Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Validate user password

Former Member

‎2009 May 06 2:32 AM

0 Likes
1,521

I'm looking for a way to validate a user's password. What I need is a FM that accepts a username and a password and I wan it to tell me if this is the correct password for the user. Is there anything like this?

Regards,

Davis

11 REPLIES 11
Read only

Former Member

‎2009 May 06 2:49 AM

0 Likes
1,254

Davis,

I do't think you have any Standard FM for your requirement, if you need really I guess you need to develop your own FM.

Regards,

Suneel G

Read only

Former Member

‎2009 May 06 4:23 AM

0 Likes
1,254

Hi

check with the following links

[Validation|http://help.sap.com/saphelp_nw04/helpdata/en/d2/141fb593c742b5aad8f272dd487b74/content.htm]

[Validate user name and password|http://help.sap.com/saphelp_xmii115/helpdata/en/Business_Logic_Services/SAP_WAS_Interface.htm]

Hope it helps you

Regards,

Rajani

Read only

Former Member

‎2009 May 06 4:28 AM

0 Likes
1,254

I dont think SAP will give such kind of fm, as it would just help a brute force attack on user id's

Read only

Former Member

‎2009 May 06 4:43 AM

0 Likes
1,254

Hi, is there any database table r u maintaining to store username and password?are u trying to compare the password with database table?...Please let me know

Regards

Kiran

Read only

Former Member
In response to Former Member

‎2009 May 06 11:07 AM

0 Likes
1,254

I am simply trying to put a username and password field on an adobe form but I want these fields to validate against their SAP logon. I am not maintaining separate passwords. The client wants to use the normal SAP logon information.

I too think that this isn't possible (due to a brute force attack) but I am not sure.

Regards,

Davis

Read only

dev_parbutteea
Active Contributor
In response to Former Member

‎2009 May 06 11:42 AM

0 Likes
1,254

Hi ,

Why don't you try to add via authorization checks , i.e, allow only some users to access the relevant transaction.

Regards.

Read only

Former Member
In response to Former Member

‎2009 May 06 11:45 AM

0 Likes
1,254

Because I can't validate that the user is who he/she says they are unless I can authenticate it via a password. That's the issue. I need to be able to authenticate the user without storing/maintaining another password. The only way this will work is if I can validate the "normal" SAP logon.

Regards,

Davis

Read only

dev_parbutteea
Active Contributor
In response to Former Member

‎2009 May 06 12:12 PM

0 Likes
1,254

Hi,

Doesn't SAP already validate the logon when he logs in to the system? I don't see the use of validating the SAP logon again..

Read only

Former Member
In response to Former Member

‎2009 May 06 12:14 PM

0 Likes
1,254

If you knew the scope of the requirements you would understand. I have no reason to post the entire scope because the original question covers the issue.

Read only

Former Member

‎2009 May 06 4:51 AM

0 Likes
1,254

Davis,

You will have to incorporate the logic for that. As far as I know there is no Standard FM that does the functionality what you are expecting..

If you are storing the username and password in the database. Scribble the password using any encryption FM and store it in the database.

When you enter the username and password in some other application, decrypt the password which is stored in the database in a scribbled way, compare it and then after validation either reject or approve the user to login.

Hope this helps you.

Thanks,

Babu Kilari

Read only

Former Member

‎2009 May 06 5:02 PM

0 Likes
1,254

I found that SUSR_LOGIN_CHECK_RFC works for this.