on 09-23-2021 6:50 AM
Hi,
As part of our IT security review, I need to provide auditors the list of users that logins to our SAP Netweaver java system.
In this system, most of our user accounts were created with password set to disabled. Only Basis, IT application developers and consultants were issued a password to login to the java system.
In SAP Netweaver Java Identity Management, there is no selection criteria to select users with a password. Refer to the screen shots attached.
selectioncriteria-1.pngselectioncriteria-2.pngselectioncriteria-3.pngselectioncriteria-4.pngselectioncriteria-5.png
Even if I export the user, their password status are not available in the exported files too.
For e.g
[User] uid=9876
last_name=xxxxx
first_name=yyyyy
email_address=xxuy@dummy.com
accessibility=0
Any suggestion ? Possible to extract from DB? Any commands to share?
Hi,
the UME attributes are stored in table UME_STRINGS.
You could try something like this:
select * from sapsr3db.ume_strings where namesp='com.sap.security.core.usermanagement' and attr='ispassworddisabled' and val='false';
Regards,
Dominik
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
75 | |
8 | |
8 | |
8 | |
7 | |
6 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.