07-24-2010 8:26 AM
Hi Gurus,
This is my first question for this community,
suppose, user ABC is login with his user name and password(as he is owner), and XYZ is also login with ABC's id & Pw (as he stolen his Password). pl note that, in this condition if XYZ logged in only before ABC, then only ABC can identify the illegal usage of his ID.(with help of POP-UP message)
my question is, how can i trace out the other users who are using our ID & PW,after my login ??
Thanks in advance.
Regards,
Rahul
Hindusthan
07-26-2010 1:42 PM
Hi Rahul,
There is a chance in SAP to find out who is using your ID when you already logged in or not.
First thing is You need to contact BASIS team to execute transaction code AL08(show all current active users) and give your id to BASIS team to find on which terminal (or PC) your id is using,So you can immediately contact infrastructure team to identify who is using that terminal.
I think now you will get your password breaker in your company.
Thanks
Mohan
Edited by: mohanjani on Jul 26, 2010 2:43 PM
Edited by: mohanjani on Jul 26, 2010 2:46 PM
07-24-2010 5:43 PM
I assume you already found the answer by now via a simple use of the search?
An aspect which has not been explored much yet is to present the failed login attempts on the ID and parallel logins to the SAPGui user who's terminal is known to be the correct one (based on intention or usage). They would care and know most about their system behaviour.
There is nothing in standard SAP for this but can be done for some scenarios as custom development. The main problem is false-positives (eg. Trusted RFC calls, routers, forward proxies, RFC task handling, logon tickets from portals, ... All of which are widely used in many different scenarios).
Cheers,
Julius
07-24-2010 8:35 PM
Hi rahul,
I agree with julius You could find the information related in table USR41 which will record the last logon information. (SM04, SM19. SM20,STAD).
Immediately change your pawword. and ask the security team to pull out information thru chage document. (i.e any changes have done )
If you are unable to change the password,try for couple of times,user id will get locked. inform security team.
Thnaks,
Sri
07-26-2010 1:42 PM
Hi Rahul,
There is a chance in SAP to find out who is using your ID when you already logged in or not.
First thing is You need to contact BASIS team to execute transaction code AL08(show all current active users) and give your id to BASIS team to find on which terminal (or PC) your id is using,So you can immediately contact infrastructure team to identify who is using that terminal.
I think now you will get your password breaker in your company.
Thanks
Mohan
Edited by: mohanjani on Jul 26, 2010 2:43 PM
Edited by: mohanjani on Jul 26, 2010 2:46 PM
07-27-2010 4:57 AM
Hello Mohan,
thank you very much for reply.
currently i dont have authorization for Tcode AL08 ...but surely i will get the same.
and i think this will help me in future also...
Thanks again... TC...by
Regards,
Rahul