on 07-22-2014 4:34 PM
Dears,
1. Due to system audit that demand to set some special rules of password just for administrators in SAP system.
for example, we need set password's expiration, length, complexity and so on.
I know we could set parameters like ’login/passwd_expiration_tim’ ‘login/min_password_d’
‘login/min_password_letters’ and so on, but these parameters will set for all the users in SAP.
Now we must set some special rules just for some 'Administrators' as the audit demand,
Could you please give me any idea ?
2. Need disable intreractive login for the system account and communication account in SAP, how to archive this ?
Thanks,
Hong
Due to system audit that demand to set some special rules of password just for administrators in SAP system.
for example, we need set password's expiration, length, complexity and so on.
I know we could set parameters like ’login/passwd_expiration_tim’ ‘login/min_password_d’
‘login/min_password_letters’ and so on, but these parameters will set for all the users in SAP.
Now we must set some special rules just for some 'Administrators' as the audit demand,
Could you please give me any idea ?
login parameters are system wide, only system users are exempt. Seems like your auditor have no idea of how a SAP system works. You cannot set special rules for Administrators... I cannot find one single reason to have different rules for Admins.
Need disable intreractive login for the system account and communication account in SAP, how to archive this ?
You don't need to achieve that... system and communication users are by definition not interactive users (you cannot logon to the system with them).
Regards, JP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Now we must set some special rules just for some 'Administrators' as the audit demand,
Could you please give me any idea ?
I would go with roles/authorizations instead of playing at logins.
Even if someone login, they need authorization to do something this is where Audit point comes in.
Regards,
Nick Loy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi
1) The password parameter rules does apply to every user, no way to create dedicated rule for a specific user
2) System & communication accounts could not be used for interactive connection as stated in note 327917 - New user types as of Release 4.6C
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.