https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234604#M1525271 <HTML><HEAD></HEAD><BODY><P>Hi ... In the company they are planning to implement an standard security called "ISEC" on the SAPsystems. Our SAP systems mainly are an ECC 6.0 SAP systems on LINUX SLES 10 SP2 with DB2 9.1 LUW</P><P></P><P>The rules that they want to implement are:</P><P></P><P>1) For the database administration user "db2SID" the rule is about to forze the password expiration every "x" time</P><P>2) For the SAP Instance user "SIDadm" the rule is the same that issue 1</P><P>3) For the ABAP Database Connect User "sapSID" the rule is to eliminate their logon for the operating system and left their password never expired.</P><P></P><P>My question is about if those kind of rules could be affect the SAP systems 's layers communication (Operating system, database,sap instance) and provoke a system broken</P><P></P><P>Thanks so much for your time and support</P><P></P><P>Regards</P></BODY></HTML> Thu, 30 Sep 2010 22:24:31 GMT Former Member 2010-09-30T22:24:31Z https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234604#M1525271 <HTML><HEAD></HEAD><BODY><P>Hi ... In the company they are planning to implement an standard security called "ISEC" on the SAPsystems. Our SAP systems mainly are an ECC 6.0 SAP systems on LINUX SLES 10 SP2 with DB2 9.1 LUW</P><P></P><P>The rules that they want to implement are:</P><P></P><P>1) For the database administration user "db2SID" the rule is about to forze the password expiration every "x" time</P><P>2) For the SAP Instance user "SIDadm" the rule is the same that issue 1</P><P>3) For the ABAP Database Connect User "sapSID" the rule is to eliminate their logon for the operating system and left their password never expired.</P><P></P><P>My question is about if those kind of rules could be affect the SAP systems 's layers communication (Operating system, database,sap instance) and provoke a system broken</P><P></P><P>Thanks so much for your time and support</P><P></P><P>Regards</P></BODY></HTML> Thu, 30 Sep 2010 22:24:31 GMT https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234604#M1525271 Former Member 2010-09-30T22:24:31Z https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234605#M1525272 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P>If a automated notification is not set and continuous monitoring of the expiration is done then make sure that those users are taken cared before they expire. Otherwise when ever an emergency situation will occur and BASIS team need to login with them they won't be able to do at that time of emergency.</P><P></P><P>Regards,</P><P>Dipanjan</P></BODY></HTML> Thu, 30 Sep 2010 22:41:19 GMT https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234605#M1525272 sdipanjan 2010-09-30T22:41:19Z https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234606#M1525273 <HTML><HEAD></HEAD><BODY><P>Thanks Dipanjan for your time</P><P></P><P>But the SAP System's layers (operating system, database and sap instance) wouldn´t be affected including ? (between them about their internal communication)</P><P></P><P>I remember when we installed the ECC systems during the process we defined those users and their passwords except for the "sapSID" password's user.</P><P></P><P>Regards</P><P></P></BODY></HTML> Thu, 30 Sep 2010 23:04:41 GMT https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234606#M1525273 Former Member 2010-09-30T23:04:41Z https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234607#M1525274 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>check [SAP documentation|http://help.sap.com/saphelp_nw04/helpdata/en/aa/1dc8d8f0fa11d3a6510000e835363f/frameset.htm] which describes how to change password for each user. Program dscdb6up handles everything for you. It updates user password everywhere simultaneously. </P><P></P><P>Cheers</P></BODY></HTML> Thu, 30 Sep 2010 23:14:04 GMT https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234607#M1525274 mvoros 2010-09-30T23:14:04Z https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234608#M1525275 <HTML><HEAD></HEAD><BODY><P>Thanks so much ... It was the correct information . I'm applying it</P><P></P><P>Regards</P></BODY></HTML> Wed, 06 Oct 2010 05:11:14 GMT https://community.sap.com/t5/application-development-and-automation-discussions/isec-implementation/m-p/7234608#M1525275 Former Member 2010-10-06T05:11:14Z