...
This collector reports data about SAP users in a compliance context: how many users are locked, how many users have initial passwords, tracks how old are passwords exist, how many user users are no longer valid.
The expected maximum age of passwords is configurable.
...
The following KPIs are delivered with this collector:
KPI name | Description | Unit | Detail table |
---|---|---|---|
USR_INVALID | Number of expired users | Count | No |
USR_LOCK | Number of locked users | Count | No |
USR_INIT | Number of users with initial password | Count | No |
USR_OLD | Number of users with password age above preset threshold | Count | No |
USR_SAPS_DEL | Number of deleted SAP* users on system (across all clients) | Count | No |
USR_SAPS_KER | A Flag that indicates an imminent security risk on a system. Value 1 is returned, if the SAP* user is removed on any client and a kernel login using SAP* is permitted. Related is profile parameter login/no_automatic_user_sapstar. | Bool | No |
...
Parameter name | Description | Default value |
OLD_PASSWORD | Specifies threshold for number of days since last password change. The number of users with aged passwords are reported by KPI USR_OLD | 180 |
...