Skip to Content
avatar image
Former Member

Detecting Compromised Credentials

Hi,

Is there any "history table" where I could obtain the information about the logon username, terminal used and timestamps?

I would like to detect when a user´s credentials where stolen and used in another terminal, ip, or something similar but this information has to be either in a log or in a table without accessing a transaction nor report.

Thanks in advance,

Jaime Delgado

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Mar 31 at 06:53 PM

    Hi Jaime,

    You can use the Security Audit Log (SM19/SM20) and the SM50 logon trace.
    You can read more about them in SAP note 495911.

    Regards,
    Cris

    Add comment
    10|10000 characters needed characters exceeded