Hello,
one of our Service user gets locked from time to time.
It is the service user XIAPPLUSER.
I already have activated the Audit on the system. But the only helpful
logs I can find in SM20 are telling me:
"13:55:13 DIA 04 889 SAPJSF
172.19.1.140 BU1 Password check failed for user XIAPPLUSER in"
The granularity on this doesnt increase when I set the filter in SM19
to display "All" events instead of display "only critical" events.
So I cannot know from where the login attemps arise.
Can anyone tell me about any other log file etc where I could dig deeper into attemps to login to the system?
Which exact purpose does this XIAPPLUSER have? from which XI Components
to which other components does he normaly interact?
Thanks and regards
Nesimi