SAP R/3 installation comes pre-configured with certain special user profiles with privileged access. These user ID’s are SAP*, DDIC and EARLYWATCH. I a discussing each of these ID’s with what can be done with it below. Here goes…
SAP* - Clients 000 and 001 include the default super user ID SAP*. The SAP* user id comes pre-installed in SAP. It is for this reason that it does not need a master record. When a SAP installation team is installing SAP, a user master record is defined for SAP*. The user password for SAP* user id is 06071992. One small detail which needs to be looked at is in case SAP* user master record is deleted, the user can use the password SAP* PASS. SAP bypasses all authorization checks when user logs on again using SAP*.
DDIC – DDIC user id is used to maintain the ABAP/4 dictionary. At the time of SAP R/3 installation DDIC is created automatically in clients 000 and 001. The password for user ID DDIC is 19920706. Since, it is a critical user id which can access R/3 during the new installation, it should be handled carefully. Password for DDIC user id should be changed immideately. However, this user id should never be deleted, since same can be used for installation and setup.
EARLYWATCH - EARLYWATCH user id comes standard with client 066 in SAP. The default password for EARLYWATCH user id is SUPPORT. With EARLYWATCH user id, one can access the data for monitoring and performance. Normally, SAP Earlywatch experts work with this user id. Password for Earlywatch should be changed, howev er, one should never delete the id. One SAP consultant told me that as a best practice Earlywatch user id should be used only for Earlywatch functions rather than asa generic user id.
No comments:
Post a Comment