07-16-2008 3:05 PM
Hi,
I'm trying to delete obsolete users out of the system, but if I do I lose anything their user name is still associated with associated with(ex. purchase orders, material request etc.) Can anyone help?
07-16-2008 3:17 PM
Do please mind that deleting users can cause problems in workflows etc.
Best practice is to lock them and/or change the validity date. There are quite a few threads with different opinions on deleting users. As far as I know the majority of opinions is against actually deleting them.
07-16-2008 3:10 PM
As far as i'm aware that info won't be lost when deleting the user.
Regards
Juan
07-16-2008 3:17 PM
Do please mind that deleting users can cause problems in workflows etc.
Best practice is to lock them and/or change the validity date. There are quite a few threads with different opinions on deleting users. As far as I know the majority of opinions is against actually deleting them.
07-16-2008 3:23 PM
>
> Do please mind that deleting users can cause problems in workflows etc.
> Best practice is to lock them and/or change the validity date. There are quite a few threads with different opinions on deleting users. As far as I know the majority of opinions is against actually deleting them.
After a few discussions a client of mine has had with SAP, the conclusion is that SAP recommend not to delete users either.
07-16-2008 3:33 PM
Just wondering is that an SAP best practice recommendation ? I have never seen anything in the SAP Security Guides indicating that though.
Another aspect is that access to any protected program variants is lost. There is a SAP program that unprotects them though.
07-16-2008 3:46 PM
Hi JC,
I think it is mentioned in the SAP Press book 'authorizations made easy' somewhere...
I just can repeat, not to delete users from productive systems/clients, but set their validity accordingly, remove all roles/profiles and lock them. No fear about userclassification (USMM) - such users are not counted.
b.rgds, Bernhard
07-16-2008 5:26 PM
>
> Just wondering is that an SAP best practice recommendation ? I have never seen anything in the SAP Security Guides indicating that though.
> Another aspect is that access to any protected program variants is lost. There is a SAP program that unprotects them though.
This was through some discussions via OSS. I've always preferred to keep them myself, but there are always exceptions. The client decided to ask SAP direct and the final recommendation was not to delete the ID's but just expire them.
07-16-2008 4:39 PM
07-21-2008 3:28 PM