P-ADMSEC-731試験無料問題集（80題）「SAP Certified Technology Professional - System Security with SAP NetWeaver 7.31 認定」

出題：1

Which of the following statements regarding SAP GRC Access Controls (formerly known as Virsa Suite)
are correct?
Note: There are 2 correct answers to this question.

A. The Risk Analysis and remediation tool is especially valuable to control SoD violations in the Java
stack.

B. The Enterprise Role Management tool is able to control SoD violations dynamically.

C. Since NetWeaver AS 7.0 you have to set the parameter:
login/no_automatic_user_sapstar as a prerequisite to activate: Superuser privilege management.

D. The Compliant User Provisioning tool runs in the Java stack.

E. The mitigation tool allows you to administer SoD violations in the ABAP stack.

正解：B,D 解答を投票する

出題：2

Which of the following authentication mechanisms are available for SAP NetWeaver AS Java?
Note: There are 3 correct answers to this question.

A. SAML Assertions for Single Sign-On

B. Kerberos Authentication for Single Sign-On

C. Web Dynpro for Single Sign-On

D. SAP Logon Tickets for Single Sign-On

E. Security session IDs for Single Sign-On between applications

正解：A,D,E 解答を投票する

出題：3

When you use the Central User Administration (CUA), when will your changes to user data become
effective in the child systems? Please also consider the options that the Application Link Enabling
technology (ALE) offers.
Note: There are 2 correct answers to this question.

A. The changes can be replicated by the background job "CUA_Distribute" in the central system.

B. The changes can be replicated by selecting the button "Distribute all data" in transaction SCUA.

C. The data for CUA will be replicated to the child systems every 60 minutes if no other
setting/configuration overrides this default value.

D. Changes are replicated immediately.

E. The IDocs that transport the changes to the user master data in the child systems can be collected and
transferred at a later time, triggered by a background job.

正解：D,E 解答を投票する

出題：4

Which of the following statements regarding authorization maintenance using transaction: PFCG are true?
Note: There are 2 correct answers to this question.

A. SAP recommends merging authorizations in the background.

B. The status: "Old" for authorizations indicates that all field values in the subordinate levels of the
hierarchy are still current and that no new authorizations have been added.

C. For authorizations with the status: "changed", the Profile Generator cannot create a connection
between the object entry and the menu.

D. SAP recommends assigning organizational level values directly in the authorization structure.

正解：B,C 解答を投票する

出題：5

Which of the following statements about the control table for the Session Manager / Profile Generator
(SSM_CUST) and the profile parameters are true?
Note: There are 3 correct answers to this question.

A. To be able to use the role maintenance tool (PFCG), you have to set the profile
parameter:auth/no_check_in_some_cases to "Y".

B. By using parameter: SAP_MENU_OFF you can deactivate the display of the SAP menu on the Easy
Access Screen.

C. By using parameter: DELETE_DOUBLE_TCODES you can avoid double transaction codes while
maintaining roles with PFCG.

D. By using parameter: CONDENSE_MENU_PFCG you can avoid redundancies while maintaining roles
with PFCG.

E. By using parameter: ENABLE_Java you can activate the display of the AS Java in transaction:SMICM.

正解：A,B,D 解答を投票する

出題：6

Which of the following statements regarding the tool "Superuser privilege management" (formerly known
as Virsa Fire Fighter) are true? Note: There are 3 correct answers to this question.

A. Multiple Fire Fighter Controllers cannot be assigned to one Fire Fighter ID.

B. Fire Fighters can only be used after a help ticket is logged.

C. Fire Fighters should be prevented from logging on to SAP from the SAP Log On screen via the
implementation of a user exit.

D. Fire Fighter owners are responsible to determine who will be assigned to a Fire Fighter Controller.

E. Each Fire Fighter needs a password in the security table.

正解：B,C,E 解答を投票する

出題：7

Which of the following is a characteristic of the Segregation of Duties (SOD) principle?
Note: There are 2 correct answers to this question.

A. Enforcing the SOD principle means that individuals are capable of performing the tasks for different
roles, rather than depending on just one individual.

B. Enforcing the SOD principle means that no single individual can carry out a critical task that could
prove to be corruptive to the company.

C. The SOD principle is a detective control.

D. The SOD principle is a preventive control.

正解：B,D 解答を投票する

出題：8

Which of the following statements about control mechanisms in SAP systems (for example, SAP ECC)
are true? Note: There are 2 correct answers to this question.

A. To switch on table logging completely, you have to set the tp parameter: REC_CLIENT.

B. By default the transport strategy is workflow-controlled.

C. It is possible to automatically create program versions in a productive system.

D. By default the quality assurance approval procedure is switched on.

正解：A,C 解答を投票する

P-ADMSEC-731試験無料問題集「SAP Certified Technology Professional - System Security with SAP NetWeaver 7.31 認定」