Scribd Logo
Upload

Welcome to Scribd!

  • 82 views

    SAP Security Interview Questions

    Uploaded by

    Satya Prasad
    The document provides answers to various SAP security interview questions. Some key points covered include: - The two types of background job users are system users and communication users. - The main difference between the authorization options in PFCG is that change authorizations allows adding new authorizations to a role, while expert mode can delete old authorizations, profiles, and recreate or edit the old status. - To restrict derived roles for a specific country when the master role has organizational values set to *, the organizational values in the derived roles must be set more narrowly. - The main tables for maintaining authorization objects are USOBT and USOBX. - Firefighter IDs can be assigned to

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    SAP Security Interview Questions

    Uploaded by

    Satya Prasad
    82 views4 pages
    The document provides answers to various SAP security interview questions. Some key points covered include: - The two types of background job users are system users and communication users. - The main difference between the authorization options in PFCG is that change authorizations allows adding new authorizations to a role, while expert mode can delete old authorizations, profiles, and recreate or edit the old status. - To restrict derived roles for a specific country when the master role has organizational values set to *, the organizational values in the derived roles must be set more narrowly. - The main tables for maintaining authorization objects are USOBT and USOBX. - Firefighter IDs can be assigned to

    Original Description:

    Original Title

    SAP_secinterview_questions209561292312898

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document provides answers to various SAP security interview questions. Some key points covered include: - The two types of background job users are system users and communication users. - The main difference between the authorization options in PFCG is that change authorizations allows adding new authorizations to a role, while expert mode can delete old authorizations, profiles, and recreate or edit the old status. - To restrict derived roles for a specific country when the master role has organizational values set to *, the organizational values in the derived roles must be set more narrowly. - The main tables for maintaining authorization objects are USOBT and USOBX. - Firefighter IDs can be assigned to

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    82 views4 pages

    SAP Security Interview Questions

    Uploaded by

    Satya Prasad
    The document provides answers to various SAP security interview questions. Some key points covered include: - The two types of background job users are system users and communication users. - The main difference between the authorization options in PFCG is that change authorizations allows adding new authorizations to a role, while expert mode can delete old authorizations, profiles, and recreate or edit the old status. - To restrict derived roles for a specific country when the master role has organizational values set to *, the organizational values in the derived roles must be set more narrowly. - The main tables for maintaining authorization objects are USOBT and USOBX. - Firefighter IDs can be assigned to

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 4

    SAP Security interview Questions:

    1. What is the user type for a background jobs user?

    Ans: 1system user, 2.communication user

    2. How to trouble shoot problems for background user


    Ans:

    3. There are two options in the PFCG while modifying a role. One change authorizations and
    another expert mode-what is the difference between them

    Ans:I 1. In change authorization we can give the new authorization to the role and generation
    of profile

    2. In expert mode we can I) delete the old autho, profile and recreate, ii) edit old status

    4. If we give Organizational values as * in the master role and want to restrict the derived roles for a
    specific country, how do we do?
    Ans:
    5. What is the table name to see illegal passwords?
    Ans: USR40
    6. What is the table name to see the authorization objects for a user
    Ans:

    7. What are two main tables to maintain authorization objects


    Ans: USOBT, USOBX

    8. BW security: Concept of analysis authorization and steps involved.


    Ans:

    9. How to secure tables in SAP?


    Ans: Using Authorization group (S_TABU_DIS, S_TABU_CLI) in T.Code SE54

    10. How to secure line/row in a table


    Ans:

    11. Different steps to install security from scratch


    Ans:
    12. What are the critical authorization objects in Security
    Ans:

    13. Can we stop/hold the clock in Solution manager when we put to Waiting for user answer so that
    the delay by user will be not be counted in our SLAs
    Ans:

    14. Difference between USOBT and USOBX tables


    Ans: 1.USOBT-Transaction VS Authorization objects
    2. USOBX- Transaction VS Authorization objects check indicators

    15. Use of Firefighter application

    Whenever the request coming from the user for new authorization .the request goes to
    firefighter owner. FF owner proved the FF ID to normal user then the user (secu admin) will
    assign the authori to those users (end user)

    16. Where do we add the FF ids to the SAP user ids


    Ans:
    17. How to create FF ids
    Ans:
    18. Process of Access enforcer to provide access to a user
    Ans:
    19. Different types of users
    Ans: 1.Diolag user 2.service user 3.system user 4.communication user 5.refrences user
    20. Different types of roles
    Ans: 1.Single role 2.Composite role 3.Derived role
    21. Inheritance concept
    Ans:
    22. Can a single role be used as master role?
    Ans: yes
    23. How to create derived role
    Ans: go to PFCG type the Role name stating with Z .click on create role icon .Then right side u will
    find derive from here type the parent Role name
    24. HR Security: How to create structural authorizations in HR
    Ans:
    25. HR Security: What are the objects for HR and what is the importance of each HR object
    Ans:
    26. How to copy 100 roles from a client 800 to client 900?
    Ans: Add all 100 roles as one single composite Role and Transfer the Composite role
    automatically the 100 Role will transfer to the target client (Using SCC1)
    27. How to delete roles in CUA?
    Ans:
    28. When we add a role to the users in CUA, and it is not appearing, how do you trouble shoot?
    Ans:
    29. User reports that they lost the access. We check in SUIM and no change docs found...How do you
    trouble shoot?
    Ans:
    30. How to trouble shoot HR issues?
    Ans:
    31. What is the correct procedure for Mass Generation of Roles?
    Ans: Using T.Code –SUPC

    32. What is the T.Code SQVI? What is the main usage of this SQVI?

    Ans: SQVI -Quick View

    33. How can we maintain Organizational values? How can we create Organizational?

    34. How can we update the unique E-mail IDs for 1000 users at a time?
    35. I want to see list of roles assigned to 10 different users. How do you do it?

    Ans: Using T.Code SUIM


    36.What do you mean by User Buffer? How it works with the user's Authorizations?

    Ans: User buffer means user context it contain user related information i.e.) authorizations,
    parameters, reports, earlier acceded screens .We can see the user context using T.Code –SU56

    37. What is the advantage of CUA from a layman/manager point of view?

    Ans: CUA used for maintain and manage the users centrally.

    38. Values? What is the purpose of these Org. values?

    Ans: Values: it’s used for restrict the user by values e.g. Sale order value (1-100) it means user
    can create only 100 sales orders not more than that

    39. How to create secatt script in sap step by step

    40.What is the main purpose of Parameters Groups & Personalization tabs in SU01 and Miniapps in

    PFCG?

    Ans: 1.Parameter tab: its used to auto fills the some of the values during the creation of orders
    2. Personalization tab is user to restrict the user in selection criteria E.g.: while selecting pay slip
    it will shows only last month pay slip by default. If u select the attendances it will shows current
    month by default

    3. Miniapps

    41. Reports.what is the possible ways of getting it done?

    42. How many maximum profiles we can assign to one user?

    43. In which way we can assign single role to many users (more than 5000 users).

    44. Can we assign generated profiles to users directly?

    You might also like