https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273624#M1530476 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>as administrators are allowed to set passwords in SU01, which are contained in usr40, the generator does not care about usr40.</P><P>b.rgds, Bernhard</P></BODY></HTML> Mon, 20 Sep 2010 10:38:00 GMT Bernhard_SAP 2010-09-20T10:38:00Z https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273623#M1530475 <HTML><HEAD></HEAD><BODY><P>Good afternoon everybody.</P><P>I need your assistance.</P><P>My system is SAP ECC 6.0</P><P>I want to use the default password generating of SU01.</P><P>Already configured the settings from the "Note 1482619 - PRGN_CUST: Switches are missing from value help"</P><P>I have a lot of exceptions in the table USR40, and the password generating does not look this table.</P><P>How do I make, so the generator does not create passwords that are in USR40?</P></BODY></HTML> Mon, 20 Sep 2010 09:53:17 GMT https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273623#M1530475 Former Member 2010-09-20T09:53:17Z https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273624#M1530476 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>as administrators are allowed to set passwords in SU01, which are contained in usr40, the generator does not care about usr40.</P><P>b.rgds, Bernhard</P></BODY></HTML> Mon, 20 Sep 2010 10:38:00 GMT https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273624#M1530476 Bernhard_SAP 2010-09-20T10:38:00Z https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273625#M1530477 <HTML><HEAD></HEAD><BODY><P>Thank you.</P><P></P><P>With best wishes,</P><P>Moiseev Artem</P></BODY></HTML> Mon, 20 Sep 2010 11:08:19 GMT https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273625#M1530477 Former Member 2010-09-20T11:08:19Z https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273626#M1530478 <HTML><HEAD></HEAD><BODY><P>USR40 is actually a pest <SPAN __jive_emoticon_name="happy"></SPAN></P><P></P><P>It was originally intended to define permitted characters for the logon routines to validate (for example, no 'apostophes') input.</P><P></P><P>Now, it rejects values and for the same folks who misunderstood the initial intention they seem to want to add all dictionary words to it.</P><P></P><P>This will confuse your users to no end!</P><P></P><P>My recommendation: </P><P></P><P>- Add 1 or even 2 special characters to the rules. </P><P>- Add one or better 2 digits.</P><P>- Add 10 as the minimum length of the password.</P><P>- Lock the password after 5 failed attempts.</P><P></P><P>Consequence: They can still use patterns such as "$123" and "init" and some city names or seasons, but it cannot easily be scripted or guessed without the user noticing it (if they are not idle).</P><P></P><P>I completely agree with SAP that they ignore USR40 when the admin sets a password but on the customer side a usefull feature would be to force the wizard for them (user type dependently and optional in config).</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Mon, 20 Sep 2010 20:22:57 GMT https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273626#M1530478 Former Member 2010-09-20T20:22:57Z https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273627#M1530479 <HTML><HEAD></HEAD><BODY><P>Thanks Julius,</P><P></P><P>Yesterday discussed the situation with management.</P><P>There are currently limited by safety standards of our company:</P><P>- 1 special characters.</P><P>- 5 digits.</P><P>- 10 as the minimum length of the password.</P><P>- Lock the password after five failed attempts.</P><P>And I began to configure SNC, for the complete elimination of passwords in the system.</P><P>In the future, to disable logon password, the password will only system users.</P><P></P><P>There was one question?</P><P>Risks disabling logon password.</P></BODY></HTML> Tue, 21 Sep 2010 05:12:43 GMT https://community.sap.com/t5/application-development-and-automation-discussions/password-generating-usr40/m-p/7273627#M1530479 Former Member 2010-09-21T05:12:43Z