Default password of user SAPCPIC to change

Dear All,
We require to change the default password of user id SAPCPIC in
client 001 of our ECC 6.0 and 4.7 Production system.
Is there any complication after resetting this default password ?
Please suggest
Regards,
Mahesh Phegade

Hi,
The user SAPCPIC is created as a u201Ccommunicationu201D user at the installation and is utilized especially for EDI. The standard profile S_A.CPIC restricts the access to the use of RFC.
This user is coded into the function module INIT_START_OF_EXTERNAL_PROGRAM together with his standard password. This needs to be considered in case of password changes for this user.
The standard password for this user directly after the installation is ADMIN.
For more info
Note 29276 - SAPCPIC: At which points are passwords visible
Regards,
Rafikul

Similar Messages

SAP NetWeaver Application Server ABAP 7.4 on SAP MaxDB - default password

Hello colleagues,
I have deployed this app.server (see subject) on the AWS cloud but unfortunately I cannot log-in. I've tried all known default passwords for SAP* and DDIC with no result. The documentations says - "You specify the master password during instance creation in the SAP Cloud Appliance Library"... It didn't ask me to specify the password ((
Hence, I have a few questions:
- What's the default password and where should I change it;
- How to unlock blocked accounts in SAP instances (SAP* and DDIC are blocked due to lots of failed attempts);
- How I can access the file system (this VM is on Linux), so... Putty???

Hi,
You can unlock them:
update <schemauser>.usr2 set uflag='0' where bname like 'username what you want to unlock' ;
You can use emergency SAP* user if you are totally lost with the passwords.
Like this:
update <schemauser>.usr2 set bname='SAPP*' where bname like 'SAP*' ;
and you need to change the parameter:
login/no_automatic_user_sapstar to value of '0'
If you do these steps you can logon with SAP* user and 'pass' password....
after you finished you should change back login/no_automatic_user_sapstar to value of '1' in the profile !
Hope this helps,
Krisztian

Unity Connection - Users with system default password getting locked out

Hi all, hope everyone is well !!
I am experiencing a strange problem and hope someone can give me some direction on where to start digging on this issue.
I am getting a good number of users reporting they are getting locked out of their voice mail and they all claim that they have not changed their password and some user even got their greeting recorded by someone else. One thing in common for the users who reported the issue is that they all using the system default password. I am trying to trace to find out who/what has access to these users' mailbox but so far I have not had any luck.
Thanks in advance !!
Danny

Thanks, yes am doing that now and cant really find any new/unique pattern. Plus the trace is pretty hard to follow. Cant really figure out any times stamps in the trace also. The current trace file is defaultTrace.18.trc and it has very simiiar content as some of the older ones before the problem. Right now the ESS portal is working and the slddsuser password is not locked. It seems the problem takes place on start up?
/usr/sap/ESS/JC77/j2ee/cluster/server0/log
Tough thing to test in production.
I wonder what takes place at startup that would kick this problem off?
brad

How to change the default password file's name and path when the database created?

how to change the default password file's name and path when the database created?
null

Usage: orapwd file=<fname> password=<password> entries=<users>
where
file - name of password file (mand),
password - password for SYS and INTERNAL (mand),
entries - maximum number of distinct DBA and OPERs (opt),
There are no spaces around the equal-to (=) character.

How to change default password in AP521G?

I´m trying to change the default password in autonomous AP521G, the CCA2.1 sent me errors when I tried to change, or create another user with Privilege 15.

Hello Glenn, It´s not a password recovery problem. I´m trying to change the default Cisco/Cisco username/password, but the Config Assistant doesn´t allowed.
I´m going to try with CCA 2.0 version instead 2.1.
Best Regards.
Hector

Set default password for all users including csv file

I would like to set the default password for all users
including the ones imported in the csv file?
Also now the default passwrd in set to the email address. How
do i change that setting to the "login" setting in the csv file so
those users can loin with that password?
Kinda the same question but do yuo get the idea?
Thank you,
Chip

You could download and install RCDefaultApp 2.1 for all users: check the Read Me and then test it on something to see if it accomplishes what you want.
http://www.rubicode.com/Software/RCDefaultApp/

OIM 11g - Set a default password when a user is created

Hi everybody,
I'm trying to set a default password when I create a user manually but I've got some errors.
I firstly created a pre-process event handler to generate automatically a login and an email for a user who is created and it worked fine. But now I'm trying to generate a default password (like "ChangeIt" for example) that the user will have to change the first time.
This is the code I wrote :
public EventResult execute(long processId, long eventId, Orchestration orchestration) {
String methodName = "EventREsult execute";
System.out.println("###### " + className + " - method " + methodName + " - STARTED");
HashMap<String, Serializable> parameters = orchestration.getParameters();
System.out.println("###### OK1");
String firstName = (String)parameters.get(UserManagerConstants.AttributeName.FIRSTNAME.getId());
System.out.println("###### OK2");
String lastName = (String)parameters.get(UserManagerConstants.AttributeName.LASTNAME.getId());
System.out.println("###### OK3");
String userKey = (String)parameters.get(UserManagerConstants.AttributeName.USER_KEY.getId());
System.out.println("###### OK4");
String userLogin = firstName + lastName;
parameters.put(UserManagerConstants.AttributeName.USER_LOGIN.getId(), userLogin);
System.out.println("###### OK5");
parameters.put(UserManagerConstants.AttributeName.EMAIL.getId(), firstName + "." + lastName + "@test.test");
System.out.println("###### OK6");
parameters.put(UserManagerConstants.AttributeName.PASSWORD.getId(), "ChangeIt");
System.out.println("###### " + className + " - method " + methodName + " - ENDED");
return new EventResult();
And When I try to create a user, I've got the error : "An error occured. Null input buffer"
This is what I have in the console :
<10 mai 2012 16 h 44 CEST> <Error> <oracle.iam.identity.usermgmt.impl> <IAM-3050030> <Exception lors de la rÚalisation de l'opÚration.
java.lang.IllegalArgumentException: Null input buffer
at javax.crypto.Cipher.doFinal(DashoA13*..)
at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.decrypt(tcDefaultDBEncryptionImpl.java:219)
at com.thortech.xl.crypto.tcCryptoUtil.decrypt(tcCryptoUtil.java:122)
at com.thortech.xl.crypto.tcCryptoUtil.decrypt(tcCryptoUtil.java:200)
at oracle.iam.platform.utils.crypto.CryptoUtil.getDecryptedPassword(CryptoUtil.java:136)
at oracle.iam.transUI.impl.handlers.user.UpdateUsrPwdFields.updateUserPwdFields(UpdateUsrPwd
Fields.java:124)
at oracle.iam.transUI.impl.handlers.user.UpdateUsrPwdFields.execute(UpdateUsrPwdFields.java:
71)
at oracle.iam.platform.kernel.impl.OrchProcessData.runPreProcessEvents(OrchProcessData.java:
898)
<10 mai 2012 16 h 44 CEST> <Error> <oracle.iam.identitytaskflow.logging> <BEA-000000> <IAM-3060023>
I know this is something due to the password parameter but I don't understand what is expected for this one ...
If you someone could help me with this it would be really helpful !
Thanks,
Thibault

Hi, Thanks for your quick answer !
So it solved half of the problem ! Now I've got an other error : decrypt failed
And this is the beginning of the error in the console :
<10 mai 2012 18 h 14 CEST> <Error> <XELLERATE.ACCOUNTMANAGEMENT> <BEA-000000> <Class/Method: tcDefau
ltDBEncryptionImpl/decrypt encounter some problems: Input length must be multiple of 16 when decrypting with padded cipher
javax.crypto.IllegalBlockSizeException: Input length must be multiple of 16 when decrypting with pad
ded cipher
at com.sun.crypto.provider.SunJCE_f.b(DashoA13*..)
at com.sun.crypto.provider.SunJCE_f.b(DashoA13*..)
at com.sun.crypto.provider.AESCipher.engineDoFinal(DashoA13*..)
at javax.crypto.Cipher.doFinal(DashoA13*..)
at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.decrypt(tcDefaultDBEncryptionImpl.java:2
19)
at com.thortech.xl.crypto.tcCryptoUtil.decrypt(tcCryptoUtil.java:122)
at com.thortech.xl.crypto.tcCryptoUtil.decrypt(tcCryptoUtil.java:200)
at oracle.iam.platform.utils.crypto.CryptoUtil.getDecryptedPassword(CryptoUtil.java:136)
at oracle.iam.transUI.impl.handlers.user.UpdateUsrPwdFields.updateUserPwdFields(UpdateUsrPwd
Fields.java:124)
at oracle.iam.transUI.impl.handlers.user.UpdateUsrPwdFields.execute(UpdateUsrPwdFields.java:
71)
at oracle.iam.platform.kernel.impl.OrchProcessData.runPreProcessEvents(OrchProcessData.java:
898)
What does it means ? My password must be encrypted or something like this ?
Thanks if you can help me with this !!
Thibault

Changing the default password when configuring.

Hi,
can anyone tell me how to change the default password and username when you are first configuring your router? You know when you go to http://192.168.1.1/?
I know the default password is admin and there is no user name but I would like to change that so that not just anyone who knows the default password can see the wep incryption I have in place. Please can someone help?

What router are you using?
On most Linksys routers, you cannot change the User Name. You must leave it blank.
To change the Password, login to the router, and go to the "Administration" tab. You should find the Password somewhere nearby.

SRM 5.0 - how to change default password?

Hello,
Am trying to install SRM 5.0 Oracle 10g as the DB. In the instllation doc of SRM 5.0 a default password is given to connect to the database and I see the encrypted password is in the jdbc properties. How can we change the default password? How do I get the encrypted value?
Any help is appreciated.
Thanks

Propblem resovled, find the corresponding function group and screen, then change the translation.

How to change the Default Password on AP1131AG

Hi all :
I tried to change the default password Cisco to other by command line but the password cannot work out.
The command line I used are as below :
AP#conf t
Enter configuration commands, one per line. End with CNTL/Z.
AP(config)#enable pass
AP(config)#enable password 4dMINO123 ?
LINE    <cr>
AP(config)#enable password 4dMINO123
AP(config)#exit
AP#wr
*Mar 1 04:39:23.902: %SYS-5-CONFIG_I: Configured from console by console
Building configuration...
[OK]
AP#exit
This still cannot cahnge. Below I do again below commands :
AP(config)#enable secret
% Incomplete command.
AP(config)#enable secret ?
0      Specifies an UNENCRYPTED password will follow
5      Specifies an ENCRYPTED secret will follow
LINE   The UNENCRYPTED (cleartext) 'enable' secret
level Set exec level password
AP(config)#enable secret 5
% Incomplete command.
AP(config)#enable secret 5 ?
LINE The ENCRYPTED 'enable' secret string
AP(config)#enable secret 5 LINE
ERROR: The secret you entered is not a valid encrypted secret.
To enter an UNENCRYPTED secret, do not specify type 5 encryption.
When you properly enter an UNENCRYPTED secret, it will be encrypted.
AP(config)#enable secret LINE
AP(config)#exit
AP#
*Mar 1 04:40:53.021: %SYS-5-CONFIG_I: Configured from console by console
AP#
AP#exit
After that when I access with >en again as below with correct password of 4dMINO123 and it always fails as below :
Can anybody help to provide correct way of changing the default password of Cisco to another password? Many thanks!
AP con0 is now available
Press RETURN to get started.
AP>en
Password:
Password:
Password:
% Bad secrets
AP>en 0
AP>en 5
% No password set
AP>en 15
Password:
Password:
% Password: timeout expired!
Password:
% Bad secrets
AP>
AP>
AP>en
Password:
Password:
Password:
% Bad secrets
thanks and best regards,
tangsuan

Hi, I have even the worst problem,
that seems probably to to be never asked on Internet. After quick learning how to reset this creapy device, I can't get by no means the enable password in default config for this box, having read everywhere from Cisco guide through community pages to Google pages.. NOWHERE.
Question is : what else except Cisco, cisco, root, password... can solve this stupid issue?!? I expect some guru from responsible AP BU to answer this with definite answer, or someone from Cisco having mercy with me to contact such guy(s).
Here is my desperate situation :
Nothing from this page helped :
http://www.cisco.com/en/US/partner/products/hw/wireless/ps430/products_password_recovery09186a00800949d0.shtml#reset_ap_newer
Situation after hard reset:
Xmodem file system is available.
flashfs[0]: 26 files, 8 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 15998976
flashfs[0]: Bytes used: 6879232
flashfs[0]: Bytes available: 9119744
flashfs[0]: flashfs fsck took 43 seconds.
Base ethernet MAC Address: 00:22:55:9f:fc:a0
Initializing ethernet port 0...
Reset ethernet port 0...
Reset done!
ethernet link up, 100 mbps, full-duplex
Ethernet port 0 initialized: link is up
button pressed for 1 seconds
process_config_recovery: set IP address and config to default 10.0.0.1
Loading "flash:/c1130-rcvk9w8-mx/c1130-rcvk9w8-mx"...#########################################################################################################################################################################
File "flash:/c1130-rcvk9w8-mx/c1130-rcvk9w8-mx" uncompressed and installed, entry point: 0x3000
executing...
              Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706
Cisco IOS Software, C1130 Software (C1130-RCVK9W8-M), Version 12.3(11)JX1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Mon 17-Jul-06 11:38 by alnguyen
Image text-base: 0x00003000, data-base: 0x0035E440
Initializing flashfs...
flashfs[1]: 26 files, 8 directories
flashfs[1]: 0 orphaned files, 0 orphaned directories
flashfs[1]: Total bytes: 15998976
flashfs[1]: Bytes used: 6879232
flashfs[1]: Bytes available: 9119744
flashfs[1]: flashfs fsck took 6 seconds.
flashfs[1]: Initialization complete....done Initializing flashfs.
cisco AIR-LAP1131AG-E-K9   (PowerPCElvis) processor (revision A0) with 24566K/8192K bytes of memory.
Processor board ID FCZ1238Q0HK
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
LWAPP image version 3.0.51.0
1 FastEthernet interface
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:22:55:9F:FC:A0
Part Number                          : 73-8962-14
PCA Assembly Number                  : 800-24818-13
PCA Revision Number                  : A0
PCB Serial Number                    : FOC12354426
Top Assembly Part Number             : 800-29144-03
Top Assembly Serial Number           : FCZ1238Q0HK
Top Revision Number                  : A0
Product/Model Number                 : AIR-LAP1131AG-E-K9
Press RETURN to get started!
*Mar 1 00:00:08.354: %CDP_PD-4-POWER_OK: Full power - AC_ADAPDOWN: Line protocol on Interface FastEthernet0, changed state to up
Press>en
Password:
Password:
Password:
*Mar 1 00:00:27.393: %LWAPP-5-CHANGED: LWAPP changed state to DISCOVERY
% Bad secrets
Press>en
Password:
Password:
Password:
% Bad secrets
Press>
*Mar 1 00:00:36.530: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0 assigned DHCP address 192.168.1.2, mask 255.255.255.0, hostname Press
Press>en
Password:
Password:
Press>sho ver
Cisco IOS Software, C1130 Software (C1130-RCVK9W8-M), Version 12.3(11)JX1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Mon 17-Jul-06 11:38 by alnguyen
ROM: Bootstrap program is C1130 boot loader
BOOTLDR: C1130 Boot Loader (C1130-BOOT-M) Version 12.3(8)JEA, RELEASE SOFTWARE (fc2)
Press uptime is 17 minutes
System returned to ROM by power-on
System image file is "flash:/c1130-rcvk9w8-mx/c1130-rcvk9w8-mx"
cisco AIR-LAP1131AG-E-K9   (PowerPCElvis) processor (revision A0) with 24566K/8192K bytes of memory.
Processor board ID FCZ1238Q0HK
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
LWAPP image version 3.0.51.0
1 FastEthernet interface
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:22:55:9F:FC:A0
Part Number                          : 73-8962-14
PCA Assembly Number                  : 800-24818-13
PCA Revision Number                  : A0
PCB Serial Number                    : FOC12354426
Top Assembly Part Number             : 800-29144-03
Top Assembly Serial Number           : FCZ1238Q0HK
Top Revision Number                  : A0
Product/Model Number                 : AIR-LAP1131AG-E-K9
Configuration register is 0xF
Press>

How to restrict changing password for user ?

Hi All experts ,
We have created users . Users should not change their password without permission of Administrator . How to restrict them by setting Permissions / Authorizations ?
Thanks.
KISHORE SATPUTE

Hi,
In "USER MAINTENANCE- SU01" --> in the "logon tab" there are 5 different "user type"
1. dialog
2. system
3. communication
4. service
5. reference
Kindly mention the function and role of all the above mentioned user types specifically and hows is one user type different from another.
These are as follows:-
1. Dialogue:-
For this kind of users:-
GUI login is possible.
Initial password and expiration of passowrd are checked.
Multi GUI logins are checked.
Usage:- These are used for GUI logins.
2. System
For this kind of users:-
GUI login is not possible.
Initial password and expiration of passowrd are not checked.
Usage:- These are used for internal use in system like background jobs.
3. Communication
For this kind of users:-
GUI login is not possible.
Users are allowed to change password through some software in middle tier.
Usage:- These are used for login to system through external systems like web application
4. Service
For this kind of users:-
GUI login is possible.
Initial password and expiration of passowrd are not checked.
Multiple logins are allowed.
Users are not allowed to change the password. Only admin can change the password
Usage:- These are used for anonymous users. This type of users should be given minimum authorization.
5. Reference
For this kind of users:-
GUI login is not ible.
Initial password and expiration of passowrd are not checked.
Usage:- These are special kind of users which are used to give authorization to other users.
Rewads point if helpful
Thanks
Pankaj Kumar

Setting default password to all the users in OIM

Hi ,
I want to set the default password for all the users provisioning in OIM via trusted recon.
Please let me know how to achieve this.
Thanks

in MDS(eventhandler.xml) provide operation=CREATE else in code you can check the same if(operation.equals("CREATE"))
find below complete code this is tested and working fine
public EventResult execute(long processId, long eventId, Orchestration orchestration) {
UserManager um =null;
isLoggerInfoEnabled = logger.isInfoEnabled();
if(isLoggerInfoEnabled)logger.info("execute: processId = " + processId + "; eventId = " + eventId + "; orchestration = " + orchestration);
HashMap<String, Serializable> parameters = orchestration.getParameters();
logger.info("parameters = " + parameters );
RandomPasswordGeneratorImpl randomPasswordGenerator = new RandomPasswordGeneratorImpl();
char new_pwd[] = randomPasswordGenerator.generatePassword(new User(null));
String password = new String(new_pwd);
try{
um = Platform.getService(UserManager.class);
String userLogin= getParamaterValue(parameters, "User Login");
um.changePassword( userLogin, password.toCharArray(), true);
}catch (Exception e) {
if(logger.isErrorEnabled()) logger.error(e.getMessage());
if(logger.isErrorEnabled()) logger.error(" ", e);
return new EventResult();
public BulkEventResult execute(long processId, long eventId,BulkOrchestration bulkOrchestration) {
tcUserOperationsIntf userOperationsService=null;
UserManager um =null;
isLoggerInfoEnabled = logger.isInfoEnabled();
if(isLoggerInfoEnabled)logger.info("Bulk processId = " + processId + "; eventId = " + eventId + "; bulkOrchestration = " + bulkOrchestration);
um = Platform.getService(UserManager.class);
HashMap<String, Serializable>[] parametersArray = bulkOrchestration.getBulkParameters();
for(int i=0;i<parametersArray.length;i++)
HashMap<String, Serializable> parameters = parametersArray;
logger.info("parameters = " + parameters );
RandomPasswordGeneratorImpl randomPasswordGenerator = new RandomPasswordGeneratorImpl();
char new_pwd[] = randomPasswordGenerator.generatePassword(new User(null));
String password = new String(new_pwd);
try{
String userLogin = (String)parameters.get("User Login");
um.changePassword( userLogin, password.toCharArray(), true);
}catch (Exception e) {
if(logger.isErrorEnabled()) logger.error(e.getMessage());
if(logger.isErrorEnabled()) logger.error(" ", e);
return new BulkEventResult();
private String getParamaterValue(HashMap<String, Serializable> parameters, String key) {
String value = (parameters.get(key) instanceof ContextAware)
? (String) ((ContextAware) parameters.get(key)).getObjectValue()
: (String) parameters.get(key);
return value;
}

TMG 2010 publishing Exchange 2010 OWA cannot change password if user must change password at first logon is set

Hi,
I have an odd issue whereby if I set "user must change password" on an AD account, the end user cannot logon, they're simply taken back to the OWA login page as if their password is incorrect.
My setup is as follows:
outer TMG -- uses a listener for email.contoso.com and is configured for no authentication.This uses a publishing rule to publish the inner TMG server. This server is not a domain member.
inner TMG - uses a listener for email.contoso.com and is configured for NLTM\kerberos negotiation with forms authentication (Windows Active Directory). This server is a domain member and use a publishing rule to publish the internal CAS. Allow users to change
password is selected in the publishing rules.
Exchange 2010 SP1 - uses integrated windows and basic authentication. Has the appropriate registry key configured to allow users to change their AD password on first logon.
I've registered an snp for "http/email.contoso.com mailserver-dc1", all SSL certificates being used are valid and my configuration used to allow users to login and change their password with "user must change password on first login"
set in AD.
If I launch a web browser on an internal server and point it to email.contoso.com I'm immediately presented with a generic Windows authentication request (similar to what's seen in ADFS) rather than the standard OWA page. No matter what I do, I cannot login
and change my password using the correct URL. However if I point my browser at
http://192.168.4.10/owa I'm prompted to login and I can change my password using the sam credentials.
The only recent changes made are:
- Disabling SSL 3.0 and enabling TLS (http://www.isaserver.org/articles-tutorials/configuration-security/improving-ssl-security-forefront-threat-management-gateway-tmg-2010-published-web-sites.html)
- Replacing the TMG listener certificates so that they now use SHA2 rather than SHA2 (certificates are trusted on each TMG server)
Looking on the outer TMG and the DC logs I can see schannel errors which I believe are related to the problem. TMG monitoring also shows "Failed connection attempt: 1907 The user'spassword must be changed before logging on for the first time"
I've checked that my inner TMG and DC are using the same certificate for server authentication and gone through this guide:
http://blogs.technet.com/b/keithab/archive/2012/02/29/setting-up-and-troubleshooting-ldaps-authentication-in-forefront-tmg-2010.aspx
If I try to use ldp.exe on the inner TMG, I get the error in the pic below
Thanks
IT Support/Everything

Hi,
You could try to analyze the TMG tracing and try the troubleshoot steps in the blog below.
TMG 2010 – FBA, troubleshooting the change password feature
http://blogs.technet.com/b/isablog/archive/2012/05/07/tmg-2010-fba-troubleshooting-the-change-password-feature.aspx
Best Regards,
Joyce

Change documents for default values in user profiles

Dear Experts,
Please let me know if there are any tables to find the changes that have been made to the default values in a user profile.
Regards,
Lakshmi.

Hi,
as the defaults are not considered as critical, changes are not recorded in change documents.
b.rgds, Bernhard

User having problem changing password on Windows 2008 R2 via remote desktop win7

I have a remote user in another building with OS 7 remote destkop to Windows 2008 R2 Server. The users account is set to change password on first login. when the users trys to change his pw he gets error "Configuration information could not be
read from domain controller, either because the machine is unavailable, or access has been denied.
We are not using domain controller on the Windows 2008 R2 Server it is set to workgroup.
Any help ASAP would be greatly appricated.
Thanks,
Rob Jung

Here is one of the event logs from when the user tried to logging (and change password on the first login):
Log Name:      Security
Source:        Microsoft-Windows-Security-Auditing
Date:          10/13/2011 5:09:11 PM
Event ID:      4625
Task Category: Logon
Level:         Information
Keywords:      Audit Failure
User:          N/A
Computer:      win007.#***.net
Description:
An account failed to log on.
Subject:
Security ID:  SYSTEM
Account Name:  WIN9$
Account Domain:  ***
Logon ID:  0x3e7
Logon Type:   2
Account For Which Logon Failed:
Security ID:  NULL SID
Account Name:  Administrator
Account Domain:  WIN007
Failure Information:
Failure Reason:  Unknown user name or bad password.
Status:   0xc000006d
Sub Status:  0xc000006a
Process Information:
Caller Process ID: 0x254
Caller Process Name: C:\Windows\System32\winlogon.exe
Network Information:
Workstation Name: WIN007
Source Network Address: 127.
Source Port:  0
Detailed Authentication Information:
Logon Process:  User32
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length:  0
This event is generated when a logon request fails. It is generated on the computer where access was attempted.
The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.
The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).
The Process Information fields indicate which account and process on the system requested the logon.
The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.
The authentication information fields provide detailed information about this specific logon request.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
    <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{*******}" />
    <EventID>4625</EventID>
    <Version>0</Version>
    <Level>0</Level>
    <Task>12544</Task>
Rob Jung ADRWeb

Default password of user SAPCPIC to change

Similar Messages

Maybe you are looking for