Sometimes an RFC connection or an interface tries to log in to a remote system with wrong password and locks that account. When this happens, i.e. a system/communication type user id gets locked due to incorrect logon attempts, how can we find out which system tried to login causing the id to get locked? I checked SM20 but could not find anything.
Did you activated the log collection and maintained the parameter for SM19? If log collections are activated in SM19 then only you can see it log in SM20.
Alternately if you can't afford downtime for the params - try activating the dynamic collection - has bit restriction though.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.