General Recommendations

The following recommendations apply to database access protection, regardless of the specific database that you use:

  • Whenever possible, use SAP tools to access the data in the database.

  • Change the default password for SAPR3 or SAP<SID>.

  • Do not grant any access for other DBA users to the following tables:

    • USR* tables

    • T000 table (no write access)

    • General tables (such as SAPUSER or RFCDES) or application-specific tables (such as PA* or HCL*)

Related Information