SAP Knowledge Base Article - Public

2962466 - How To Enable Auto-Locking Of Business User When User Has Not Logged In For a Long Time

Symptom

You want to know if there is any way to enable Auto-Locking of Business User, if any user does not log in for 90 days.

Environment

SAP Cloud for Customer

Resolution

It is possible to enable the auto-locking of users through a scoping question in the system.

The lock is performed if the user does not log in for 90 days, and an auto-generated reminder e-mail is sent to the Business User 10 days before the lock. A sample image of this reminder e-mail can be found in the attachments section of this KBA.

The following conditions apply to enable the auto-locking feature:

  • Applicable only in production tenants.
  • Applicable only for counted users with unique e-mail address across the system.
  • Applicable only for counted dialog users.
  • Not applicable for support users.
  • Only for business users which have logged on to the tenant at least once.
  • Not applicable for users who have authorizations to the following work center views under the Administrator Work Center:
    • General Settings.
    • Employees.
    • Business User.

To enable the feature, please follow the steps below:

  1. Go to Business Configuration Work Center.
  2. Go to Implementation Projects view.
  3. Select your project and click Edit Project Scope.
  4. Go to Step 3 - Scoping.
  5. Expand the path Administration -> Performance and Usage Monitoring.
  6. Select the scoping element User Management.
  7. Go to Step 4 - Questions.
  8. Expand Administration -> Performance and Usage Monitoring -> User Management.
  9. Under Business Option Automatic Locking of Users, select the scoping question "Do you want to enable automatic locking of business users who have not logged-in in the last 90 days?".

Obs.: After the scoping of the feature, an initial background check will be performed for the existing users. In this initial run, users who have not logged in the system for 90 or more days are locked, and no reminder e-mail is sent. The system also checks for users who are within 80 and 89 days without a login, and triggers the e-mail reminder.

Obs. 2: Currently, it is not possible to switch off the auto-generated reminder e-mail. This feature can only be enabled or disabled accordingly to the steps mentioned above.

See Also

Keywords

Auto-Locking, Business User, User Locked. , KBA , business user , auto-locking , user locked , LOD-LE-OM-OM , Org. Management , How To

Product

SAP Cloud for Customer core applications all versions

Attachments

e-mail.png