PDF無料ダウンロードにはP-SECAUTH-21有効な練習テスト問題 [Q34-Q56]

Share

PDF無料ダウンロードにはP-SECAUTH-21有効な練習テスト問題

P-SECAUTH-21テストエンジンお試しセット、P-SECAUTH-21問題集PDF


SAP P-SECAUTH-21、または「Certified Technology Professional - System Security Architect」認定試験は、SAPシステムセキュリティアーキテクチャの専門知識を証明したい人向けのプロフェッショナルレベルの試験です。この認定試験は、候補者がSAPシステムセキュリティソリューションを設計、実装、管理するための知識とスキルをテストするように設計されています。SAP P-SECAUTH-21認定は、組織に安全で信頼性の高いSAPシステムソリューションを提供できる能力を証明する業界で認められた資格です。

 

質問 # 34
Where does SAP HANA store the values for the default Password Policy parameter? Note: there are 2 correct answers to this question.

  • A. global.ini
  • B. attributes.ini
  • C. nameservice.ini
  • D. indexserver.ini

正解:C、D


質問 # 35
Which tasks would you perform to allow increased security for the SAP Web Dispatcher Web Administration interface? Note: There are 2 correct answers to this question.

  • A. Use Secure Socket Layer (SSL) for password encrypt on
  • B. Use subparameter ALLOWPUB = FALSE of the profile parameter icm/server_port_<xx>
  • C. Use a separate port for the content
  • D. Use access restrictions with the icm/HTTP/auth_<xx> profile parameter

正解:B、C


質問 # 36
How is the role concept applied in the authorizations for Core Data Services (CDS) views?

  • A. CDS roles are mapped to the CDS view in the access rules
  • B. CDS roles are defined in the WHERE clause when calling a CDS view in Open SOL
  • C. CDS roles are defined in the CDS view and assigned to users in the classic role editor
  • D. CDS roles are defined in the CDS view and implicitly applied to all users

正解:C


質問 # 37
Where can you store Security Audit Log Events? Note: There are 2 correct answers to this question.

  • A. In the kernel trace
  • B. In the Linux system log
  • C. Ip the file system of the application servers
  • D. In the database table RSAU_BUF_DATA

正解:C、D


質問 # 38
You have implemented CUA in your organization and you want to set the field distribution attribute as follows: Maintain a default value in the central system that is automatically distributed to the child systems when you create a user. After distribution, the data is maintained only locally and is no longer distributed if you change it in the central or child system. Which field distribution parameter do you maintain?

  • A. Global
  • B. Redistribution
  • C. Local
  • D. Proposal

正解:D


質問 # 39
How are security relevant objects related in the Cloud Foundry? Note: There are 2 correct answers to this question

  • A. Role Templates have 1 or many scopes
  • B. Role Collections have 0 or many role templates
  • C. Role Collections have 0 or many roles
  • D. Role Templates have 0 or many attributes

正解:B、D


質問 # 40
Why should you create multiple dispatchers in SAP Identity Management? Note: There are 2 correct answers to this question.

  • A. To support fail-over scenarios
  • B. To handle password provisioning
  • C. To accommodate scalability
  • D. To handle special network access requirements

正解:C、D


質問 # 41
What benefits does the SAP Cloud Connector have compared to a 3rd partyreverse proxy solution, when connecting your SAP Cloud Platform with your SAP backend systems? Note: There are 2 correct answers to this question.

  • A. It can cache SAP proprietary OData packets to improve the response times
  • B. It allows for remote invocation by the SAP Cloud Platform only
  • C. It supports multiple application protocols, such as HTTP and RFC
  • D. It establishes an SSL VPN tunnel to SAP Cloud Platform

正解:C、D


質問 # 42
While performing an audit of changes to the system and client change options for your production SAP S/4HANA environment, you receive the following message in transaction SCC4. "No logs found for selected period" How can you correct the problem.

  • A. Maintain parameter log-mode with value normal SAP HANA
  • B. Maintain parameter rsau/enable with value 1
  • C. Maintain parameter rdisp/TRACE with value 3
  • D. Maintain parameter rec/client with value ALL

正解:D


質問 # 43
Which OData authorizations are required for a user to see business data in the SAP Fiori Launchpad? Note: There are 2 correct answers to this question.

  • A. Access authorization in the SAP S/4HANA back-end system
  • B. Start authorization in the SAP Fiori front-end system
  • C. Start authorization in the SAP S/4HANA back-end system
  • D. Access authorization in the SAP Fiori front-end system

正解:A、D

解説:
Explanation
These are some of the OData authorizations that are required for a user to see business data in the SAP Fiori Launchpad. OData (Open Data Protocol) is a protocol that enables CRUD (Create, Read, Update, Delete) operations on data using RESTful web services. SAP Fiori Launchpad is a web-based tool that provides access to various SAP Fiori applications and functions. SAP S/4HANA is an ERP (Enterprise Resource Planning) system that provides various business processes and functions. To see business data in the SAP Fiori Launchpad, the user needs to have access authorization in both the SAP Fiori front-end system, which handles the OData requests and responses between the user's browser and the back-end system, and the SAP S/4HANA back-end system, which contains the business logic and data access for the OData services.
References:
https://help.sap.com/viewer/a7b390faab1140c087b8926571e942b7/7.5.9/en-US/5c3d6d0f6c461014a1d99bc8a4f


質問 # 44
You verified the password of the TMSADM user in your SAP landscape to be SAP defaulted.
You want to reset this password by using the program
TMS_UPDATE_PWD_OF_TMSADM.What steps would you take to reset this password? Note:
There are 2 correct answers to this question.

  • A. Execute command TP LOCKSYS <SID> pf=<DOMAIN_CONTROLLER_PROFILE>
  • B. Run the program in the Domain Controller (client 000)
  • C. Run the program in all systems/clients including 000
  • D. Deactivate the SNC option

正解:A、B

解説:
Explanation
These are some of the steps that you would take to reset the password of the TMSADM user in your SAP landscape by using the program TMS_UPDATE_PWD_OF_TMSADM. The TMSADM user is a special user that is used for Transport Management System (TMS) communication and administration. You would run the program in the Domain Controller (client 000), which is the system that controls the transport domain and configuration. You would also execute the command TP LOCKSYS <SID> pf=<DOMAIN_CONTROLLER_PROFILE>, which locks all systems in the transport domain except the Domain Controller, to prevent any inconsistencies or errors during the password reset process. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/48/9e2e3f6f8e41e8a283aaf2ad2c64c4/content.htm?n


質問 # 45
What are the characteristics of the Audit Information System (AIS)? Note: There are 2 correct answers to this question.

  • A. The report selection variables are configured during setup.
  • B. It offers two types of audit reports: system and business.
  • C. The roles are built from nodes in the Implementation Guide (IMG).
  • D. It can be launched directly using transaction SECR.

正解:B、C

解説:
Explanation
The Audit Information System (AIS) is a tool that supports internal and external audits by providing access to relevant data and reports from various SAP systems and modules. It offers two types of audit reports: system reports that focus on technical aspects, such as security, performance, and configuration; and business reports that focus on functional aspects, such as financial accounting, controlling, and materials management. The roles for accessing AIS are built from nodes in the Implementation Guide (IMG), where you can also customize the report selection variables and parameters. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


質問 # 46
You have a load balancer in a DMZ network zone (called natl.mydomain.com) in front of 2 SAP NetWeaver AS systems (hostl.mydomain.com, host2.mydomain.com). What is the recommended common name part of the distinguished name on the SSL Server's PSE?

  • A. It should be a combined DNS alias for host 1.mydomain.com and host2.mydomain.com and nat1.mydomain.com
  • B. It should be natl.mydomain.com
  • C. It should be host 1.mydomain.com, host2.mydornain.com individually for each PSE
  • D. It should be *.mydomain.com (wildcard) names

正解:D


質問 # 47
Currently, transports into your SAP system are not scanned automatically. To avoid the import of non-secure programs, you have implemented the strategy to set up a virus scanner using a script to automatically scan for the malicious programs. What is the valid fi e format where data files are first converted into and then checked by a virus scanner?

  • A. XML
  • B. SAP compressed
  • C. Plain text
  • D. 0csv

正解:A


質問 # 48
SNC is configured in the production system. For emergency purposes, you want to allow certain accounts to be able to access the system with password logon. What do you need to set up for this purpose? Note: There are 2 correct answers to this question.

  • A. Use the profile parameter snc/only_encrypted_gui with value '0'
  • B. Use the profile parameter snc/accept_insecure_gui with value 'U'
  • C. Use 'Unsecure communication permitted' in SU01
  • D. Maintain the user access control list in table USRACLEXT

正解:A、C

解説:
Explanation
These are some of the things that you need to set up for this purpose of allowing certain accounts to be able to access the system with password logon even when SNC is configured in the production system. SNC (Secure Network Communication) is a feature that enables secure and encrypted communication between SAP systems and components using certificates and keys. SU01 is a transaction that allows you to create and maintain user master records and their properties. One of the properties is the 'Unsecure communication permitted' flag, which determines whether a user can log on to the system without SNC protection. The profile parameter snc/only_encrypted_gui is a parameter that controls whether only SNC-protected connections are allowed from SAP GUI clients. If the parameter is set to '0', both SNC-protected and unprotected connections are allowed. References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?


質問 # 49
How can you describe the hierarchical relationships between technical entities in the Cloud Foundry?

  • A. A SaaS tenant acts as one provider account.
  • B. A subscription is a PaaS tenant.
  • C. A global account can have one or many subaccounts
  • D. A SaaS tenant acts as one Cloud Foundry Organization.

正解:C


質問 # 50
Which communication methods does the SAP Fiori Launchpad use to retrieve business data? Note: There are 3 correct answers to this question.

  • A. HTIP(S)
  • B. Trusted RFC
  • C. Data
  • D. Info Access (InA)
  • E. Secure Network Communication (SNC)

正解:B、D、E


質問 # 51
What authorization object is checked when a user selects an ABAP Web Dynpro application to run?

  • A. S_PROGRAM
  • B. S_TCODE
  • C. S_SERVICE
  • D. S_START

正解:C

解説:
Explanation
The authorization object S_SERVICE is checked when a user selects an ABAP Web Dynpro application to run. This authorization object controls the access to Web services and Web Dynpro applications based on the service name and type. References:
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_
https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_


質問 # 52
Which basis transaction provides an optimized user interface for evaluating authorization checks only?

  • A. STAUTHTRACE
  • B. ST01
  • C. RSECADMIN
  • D. ABAP_TRACE

正解:A


質問 # 53
You have configured a Gateway SSO authentication using X.509 client certificates. The configuration of the dual trust relationship between client (browser) and SAP Web Dispatcher as well as the configuration of the SAP Web Dispatcher to accept and forward client certificates were done. Users complain that they can't log in to the back-end system. How can you check the cause?

  • A. Run gateway transaction /IWFND/ ERRORJ.OG
  • B. Run back-end transaction SMICM and open the trace file
  • C. Run back-end system trace using ST12
  • D. Run gateway transaction /IWFND/TRACES

正解:A


質問 # 54
Where can you store Security Audit Log events? Note: There are 2 correct answers to this question.

  • A. In the kernel trace
  • B. In the Linux system log
  • C. In the file system of the application servers
  • D. In the database table RSAU_BUF_DATA

正解:C、D

解説:
Explanation
These are some of the places where you can store Security Audit Log events in an SAP system. Security Audit Log is a tool that records security-relevant events in SAP systems, such as failed logon attempts, changes to user master records, or RFC calls. Security Audit Log events can be stored in the file system of the application servers, which are servers that run SAP applications and processes. The file name and path can be configured using RZ10 transaction or profile parameters. Security Audit Log events can also be stored in the database table RSAU_BUF_DATA, which is a table that contains buffered audit log records for each application server instance. The buffering mechanism can be configured using RZ11 transaction or profile parameters.
References:
https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?


質問 # 55
You are running a 3-tier SAP system landscape. Each time you are accessing STMS_IMPORT on any of these systems, you are prompted for a TMSADM password. How can you stop this prompt from appearing?

  • A. Run the report TMS_ UPDATE_PWD_OF_TMSADM on the domain controller.
  • B. Run the report RSUSR405 on the domain controller.
  • C. Change the TMSA DM user's password directly in the TMS RFC destination in transact on SM59.
  • D. Reset the TMSADM user's password on the system you are trying to access STMS_ IMPORT.

正解:A


質問 # 56
......

あなたを合格させるSAP Certified Technology Professional P-SECAUTH-21試験問題集で2024年04月04日には80問あります:https://www.jpntest.com/shiken/P-SECAUTH-21-mondaishu

最新のSAP P-SECAUTH-21PDFと問題集で(2024)無料試験問題解答:https://drive.google.com/open?id=1rbtN7hIIY-Q9RLO_8EpIvlQYSNEk7rvo

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡