Monday, 3 August 2020

SYSTEM user getting deactivate due to wrong password attempt

Error: many failed logon attempts (starting with Rev.102)


Resolution

We saw some time that database SYSTEM user is locked due to many failed login attempts in this case we can activate it again. But it may affect functionality were system user password is used ( like SLT etc. ) 

The maximum number of failed logon attempts that are possible; the user is locked as soon as this number is reached. 

Parameter :                    maximum_invalid_connect_attempts

Default Value :               6 (failed logon attempts)

Although this parameter is not valid for the SYSTEM user, the SYSTEM user will still be locked if the parameter 

password_lock_for_system_user is set to true. 

If 

password_lock_for_system_user is set to false, 

the SYSTEM user will not be locked regardless of the number of failed logon attempts.


Procedure

1: Login in hana studio --> configuration and monitoring --> Open administration 

2: Go to configuration table and search parameter 



we need change parameter value to false, which help to avoid SYSTEM user deactivation due to wrong password attempt 




Recommendation: 

Create an audit policy to log activity in the INVALID_CONNECT_ATTEMPTS system view. For example, create an audit policy that logs data query and manipulation statements executed on this view.


Thanks