Test_Seguridad_02

What can be assigned directly to a user when using the SAP Launchpad service in SAP BTP? (2 correct answers). Launchpad roles. Role collections. Spaces. Catalogs.

Which protocol is the industry standard for provisioning identity and access management in hybrid landscapes?. SCIM. SAML. SSL. OIDC.

Which log types are available in the Administration Console of Cloud Identity Services? Note: There are 2 correct answers. Change logs. Troubleshooting logs. Performance logs. Usage logs.

What does SAP Key Management Service (KMS) do to secure cryptographic keys? Note: There are 3 correct answers. Store keys. Conceal keys. Rotate keys. Generate keys. Transmit keys.

In the SAP BTP Cockpit, at which level is Trust Configuration available? Note: There are 2 correct answers. Global Account. Organization. Subaccount. Directory.

Which levels of security protection are provided by Secure Network Communication (SNC)? Note: There are 3 correct answers. Authentication. Integrity. Availability. Privacy. Authorization.

Which tool can you use to modify the entities schema content across multiple repositories?. SAP Business Application Studio. SAP BTP Account Explorer. SAP Cloud Identity Services Transformation Editor. SAP Cloud Identity Services Schemas app.

Following an upgrade of your SAP S/4HANA on-premise system to a higher release, you perform a Modification Comparison using SU25. What does this comparison do?. It compares your changes to the SAP defaults in USOBX and USOBT with the new SAP defaults in the current release and allows you to make adjustments. It compares the Role Maintenance data from the current release with the data for the previous release and allows you to adjust any custom default values in tables USOBX and USOBT. It compares the Role Maintenance data from the previous release with the data for the current release and writes any new default values in tables USOBX_C and USOBT_C. It compares your changes to the SAP defaults in USOBX_C and USOBT_C with the new SAP defaults in the current release and allows you to make adjustments.

Which of the following allow you to control the assignment of table authorization groups? Note: There are 2 correct answers. PRGN_CUST. V_DDAT_54. V_BRG_54. SSM_CUST.

Which limitations apply to restricted users in SAP HANA Cloud? Note: There are 3 correct answers. They can only create objects in their own database schema. They can only connect to the database using HTTP/HTTPS. They only have full SQL access via the SQL console. They cannot connect via ODBC or JDBC. They cannot create objects in the database.

When performing a comparison from the imparting role, what happens to the organizational level field values in the derived role? Note: There are 2 correct answers. Data for organizational levels is always transferred when authorization data for the derived role is modified. Data for organizational levels that have already been maintained in the derived role is NOT overwritten. Data for organizational levels is transferred only when authorization data for the derived role is first modified. Data for organizational levels that have already been maintained in the derived role is overwritten.

What authorization object can be used to restrict which users a security administrator is authorized to maintain?. S_USER_GRD. S_USER_AUTO. S_USER_SASO. S_USER_GRP.

In SAP HANA Cloud, who has access to a database object?. The user DBADMIN and the group owner. The user SYSTEM and the creator. The owner and the SAP-owned users. The creator and the schema owner.

What does a status text value of "Old" mean during the maintenance of authorizations for an existing role?. Field values have not been changed. Field values were unchanged and no new authorization was added. Field values were changed as a result of the merge process. The field delivered with content was changed but the old value was retained.

What must you do before you can use transaction PFCG? Note: There are 2 correct answers. Fill tables USOBT and USOBX with the SAP-delivered authorization default values. Set the system profile parameter auth/no_check_in_some_cases to Y. Fill tables USOBT_C and USOBX_C with the SAP-delivered authorization default values. Set the system profile parameter auth/no_check_in_some_cases to N.

Your developer has created a new custom transaction for your SAP S/4HANA on-premise system and has provided you a list of the authorizations needed to execute the new ABAP program. What must you do to ensure that each required authorization is automatically created every time this new custom transaction is added to a PFCG role?. Maintain each authorization object in transaction SU24 and set the Default Status to "Yes". Maintain each authorization object in transaction SU22 and set the Default Status to "Yes". Maintain each authorization in transaction SU24 and set the Default Status to "Yes". Maintain each authorization in transaction SU22 and set the Check Indicator value to "Check".

What must you do if you want to enforce an additional authorization check when a user starts an SAP transaction?. Assign authorization object S_START to the chosen transaction code with transaction SU24 and specify the Program ID and Object Type. Assign the authorization object to be checked to the chosen transaction code in the SAP Default authorization data using transaction SU22 and set Check Indicator to "Check". Assign the authorization object to be checked to the chosen transaction code with transaction SU24 and set Default Status to "Yes". Assign the authorization object and permissions to the chosen transaction code using transaction SE93.

Which of the following rules does SAP recommend you consider when you define a role-naming convention for an SAP S/4HANA on-premise system? Note: There are 3 correct answers. Role names must NOT start with "SAP". Role names are system language-independent. Role names can be no longer than 20 characters. Role names are system language-dependent. Role names can be no longer than 30 characters.

Where can you find information on the SAP-delivered default authorization object and value assignments? Note: There are 2 correct answers. USOBT_C. USOBT. SU22. SU24.

After you maintained authorization object S_TABU_DIS and ACTVT field value 02 as authorization defaults for transaction SM30 in your development system, what would be the correct option for transporting only these changes to your quality assurance system?. Save your changes to a Workbench transport request and transport using the Transport Management System. Save your changes to a Customizing transport request and transport using the Transport Management System. Save tables USOBT_C and USOBX_C to a transport request and transport using the Transport Management System. Save your changes and use the transport interface in SU25 to transport the changes using the Transport Management System.