cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

UserID locked several times

former_member125931
Active Participant

on ‎10-27-2008 6:19 AM

0 Kudos

Hi All,

I am facinf one problem,every week that to specifically Monday,some one using my USERID and PASSWORD using some one before I login and locking the userID,for a single attempt I m getting the message as so many failed attempts every time I am taking help of my BASIS consultant to unlock it,please any one tell me how to findout who was done this,is there any particular trnascation to fidout the system login and locked userID,my user Id using by me and one more guy,we too only users,but that guy saying he was not locked,please help me out...

Thanks and Regds,

Sree.

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

former_member125931
Active Participant
‎10-29-2008 5:16 AM
0 Kudos

Hi All,

Thankyou for giving valuable in puts as of now we observed that its due to one of user forgot to loggoff system(sap) so its automatically after few hours userID going to lock.

Show replies
Show replies
Former Member
‎10-29-2008 12:18 PM
0 Kudos

Sree,

that doesn't make a great deal of sense in all honesty. A user fogetting to log out results in a lockout ??

former_member125931
Active Participant
‎10-29-2008 12:23 PM
0 Kudos

Good,

If it so how it was locking every monday early morning(1:30 PM) and next of holiday at same??

every week its happening at same time..

Former Member
‎10-29-2008 12:57 PM
0 Kudos

I'm not sure.

But if I were in your position, I'd be checking rfc destinations (do you have any other systems that use rfc's to connect to this system?). If the lockout is repeatedly happening at the same time every monday, have you checked to see if there are any batch jobs scheduled for that time?

Former Member
‎10-29-2008 2:04 PM
0 Kudos

What you should really do is follow your license agreement and do not share user IDs!

former_member125931
Active Participant
‎10-30-2008 5:48 AM
0 Kudos

Thankyou for reply..

But the same problem even in Holidays other than sunday also,as u suggested I'LL check Is there any RFC connected to this system.

Former Member
‎10-27-2008 6:09 PM
0 Kudos

Since you are sharing your ID with at least one other person, how can you know that it is not being shared with others? Not only is this poor security, it is a violation of your SAP License Agreement.

Show replies
Show replies
Former Member
‎10-27-2008 6:39 PM
0 Kudos

Hi,

As far as I remember there is a file in /etc/security from there you can get the terminal details. You should have changed the password as soon as you came to know that it was compromised.

Regards

KVR

former_member125931
Active Participant
‎10-30-2008 5:54 AM
0 Kudos

Hi,

Can u expalin bit

Former Member
‎10-27-2008 11:39 AM
0 Kudos

Sree,

have you created any rfc's with your account as the login?

Show replies
Show replies
Former Member
‎10-27-2008 6:26 AM
0 Kudos

Need check messages in SM21, you will see from what computer your USER id is locked. Regards.

Show replies
Show replies
former_member125931
Active Participant
‎10-27-2008 6:57 AM
0 Kudos

HI,

ThankQ Sergo,here it is not showing terminal number completely,Is I need to do any settings for that,it termainl number 10.101.23.123,here it was showing 10.101.2

Former Member
‎10-27-2008 8:08 AM
0 Kudos

Yes Sree, you are right .... only 8 symbols shows .... But in our case it shows not IP, the PC name ..... And usually 8 are fine .... I'm check the security trace =2 for work proc. but it does'nt shows terminal ... Try to speak for basis peoples about "Activating the Security Audit Log" sm19 and sm20 t-codes ...

It should help you with the decision of your problems,and after you find "hacker" you can revert back settings ... Regards.

Former Member
‎10-27-2008 11:20 AM
0 Kudos

Hi,

you can get the details from the Tcode STAD.

Put the time interval of the log that you found from the sm21 log,after getting the information when you click on detail document you can find the exact terminal.

Thanks & Regads,

Satyabrat

Ask a Question