SAP Fiori and Risk Management Quiz

Questions and Answers

What is the main purpose of the App Router?

To enhance graphical user interfaces

To serve as a database for SAP applications

To provide a single entry point for node.js based apps (correct)

To manage user roles and permissions

Which principle is NOT part of the SAP Fiori Design Principles?

Innovative (correct)

Delightful

Simple

Role-based

What distinguishes the Fiori Launchpad from the Launchpad Designer?

The Launchpad is used for managing backend data

The Designer allows users to launch applications directly

The Launchpad is where users can view and run tiles (correct)

The Launchpad includes configuration settings for all clients

What type of app in the Fiori library focuses on displaying contextual information?

Fact sheets

Which of the following is a function of the Fiori Launchpad Designer (FLPD)?

To manage catalog, groups, and tiles

What does the risk planning phase primarily involve?

Defining and consolidating all management frameworks

In the context of master data, what is the primary characteristic of local data?

Applies to data within each specific organization

What is the purpose of a security audit in risk management?

To conduct an independent review of system controls

What role does a data source play in SAP risk management?

It connects technical and business aspects of monitoring

Which of the following defines the operation of the 1st level authorization in SAP?

It restricts available users to those assigned to a specific role

Which authorization object is used to grant access for all ABAP Workbench components?

S_DEVELOP

What is the function of the TCode SU24?

Authorization check indicator

Which TCode allows for mass user maintenance?

SU10

Which authorization object provides display authorization for InfoAreas folders?

S_RS_FOLD

What does the TCode SE16D allow a user to do?

General Table Display

What is the purpose of the authorization object S_RS_COMP1?

Authorization for queries from specific owner

Which of the following TCodes is associated with table maintenance views?

SM30/SM31

Which authorization object is related to processing a job?

S_BTCH_JOB

What are common weaknesses found in ITGC?

Inadequate user provisioning and de-provisioning

Which of the following is NOT a type of effectiveness test?

Process efficiency evaluation

What is the main purpose of Access Request Management (ARM)?

To provide a framework for requesting and managing user access

Which category is covered by the GRC framework?

Reliability of financial reporting

Which of the following is a critical SAP standard profile?

SAP_ALL

What is the primary benefit of using a Simplified Access Request?

It provides more flexibility in layout.

Which of the following best describes the role of a Controller in the firefighter process?

Reviews logs of firefighter activities.

What does the term Segregation of Duties (SOD) refer to?

Performing two or more conflicting functions.

What is an ID based firefighter application used for?

To manually assign elevated access in the GRC system.

How does Emergency Access Management (EAM) assist users?

By preserving security while solving access crises.

Which feature allows users to assign their approval responsibilities temporarily?

Approval delegation.

Where are STAD files for reporting stored?

In CDHDR & CDPOS.

What capability does the tool for Identity management provide?

Manages the full identity life cycle of users.

What is the main purpose of Single Sign-On (SSO) in SAP Fiori applications?

To sign in without using a password

Which of the following is NOT a user type in SAP HANA?

Anonymous Users

What is a key benefit of using SAP S/4 HANA compared to previous versions?

Real-time analytics capabilities

What are the two types of security roles available in SAP HANA?

Front-end roles and back-end roles

Which approach to SAP S/4 HANA implementation allows for complete re-engineering?

Greenfield Approach

Which tool is used for XS specific security configuration in SAP HANA?

XS Administration tool

What does SAML 2.0 refer to in the context of SAP Fiori?

An SSO mechanism

Which type of user management is associated with Internet users in SAP?

Used for SAP Web Apps

What is the function of the Database Role in SAP HANA?

To grant privileges to database users

Which of the following is a key capability of SAP HANA?

Real-time data analysis

Which component of the SAP S/4 HANA system is used for front-end configuration?

User Admin

What does the term 'database superuser' refer to in SAP HANA?

System User with full privileges

Which user license type is specifically meant for developer use in SAP S/4 HANA?

Enterprise Management for Developer Use

Study Notes

OBJECT

• Starting transactions include starting web dynpro applications and reports, calling RFC function modules, generic and specific table access, human resource, quality maintenance, plant maintenance, warehouse management, logistics transactions, direct store delivery, and vehicle optimization transactions.
• General authorization object in ABAP Workbench grants access to components.
• Powerful authorization object allows choices for securing components, queries, and specific owners.
• Authorization for queries from specific owners, displays authorization for infoareas folder, authorization for GUI activities, document set, and role check transactions in role.
• Authorization for working with individual workbench objects, analysis maintenance, and job processing.

TCode

• SU01: User maintenance
• SU10: Mass user maintenance
• SU01D: User maintenance display
• PFCG: Role maintenance/Profile Generator
• SU24: Maintain all objects
• SE16: Data browser
• SE16D: General table display

SE17, SM30/SM31, SE11/SE12, RSCSAUTH, SA38, SU25, PFUD, SM01, SM04, SU21, SU20, SU1, SU2, SU3, SUGR, SUPC, SE54, SU02, SU03, SUUM, SECR, SU53, ST01, SU56, SLG1, SUIM, RSA1, RSD1, RSECADMIN, RRMX, /N/UI2/FLP, /N/UI2/FLPD CONF, /N/UI2/FLPD_CUST, PFCGMASSVAL, SUPO, SCC4, SE06

• These are transaction codes. Specific functions relate to ABAP Dictionary, table maintenance, views, and authorization details.

TABLES

• USOBT_C: Contains authorization proposal flags relevant to transactions and applications. Includes objects maintained within an application.
• USOBX_C: Contains all objects maintained in an application, regardless of proposal.
• TDDAT: Used in application and mapping of authorization groups.
• USR01, USR02, USR03, USR04, USR05, USRSTAMP, USREFUS, AGR 1251, and AGR 1252: Contain user data, including logon data, lock status, passwords, profiles, and last modification times.
• AGR_DEFINE, AGR USERS, AGR AGRS: List of authorization objects within a role, role definitions also including parent-derived role mappings, and roles assigned to users.
• TOBJ, USOBT, USOBX, UST04, USR10, USR12, USR40, USGRP, USH02, USER ADDR, AGR_HIER2, AGR PROF, AGR TEXTS, AGR TIME, RSDCHA: These table elements contain additional data about roles, authorization profiles, illegal passwords, user groups, user addresses, hierarchical structures, and other related information.

OLTP, OLAP, INFOPROVIDER, MULTIPROVIDER, DSO

• OLTP refers to transaction-based security.
• OLAP refers to analysis-based security.
• InfoProviders are data sources.
• Multiproviders represent logical structures, allowing data access from InfoCubes.
• DSO (Data Store Objects) are datasets created by merging data from other InfoSources

SAP HANA, USER TYPES

• SAP HANA is ERP software for business operations, financials, logistics, supply chain, and human resources.
• User types include database users (restricted access), standard users (create objects), restricted users (limited privileges), and technical users (administrative tasks).

SAP BTP, GLOBAL ACCOUNT

• SAP BTP refers to the Business Technology Platform, a four part portfolio offering database, application development, and integration, and analytics.
• Global account, sub-accounts, and user management have aspects of accounts, business users, and administrators.

SAP CUSTOMER MESSAGES, GRC, SAP RISK MANAGEMENT

• SAP customer messages are support requests concerning SAP implementation and product defects, handled through GRC.
• GRC manages compliance, using embedded analytics and reporting.
• SAP risk management follows phases for identifying, documenting, and assessing risks.

SAP_NEW, PROFILES, USER PROVISIONING

• SAP_NEW is a profile for system users temporarily associated with upgrades
• Profiles track settings for access rights, controlling user actions.
• User provisioning/deprovisioning is the process of creating, amending, or removing user accounts.

CONTINUOUS MONITORING, MASTER DATA, BUSINESS RULES

• Continuous monitoring tracks and measures compliance.
• Master data, including company organizations and local data is contained within the system.
• Business rules provide a scalable platform for automated processes.

ACCESS REQUEST MANAGEMENT (ARM), EAM

• ARM is a framework for centralized user access requests.
• Emergency Access Management (EAM) enables crisis-solving access without privilege compromise.

OTHER TOPICS

• GRC system, firefighters, controllers, roles, profile data, segregation of duties (SOD), authorization checks, identity and password management, communication, authorization synchronization, and repository object synchronization.
• Security, user management, roles, transactions, access controls, compliance, and risk management.

Description

Test your knowledge on SAP Fiori Design Principles, the Fiori Launchpad, and risk management practices. This quiz covers important aspects such as authorization, master data, and security audits within the SAP ecosystem. Challenge yourself with these targeted questions!