5. What SAP default user is installed with SAP and how can you disable this user to prevent security holes?
a) SAP* - Set the profile parameter login/no_automatic_user_sapstar to a value greater than zero.
b) SAP* and DDIC -Use transaction su01 to delete the user IDs.
c) SAP* This user can't be disabled as it is the back door for SAP to login to your system.
d) Use SQLplus to delete the user IDs DDIC and SAP*.
SAP* has full authorization and is intended to be used as a back door for SAP; however, you can lock this hole from your system by setting the default parameter login/no_automatic_user_sapstar to a value greater than zero and deleting the user ID. This will ensure that no one is able to delete your SAP* from the database and login with the initial password of PASS.