1610103 - EWA : Default Password of Standard Users - Detailed overview for T/S | SAP Knowledge Base Article

SAP Knowledge Base Article - Preview

1610103 - EWA : Default Password of Standard Users - Detailed overview for T/S

Symptom

You receive an alert in your EarlyWatch Alert (EWA) report for section “Default password of standard users”. You want to fix this alert but it seems like everything is correctly configured in your system and no users have default passwords.

The warning you receive says:

Default Passwords of Standard Users

Standard users, including SAP* and DDIC, have default passwords.

Recommendation:
Run report RSUSR003 in each client, to check the use of default passwords by standard users.

Ensure that:
- User SAP* exists in all clients
- Users SAP*, DDIC, SAPCPIC, and EARLYWATCH have non-default passwords in all clients
- Profile parameter login/no_automatic_user_sapstar is set to 1.

For more information, see Protecting Standard Users" and "Profile Parameters for Logon and Password (Login Parameters)" either on SAP Help Portal or in the SAP NetWeaver AS ABAP Security Guide.

Make sure that the standard password for user TMSADM has been changed in client 000, and delete this user in any other client. SAP Note 1414256 describes a support tool for changing the password of user TMSADM in all systems of the transport domain.

SAP Note 1552894 shows how to update the report RSUSR003 to show the status of user TMSADM.


Read more...

Environment

SAP Solution Manager

Keywords

EWA report, Earlywatch , Default password, standard users, TMSADM, Security, RSUSR003
, KBA , SV-SMG-SER-EWA , EarlyWatch Alert , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.