Hi,
We are about to rollout SSO using Windows Kerberos/AD and SAP SNC functionality for our ABAP system users.
The intention is to allow users to use both logon methods i.e. SSO or password/username.
In the event that SSO fails at some point in the future, we need an approach to deal with the problems associated with users having forgotten their SAP passwords, or requiring a new password due to deactivation of the passwords.
For security reasons, we do not favor a 'standard' initial password value for all users; rather we would be happier with a unique password for each user, with a method of securely making this known to them.
Has any one else overcome this problem in a purely ABAP stack landscape?
Thanks,
Pete Derry.