
Profile Parameters for Logon and Password (Login Parameters)
The following table presents the profile parameters with which you can set password and logon rules. For information about the procedure for changing profile parameters, see
Changing and Switching Profile Parameters.
To display the documentation for a parameter, specify the parameter name in the maintenance transaction for profile parameters (RZ11), and choose Display. On the following screen, choose the Documentation pushbutton.
Password Checks
|
Parameter: |
Meaning |
|
login/min_password_lng |
Defines the minimum length of the password |
|
login/min_password_digits |
Defines the minimum number of digits in the password |
|
login/min_password_letters |
Defines the minimum number of letters in the password |
|
login/min_password_specials |
Defines the minimum number of special characters in the password |
|
login/password_expiration_time |
Defines the validity period of passwords |
|
login/password_change_for_SSO |
If the user logs on with Single Sign-On, checks whether the user must change his or her password |
Multiple Logon
|
Parameter: |
Meaning |
|
login/disable_multi_gui_login |
Controls the deactivation of multiple dialog logons |
|
login/disable_multi_rfc_login |
Controls the deactivation of multiple RFC logons |
|
login/multi_login_users |
List of excepted users (multiple logon) |
Incorrect Logon
|
Parameter: |
Meaning |
|
login/fails_to_session_end |
Defines the number of unsuccessful logon attempts before the system does not allow any more logon attempts. Default value 3. You can set it to any value between 1 and 99 inclusive. |
|
login/fails_to_user_lock |
Defines the number of unsuccessful logon attempts before the system locks the user. Default value 12. You can set it to any value between 1 and 99 inclusive. |
|
login/failed_user_auto_unlock |
Defines whether user locks due to unsuccessful logon attempts should be automatically removed at midnight |
Initial Password: Limited Validity
|
Parameter: |
Meaning |
|
login/password_max_new_valid |
Defines the validity period of passwords for newly created users |
|
login/password_max_reset_valid |
Defines the validity period of reset passwords |
Deactivation of Password Logon
|
Parameter: |
Meaning |
|
login/disable_password_logon |
Controls the deactivation of password-based logon |
|
login/password_logon_usergroup |
Controls the deactivation of password-based logon for user groups |
SSO Logon Ticket
|
Parameter: |
Meaning |
|
login/accept_sso2_ticket |
Allows or locks the logon using SSO ticket |
|
login/create_sso2_ticket |
Allows the creation of SSO tickets (Workplace Server) |
|
login/ticket_expiration_time |
Defines the validity period of an SSO ticket |
|
login/ticket_only_by_https |
Sets the logon ticket when logging on over http(s) |
|
login/ticket_only_to_host |
When logging on over http(s), sends the ticket to the server that created the ticket |
Other Login Parameters:
|
Parameter: |
Meaning |
|
login/disable_cpic |
Refuse incoming connections of type CPIC |
|
login/no_automatic_user_sapstar |
Controls the SAP* user |
|
login/system_client |
Specifies the default client. This client is automatically filled in on the system logon screen. Users can type in a different client. |
|
login/update_logon_timestamp |
Specifies the exactness of the logon timestamp |