cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Password Self Service - Security

Go to solution
Former Member

on ‎07-26-2011 10:54 AM

0 Kudos

Hello IDM Gurus,

I had a few questions around the security for the password self service / ABAP change password method:

How is the newly set password transmitted from IDM to a target ABAP system? (Cleartext, scrambled or encrypted?)

I ask since we have to pass in the decrypted password when using the ChangePassword of ABAP user method. Does IDM do something else to scramble it in the background when sending it across to the target ABAP system? or is there some other layer of security added on when transmitting the password?

I was also wondering, if it's absolutely required that there be an SNC connection between an IDM system and a target ABAP system in order to set a productive password? or can it also be done without an SNC connection? if so, how?

Thanks a lot in advance!

Best regards,

Sandeep

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

mvoros
Active Contributor
‎07-26-2011 12:07 PM
0 Kudos

Hi,

it's in clear text. IdM calls BAPI BAPI_USER_CHANGE. It has been enhanced to allow setting productive password. It's mentioned in OSS note 1287410. They also added additional check for setting production password. RFC connection must be protected by SNC. So if you want to use standard functionality then no, you have to use SNC.

Cheers

Show replies
Show replies
Former Member
‎07-26-2011 12:51 PM
0 Kudos

Thanks a lot Martin for your quick response!

Cheers!

Sandeep

Answers (0)

Ask a Question