Security interview questions - some fun to tickle your brain.

Hello gurus,
I know that posting interview question series are not allowed if the person has not put in any effort, but I have and folks seem to want to practice a bit sometimes so I take the liberty of creating a central one.
Tackle one or all of them to test your knowledge.
There are no model answers.
If you want to suggest additional ones, then please contact me.
The rules
Flaming of answers is allowed.
Funny answers earn a beer (or cup of tea).
There are no points.
1)     When PFCG proposes 3 activities but you only want 2, how do you fix this?
2)     What is the use of transaction PFUD at midnight?
3)     Is PFUD needed when saving in SU01 and does the user need to logoff and on again after changes?
4)     How are web services represented in authorizations of users who are not logged on?
5)     How do you force a user to change their password and on which grounds would you do so?
6)     What is the difference between SU24 and SU22? What is "orginal data" in SU22 context?
7)     When an authorization check on S_BTCH_JOB fails, what happens?
8)     Can you have more than one set of org-level values in one role?
9)     Should RFC users have SAP_NEW and why?
10)     What is an X-glueb command and where do you use it in SAP security?
11)      What is the disadvantage of searching for AUTHORITY-CHECK statements in ABAP OO coding and how does SU53 deal with this?
12)      In which tables can you make customizing settings for the security administration and name one example of such a setting which is usefull but not SAP default?
13)     Can you use the information in SM20N to build roles and how?
14)     If the system raises a message that authorizations are missing but you have SAP_ALL, what do you do?
15)     Name any one security related SAP note and explain it's purpose or solution.
16)     What are the two primary differences between a SAML token profile and a SAP logon ticket?
17) Where do you configure the local and global settings of the CUA and what are the consequences of inconsistent settings?
18)            If you have users in different systems with different user ID's for the same person, what are your options to manage their authorizations centrally?
19)            Explain the use of the TMSSUP* RFC destinations and the importance of the domain controller?
20)            Why should you delete SAP_NEW profile and which transaction should you use before doing so?
To be continued...

I have one year experience in SAP Security and only two in Basis, so flame on......... I swear I didn't use google or any of my systems for reference!<br><br>
1) When PFCG proposes 3 activities but you only want 2, how do you fix this? Best answer is to modify your su24 data. <br><br>
2) What is the use of transaction PFUD at midnight? removes invalid profiles from user records <br><br>
3)Is PFUD needed when saving in SU01 and does the user need to logoff and on again after changes? PFUD is not needed and the user needs to log off and back on again <br><br>
4)How are web services represented in authorizations of users who are not logged on? ?? <br><br>
5)How do you force a user to change their password and on which grounds would you do so? SU01 -> Logon Data tab -> Deactivate password. I am not sure what grounds this would be necessary. I have never had to use it. <br><br>
6)What is the difference between SU24 and SU22? What is "orginal data" in SU22 context? SU22 you maintain authorization objects???? Su24 you maintain which authorization objects are checked in transactions and maintain the authorization proposals. <br><br>
7)When an authorization check on S_BTCH_JOB fails, what happens? "You do not have authorization to perform whatever operation you are trying to perform." message. HAHA <br><br>
8)Can you have more than one set of org-level values in one role? I might be misinterpreting this question. But yes. Depending on the transactions inserted into the role menu, you could have more than one org level to maintain. Purchasing Org and Plant, Sales Org and Sales Division..... <br><br>
9)Should RFC users have SAP_NEW and why? No. Just insert the transactions and necessary authorization objects into a role. S_RFC for one. <br><br>
10) What is an X-glueb command and where do you use it in SAP security? ??? <br><br>
11) What is the disadvantage of searching for AUTHORITY-CHECK statements in ABAP OO coding and how does SU53 deal with this? Disadvantage? I can think of an advantage. My ABAPer shows me his programs and we work out what authority checks should be performed. <br><br>
12) In which tables can you make customizing settings for the security administration and name one example of such a setting which is usefull but not SAP default? ??? <br><br>
13) Can you use the information in SM20N to build roles and how? You could, I guess. Not a good practice though. Build roles based on business processes. <br><br>
14) If the system raises a message that authorizations are missing but you have SAP_ALL, what do you do? Regenerate SAP_ALL which reconciles new authorization objects from SAP_NEW <br><br>
15) Name any one security related SAP note and explain it's purpose or solution. Don't know the number off hand, but I was looking at it yesterday. Program Z_DEL_AGR to allow deletion of more than one role at a time. There is no mechanism in SAP to achieve this currently. <br><br>
16) What are the two primary difference between a SAML token profile and a Logon ticket in SAP? ??? I know what these are but have no experience with it. <br><br>

Similar Messages

  • Can anyone give me some realtime Interview questions on OBIEE

    Guide me with the Interview questions and answers?

    Reset your SMC.  If that doesn't do it, reset PRAM. 

  • SGA Size for 8.1.7.4 32 bit? , some Interview Questions

    Hi buddies,
    I got some interview questions, might be simple for geeks in DBA. I am in need of answers. Could anyone help me.
    Thanks,
    Raaj
    1) Does windows NT support direct I/O?
    Answer: Choose one of the answers that apply
    A: No, only AIO
    B: Yes, depending on hardware.
    C: Yes.
    D: No.
    2) Can you take a coldbackup from solaris and use it on windows NT?
    Answer: Choose one of the answers that apply
    A: Yes.
    B: Yes if RMAN backup performed from NT server.
    C: Yes, after running RMAN convert.
    D: No.
    3) All of the following will alter the number of checkpoints that occur in one hour on the database, except one. Which is it?
    Answer: Choose one of the answers that apply
    A: Decreasing tablespace size
    B: Decreasing size of redo log members
    C: Setting LOG_CHECKPOINT_INTERVAL greater than the size of the redo log file
    D: Setting LOG_CHECKPOINT_TIMEOUT to zero
    4) The DBA is attempting to back up the Oracle database control file. After
    issuing the ALTER DATABASE BACKUP CONTROLFILE TO TRACE command, where can the DBA find the backup control file creation materials Oracle created for him or her ?
    Answer: Choose one of the answers that apply
    A: USER_DUMP_DEST
    B: LOG_ARCHIVE_DEST
    C: CORE_DUMP_DEST
    D: BACKGROUND_DUMP_DEST
    5) What is the most important action a DBA must perform after changing the database from NOARCHIVELOG TO ARCHIVELOG?
    Answer: Choose one of the answers that apply
    A: Shutdown normal and restart the database
    B: Perform a full logical database backup
    C: Perform a full offline database backup
    D: Manually switch the log files
    6) Which of the following choices lists an ALTER USER option that can be executed by the user herself or himself?
    Answer: Choose one of the answers that apply
    A: DEFAULT TABLESPACE
    B: IDENTIFIED BY
    C: TEMPORARY TABLESPACE
    D: PROFILE
    7) You need to view the initialization parameter settings for your Oracle
    database. Which of the following choices does not identify a method
    you can use to obtain values set for your initialization parameters?
    Answer: Choose one of the answers that apply
    A: Issue SELECT * FROM DBA_PARAMETERS; from SQL*Plus
    B: Issue SELECT * FROM V$PARAMETER; from SQL*Plus
    C: Issue SHOW PARAMETERS from Server Manager
    D: Use OEM Instance Manager
    8) As a result of a media failure, the current online redo log group is corrupted, the database crashes, as the current online group is inaccessible. Which type of incomplete recovery are you most likely to perform ?
    Answer: Choose one of the answers that apply
    A: Change-based
    B: Time-based
    C: Recovery using a backup control file
    D: Cancel-based
    9) User SNOW executes the following statement: SELECT * FROM EMP. This
    statement executes successfully, and SNOW can see the output. Table
    EMP is owned by user REED. What object would be required in order for
    this scenario to happen ?
    Answer: Choose one of the answers that apply
    A: User SNOW would need the role to view table EMP.
    B: User SNOW would need the privileges to view table EMP.
    C: User SNOW would need a synonym for table EMP.
    D: User SNOW would need the password for table EMP.
    10) Which one of the following statements is true?
    Answer: Choose one of the answers that apply
    A: The request queue is common, and the response queue is different for all the dispatchers.
    B: The request queue and response queue are different for all the dispatchers.
    C: The request queue is different, and response queue is common for all the dispatchers.
    D: The request queue and response queue are common for all the dispatchers.
    11) What is the largest SGA size for 8.1.7.4 32 bit?
    Answer: Choose one of the answers that apply
    A: approximately 2GB
    B: approximately 3.5GB
    C: approximately 4GB
    D: approximately 8GB
    E: approximately 16GB
    12) The DBA is about to perform some administrative tasks. Specifying the
    OPTIMAL parameter has which of the following appropriate uses?
    Answer: Choose one of the answers that apply
    A: Limiting concurrent users
    B: Limiting concurrent transactions
    C: Limiting growth of rollback segments
    D: Limiting growth of tables
    13) If the DBA wants to find information about how often transactions are
    wrapping transaction information between multiple rollback segment
    extents, where would the DBA look to find that information?
    Answer: Choose one of the answers that apply
    A: DBA_ROLLBACK_SEGS
    B: V$ROLLSTAT
    C: V$ROLLNAME
    D: DBA_SEGMENTS
    14) You have 30 rollback segments in your database, for which
    TRANSACTIONS_PER_ ROLLBACK_SEGMENT is set to 49 and
    TRANSACTIONS is set to 1000. During periods of heavy usage, about how many rollback segments will be actively used by Oracle?
    Answer: Choose one of the answers that apply
    A: 50
    B: 60
    C: 20
    D: 30
    15) The DBA has a table created with the following statement:
    CREATE TABLE EMPL
    (EMPID NUMBER(10),
    LASTNAME VARCHAR2(40),
    RESUME LONG RAW);
    The DBA attempts to issue the following statement:
    ALTER TABLE EMPL
    ADD ( PERF_APPRAISE LONG);
    What happens?
    Answer: Choose one of the answers that apply
    A: The statement succeeds.
    B: The statement succeeds, but column is added as VARCHAR2.
    C: The statement fails.
    D: The statement adds a disabled constraint.
    16) The primary key of the EMP table has three columns, EMPID, LASTNAME,
    and FIRSTNAME. You issue the following SELECT statement:
    SELECT * FROM EMP WHERE LASTNAME = 'HARRIS' AND FIRSTNAME = 'BILLI'
    AND EMPID = '5069493';
    Where would you look to see if this query will use the index associated
    with the primary key?
    Answer: Choose one of the answers that apply
    A: DBA_IND_COLUMNS
    B: DBA_TAB_COLUMNS
    C: DBA_INDEXES
    D: DBA_CLU_COLUMNS
    17) You are configuring your index to be stored in a tablespace. Which of the
    following storage parameters are not appropriate for indexes?
    Answer: Choose one of the answers that apply
    A: OPTIMAL
    B: INITIAL
    C: PCTINCREASE
    D: NEXT
    18) You need to set up auditing in an order entry and product shipment
    application so that when the ORDER_STATUS column in the ORDERS
    table changes to ‘SHIPPED’, a record is placed in a special table associated
    with a part of the application that gives sales representatives a daily list
    of customers to call on a follow-up to make sure the customer is satisfied
    with the order. Which of the following choices represents the best way
    to perform this auditing?
    Answer: Choose one of the answers that apply
    A: Statement auditing
    B: Object auditing
    C: Audit by access
    D: Value-based auditing
    19) Information in the buffer cache is saved back to disk in each of the
    following situations except one. In which situation does this not occur?
    Answer: Choose one of the answers that apply
    A: When a time-out occurs
    B: When a log switch occurs
    C: When the shared pool is flushed
    D: When a checkpoint occurs
    20) In order to allow remote administration of users and tablespaces on an Oracle database, which of the following types of files must exist in the database?
    Answer: Choose one of the answers that apply
    A: Password file
    B: Initialization file
    C: Datafile
    D: Control file
    E: Nothing, SYSDBA privileges are not required for these actions.
    21) You are planning the storage requirements for your database. Which of the following is an effect of maintaining a high PCTFREE for a table?
    Answer: Choose one of the answers that apply
    A: Oracle will manage filling data blocks with new records more actively.
    B: Oracle will manage filling data blocks with new records less actively.
    C: Oracle will leave more space free in data blocks for existing records.
    D: Oracle will leave less space free in data blocks for existing records.
    22) You manage database access privileges with roles where possible.
    You have granted the SELECT_MY_TABLE role to another role, called
    EMP_DEVELOPER. To view information about other roles that may be
    granted to EMP_DEVELOPER, which of the following dictionary views
    are appropriate?
    Answer: Choose one of the answers that apply
    A: DBA_ROLE_PRIVS
    B: DBA_TAB_PRIVS
    C: USER_SYS_PRIVS
    D: ROLE_ROLE_PRIVS
    23) In order to set your SQL*Plus session so that your NLS_DATE_FORMAT
    information is altered in a specific way every time you log into Oracle,
    what method would be used?
    Answer: Choose one of the answers that apply
    A: Setting preferences in the appropriate menu option
    B: Creating an appropriate LOGIN.SQL file
    C: Issuing the ALTER USER statement
    D: Issuing the ALTER TABLE statement
    24) You create a sequence with the following statement:
    CREATE SEQUENCE MY_SEQ
    START WITH 394
    INCREMENT BY 12
    NOMINVALUE
    NOMAXVALUE
    NOCACHE
    NOCYCLE;
    Two users have already issued SQL statements to obtain NEXTVAL, and
    four more have issued SQL statements to obtain CURRVAL. If you issue a
    SQL statement to obtain the NEXTVAL, what will Oracle return?
    Answer: Choose one of the answers that apply
    A: 406
    B: 418
    C: 430
    D: 442

    1.-
    2.c
    3.a
    4.a
    5.c
    6.b
    7.a
    8.d
    9.b
    10.a -
    11.a
    12.c
    13.b
    14.d
    15.c
    16.a -
    17.a
    18.d
    19.c
    20.a
    21. -
    22.d
    23.b
    24.?
    hope it helps u.
    Thanks
    Kuljeet

  • Some problems in finding answers of interview questions Oracle SOA 11g

    hi
    These questions were asked from me in an interview. could someone please help me to get the answers?
    Q1: While using a file adapter if we have declared an elements schema length as 100 and file reading the file adapter that element contains 120 characters, then what will happen ? Is there any way to read that file?
    Q2: In a BPEL process there is a partner link which is invoked more than once in this BPEL. While creating assertions in Test suit for this composite how we will write assertions for this partener link?
    Q3: In a Flow activity if we have added 2 assign activities in each branch, then will we really have performance improvement as compared if we use them serially?
    Q4: In OSB how to restrict the no of messages coming to Proxy service?
    Q5: in OSB how to use dynamic URL of business service? (we will get to know the url at rum time or we have to create url at runtime)
    Q6: While using fault policy framework if have set the retry count as 3. Now when the retry count is exhausted then how this fault will be clost.faulted or open.faulted?
    Q7: can we have two service bindings in one composite if there is only one BPEL process in that composite?
    Q8: Q: If we need to validate any message in OSB after pipeline stage according to its destination
    thanks in advance

    John
    Please check these links and may answers some of your questions
    http://www.sap-img.com/business/sap-bw-interview-questions.htm
    http://www.techinterviews.com/?p=184
    http://rapidshare.de/files/3829216/Bw_Interview_Questions.pdf.html
    http://groups.ittoolbox.com/archives/archives.asp?l=sap-career&i=671624
    Hope this helps
    Thnaks
    Sat

  • Some interview questions help

    Hi friends i have some interview questions please give me good answers.thanks for advance.
    1.what is info provider?what is advantages and disadvantages?
    2.when your working process chains you set up 2 jobs ,one is 12 pm and anothet 3 am.when you come morning there is errors what is the first thing you do?
    3.in the info provider data is loaded in serial or parallel?
    4.when your working in reports there is 8 columns,but we have requirement of 10 columns how you can added it?
    5.what is integrating planning in BPS?
    If possible please send me good interview questions to my mail id.
    takecare
    bye
    habeeb
    [email protected]

    Please think when you were at the beginer stage.Yes, I guess setting up a second machine under your desk and spending the next - oh I don't know - 2 months fiddling around and trying out all kinds of things is really nothing that can be asked of anyone anymore today. </sarcasm>
    Mind you, my boss at the time did not find it funny that I just formatted a surplus workstation and monopolized it, but when I then took the first official training I had a whole stack of questions at the ready with which to hassle the teacher.
    Now you tell me: which approach enables you to learn and understand more and better?
    @rnm1978: +1!

  • SAP TM help , Resume, interview questions and market -appreciate your help

    Hey Everybody, 
                             Can any one of you send me the sample resume for Time management? Especially targeting the schemas. I just did HR311 at SAP school. I’m looking for the opportunity now days.
    I’ll also appreciate if any one of you can tell that what kind of interview questions I could face? Sample question will be great. 
    BTW how is SAP time market?
    Thanks,
    UA
    Email id : [email protected]

    Did I ask something difficult?  I’ll appreciate if you guys shed some light on some scenarios. For example if you have Unions or worked with unions what you do in order to accommodate them. That would be great if you explain with the help of Business examples. What PCRs you have created etc...

  • HT5312 I want to change my security questions, but the option" forgot your answers? send reset security info email to" doesen show even if I answer mor than 3 questions, it's bloked for 8 hours

    I want to change my security questions, but the option" forgot your answers? send reset security info email to" doesen't show, and after I answer 3 wrong questions, it's bloked for 8 hours, how can I change the answer to this questions If the link doesen show on the aplle wb page?

    The 'send reset info' only shows if you have a rescue email address (which is not the same thing as an alternate email address) set up on your account. If it's not showing then that implies that you haven't got one on your account, and you won't be able to add one until you can answer 2 of your security questions - in which case  see if the instructions on this user tip helps you get the questions reset : https://discussions.apple.com/docs/DOC-4551

  • Some interview Question?

    hello all, as this forum has many brilliant minds, i have some interview question, if you mind please let me know the answer....
    q1. default level at which validation accurs?
    q2. in which case property pallet display **** as a property value, what its meaning?
    q3. best way to ensure that item can not accept query criteria?
    q4. what is the use of key-other trigger?
    q5. what is the use of forms module validation unit. if it is set to form then data block pre-text-item trigger at point will raise?
    i tried but did not find any relevant answer.

    Hi yash...
    q1. default level at which validation accurs?Well, the default level is where ur trigger exist ( Form Level ,Block Level or Item Level )
    q2. in which case property pallet display **** as a property value, what its meaning?Conceal ; it means hiding displaying data and it is almost used in password text item.
    q3. best way to ensure that item can not accept query criteria?Well, actually i don't have any forms now but u could try it urself item property > query criteria (any related query allowed property ) >NO
    q4. what is the use of key-other trigger?A Key-Others trigger fires when an operator presses the associated key.
    A Key-Others trigger is associated with all keys that can have key triggers associated with them but are not currently defined by function key triggers (at any level).
    A Key-Others trigger overrides the default behavior of a Runform function key (unless one of the restrictions apply). When this occurs, however, Oracle Forms still displays the function key's default entry in the Keys screen.
    Hope this helps...
    Good Luck :)
    Regards,
    Amatu Allah.

  • HT5312 I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping. Sincerely

    I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping.
    Sincerely 

    You need to contact Apple, either through the link in that article or by phoning them and asking for the Account Security team.
    (80897)

  • I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping.  Sincerely

    I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping.
    Sincerely

    Welcome to the user to User Technical Support Forum provided by Apple.
    cuneytsarvazlar wrote:
    .. I forget security question's ...
    For Forgotten Security Questions / Answers...
    See Here > Apple ID: Contacting Apple for help with Apple ID account security
              Ask to speak with the Account Security Team...
    Or Email Here  >  Apple  Support  iTunes Store  Contact
    More Info >  Apple ID: All about Apple ID security questions
    Note:
    You can only set up and/or change a Rescue Email Before you forget the questions/answers.

  • I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping.

    I didn't purchase anything with my iTunes account because I forget security question's replies I want your helping.

    You need to ask Apple to reset your security questions; this can be done by clicking here and picking a method, or if your country isn't listed, filling out and submitting this form.
    They wouldn't be security questions if they could be bypassed without Apple verifying your identity.
    (107928)

  • I need some more interview question with answer on modeling,reporting.

    i need some more interview question with answer on modeling,reporting.

    Hi,
    You may find tons of topic about interview question. Please try to search forums before opening a post next time.Take a look at the link below.
    https://www.sdn.sap.com/irj/sdn/advancedsearch?cat=sdn_all&query=bwinterviewquestions&adv=true&adv_sdn_all_sdn_author_name=
    Regards,
    ®

  • I forgot my security questions and it says Forgot your answers? : Send reset security info email to n•••••@live.fr, but it is not one of my email adress and I don't know how to changes this, can anyone help please ?

    I forgot my security questions and it says Forgot your answers? : Send reset security info email to n•••••@live.fr, but it is not one of my email adress and I don't know how to changes this, can anyone help please ?
    I want to buy an app but I can't without these answers

    You need to contact Apple. Click here, phone them, and ask for the Account Security team.
    (87765)

  • I cannot reset my security question. there is no reset your security question bar

    i cannot reset my security question. there is no reset your security question bar

    Try this Discussion...
    https://discussions.apple.com/thread/4305745
    And/or see the More Like This section on the right.

  • TS2446 I forgotten your answers, I Verify your identity by answering the following security questions before I can complete your purchase.

    I forgotten your answers, I Verify your identity by answering the following security questions before I can complete your purchase.

     Account Security Team (AST) 
    Check the AppleCare number for your country here:
    http://support.apple.com/kb/HE57
    Call them up, and let them know you would like to be transferred to the Account Security Team.

Maybe you are looking for