At startup, SAP first connects as user <sid>adm to the database. It retrieves the password entry from the SAPUSER table and then re-connects using the SAPR3 user with the correct password. The password of user SAPR3 should therefore always be changed with SAPDBA or BRTOOLS instead of using the standard Oracle tools.
This setup is explained in detail in the Database Security for Oracle white paper which is available for download at the SAP Developer Network (http://sdn.sap.com).
Dig Deeper on SAP security administration
Related Q&A from Bert Vanstechelman
An SAP user wants to know the risks of changing time zones in ECC 6.0. Continue Reading
An SAP user wants to know how to access an SAP IDES 4.7 system via the Internet through SAP GUI. Continue Reading
A SearchSAP.com reader wants to know how an increase of indexes and tables after upgrade to SAP ECC 6.0 will affect the memory requirements of a DB2 ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.