on 09-09-2008 5:21 AM
Hi
One of our systems important User ID is getting locked repeatedly. Is there any way to find so as from which terminal this is being done. Its clear that some one is trying to login by that ID without knowing the password.
Thanks in advance
Dear Sanjay,
Yes this is possible if you activate user trace.
Steps are as follows:
Activating Security Audit
1) Go to transaction code SM19
2) SM19 Create a new profile
3) Select options.Give client detail and choose all options in AUDIT class.
4) SAVE
5)Click Yes(Do you want to distribute the profile)
6) Activate the Profile by clicking on the Activate button or Cntrl+F3
7)LOGOUT and again LOGIN
Viewing security Audit
1) Go to transaction code SM20
2) Select from and to date, User, transaction and Click on u201CReread Audit Logu201D
3) Get the details by clicking read audit log
This would surely work for you
From this you will easily find out from which terminal sombody is deliberately playing.
PS:You have 8 unresolved questions out of the total 8 you have.Close your open question or at least follow your thread.
Please read the 'Rules of Engagement' once
Regards,
Ashutosh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Dear Sanjay,
Same way,but don't think you will get the terminal number,you will get terminal name.With the terminal name you can easily find out who is playing with the ID.Even if that person is accessing it from outside the company you will get to know it via terminal name.
For all user detail put '*' in the user option and then click read audit log( F8).
PS: Did you read Rules of Engagement?
Regards,
Ashutosh
User | Count |
---|---|
85 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.