Dear friends,
Our Internal Audit Dept believes that some employees may be sharing SAP users (and password) to avoid the SoD in place. With password-based authentication, that we must use, there is no chance that the system can prevent it.
However, to reduce the share of users, and incidentally, protect unauthorized use of someone else's account, we are trying to do something similar to what many organizations do.
The idea is that our (ECC 6.0) system stores a statistic of the computers from which a user connects, and in the event of an "unusual" login it will send a message to the user email account. It will explaining how to react if the access is not recognized, but also will inform of the the legal consequences of the misuse of his/her user account.
We have the option of using the SAL, but prefer it to be online. Is there an user-exit, or similar, to capture the event of an user login and to send an email to the user's address, or perform other actions? The right moment seems to be the login event used by SAL...
Surely someone has already developed a similar solution in SAP. We would appreciate any information or idea.
Thanks in advance,
Best regards,
dionisio