Creating a SYSTEM type user will not work, because the system will not attach a SAPGui session to the user context session via the RFC call.
> FYI - we are on SP08, in a CUA environment. we have also implemented note 992200 which was supposed to prevent dialog login, but it only prevents the dialog login when the correct password is entered.
Not exactly correct - after a sucessfull login, the exit checks whether the FF ID is already doing Chuck Norris roundhouse kicks within the system. If so, it rejects the second login to prevent 2 terminals using the same FF ID.
The user type was SERVICE before to prevent it from changing it's own password, as the password has been saved in a decryptable format which was not changed at each login. This mechanism has been changed now.
See for more detailed information and a solution.
Please leave the user type as SERVICE. The password will be changed at each use of the FF ID anyway, and an idle user (no emergencies) will not delete it's password, as is the case with DIALOG users. If you change it to DIALOG, then the FF ID can also change it's own password again after invoking the login. Additionally, the requesting SAP user would potentially inherit logon tickets for other systems if they are setup in trust chains. SERVICE and SYSTEM users have functional restrictions. This is a security feature.
Cheers,
Julius
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.