Locking or Unlocking Users

Use

Locked users are deactivated and cannot access applications. There are two ways of locking users:

· Automatically

The system can lock a user automatically if the user tries to log on too many times with the wrong password. This is a password lock. Optionally the system can unlock the user automatically after a configurable amount of time elapses. These are configured with the following settings:

¡ Maximum Number of Failed Logon Attempts

¡ Auto Unlock Time

More Information: Configuring the Security Policy for User ID and Passwords.

· Explicitly

An administrator can lock a user using the procedure described below. The administrator must subsequently unlock the account for the user to regain access to the system.

The following procedure describes how an administrator explicitly locks or unlocks a user.


You cannot unlock a password lock with this procedure if the data source is an SAP NetWeaver Application Server (AS) ABAP. Instead you must assign a new password.

More information: Constraints for UME with ABAP Data Source

Procedure

...

1. In the search results list, select the user you want to lock or unlock.

Use the advanced search to find locked users.

Set Password Locked to find users, whose accounts have been locked automatically (due to failed logon attempts).


If you use a directory server as the data source, searching for locked passwords finds no users. You cannot search a directory server for users with locked passwords.

Set User Account Locked to find users, whose accounts have been locked explicitly by the administrator.

2. Choose Lock or Unlock as required.

You are prompted to write a reason for locking/unlocking the user. This text is sent to the user if you have enabled notification e-mails. It is also stored in the user’s account history.

3. Enter a text and choose Lock or Unlock.

End of Content Area

2 comments:

Harald said...
This comment has been removed by the author.
Harald said...
This comment has been removed by the author.

topics