Lernkartei C_SEC_2405 (Seite 1 von 2)

Karten	79
Sprache	English
Kategorie	Informatik
Stufe	Universität
Erstellt / Aktualisiert	03.11.2025 / 03.11.2025
Weblink	https://card2brain.ch/cards/20251103_csec2405
Einbinden	<iframe src="https://card2brain.ch/box/20251103_csec2405/embed" width="780" height="150" scrolling="no" frameborder="0"></iframe>

Following an upgrade of your SAP S/4HANA on-premise system to a higher release, you perform a
Modification Comparison using SU25.
What does this comparison do?

A.It compares your changes to the SAP defaults in USOBX_C and USOBT_C with the new SAP defaults in the current release and allows you to make adjustments.

B.It compares your changes to the SAP defaults in USOBX and USOBT with the new SAP defaults in the current release and allows you to make adjustments.

C.It compares the Role Maintenance data from the previous release with the data for the current release and writes any new default values in tables USOBX_C and USOBT_C

D.It compares the Role Maintenance data from the current release with the data for the previous release and allows you to adjust any custom default values in tables USOBX and USOBT.

When planning an authorization concept for your SAP S/4HANA Cloud Public Edition
implementation, what rules must you consider? Note: There are 2 correct answers to this question.

A.Business catalogs can be assigned directly to a business user.

B.Business roles can be assigned directly to a business user.

C.SAP Fiori apps, dashboards, and displays can be assigned directly to a business role.

D.Business catalogs can be assigned directly to a business role.

Which of the following are SAP Fiori Launchpad functionalities? Note: There are 2 correct answers to this question.

A.SAP GUI

B.Spaces

C.Web Dynpro

D.User Actions Menu

Which of the following rules does SAP recommend you consider when you define a role-naming convention for an SAP S/4HANA on-premise system?

Note: There are 3 correct answers to this question.

A.Role names are system language-dependent

B.Role names can be no longer than 30 characters

C.Role names are system language-independent

D.Role names can be no longer than 20 characters

E.Role names must NOT start with "SAP"

Under which of the following conditions can you merge authorizations for the same object during role maintenance? Note: There are 2 correct answers to this question.

A.The activation status of a manual authorization must match the status of the changed authorizations.

B.The activation status and the maintenance status of the authorizations must match.

C.The maintenance status of the changed authorizations must match the status of a manual authorization.

D.The activation status and the maintenance status of the authorizations must NOT match.

What must you do if you want to enforce an additional authorization check when a user starts an SAP transaction?

A.Assign authorization object S_START to the chosen transaction code with transaction SU24 and specify the Program ID and Object Type.

B.Assign the authorization object to be checked to the chosen transaction code in the SAP Default authorization data using transaction SU22 and set Check Indicator to "Check".

C.Assign the authorization object and permissions to the chosen transaction code using transaction SE93.

D.Assign the authorization object to be checked to the chosen transaction code with transaction SU24 and set Default Status to "Yes".

Which access categories are available to maintain restrictions in SAP S/4HANA Cloud Public Edition? Note: There are 3 correct answers to this question.

A.Read (read access)

B.Read, Value Help (read access)

C.Write, Read (write access)

D.Value Help (value help access)

E.Write, Read, Value Help (write access)

In the administration console of the Cloud Identity Services, which authentication providers are available? Note: There are 2 correct answers to this question.

A.Successfactors

B.Concur

C.Ariba

D.Fieldglass

In which order do you define the security-relevant objects in SAP BTP?

A.Role collection

B.Role template

C.Role

D.B-A-C

Where can you find information on the SAP-delivered default authorization object and value assignments? Note: There are 2 correct answers to this question.

A.USOBT_C

B.SU24

C.SU22

D.USOBT

When performing a comparison from the imparting role, what happens to organizational level field values in the derived role? Note: There are 2 correct answers to this question.

A.Data for organizational levels that have already been maintained in the derived role is NOT overwritten.

B.Data for organizational levels that have already been maintained in the derived role is overwritten.

C.Data for organizational levels is transferred only when authorization data for the derived role is first modified.

D.Data for organizational levels is always transferred when authorization data for the derived role is modified.

In the SAP BTP Cockpit, at which level is Trust Configuration available? Note: There are 2 correct answers to this question.

A.Subaccount

B.Global Account

C.Directory

D.Organization

What does SAP Key Management Service (KMS) do to secure cryptographic keys? Note: There are 3 correct answers to this question.

A.Conceal keys

B.Store keys

C.Rotate keys

D.Transmit keys

E.Generate keys

Which user type in SAP S/4HANA Cloud Public Edition is used for API access, system integration, and scenarios where automated data exchange is required?

A.SAP Communication User

B.SAP Administrative User

C.SAP Support User

D.SAP Technical User

Which cloud-based SAP solution helps organizations control their data across various cloud platforms and on-premise data sources?

A.SAP Identity Access Governance

B.SAP Information Steward

C.SAP Privacy Governance

D.SAP Data Custodian

What does SAP recommend you do when you transport a custom leading business role in SAP S/4HANA Cloud Public Edition?

A.Add the pre-delivered business role that was used as a template to create the custom leading business role to the Software Collection.

B.Add all derived business roles as dependencies to the Software Collection.

C.Add all other leading business roles from the same Line of Business as dependencies to the Software Collection.

What are some security safeguards categories? Note: There are 3 correct answers to this question.

A.Access Control

B.Physical

C.Organizational

D.Financial

E.Technical

Which SU01 user types are NOT enabled for interaction? Note: There are 2 correct answers to this question.

A.System

B.Dialog

C.Communications Data

D.Service

In the administration console of the Cloud Identity Services, which system property types can you add? Note: There are 2 correct answers to this question.

A.Internal

B.Credential

C.Default

D.Standard

In SAP HANA Cloud, what can you configure in user groups? Note: There are 2 correct answers to this question.

A.Authorization privileges

B.Client connect restrictions

C.Identity providers

D.Password policy settings

What authorization object can be used to restrict which users a security administrator is authorized to maintain?

A.S_USER_GRP

B.S_USER_SAS

C.S_USER_GRD

D.S USER AUT

What use cases are available for a Local Identity Directory? Note: There are 3 correct answers to this question.

A.Merging attributes

B.Classic use case

C.Hybrid mode

D.Proxy mode

E.S/4HANA use case

If you want to evaluate catalog menu entries and authorization default values of IWSG and IWSV applications, which SUIM reports would you use? Note: There are 2 correct answers to this question.

A.Search Applications in Roles Roles

B.By Transaction Assignment in Menu

C.Search Startable Applications in Roles Roles

D.By Authorization Object

What is the correct configuration setting in table PRGN_CUST for user assignments when transporting roles within a Central User Administration scenario?

A.SET_IMP_LOCK_USERS = YES

B.SET_IMP_LOCK_USERS = NO

C.USER_REL_IMPORT = YES

D.USER_REL_IMPORT = NO

Which cybersecurity type does NOT focus on protecting connected devices?

A.Application security

B.Cloud security

C.Network security

D.loT security

Where do you configure the Social Media identity providers?

A.In the code editor of the SAP Business Application Studio

B.In the SAP BTP Cockpit Account Explorer

C.In the administration console for SAP Cloud Identity Services

Which levels of security protection are provided by Secure Network Communication (SNC)? Note: There are 3 correct answers to this question.

A.Authentication

B.Privacy

C.Integrity

D.Availability

E.Authorization

What must you do before you can use transaction PFCG? Note: There are 2 correct answers to this question.

A.Fill tables USOBT and USOBX with the SAP-delivered authorization default values.

B.Fill tables USOBT_C and USOBX_C with the SAP-delivered authorization default values.

C.Set the system profile parameter auth/no_check_in_some_cases to Y.

D.Set the system profile parameter auth/no_check_in_some_cases to N.

Which application in SAP S/4HANA Cloud Public Edition allows you to upload employee information independent of the customers’ HR system?

A.Maintain Business User app

B.Identity and Access Management app

C.Manage Workforce app

D.Display Technical Users app

You are building a PFCG role for access to an SAP Fiori app on your SAP S/4HANA on-premise system. After you enter the catalog in the role menu, an entry for an OData service is missing and you have to add it manually to the role menu.

When you maintain authorization data in the PFCG role, why does SAP recommend that you NOT maintain the SRV_NAME field value of the S_SERVICE authorization object manually?

A.Because the SRV_NAME hash value for the front-end server component and back-end server component are the same.

B.Because the TADIR Service name for the back-end server component was automatically added to the role menu.

C.Because the SRV_NAME hash value for the front-end server component and back-end server component are different.

D.Because the TADIR Service name is the same for the front-end server component and the back- end server component.

Where can you find SAP Fiori tiles and target mappings according to segregation of duty?

A.Assigned Pages

B.Assigned Technical Catalogs

C.Assigned Spaces Assigned

D.Business Catalogs

To connect to data sources that are NOT all based on OData, which of the following options does SAP recommend you use?

A.OData Provisioning service

B.SAP Process Integration

C.Cloud connector

D.SAP Integration Suite

In SAP S/4HANA Cloud Public Edition, what can you do with the Display Authorization Trace? Note: There are 3 correct answers to this question.

A.Analyze authorization check results for missing authorizations

B.Display business roles granting specific access

C.Adjust role restrictions to account for missing authorizations

D.Analyze authorization check results for already assigned authorizations

E.Adjust role restrictions to further limit access when performing forensic analysis

Which limitations apply to restricted users in SAP HANA Cloud? Note: There are 3 correct answers to this question.

A.They only have full SQL access via the SQL console.

B.They can only connect to the database using HTTP/HTTPS.

C.They cannot connect via ODBC or JDBC.

D.They cannot create objects in the database.

E.They can only create objects in their own database schema.

For users with system administration authorization, which additional functions are provided by the SAP Easy Access menu? Note: There are 2 correct answers to this question.

A.Calling menus for roles and assigning them to users

B.Calling programs

C.Creating roles

D.Creating users

When creating PFCG roles for SAP Fiori access, what is included automatically when adding a catalog to the menu of a back-end PFCG role? Note: There are 2 correct answers to this question.

A.The start authorizations and the authorization default values for each IWSG TADIR service definitions in the catalog.

B.The IWSG TADIR service definitions from the catalog.

C.The start authorizations and the authorization default values for each IWSV TADIR service definitions in the catalog.

D.The IWSV TADIR service definitions from the catalog.

When you maintain authorizations for SAPUI5 Fiori apps, which of the following object types is the front-end authorization object type?

A.TADIR IWSV - SAP Gateway Business Suite Enablement-Service

B.TADIR G4BA - SAP Gateway Odata V4 Backend Service Group & Assignments

C.TADIR IWSG - SAP Gateway: Service Groups Metadata

D.TADIR INA1- InA Service

In the administration console of the Cloud Identity Services, for which system type can you define both read and write transformations?

A.Target systems

B.Source systems

C.Proxy systems

Which solution is NOT used to identify security recommendations for the SAP Security Baseline?

A.SAP Security Notes

B.SAP EarlyWatch Alert

C.SAP Code Vulnerability Analyzer

D.SAP Security Optimization Service

Which tool can you use to modify the entities schema content across multiple repositories?

A.SAP BTP Account Explorer

B.SAP Cloud Identity Services Transformation Editor

C.SAP Cloud Identity Services Schemas app

D.SAP Business Application Studio

C_SEC_2405

Lernkarteien erstellen oder kopieren

Lernkarteien erstellen oder kopieren

Melde dich an, um alle Karten zu sehen.

SWITCHaai

Office 365

Edulog

Apple ID

Google