on 11-25-2009 5:52 AM
Hi All,
I am planning to change the following parameters in order to increase password security.
login/min_password_lng
login/min_password_digits
login/min_password_letters
login/min_password_specials
login/password_expiration_time
login/disable_multi_gui_login
login/disable_multi_rfc_login
login/multi_login_users
login/fails_to_session_end
login/fails_to_user_lock
login/failed_user_auto_unlock
login/password_max_new_valid
login/password_max_reset_valid
login/min_password_diff
rdisp/gui_auto_logout
As there are 5 user types available in SAP system.
01) Dialog 'A'
02) System 'B'
03) Communication 'C'
04) Service 'S'
05) Reference 'L'
I am sure that Dialog 'A' user type will be affected by the above parameter changes.
I would also like to know whether any other user types will be
affected by the above parameter changes.
Our System Info: R/3 Enterprise 4.70 / Windows/ MSSQLSERVER.
Thanks & Best Regards
Raghunahth L
We had applied the parameter changes and it had no issues.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Raghu,
These all parameters are called Standard Parameters and specially used for designing and implementing security policy. The policy may differ company wise.
There are other parameters also which you can get by executing Tcode SA38 -> RSUSR003 and Execute. This will show you all security parameters and SAP Standard user like SAP*, DDIC, SAPCPIC etc.
Dialog users will be mostly effected because of these changes. We have implemented parameters in SAP R/3 4.7, ECC 5.0, ECC 6.0, BW 7 and SRM 5.0
Hope this will help...
Thanks
Lokendra
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
As per my knowledge these parameters will effect all the user types.
But unfortunately we never use some of these user types directly to login into our system/never change password for any purpose, so we can't find any interruption.
But we may find some misbihaviour while re-configuring standards(STMS etc) after these parameter implementations (anyway we must follow the standard configuraion docs/prerequisistes).
Regards
Nick Loy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I found the following note for the question I raised above.
>> Note 327917 - New user types as of Release 4.6C
Would like to know if someone faced any problems, especially with Communication, Service and System user types.
Also need more clarification whether the above password rules, affect Communication, Service and System user types.
Your inputs will be very helpful.
Thanks & Best Regards
Raghunahth L
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Thanks a lot for your reply.
In fact, I also could not find any useful information regarding this in SAP / elsewhere.
Your answer has saved me a lot of time.
Also request you to kindly answer my following queries:
1. Have you used the above parameters for your system.
2. If so, what is your System Release ( I mean SAP Version.)
Thanks & Best Regards
Raghunahth L
Hi Raghunahth ,
You can set the parameter values as following.
I think these parameters exists from 4.1 version.
Check the following link, You can get enough idea about these parameters.
[Password Rules|http://help.sap.com/saphelp_nw04/helpdata/EN/22/41c43ac23cef2fe10000000a114084/frameset.htm]
[Disable SAP USERS to logon multiple times |http://www.sap-img.com/bc026.htm]
Thanks & Regards,
Nagendra.
User | Count |
---|---|
91 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.