Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: Defining Passwords Rules in SAP R/3 Environment

05/09/06

Permalink 07:01:01 am, Categories: SAP R/3, 241 words   English (US)

Defining Passwords Rules in SAP R/3 Environment

Authentication is a process which ensures that only legitimate users have access to system. Like many other application softwares, SAP R/3 uses passwords to authenticate its users. SAP provides a lot of flexibility in defining the password rules to suit company's requirement. Configuration of password rules form an important part of any SAP setup. Many of the password rules listed below can be changed by a BASIS administrator in the profile parameters simply by changing the values in the RSPARAM (SA38 > RSPARAM Display Profile Parameters) report from "0" to "1" in some of the cases. SAP R/3 password rules include:

SAP-SA38-RSPARAM-Report-Diplay-Profile-Parameters

1. First time dialog users are provided with an inital password "init" that they must change when used for the first time.
2. By default, the minimum password length is 3. This can be increased in the profile parameter (SA38 > RSPARAM).
3. As far the first three characters of the password go, SAP prohibits users from selecting first three characters in the same order as part of the username. Also, first three characters cannot all be the same and cannot include all space characters.
4. SAP R/3 password rules restricts the words "PASS" and "SAP*" as passwords.
5. Users can be forced to change their passwords at regular intervals.
6. Certain characters or word patterns can be restricted.
7. Users cannot reuse the last five passwords.

Related Posts

Configurable Controls in SAP R/3
Segregation of Duties in SAP R/3
GL Account Postings in SAP
Concept & Structure of Tables in SAP

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP GRC Virsa Rule Sets Updates
  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • SAP BW Security Authorization Objects for SAP BW
  • more...

    • Search

    Google

    Web Big4Guy.com

    September 2008
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
    1 2 3 4 5 6 7
    8 9 10 11 12 13 14
    15 16 17 18 19 20 21
    22 23 24 25 26 27 28
    29 30          

    Misc

    Syndicate this blog XML

    What is RSS?