nerdexam
Amazon

PAS-C01 · Question #45

A company wants to migrate its SAP environments to AWS. The SAP environments include SAP ERP Central Component (SAP ECC). SAP Business Warehouse (SAP BW), and SAP Process Integration (SAP PI) systems.

The correct answer is C. Deploy the SAP Web Dispatcher in a public subnet. Allow access to only the paths that are. https://aws.amazon.com/blogs/awsforsap/elb-application-load-balancer-sap-portal/

Design of SAP Workloads on AWS

Question

A company wants to migrate its SAP environments to AWS. The SAP environments include SAP ERP Central Component (SAP ECC). SAP Business Warehouse (SAP BW), and SAP Process Integration (SAP PI) systems. As part of the migration, the company wants to do a system transformation to SAP S/4HANA. The company wants to implement SAP Fiori by using an SAP Gateway hub deployment and an internet-facing SAP Web Dispatcher for this SAP S/4HANA system only. Employees around the world will access the SAP Fiori launchpad. The company needs to allow access to only the URLs that are required for running SAP Fiori. How should an SAP security engineer design the security architecture to meet these requirements?

Options

  • ADeploy the SAP Web Dispatcher in a public subnet. Allow access to only the IP addresses that
  • BDeploy the SAP Web Dispatcher in a private subnet. Allow access to only the ports that are
  • CDeploy the SAP Web Dispatcher in a public subnet. Allow access to only the paths that are
  • DDeploy the SAP Web Dispatcher in a private subnet. Allow access to only the SAP S/4HANA

How the community answered

(38 responses)
  • A
    8% (3)
  • B
    5% (2)
  • C
    71% (27)
  • D
    16% (6)

Explanation

https://aws.amazon.com/blogs/awsforsap/elb-application-load-balancer-sap-portal/

Topics

#SAP Fiori#SAP Web Dispatcher#Security Architecture#AWS Networking

Community Discussion

No community discussion yet for this question.

Full PAS-C01 Practice