kernal user sap* locked
I had the issue of logging in as ddic, and both sap* and ddic passwords won't work. So we have set the parameter in instance profile login/no_automatic_user_sapstar = 0, deleted the sap* at db level, restarted the instance and this time when tried to login as sap* and pass, the system displays message that sap* is locked.
Shouldn't sap * with pass be available regardless of previous sap* passwords not correctly applied since this is kernal based user?
And since sap* is now deleted from db, system won't accept default password pass and show sap* as locked? I've checked by reapplying
DELETE SAPSR3.USR02 WHERE MANDT='800' and BNAME='SAP*';
0 row updated.
Please suggest, if a full system restart is a good option or otherwise there is a solution.
Josef Bodenschatz replied
It doesn't matter which OS user is executing this statement. What does matter is Oracle user.
You deleted an entry for Oracle user SAPSR3, and this seems to be the wrong one.
Now you will have to find out the correct one.
What is the value of environment variable dbms_ora_schema for OS user idsadm?
Or another check, to find out all available Oracle users, try this in sqlplus:
select username from all_users;
It might be something like SAPIDS;
in this case your delete statement will be:
DELETE SAPIDS.USR02 WHERE MANDT='800' and BNAME='SAP*';
hope this helps