SAP Certified Technology Professional - System Security Architect P_SECAUTH_21 Exam Questions

Page: 1 / 14
Total 80 questions
Question 1

You want to check the custom ABAP codes in your system for security vulnerabilities and you want to use the SAP Code Vulnerability Analyzer to carry out these extended security

checks. What needs to be done for this purpose? Note: There are 2 correct answers to thisquestion.



Answer : A, D

These are some of the tasks that you would perform to check the custom ABAP codes in your system for security vulnerabilities using the SAP Code Vulnerability Analyzer (CVA). CVA is a tool that enables you to perform static code analysis on ABAP programs and identify potential security issues, such as SQL injection, cross-site scripting, or buffer overflow. You can run CVA from the ABAP Test Cockpit (ATC), which is a framework for managing quality checks on ABAP programs and objects. You can also run CVA from the SLIN transaction, which performs an extended syntax check on ABAP programs and objects. Reference: https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/48/9e2e3f6f8e41e8a283aaf2ad2c64c4/content.htm?no_cache=true


Question 2

You are evaluating the "Cross-client object change" option using transaction SCC4 for your

Unit Test Client in the development environment. Which setting do you recommend?



Answer : C

This is the recommended setting for the ''Cross-client object change'' option using transaction SCC4 for your Unit Test Client in the development environment. This setting allows you to make changes to repository objects (such as programs, function modules, classes, etc.) and cross-client customizing objects (such as number ranges, message classes, etc.) in your Unit Test Client without affecting other clients in the same system. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true


Question 3

How do you secure the special user "SAP*" in AS ABAP? Note: There are 3 correct answers

to this question.



Answer : B, C, D

These are some of the tasks that you would perform to secure the special user ''SAP*'' in AS ABAP. The user ''SAP*'' is a default user that can be used to log on to any client with a predefined password if no other users exist or if all users are locked. To prevent unauthorized access using this user, you should remove all authorizations from it, lock and expire it in all clients, and set the profile parameter login/no_automatic_user_sapstar to 1, which disables the automatic logon feature for this user. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true


Question 4

You are asked to set up controls to monitor sensitive objects (such as programs, user exits,

and function modules) in a development system before they are transported to the quality

assurance system. Which table would you maintain to monitor such sensitive objects before

running an import?



Answer : C

This is one of the tables that you would maintain to monitor sensitive objects (such as programs, user exits, or function modules) in a development system before they are transported to the quality assurance system. TMSTCRI is a table that contains criteria for import checks of transport requests, which are packages of changes or objects that can be moved between SAP systems or clients. You can define criteria for specific objects or object types in this table, such as program name, object name, or object type. If a transport request contains an object that matches one of the criteria in this table, the import will be stopped and an error message will be displayed. Reference: https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true


Question 5

What is the purpose of the parameter rec/client in an AS ABAP based SAP system?



Answer : A

The purpose of the parameter rec/client in an AS ABAP based SAP system is to log changes in tables that are marked as change-relevant in transaction SE11 (ABAP Dictionary). The parameter rec/client specifies which clients are affected by table logging. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true


Question 6

Which tasks would you perform to allow increased security for the SAP Web Dispatcher WebAdministration interface? Note: There are 2 correct answers to this question.



Answer : A, C

These are some of the tasks that you would perform to allow increased security for the SAP Web Dispatcher WebAdministration interface, which is a web-based tool for configuring and monitoring the SAP Web Dispatcher instance. You can use access restrictions with the icm/HTTP/auth_<xx> profile parameter, which allows you to define rules for allowing or denying access based on IP addresses, host names, or URLs. You can also use Secure Socket Layer (SSL) for encrypted access, which protects the communication between your browser and the WebAdministration interface using certificates and keys. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true


Question 7

Under which group can you find the 'System Recommendations' tile in the Solution Manager launchpad?



Answer : A

This is the group under which you can find the 'System Recommendations' tile in the Solution Manager launchpad. The Solution Manager launchpad is a web-based tool that provides access to various applications and functions of SAP Solution Manager, which is a platform for managing SAP solutions and landscapes. The 'System Recommendations' tile is an application that displays recommendations for applying support packages, patches, or notes to your SAP systems based on their current status and configuration. Reference: https://help.sap.com/viewer/product/SAP_SOLUTION_MANAGER/en-US


Page:    1 / 14   
Total 80 questions