200+ TOP SAP SECURITY Online Quiz Questions – Exam Test

SAP SECURITY Online Test and Answers Pdf Download :-

These are very useful & Most Asked Questions in your certification Exam. Read all Online Mock Test Exam Question Bank for Beginners Freshers & Experienced.

1. Which of the following SAP tables can help in determining the single roles which are assigned to a given composite role?

A. AGR_DEFINE
B. AGR_1016
C. AGR_AGRS
D. AGR_1252
Answer: C

2. A new single role is created and only one custom transaction code Z123 is added to the role menu. How many authorization objects should be available in the authorization data when a user goes to generate the role?

A. At least two authorization objects
B. No authorization object since this is a custom transaction code
C. At least one authorization object
D. None of the above
Answer: C

3. Which of the following actions are not present in user action field for authorization object S_PROGRAM?

A. CREATE
B. DISPLAY
C. SUBMIT
D. VARIANT
Answer: A,B

4. What reports/programs can be used to regenerate SAP_ALL profile?
A. RSUSR406
B. PFCG_TIME_DEPENDENCY
C. AGR_REGENERATE_SAP_ALL
D. RSUSR004
Answer: A,C

5. Old Security audit logs can be deleted using tcode:

A. SM20
B. SM22
C. SM19
D. SM18
Answer: D

6. Transaction code text can be displayed using table:
A. TSTCT
B. TACTZ
C. TBRG
D. TPGP
Answer: A

7. Default password for SAP standard user SAP* is :
A. 06071995
B. 06071992
C. 06081992
D. None of the above
Answer: B

8. RFC ABAP Type 3 is created between two systems using transaction code SM59. During RFC call, what authorization object will be checked in the source system?

A. S_RFC
B. S_RFCACL
C. S_ICF
D. None of the above
Answer: C

9. Which of the following is false?
A. Programs are cross-client data
B. A table may be client specific
C. Tcode RZ11 is used to maintain the profile parameters
D. None of the above
Answer: C

10. As per the options given below, please select the one which is checked second when a user executes a transaction code?

A. Check to see if the tcode exists in the SAP system or not
B. Check to see if the tcode is locked or not
C. Check in the user buffer to see if the user has necessary authorization objects with necessary field values as per the “Authority-Check” statements
D. Check in the user buffer to see if the authorization object S_TCODE contains the executed transaction code
Answer: B

SAP SECURITY Objective Questions
SAP SECURITY MCQs

SAP SECURITY Objective type Questions with Answers

11. The user buffer can be displayed using transaction code:
A. AL11
B. SU56
C. AL08
D. SU53
Answer: B

12. A role contains several profiles. Which of the following tables can fetch that list?

A. agr_prof
B. agr_1016
C. agr_1250
D. agr_define
Answer: B

13. The AS ABAP categorizes users into several types for different purposes. Which of the following are NOT valid user types in AS ABAP.

A. Service
B. Reference
C. Guest
D. System
Answer: C

14. Security Java security roles on the AS Java can be defined either globally or locally. Which of the following are globally defined security roles in AS Java?

A. Guest
B. All
C. System
D. KeystoreViewCreator
Answer: D

15. The As ABAP communicates with its communication partners using various protocols. Each of these protocols use a specific security mechanism. which of the following protocols are matched up correctly with the security mechanism?
A. DIAG’–SSL
B. RFC–SSLS
C. HUP–SNCS
D. LDAP – SSL
Answer: D

16. With reference to the LDAP directory, and the UME, which of the following are true?

A. The LDAP directory can either be connected as a read-only data source or as a writeable data source
B. The UME can support Users as a tree or a Flat hierarchy
C. The Distinguished Names (DNs) of user and group objects must not be longer than 240 characters.
D. If you are using an LDAP directory with a deep hierarchy, you can assign users or groups as members of another group using the UME user administration tools.
Answer: A

17. You have a mixed system landscape including both SAP and non-SAP systems, or you have an existing corporate LDAP directory in your system landscape. User management data is stored in a combination of an LDAP server and a database. Which of the following data is written to and read from the IDAP server?
A. Additional data (for example, information about when a user was last changed)
B. Other principal types (for example, roles)
C. Groups (displayname, description, uniquename, and the group members)
D. User accounts (logonid, password, ID of the assigned user)
Answer: C

18. The LDAP Connector is called using ABAP functions and communicates with the directory server using the Lightweight Directory Access Protocol (LDAP). The connection with the directory server can be created with various analysis methods, such as simple binding or anonymously.
The above statement is :
A. True
B. False
Answer: A

19. The User Management Engine (UME) allows you to define a security policy, with reference to this, which of the following statements are true?
A. The number of failed logon attempts after which a user is locked, is defined in the security policy.
B. The UME security policy is independent of the security policy of the UME data source
C. You can define a security policy for the UME that is the same or stronger than the corresponding security policy in the backend system.
Answer: B

20. What are the best practices for establishing a connection type Establishing Trust for Server-Sideauthentication?
A. Generate the key pair on the server component.
B. Use a public-key certificate that is signed and issued by a CA
C. Make sure the client components trust the issuing CA.
D. It is necessary for the server to verify the identity of the client component
Answer: A,B,C

SAP SECURITY Questions and Answers pdf Download