2010 Nov 12 3:10 AM
Dear All,
Currently we are using ECC 6.0.
We are able to set the password in SU01 which exists in USR40 table.Ex : In XXX* is in USR40 table,we are set it as pwd through SU01.
How it can be avoided?
Thanks in Advance,
Karthika
2010 Nov 12 3:39 AM
Hi Karthika,
This is not an issue and is by design. The administrators are allowed to set password combinations which are added in USR40. However, when user tries to change the password, it will check USR40 table for the exception list.
To identify this, create a test user and while resetting the password enter the password combination in the exception table.
Hope this helps!!
Regards,
Raghu
2010 Nov 12 4:19 AM
Hi Raghu,
Thanks for the update!!
Is there is any possiblity to not to enter the password in SU01 which are in USR40 Table?
2010 Nov 12 4:39 AM
No, admin can set "ilegal" passwords. Check note 2467 for more info about password policy. So if you don't modify SAP standard (pretty risky in this case) then you can't achieve your requirement. Maybe the best way is just education.
Cheers
2010 Nov 12 4:48 AM