cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

sap* is not in database but still able to login

Go to solution
Former Member

on ‎10-16-2008 4:53 PM

0 Kudos

Hello All,

I have one query regarding user sap*.

I deleted sap* from usr02 and changed parameter

login/no_automatic_user_sapstar bet set to 0.

then tried login by sap*/pass i cud.

But from where it is taking sap*/password for it??/

Thanks in advance

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

stefan_koehler
Active Contributor
‎10-16-2008 5:21 PM
0 Kudos

Hello Anu,

the SAP* user is hard coded in the sap kernel.

If the user does not exists in the table USR02, then the default password is valid.

Regards

Stefan

Show replies
Show replies
Former Member
‎10-16-2008 5:24 PM
0 Kudos

Hello Stefan,

Thanks for the replay.

But what do u mean by it is hard coded in sap kernel.

Also if sap* is there in usr02 and we know the password then can we change the parameter and login by sap* user.

Thanks,

Anu.

debasissahoo
Active Contributor
‎10-16-2008 5:28 PM
0 Kudos

Hi,

But what do u mean by it is hard coded in sap kernel.

That means if SAP* is not in the database, and the parameter is set to 0, then SAP* which has been programmed in the executables of SAP become active and pass is the hardcoded password of this SAP* user.

Also if sap* is there in usr02 and we know the password then can we change the parameter and login by sap* user.

If SAP* is in the USR02, even if you change the parameter to 0, still you wont be possible to login with sap*/pass. as database user is still active, it reads the table first and try to login with the existing password.

Regards,

Debasis.

stefan_koehler
Active Contributor
‎10-16-2008 5:30 PM
0 Kudos

Hello Anu,

please check the following notes:

  • #2383 : Explanation about SAP* user (and how it works with the user master records)

  • #8852 : Default Password for SAP*

  • # 68048: How does the profil parameter login/no_automatic_user_sapstar work

Regards

Stefan

Answers (1)

Answers (1)

Former Member
‎10-19-2008 10:02 AM
0 Kudos

Hi Anu,

Take a example..Normally it is recommended that do a client refresh from SAP* user only. Suppose we have changed the password and our security administrator has given no access to this user. So at that time we can delete that user. And after that we can use that login with the sap* default password with full access.

If the user will be there in USR02. than it will accept password from that table and if the user doesn't exists it will run it from kernel.

Thanks,

Bhanu Pratap Singh

Show replies
Show replies
Ask a Question