IBM: 1.what are the daily roles which u have performed in ur company? 2.

what is the difference between role and profile? 3.what is the difference between su22 and su24? 4.how can you create authourization objects and authorization fields? 5.how can you assign transactions for authourization objects? 6.what are the user types in R/3 security? 7.what is the tic eting tool used in your company? 8.explain the request process which is done by end user with security consultant ? 9.what is the difference between master role and derived role? 10.what is the transactions for profile parameters? 11.In authourization data,why the colour will changes to red to yellow,yellow to green? 12.can we create standard authourization objects or customized auth objects? 13.Explain about the missing authorization? 14.which are the critical requests in your daily job routines? 15.if you hav large number of users to assign how will u do user comparision? 16.what are the standard profiles? 17.what are the standard authorization objects? 18.what is the difference between sap_all & sap_new? 19.what will you do after going to company? 20.Can we create profile parameters manually? 21.what is the difference between the composite role & the derived role? 22.what is meant by authorization group? 23.If all the user systems are loc ed including your's, how can you perform the tas s? 24.Do you hav any parameters to shutdown the system? 25.What is the report to logon the user? 26.what is the difference between system user & service user? 27.what is the table for user master data? 28.What are the security policies used in SAP? 29.What is the difference between implementation and support? 30.In pfcg transaction on menu tab u didn't give the transaction, what would u s ee in authorization data? 31.In small companies if u have no CUA system, how will u create the users? 32.End user hit the transaction 10 times, but he has no authorization of that tr ansaction, how he show the missing authorizations of 10 times hit transaction? 33.What are the security transactions that are used in your roles? 34.diff between usobx_c(authorisation proposal flags which contain the authoriza tion objects) & usobt_c(authorisation proposal data which contain the authorization data whic h are relevant for trn)? 35.How can u find the expired user's list?(RSUSR200) 36.Diff between master role & composite role? 37.which type of user is used to set the bac ground jobs? 38.What are the SOD rules? 39.can we create the major profile? 40.what are the installation steps of GRC? 41.What is authorization group? 42.How can u create role? 43.what are the organization levels? 44.what is ris id ? 45.what are the GRC components?

Deloite: 1.what are the user types? 2.what is the difference between dialog user & service user? 3.If we created user in CUA,but the user is unable to login from his system what is the reason? 4.What is the difference between master role & derived role? 5.What is the difference between derived role & copying the roles? 6.What will you observe in ST01? 7.What are the return codes in STO1? 8.Can we change the password in SU10? 9.How can we create object classes? 10.What will you observe in SU53? 11.What is chec & maintance in authorization objects? 12.explain about 3 colours in authorization data? CAPGEMINI: 1.How to apply the support pac ages? 2.What is the command to use uncar the sp files? 3.After uncar,What type of files we get? 4.In netweaver SR3, What is the meaning of SR? 5.What is the diff between BRTOOLS & SAPDBA? 6.What is the path of supportpac ages for downloading? 7.What is the diff between Roles & Profiles? 8.IS ernel upgrade is sequential or non sequential? 9.What are files for support pac ages(for ABAP,BASIS etc li e KA,KB etc)? Tech Mahindra: 1.what is the differenc between the su22 and su24? 2.how to create the authorization objects? 3.what are the installation steps of GRC? 4.Can we assign the authorization objects in derived role? 5.How to import the roles in GRC? 6.How will you see the sm50 transaction authorization activities? 7.Which report is used to see the un successfull logon attempts?

GRC: PATNI COMPUTERS 1.what are the day to day activities in GRC? 2.how many components u have in GRC? 3.what are the GRC applications? 4.what about ris management? 5.How to create the rfc destination in bac end system? 6.Which type of users created in bec end for GRC system? 7.how many firefighter ids created in your system? 8.why you will convert all user ids into firefighter ids? 9.How to configure the cup? 10.what are the installation steps of Grc? 11. what is the ris id? 12.how to import the roles of RAR, ERM, CUP and from where? 13.can u mitigate the ris analysis in role level? 14.how to configure th CUA system? 15.why we do the user comparision and how? 16.what is the diff between PRNG_STAT & TCODE_MOD? 17.how to create the SPM user and which type of roles to be assigned?

18.what is the diff betwen controller and owner? 19. which type authority has in firefighter user? 20.which report run for SPM log report? 21. how to distribute the users from CUA System to child systems? 22.How to reset the passwords and validity period of the users? 23.which activities are done in your project implementation time? 24. tell me about SOD rules?