You have to analyze risk and perform remediation to enable end-to-end compliance.

What is the correct sequence of steps?

A. 1. Identify and select risks to manage.

2.

Build and maintain rules.

3.

Detect authorization risk.

4.

Test and report the risk.

5.

Remediate and mitigate risk.

6.

Prevent the risk.

B. 1. Identify and select risks to manage.

2.

Build and maintain rules.

3.

Remediate and mitigate risk.

4.

Test and report the risk.

5.

Detect authorization risk.

6.

Prevent the risk.

C. 1. Identify and select risks to manage.

2.

Build and maintain rules.

3.

Detect authorization risk.

4.

Remediate and mitigate risk.

5.

Test and report the risk.

6.

Prevent the risk.

D. 1. Identify and select risks to manage.

2.

Build and maintain rules.

3.

Remediate and mitigate risk.

4.

Detect authorization risk.

5.

Test and report the risk.

6.

Prevent the risk.

What data is transferred from a reference role to a derived role? Note: There are 2 correct answers to this question.

A. Reports

B. Profiles

C. User assignments

D. Transactions

Which transactions can you use to perform user reconciliation for a role?

Note: There are 2 correct answers to this question.

A. PFCG

B. SU53

C. SUIM

D. PFUD

You want to post a goods receipt to two plants, 1000 and 1200, using transaction Enter Other Goods Receipts (MB1C). When you post the goods receipt to plant 1200, you receive an authorization error message.

How do you analyze the error?

Note: There are 2 correct answers to this question.

A. Validate the user group in user master (transaction SU01).

B. Run the user information system (transaction SUIM).

C. Perform authorization error analysis (transaction SU53).

D. Run authorization trace (transaction ST01).

Which of the following steps are required to activate role maintenance after you install an SAP system? Note: There are 2 correct answers to this question.

A. Set the SAP system profile parameter auth/no_check_in_some_cases = N.

B. Set the Changes Allowed field to value E in transaction RZ10.

C. Set the SAP system profile parameter auth/no_check_in_some_cases = Y.

D. Fill the USOBX_C and USOBT_C tables.

Which of the following are capabilities of Information Integration? Note: There are 3 correct answers to this question.

A. SAP Knowledge Management

B. SAP BusinessObjects Business Intelligence

C. SAP Application Lifecycle Management

D. Multichannel Access

E. SAP Master Data Management

In an SAP NetWeaver AS ABAP system, which security notes have the highest priority?

Note: There are 2 correct answers to this question.

A. Notes shown by transaction ABAP Note Assistant (SNOTE)

B. Notes shown in Customer

C. Notes marked by the Early Watch Alert in red

D. Notes shown by RSECNOTE

Which of the following is a function of user type System?

A. It allows multiple logons.

B. It checks whether the password has expired.

C. It checks whether the password is initial.

D. It allows dialog logon.

You have changed the default password of user SAP*. What else can you do to secure SAP* from misuse? Note: There are 2 correct answers to this question.

A. Create a user master record for SAP* in all new clients with no roles.

B. Lock user SAP*.

C. Set the logon/no_automatic_user_sapstar parameter to zero.

D. Set the logon/no_automatic_user_sapstar parameter to a value greater than zero.

Which of the following are reasons to use SAP Business Workflow? Note: There are 2 correct answers to this question.

A. To automate the control and processing of cross-application processes

B. To change existing functions of an SAP system

C. To record the progress of the execution of an application

D. To respond to errors and exceptions in existing business processes