Help: User Locked in SystemA, but not in IdM

Hi all

Today a colleague came to me and said he locked himself in one of our SAP systems due to a wrong password. His account in Exchange, AD, other SAP-Systems was still active.

Now I'm asking myself how IdM will help in this case or how it must be configured to unlock a user in a single repository.

E.g. I could use a repository-specific MX_LOCKED and update it along with the regular update-jobs.

Or I will simply log-in to that specific system and unlock the user there (SU01, UME) - in this case IdM does not help in regular user administration tasks.

How do you guys handle such a situation?

BR

Michael