SAP c-sec-2405 practice test
SAP Certified Associate - Security Administrator
Question 1
Following an upgrade of your SAP S/4HANA on-premise system to a higher release, you perform a
Modification Comparison using SU25.
What does this comparison do?
- A. It compares your changes to the SAP defaults in USOBX_C and USOBT_C with the new SAP defaults in the current release and allows you to make adjustments.
- B. It compares your changes to the SAP defaults in USOBX and USOBT with the new SAP defaults in the current release and allows you to make adjustments.
- C. It compares the Role Maintenance data from the previous release with the data for the current release and writes any new default values in tables USOBX_C and USOBT_C
- D. It compares the Role Maintenance data from the current release with the data for the previous release and allows you to adjust any custom default values in tables USOBX and USOBT.
Answer:
B
Question 2
When planning an authorization concept for your SAP S/4HANA Cloud Public Edition
implementation, what rules must you consider? Note: There are 2 correct answers to this question.
- A. Business catalogs can be assigned directly to a business user.
- B. Business roles can be assigned directly to a business user.
- C. SAP Fiori apps, dashboards, and displays can be assigned directly to a business role.
- D. Business catalogs can be assigned directly to a business role.
Answer:
B, D
Question 3
Which of the following are SAP Fiori Launchpad functionalities? Note: There are 2 correct answers to
this question.
- A. SAP GUI
- B. Spaces
- C. Web Dynpro
- D. User Actions Menu
Answer:
B, D
Question 4
Which of the following rules does SAP recommend you consider when you define a role-naming
convention for an SAP S/4HANA on-premise system?
Note: There are 3 correct answers to this question.
- A. Role names are system language-dependent
- B. Role names can be no longer than 30 characters
- C. Role names are system language-independent
- D. Role names can be no longer than 20 characters
- E. Role names must NOT start with "SAP"
Answer:
B, C, E
Question 5
Under which of the following conditions can you merge authorizations for the same object during
role maintenance? Note: There are 2 correct answers to this question.
- A. The activation status of a manual authorization must match the status of the changed authorizations.
- B. The activation status and the maintenance status of the authorizations must match.
- C. The maintenance status of the changed authorizations must match the status of a manual authorization.
- D. The activation status and the maintenance status of the authorizations must NOT match.
Answer:
A, B
Question 6
What must you do if you want to enforce an additional authorization check when a user starts an SAP
transaction?
- A. Assign authorization object S_START to the chosen transaction code with transaction SU24 and specify the Program ID and Object Type.
- B. Assign the authorization object to be checked to the chosen transaction code in the SAP Default authorization data using transaction SU22 and set Check Indicator to "Check".
- C. Assign the authorization object and permissions to the chosen transaction code using transaction SE93.
- D. Assign the authorization object to be checked to the chosen transaction code with transaction SU24 and set Default Status to "Yes".
Answer:
C
Question 7
Which access categories are available to maintain restrictions in SAP S/4HANA Cloud Public Edition?
Note: There are 3 correct answers to this question.
- A. Read (read access)
- B. Read, Value Help (read access)
- C. Write, Read (write access)
- D. Value Help (value help access)
- E. Write, Read, Value Help (write access)
Answer:
B, D, E
Question 8
In the administration console of the Cloud Identity Services, which authentication providers are
available? Note: There are 2 correct answers to this question.
- A. Successfactors
- B. Concur
- C. Ariba
- D. Fieldglass
Answer:
A, C
Question 9
In which order do you define the security-relevant objects in SAP BTP?
- A. Role collection
- B. Role template
- C. Role
- D. B-A-C
Answer:
D
Question 10
Where can you find information on the SAP-delivered default authorization object and value
assignments? Note: There are 2 correct answers to this question.
- A. USOBT_C
- B. SU24
- C. SU22
- D. USOBT
Answer:
C, D
Question 11
When performing a comparison from the imparting role, what happens to organizational level field
values in the derived role? Note: There are 2 correct answers to this question.
- A. Data for organizational levels that have already been maintained in the derived role is NOT overwritten.
- B. Data for organizational levels that have already been maintained in the derived role is overwritten.
- C. Data for organizational levels is transferred only when authorization data for the derived role is first modified.
- D. Data for organizational levels is always transferred when authorization data for the derived role is modified.
Answer:
A, C
Question 12
In the SAP BTP Cockpit, at which level is Trust Configuration available? Note: There are 2 correct
answers to this question.
- A. Subaccount
- B. Global Account
- C. Directory
- D. Organization
Answer:
A, B
Question 13
What does SAP Key Management Service (KMS) do to secure cryptographic keys? Note: There are 3
correct answers to this question.
- A. Conceal keys
- B. Store keys
- C. Rotate keys
- D. Transmit keys
- E. Generate keys
Answer:
B, C, E
Question 14
Which user type in SAP S/4HANA Cloud Public Edition is used for API access, system integration, and
scenarios where automated data exchange is required?
- A. SAP Communication User
- B. SAP Administrative User
- C. SAP Support User
- D. SAP Technical User
Answer:
A
Question 15
Which cloud-based SAP solution helps organizations control their data across various cloud platforms
and on-premise data sources?
- A. SAP Identity Access Governance
- B. SAP Information Steward
- C. SAP Privacy Governance
- D. SAP Data Custodian
Answer:
D