on 02-24-2009 1:31 AM
Hello Guru's,
Can somebody suggest the best way to track the concern person who changed the SAPR3 User password,
User - SAPR3
Type - Database user (SAP System)
Method used to change password -BRCONNECT,SQLPLUS
We don't know the responsible person who is responsible for this activity.
Please help me in this vital situation, so that we can take care of the things in future.
Suggest me the ways whether from SAP Level or from Oracle Level.
Waiting for your responses....
Thanks & Regards
Shishir
<modified_by_moderator>
Please do not ask for help from specific individuals.
Read the "Rules of Engagement"
Edited by: Juan Reyes on Feb 24, 2009 3:39 PM
a few things:
1. do not mark question for individuals, other users might get offended and not respond to your query, even if they have an answer for you.
2. You changed the status of about 20 topics to "answered" but did not give points to anyone.
now, Lars gave you a very good answer, you were lucky that he answered you because I would not have given an answer as good an his. You were luck that he answered you!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Shish,
As told by LARS you need to configure Oracle Audit functionality before getting this type of issues.
And how an user can change DB user password without accessing your database? Very Strange
It might be your collegue or by you?
And check all DBA logs may be get something about this change?
Regards
Nick Loy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Shishir,
although I'm neither Markus nor Eric, let's see what I can tell you
Changing passwords of oracle users is not logged to a table or view per default.
To enable such kind of auditing you'll have to enable exactly this: the Oracle auditing functionality (audit_trail).
If you don't have auditing enabled yet, you may try to use the Oracle Logminer to review the change of the password.
In any case, the biggest problem with your request is, that most DBAs are used to perform all changes as SYS or SYSTEM user and thereby share the same DBA users accounts.
So the best you are likely to get is the timestamp when the password had been changed, but rather not the name of the real user who performed the change.
hope you like the answer anyhow,
Lars
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Logically who can access BRCONNECT or BRTOOLS can change the password of SAPSR3 and suppose somewhere in Database it store the username, then it should be <sidadm> or <orasid>
so it will show the these users only (if exists in database). In that case how you will identify?
Regards
Subhash
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I think you can noway find out as per my knowledge.Lets see what your gurus say.
Hope you find it.
Regards,
Kalyan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.