Skip to Content

Strange behaviour of delivering password

Hi everyone,

I've faced with strange bug when I created user in the a system from CUA.

The password in the child system was set as deactivated though I set it in CUA.

Here is the logs of my actions:

CUA system log

Child system log

Unfortunately, I couldn't repeat the problem it occurred just once today. However, I suspect that it happens time after time, we just cannot see it because create users through GRC.

I also couldn't find any note describing this problem. Could someone tell me if he faced with the same issue?

SCUL green, SM21 has no problem regarding the user, IDoc contained password infromation:

in the child system

So I don't know what could case so strange behaviour. If this is a bug, it could be the sicurity issue in SAPBASIS component. Do you agree?

Our SP level of CUA system attached

Regards,

Artem

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • Best Answer
    author's profile photo Former Member
    Former Member
    Posted on Aug 16, 2016 at 03:51 PM

    This would happen when CUA distributes the user with a password to the local system. Locally, the system parameter login/password_change_for_SSO is activated that the user can or automatically has their expired or initial password deleted when logging on via a SSO solution.

    Eg. trusted RFC from SOLMAN or logon to Portal with SSO2 ticket to backend.

    Cheers,

    Julius

    Add a comment
    10|10000 characters needed characters exceeded

    • Hi Julius,

      Thank you for the reply!

      Saying truly, I also thought in the same direction, so that, I created new user with the same password that was generated to the 'problem' user. I knew it because I sent it to the colleague. And as I wrote before the new user was created without any problem. However, I checked parameters you recommended and found that password policy in CUA is stricter that in the child.

      I've attached xls with the parameters.

      I could have set the same password policy in the child system, but it will be hard to ensure that it helped since the problem is hard-to-catch 😊

      Regards,

      Artem

  • Posted on Aug 17, 2016 at 12:20 PM

    the cvers zip files provide only scrap for me.

    no notes found???

    whats about: 1022812 , 1797737, etc.?

    b.rgds, bernhard

    Add a comment
    10|10000 characters needed characters exceeded

    • Hi Bernhard,

      I meant that I couldn't find note related to my SP level. You also provided notes that are not related to my SP level, as you said because of scrap. Seems SCN packs files in ZIP, so you need to unzip, then delete extension .txt (I attached html and xls because these formats are more convenient for reading).

      However, note 1778007 seems applicable to my child system. But it does not describe exact my problem, unfortunately, other notes I could not find again.

      This note 1022812 describes the situation enough close to my issue. But I have higher SP level.

      Regards,

      Artem

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.