- ERP Risk Advisors
900
post-template-default,single,single-post,postid-900,single-format-standard,ajax_fade,page_not_loaded,,qode_grid_1300,footer_responsive_adv,hide_top_bar_on_mobile_header,qode-child-theme-ver-1.0.0,qode-theme-ver-16.7,qode-theme-bridge,wpb-js-composer js-comp-ver-5.5.2,vc_responsive
 

Oracle E-Business Suite: SYSADMIN must have password expiration set

The risks related to SYSADMIN are often misunderstood.  It is a critical account to leave active, yet we find that many organizations don’t set the password expiration days because they fear that the account will be locked and the system will come to a halt (including workflows) if the password expires.  This is NOT the case.  If the password expires it will need to be reset next time someone logs in using that account (just like ALL accounts).  However the processes that run in the background tied to that login will still continue to perform as expected.

This is also supported by Oracle.  Take a look at MOS Note 403537.1.

Find out more about this topic at: http://erpra.net/files/Chapter_7_Excerpt_Use_and_Care_of_Generic_Logins.pdf

As always, if you have questions related to this or other topics, please email me at jhare…at… erpra.net.

Jeffrey T. Hare
jhare@erpra.net

Jeffrey Hare, CPA CIA CISA is the founder and CEO of ERP Risk Advisors. His extensive background includes public accounting (including Big 4 experience), industry, and Oracle Applications consulting experience. Jeffrey has been working in the Oracle Applications space since 1998 with implementation, upgrade, and support experience. Jeffrey is a Certified Public Accountant (CPA), a Certified Information Systems Auditor (CISA), and a Certified Internal Auditor (CIA).

No Comments

Post A Comment