2007 Aug 03 12:03 PM
Hi All,
Could anyone pls tell me the difference in the logs of 'security audit'-sm20 and 'sytem '-sm21
Also would want to know about activating the security audit-sm19 and the consequences of activating it.
2007 Aug 03 2:09 PM
Hi Dixie,
SM21 ( SAP System Log ) :
The SAP System logs all system errors, warnings, user locks due to failed logon attempts from known users, and process messages in the system log.These can be helpful when analyzing issues.
SM20
the Security Audit Log to record security-related system information such as changes to user master records or unsuccessful logon attempts. This log is a tool designed for auditors who need to take a detailed look at what occurs in the SAP System. By activating the audit log, you keep a record of those activities that you specify for your audit. You can then access this information for evaluation in the form of an audit analysis report. The Security Audit Log provides for long-term data access. The audit files are retained until you explicitly delete them.
Check this link for more details
http://help.sap.com/saphelp_nw04s/helpdata/en/c7/69bcbaf36611d3a6510000e835363f/frameset.htm
The main disadvantages of activating audit logsare the performance and disk space usage.
Thanks
Prince Jose
2007 Aug 07 7:48 AM