that the task must be completed by a specific date, such as December 31st. Fixed by number of days means that the task must be completed within a certain number of days after it is created, such as 10 days. Therefore, A and C are the correct answers.B and D are not valid SLA time frame options, as they are not supported by SAP Access Control. Reference:2https://blogs.sap.com/2019/03/14/sap-access-control-12-role-certification/

Answer : B, C, D

According to the SAP Press blog2, some of the available alert capabilities that can be configured in SAP Access Control are identifying a user who has executed conflicting functions, identifying a user who has executed a critical action and opening a support desk message, and identifying a user who has executed a critical action and generating an email notification. These alerts help to monitor and manage compliance by notifying the relevant parties about potential access risks or violations.

Answer : A

According to the SAP wiki3, in SoD Review, only the manager or risk owner can review role assignments. The manager is the direct manager of the user as defined in the User Details Data Source. The risk owner is the person who is responsible for approving and maintaining the risk.