Question No 1

User1 grants role 1 to user2. Who can revoke role 1 role from user2?

Choose the Choices:

Question No 2

Why should you create multiple dispatchers in SAP Identity Management? Note: There are 2 correct answers to this question.

Choose the Choices:

Question No 3

What is required when you configure the PFCG role for an end - user on the front - end server? Note: There are 2 correct answers to this question.

Choose the Choices:

The catalog assignment for the start authorization

The S_RFC authorization object for the OData access

The Fiori Launchpad designer assignment

The group assignment to display it in the Fiori Launchpad

Question No 4

In your system, you have a program which calls transaction

Choose the Choices:

Question No 5

The SSO authentication using X.509 client certificates is configured. Users complain that they can't log in to the back - end system. The trace file shows the following error message: "HTTP request [2/5/9] Reject untrusted forwarded certificate". What is missing in the configuration? Note: There are 2 correct answers to this question.

Choose the Choices:

On the back - end, the profile parameter icm/HTTPS/verify client must NOT be set to 0

On the web - dispatcher, the SAPSSLS.pse must be signed by a trusted certification authority

On the web - dispatcher, the profile parameter icm/HTTPS/verify_client must be set to 0

The web dispatcher's SAPSSLC.PSE certificate must be added to the trusted reverse proxies list in icm/trusted_reverse_proxy_<xx>

Practice SAP P_SECAUTH_21 Exam Questions

Question No 1

Question No 2

Question No 3

Question No 4

Question No 5

P_SECAUTH_21 Exam Features

P_SECAUTH_21 PDF Dumps