Lernkartei GRC 12 (Seite 1 von 2)

Karten	80
Sprache	English
Kategorie	Informatik
Stufe	Andere
Erstellt / Aktualisiert	14.10.2021 / 18.05.2023
Weblink	https://card2brain.ch/box/20211014_grc_12
Einbinden	<iframe src="https://card2brain.ch/box/20211014_grc_12/embed" width="780" height="150" scrolling="no" frameborder="0"></iframe>

SAP Governance, Risk and Compliance solutions are organized along 4 key themes.
Which of the following are key themes?
Note: There are 3 correct answers to this question.

A. Business Integrity Screening

B. Access Governance

C. Cybersecurity and Data Protection

D. Enterprise Risk and Compliance

E. Audit Management

A Firefighter ID can be assigned to a firefighter using which of the following methods?

A. By assigning access using an access request

B. By maintaining the assignment in the Governance, Risk and Compliance plug-in on SAP Access Control

C. By assigning a Firefighter Role to the user on the target system

D. By maintaining the assignment in the Governance, Risk and Compliance plug-in on the target system

Business Role Management provides the functionality to improve the role management process.
Which of the following capabilities does it offer? Note: There are 2 correct answers to this question.

A. Replacement of the PFCG role management transaction

B. Management of role definition transports

C. Enforcement of consistency in naming conventions

D. Identification of duplicate roles

You want to configure an approval workflow to require an approval for updates to a defined
function. How do you enable this capability?

A. Flag the function for approval

B. Set the 1064 Function Maintenance parameter to YES

C. Configure the GRAC_FUNCTION_APPROVER agent

D. Activate the SAP_GRAC_FUNC_APPR MSMP Process ID

You want to create a transportable BRFplus Routing Rule for MSMP Process ID
SAP_GRAC_ACCESS_REQUEST using transaction GRFNMW_DEV_RULES.
What must be done in order for your rule to be transportable?

A. You must assign a package to the Application after you generate the rule.

B. You must assign a package to the Function after you generate the rule.

C. You must assign a package to the Application before you generate the rule.

D. You must assign a package to the Function before you generate the rule.

You want to generate a BRFplus Initiator Rule that utilizes an expression of type Decision Table for
the SAP_GRAC_ACCESS_REQUEST MSMP Process ID.
Which rule types can you use?
Note: There are 2 correct answers to this question.

A. Class Based Rule

B. Function Module Based Rule

C. BRFplus Flat Rule

D. BRFplus Rule

You want to configure your MSMP Workflow stage definition to ensure that a workflow request that
has NOT been processed after a certain period of time can be escalated and approved by another
approver. Which of the following options can you use to configure escalation? Note: There are 3
correct answers to this question.

A. Define an Alternate Approver

B. Skip to Next Stage

C. Maintain Fallback Receiver

D. Escalate to Specified Agent

E. Use Defaults

You want to deploy the End User Login Page for your users.
Which of the following actions must you perform for this page to be available?
Note: There are 2 correct answers to this question.

A. Activate service for the grac_uibb_end_user_login Web Dynpro

B. Maintain default user for application logon

C. Maintain RFC destination for target system

D. Set End User Login Page parameter value to ACTIVE in AC Configuration Settings

You want to create a role in SAP Access Control. Which of the following attributes are mandatory?
Note: There are 3 correct answers to this question.

A. Business Process

B. Role methodology

C. Project release

D. Workflow approval path

E. Naming convention

You are defining a custom document object for a Custom Notification Message in MSMP Workflow.
What is the correct Document Class?

A. General Text

B. Alert Description

C. Dialog Text

D. Modification Text

You have created a BRFplus Initiator Rule for MSMP Process ID SAP_GRAC_ACCESS_REQUEST using
transaction GRFNMW_DEV_RULES but the Decision Table did not get created. Where do you go to
manually create a Top Expression for your rule?

A. Business Rule

B. Function

C. Data Object

D. Application

You are using the End User Login Page link configured in SAP Access Control.
What options are provided for you to use?
Note: There are 3 correct answers to this question.

A. Submit a Template Request

B. Create a Simplified Access Request

C. Review role assignments

D. Specify Approver Delegation

E. Register Security Questions

You have created a BRFplus Initiator Rule.
Which of the following must be active in BRFplus for MSMP Workflow to utilize your new rule?
Note: There are 2 correct answers to this question.

A. Path

B. Process ID

C. Function

D. Application

You wish to synchronize data from transaction SU24 in the SAP S/4HANA production system into SAP
Access Control for use in building a rule set.
What is the correct synchronization job schedule for completing this task?

A. It is not possible to synchronize SU24 data from a production system

B. Repository Object Sync followed by an Action Usage Sync

C. Action Usage Sync followed by Role Usage Sync

D. Authorization Sync

Your compliance team requires that all changes to access rules be tracked. Which of the following
change logs do you enable? Note: There are 3 correct answers to this question.

A. Role

B. Access Rule

C. Function

D. Rule Set

E. Critical Role

Which of the following are functions of the SAP Access Control Solution? Note: There are 3 correct
answers to this question.

A. Compliance Certification Sign-Off

B. Privilege Monitoring

C. Risk Response

D. Role Provisioning

E. Risk Analysis

For which of the following objects can you create an access request? Note: There are 3 correct
answers to this question.

A. User

B. Job

C. Division

D. Department

E. Organizational Unit

Which methods can you use to send a firefight session log to a controller? Note: There are 2 correct
answers to this question.

A. Email

B. Log Display

C. Support message

D. Workflow

Where can you use a custom field in SAP Access Control? Note: There are 2 correct answers to this question.

A. On a risk definition

B. On an access request

C. On a role definition

D. On a mitigating control definition

Which of the following reviewer options does SoD Review support?

A. Manager and Role Owner

B. Manager or Role Owner

C. Manager and Risk Owner

D. Manager or Risk Owner

You are creating a mitigating control.
How do you specify on which system and client the control is executed?

A. Assign one or more reports to the control from the desired system

B. Assign a rule set for the desired system

C. Assign an approver or monitor from the desired system

D. Assign a risk definition to the control for the desired system

Which of the following represent valid Agent Types within MSMP Workflow configuration? Note: There are 2 correct answers to this question.

A. PFCG Roles

B. BRFplus flat rule

C. BRFplus rule

D. GRC API (Application Programming Interface) Rules

Which of the following are standard delivered SAP Fiori business catalogs for SAP Access Control? Note: There are 2 correct answers to this question.

A. Access Control Employee

B. Risk Manager

C. Compliance Specialist

D. Compliance Owner

The Consolidated Log Report provides data from which of the following?

A. ABAP debug information

B. ABAP dump information

C. SQL command execution

D. ABAP trace execution

You are maintaining the Mapping for Actions and Connector Groups activity in Customizing.
Which of the following events should be mapped to the target development system as default when using Business Role Management?
Note: There are 2 correct answers to this question.

A. Provisioning

B. Authorization Maintenance

C. Role Risk Analysis

D. Role Generation

You are creating an Initiator rule and want to build a condition using header attributes. Which of the following attributes can you use? Note: There are 2 correct answers to this question.

A. Prerequisite

B. Functional Area

C. Company

D. Subprocess

Which of the following are benefits of the role methodology in Business Role Management? Note: There are 2 correct answers to this question.

A. Is always the same for all roles

B. Enforce a process flow for role maintenance

C. Allows for the documentation of the role

D. Enforce a process flow for role assignment

You are configuring a BRFplus flat rule and defining the attribute values for your Initiator rule
conditions. You encounter the LINE_ITEM_KEY field. What value should you select for this field?

A. REQTYPE

B. ROLE_NAME

C. ITEMNUM

D. PRIORITY

You want to configure connector settings for a connector used by SAP Access Control. What are then supported connector group types that you can configure? Note: There are 2 correct answers to this question.

A. Application Type

B. Cross System

C. Automated Monitoring

D. Logical

Which of the following items are mandatory for creating an access request template? Note: There are 2 correct answers to this question.

A. End user personalization

B. Template description

C. Request type

D. Request description

How can you ensure that a coordinator has the opportunity to review UAR request assignments?

A. Set the Admin review required before sending tasks to reviewers parameter for UAR to YES

B. Schedule the Generate new request for UAR rejected request job

C. Maintain the GRAC_COORDINATOR agent at the approval stage in MSMP Process ID SAP_GRAC_USER_ACCESS_REVIEW

D. Set the Who are the reviewers? parameter for UAR to COORDINATOR

Which of the following jobs are a prerequisite for scheduling a User Access Review (UAR)? Note: There are 3 correct answers to this question.

A. Action Usage Sync

B. Role Comparison

C. Authorization Sync

D. Role Usage Sync

E. User/Role/Profile sync

How can you make sure that a risk analysis is performed when you use access request management? Note: There are 2 correct answers to this question

A. Set Enable Offline Risk Analysis parameter to Yes

B. Configure the MSMP workflow stage to require a risk analysis

C. Configure the MSMP workflow path to require a risk analysis

D. Set the Enable Risk Analysis Form on Submission parameter to Yes

SAP delivers multiple MSMP Process IDs. You want to implement an MSMP Workflow that targets your SAP S/4HANAsystem. Which BC set do you need to activate as a prerequisite?

A. BC Set GRAC_ROLE_MGMT_LANDSCAPE

B. BC Set GRC_MSMP_CONFIGURATION

C. BC Set GRAC_DT_REQUEST_DISPLAY_SECTIONS

D. BC Set GRAC_RA_RULESET_S4HANA_CORE

You want to enable a maintenance workflow approval process for changes to the Access Risk
Analysis environment. For which of the following can you enable an approval workflow?
Note: There are 2 correct answers to this question.

A. Rule Set

B. Function

C. Mitigating Control

D. SOD Rule

You want to generate an MSMP rule for MSMP Process ID SAP_GRAC_ACCESS_REQUEST.
Which type of rule can you generate? Note: There are 2 correct answers to this question

A. Business Rule

B. ABAP Class Rule

C. Escalation Rule

D. BRFplus Flat Rule

You want to restrict a user by specific organizational levels by creating a derived role. How would you complete this task using Business Role Management?

A. Assign an organization

B. Assign a functional area

C. Assign a business process

D. Assign an organizational value map

Which of the following activities can you do in Emergency Access Management (EAM)? Note: There are 2 correct answers to this question.

A. Log on to the Firefighter ID directly with a password

B. Maintain EAM master data in the back-end system

C. Display a log file of performed activities

D. Perform tasks outside of the normal responsibilities

You are performing an on demand risk analysis at the user level. Which report view can you use to apply a control and remove access?

A. Remediation view

B. Technical view

C. Business view

D. Detail view

Which of the following are possible ways to assign emergency access in Emergency Access
Management? Note: There are 2 correct answers to this question.

A. Assign a Firefighter ID to a firefighter owner in SAP Access Control

B. Assign a Firefighter ID to a firefighter in SAP Access Control

C. Assign a Firefighter role to a firefighter in SAP Access Control

D. Assign a Firefighter role to a firefighter in a target system

GRC 12

Lernkarteien erstellen oder kopieren

Lernkarteien erstellen oder kopieren

Melde dich an, um alle Karten zu sehen.

SWITCHaai

Office 365

Edulog

Apple ID

Google