Skip to Content
0

Detecting Compromised Credentials

Nov 10, 2017 at 12:44 PM

30

avatar image
Former Member

Hi,

Is there any "history table" where I could obtain the information about the logon username, terminal used and timestamps?

I would like to detect when a user´s credentials where stolen and used in another terminal, ip, or something similar but this information has to be either in a log or in a table without accessing a transaction nor report.

Thanks in advance,

Jaime Delgado

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Cristiano Hansen
Mar 31 at 06:53 PM
0

Hi Jaime,

You can use the Security Audit Log (SM19/SM20) and the SM50 logon trace.
You can read more about them in SAP note 495911.

Regards,
Cris

Share
10 |10000 characters needed characters left characters exceeded