Hi Nishanth,

Do you mean to say that i need to create single dynamic filter for every user, in that case whether all dynamic filters will be active at a time.

Regards,

Rakesh.T

The way I solve this is via a "user switch" to a personalized "emergency user" for an employee who is authorized to request access to it.

These users only add the additional authorizations required for the special task so are mostly useless on their own, but their names all come from the same name range and are in the same user group.

This gives you the option to activate the generic name option in the SM19 settings for these 'ZZEMERG*' user ID's regardless of the family names of the people whom you trust with such access, and without flooding the logs with boring information for 200k other users who have no critical access, etc.

If you go to RZ11 and enter RSAUGENERIC and hit F4 then read the documentation on the parameter for this logging part of the solution.

I also recommend increasing the available selection slots before you do anything else.

Cheers,

Julius

>

> in that case whether all dynamic filters will be active at a time.
> 

This is true statement. Only one profile can be active at a time but all the filters within that profile will be active at the same time.

Hi Julius,

I have one question for your reply, if we use emergency users when we see log we can only see that changes are done by emergency user only how come we know that particular change is done by particular user.

Regards,

Rakesh

What most solutions do is that they log who reset the password of the emergency user and try to do this immediately before the password is used to logon (to prevent someone else from using the password instead).

There are a number of ways of doing this "user switch" - also without exposing the risk of a password and letting the emergency user determine who can call them and who cannot.

Cheers,

Julius