Most Recent SAP P_SECAUTH_21 Exam Dumps

Prepare for the SAP Certified Technology Professional - System Security Architect exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the SAP P_SECAUTH_21 exam and achieve success.

The questions for P_SECAUTH_21 were last updated on Jun 5, 2026.

Viewing page 1 out of 16 pages.
Viewing questions 1-5 out of 80 questions

Get All 80 Questions & Answers

Question No. 1

You want to allow your trainee colleagues to use the SAP GUI to connect directly to your SAP S/4HANA (on-premise) demo system from a public internet connection. Which of the

following SAP solutions is suited for this purpose?

ASAP Web Dispatcher

BSAP Cloud Connector

CSAProuter

DSAP NetWeaver Gateway

Show Answer

Correct Answer: C

This is one of the SAP solutions that is suited for this purpose of allowing your trainee colleagues to use the SAP GUI to connect directly to your SAP S/4HANA (on-premise) demo system from a public internet connection. SAProuter is a program that acts as an application-level gateway between SAP systems and networks using TCP/IP protocol. SAProuter can be used to establish secure and encrypted connections between SAP systems and external networks using SNC (Secure Network Communication) certificates and keys. SAProuter can also be used to control access to SAP systems based on various criteria, such as source IP address, destination IP address, service name, or port number. Reference: https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true

Question No. 2

You are evaluating the "Cross-client object change" option using transaction SCC4 for your

Unit Test Client in the development environment. Which setting do you recommend?

ANo changes to repository and cross-client customizing objects

BNo changes to cross-client customizing objects

CChanges to repository and cross-client customizing allowed

DNo changes to repository objects

Show Answer

Correct Answer: C

This is the recommended setting for the ''Cross-client object change'' option using transaction SCC4 for your Unit Test Client in the development environment. This setting allows you to make changes to repository objects (such as programs, function modules, classes, etc.) and cross-client customizing objects (such as number ranges, message classes, etc.) in your Unit Test Client without affecting other clients in the same system. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true

Question No. 3

What is the SAP Best Practice to delete a security SAP role from the landscape running SAP systems?

ATransport the SAP role and delete the role using Profile Generator

BDelete the SAP role in all clients using Profile Generator

CDelete the SAP role in all clients in all systems using Profile Generator

DDelete the SAP role using Profile Generator, and then put it in the transport

Show Answer

Correct Answer: D

The SAP Best Practice to delete a security SAP role from the landscape running SAP systems is to delete the SAP role using Profile Generator (transaction PFCG), and then put it in a transport request that can be moved across systems using Change and Transport System (CTS). This way, you can ensure that the role is deleted consistently and completely from all systems. Reference: https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true https://help.sap.com/doc/saphelp_nw70ehp3/7.03/en-US

Question No. 4

Which of the 7 core principals of the General Data Privacy Regulation (GDPR) requires thorough documentation of all policies and controls that govern the collection and processing of data?

AAccountability

BLawfulness, Fairness, and Transparency

CAccuracy

DIntegrity and Confidentiality

Show Answer

Correct Answer: A

This is one of the 7 core principles of GDPR (General Data Protection Regulation) that requires thorough documentation of all policies and controls that govern the collection and processing of data. Accountability means that data controllers and processors must be able to demonstrate compliance with GDPR requirements and obligations, such as data protection by design and by default, data protection impact assessment, data breach notification, or data subject rights. Accountability also means that data controllers and processors must keep records of their data processing activities and cooperate with supervisory authorities when requested. Reference: https://gdpr-info.eu/art-5-gdpr/ https://gdpr-info.eu/art-5-gdpr/

Question No. 5

Based on your company guidelines you have set the password expiration to 60 days.

Unfortunately, there is an RFC user on your SAP system who must not have a password

change for 1 80 days. Which option would you recommend to accomplish such a request?

ADefine the RFC user as a reference user

BCreate a security policy via SECPOL and assign it to the RFC users

CChange the profile parameter login/password_expiration_time to 1 80

DCreate an enhancement spot or user exit

Show Answer

Correct Answer: B

This is one of the options that you would recommend to accomplish such a request of having an RFC user with a password expiration of 180 days instead of 60 days based on your company guidelines. SECPOL is a transaction that allows you to create and maintain security policies for password settings, such as minimum length, expiration time, or lockout threshold. You can assign different security policies to different users or user groups based on their roles or requirements. Reference: https://help.sap.com/doc/saphelp_nw73ehp1/7.31.19/en-US/c8/e8d53d35fb11d182b90000e829fbfe/content.htm?no_cache=true

Unlock All Questions for SAP P_SECAUTH_21 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 80 Questions & Answers