07-20-2012 9:54 AM
Hi,
We have an issue where password status is getting Deactivated from Productive password with the same user ID itself when we checked in change documents.
Please check and advice how it is possible as users is not deactivating his password self.But in change documents, status is showing as his password is deactivated by self.
Thanks & Regards,
Koteswara Rao.
07-20-2012 8:26 PM
May be user has password change access on S_USER_GRP object. Make sure user doesn't have access on activity 02 and 05 on this object.
07-21-2012 1:03 AM
07-22-2012 9:45 PM
Exactly as Martin says. If the user has the option of using a password and does not want to have it or you choose to remove it when they logon using non-pwd authentication, then they can deactivate their own password.
They can do the same in SU3 (it is their own data) if they wish to immobilze their own account for password based logons.
I normally do that when I am finished with a system and have no plans to return. It does not only deactivate the code version of the password hashing algorithm, it also deletes the hashcodes.
Cheers,
Julius