Question:
I am trying to reset password for DDIC through Query analyzer in MSSQL,
update USR02 set BCODE='PACIFIC123' where BNAME='DDIC' and MANDT='000'
I am getting the following message
Disallowed implicit conversion from data type varchar to data type varbinary, table 'C01.dbo.USR02', column 'BCODE'. User the CONVERT function to run this query.
Since, BCODE field is VARBINARY, it is not allowing me apply directly. Could you please any one help me how to use convert function in this.
Appreciate help..
Answer:
Choose a shorter pw. Replicate it in another client. Take the BCODE and replicate it into USR02 of your client.
Then use the pw.
Answer:
hi,
I tried with that also, but the problem is that, we need to put conversion syntax(varchar to varbinary).
Answer:
BCODE is a 16 bit raw hex field and you cannot put a "word" in the field and expect it to work. Logon to a client where you can look at the table SE16 with DDIC in the client. use ABAP to run the following
By the way, don't ever never give users access to SE30.
... unless you know what you are doing ...
_________________
Try Search
Else SAPNet
Otherwise It was designed not to work.
____________________
Answer:
True, but experience shows that so called security consultants don't got the faintest idea about security, so better safe than sorry.
Msssr this wasn't directed towards you at all. The question is indeed relevant and not straight forward. In fact I had to do the exact same thing for one of our basis guys recently...of course without telling him how to do it. Damn I hope he's not reading this
/Blast
Answer:
/Blast,
For clarification, and please correct me if I've misread your post, but wouldn't the password need to be copied from a USR02 entry of an equivalent BNAME. My understanding is that you can't pick just any BCODE from USR02 that you happen to know - since the algorithm that creates the BCODE derives it with an association to the BNAME value.
Regards,
Vincent
Answer:
Thanks for all replies. Now one more issue which was occured in one of the system (Ides W2K, MSSQL), the person who has installed is no more with us. None of the knows p/w of DDIC / SAP* or any super user. In this case, what to do? Bco'z, I do not have access to frontend to run the above code?
We have tried to delete user from usr02, and logon through DDIC with standard p/w, but still not allowing?
Any clues on this? How come we get enter into any of the clients.
Answer:
Vincent,
No you did not misread my post. It was clearly me that did not think the scenario through before posting. Sorry for the confusion and thanks for correcting.
/Blast
Answer:
We have tried to delete user from usr02, and logon through DDIC with standard p/w, but still not allowing?
do not delete DDIC user, you can delete SAP* and use password PASS instead.. unless there is a profile parameter login/no_automatic_user_sapstar
_________________
SapFans Moderator
NetWeaver ‘04–SAP Web AS for ORACLE certified
Search: /forums/search.php
SAP Notes: http://service.sap.com/notes
SAP Help: http://help.sap.com
Basic Rules: /forums/viewtopic.php?t=222759