06-20-2011 1:38 PM
Hi ,
I wanted to know if we have a functionality to know if the password of a user is initial in SAP 4.7 version.
In ECC 6.0 we have the field PWDINITIAL in the table USR02, also we can check it from the Logon data tab in su01.
But these functionalities are not present in SAP 4.7 version.
Are you aware of any alternate way to get this information?
Thanks ,
Juhi Negi
06-20-2011 2:04 PM
TCode RSUSR200 should provide you the list of users with Initial pwd in 4.7
~Sri
06-20-2011 9:08 PM
11-02-2011 9:40 AM
for the result of function module you can check the documentation (from SE37 transaction code)
Status of User Password (Value: -2/-1/0/1/2/3, see docu.)
Definition
Status of the user password (relating to whether it can or must be changed)
Value Meaning
-2 Password cannot (generally) be changed
-1 Password cannot be changed today (only allowed once a day)
0 Password can be changed, but does not have to be changed
1 Password is initial and must be changed
2 Password has expired and must be changed
3 Password must be changed because it no longer meets the new rules
06-22-2011 6:37 PM
The only problem with that Wolfgang is that user adminsitrators often dont have access to use ABAP function module calls (and they probably shouldnt), so it is typical for user admins to use se16 / se16n to access user information via the usr tables, on the understanding that it wont update in realtime once displayed.
Cheers
Steve
06-22-2011 10:17 PM
Hi,
admins shouldn't have access to tables with user data. They can just dump passwords and start off line dictionary attack. You can still build a simple custom transactions and use that FM there.
Cheers
06-27-2011 3:00 PM
Well, what is worse?
Using an API (here: ABAP function module) or directly accessing table contents?!
I still do not understand the intend of this inquriy.
For which concrete purpose do you need to determine whether a user has an "initial" password?
I thought that you want to implement a programmatic check; in that case the usage of APIs is strongly encouraged.
01-14-2015 3:53 PM
Hello Juhi,
perhaps I misunderstand the question, but you can check the status of a password in transaction SU01:
Right now I couldn't test an initial password, but if the user does not already have an initial password status, the "Productive Password" status is shown here.
Sorry if I misunderstood the query.
Best regards,
Laszlo