Here are SAP Security interview questions and answers for fresher as well as experienced candidates to get their dream job.

Table of Contents:

• SAP Security Interview Questions for Freshers
• SAP Security Interview Questions for Experienced

SAP Security Interview Questions for Freshers

1. Explain what is SAP security?

SAP security is providing correct access to business users with respect to their authority or responsibility and giving permission according to their roles.

2. Explain what is “roles” in SAP security?

“Roles” is referred to a group of t-codes, which is assigned to execute particular business task. Each role in SAP requires particular privileges to execute a function in SAP that is called AUTHORIZATIONS.

3. Explain how you can lock all the users at a time in SAP?

By executing EWZ5 t-code in SAP, all the user can be locked at the same time in SAP.

4. Mention what are the pre-requisites that should be taken before assigning Sap_all to a user even there is an approval from authorization controllers?

Pre-requisites follows like Enabling the audit log- using sm 19 tcode Retrieving the audit log- using sm 20 tcode

5. Explain what is authorization object and authorization object class?

Authorization Object: Authorization objects are groups of authorization field that regulates particular activity. Authorization relates to a particular action while Authorization field relates for security administrators to configure specific values in that particular action. Authorization object class: Authorization object falls under authorization object classes, and they are grouped by function area like HR, finance, accounting, etc.

SAP Security Interview Questions for Experienced

6. Mention what is the main difference between the derived role and a single role?

For the single role, we can add or delete the t-codes while for a derived role you cannot do that.

7. Explain what is SOD in SAP Security?

SOD means Segregation of Duties it is implemented in SAP in order to detect and prevent error or fraud during the business transaction. For example, if a user or employee has the privilege to access bank account detail and payment run, it might be possible that it can divert vendor payments to his own account.

8. Mention which t-codes are used to see the summary of the Authorization Object and Profile details?

SU03: It gives an overview of an authorization object SU02: It gives an overview of the profile details

These interview questions will also help in your viva(orals)