SAP 系统参数设置 RZ10 RZ11

AP 系统参数设置 RZ10 RZ11

path: /usr/sap/PRD/SYS/profile
profile: PRD_DVEBMGS00_sapapp
如果您想查看所有的参数及当前设定,可使用SA38
执行程序 RSPARAM
修改附加配置
T-CODE:RZ10
进行SAP系统参数的设置,设置后需激活参数并重启SAP实例,配置参数才会生效
login/system_client  登录时默认的Client号
login/password_expiration_time  密码有效期
login/fails_to_user_lock   密码输错多少次后锁定
login/failed_user_auto_unlock  用户失效后多长时间解锁
rdisp/mshost   状态栏中显示的系统名称
rdisp/rfc_use_quotas  是否激活配额资源分配,0是关闭,1是启用.以下相关限制必须这个为1时才生效.
rdisp/gui_auto_logout 表示如果客户在指定时间内没有进行任何操作,则会自动退出SAP系统。时间为秒
rdisp/max_wprun_time   程序运行的最长时间限制
rdisp/rfc_max_login   最大SAP用户登录数
login/disable_multi_gui_login  限制用户多次登录,该参数可以设置同个client 同个用户ID可以允许同时登录几个,当设为1时,系统将提示用户选择: 'Terminate the Current Sessions' or 'Terminate this Login.' ,以达到保证只允许一个登录.
rdisp/tm_max_no   这个参数是限制每个实例最大的用户数,默认是200个.
rdisp/rfc_max_own_login   一个程序在一个服务器 上允许分配的RFC资源个数,也就是同时能运行多少个.默认值25.
rdisp/rfc_min_wait_dia_wp 设置RFC保留的会话设置,
rdisp/wp_no_dia   在一个实例中处理的会话数目,如果设置为10,rdisp/rfc_min_wait_dia_wp=3
 则可用的会话处理是7,3个被保留
rdisp/rfc_max_own_used_wp
rdisp/rfc_max_comm_entries
rdisp/rfc_max_wait_time
rdisp/btctime SAP调度器(SAYMSSY2),定期自动运行,由这个参数指定运行时间间隔。
rdisp/btcname 事件触发后运行envent scheduler 主机名称
rspo/store_location 文件存储位置(假脱机)
wdisp/server_info_location   the default is /msgserver/text/logon.The URL to retrieve the list   is determined this parameter
rdisp/mshost  信息服务器设置
ms/http_port  http服务端口
auth/new_buffering to  该参数设为4,权限的修改将立即起作用,不用用户重新登录. Note 209899.
系统性能参数调整类:
SAP 描述文件参数
参数   建议值
abap/use_paging    建议值:0(关闭)使用:重新激活旧的 ABAP/4 分页系统获得清单和简单表格类型。
abap/heaplimit    建议值:20000000(20MB)使用:用户环境完成处理后,重新启动一个工作进程来释放局部私有存储。
abap/heap_area_total    建议值:500000000(500MB)使用:设置 SAP 应用程序服务器可以使用的进程局部存储限制。对服务器的使用或交换空间设置限制。
em/initial_size_MB    建议值:250(250 MB,每个用户五 MB)使用:SAP 共享内存的大小。
em/stat_log_size_Mb    建议值:20使用:统计。
em/stat_log_size_timeout    建议值:600使用:统计。
rdisp/ROLL_MAXFS    建议值:32768使用:滚动文件的最大规模。
rdisp/ROLL_SHM    建议值:4096 使用:滚动缓冲区大小。
rdisp/PG_MAXFS    建议值:32768使用:ABAP/4 分页文件的最大规模。
rdisp/PG_SHM    建议值:0使用:分页缓冲区大小。
ztta/roll_area:滚动区域    建议值:1000000 (1 million bytes)使用:滚动区域大小。
T-CODE:RZ11
修改运行中实例的参数,修改完马上生效,不用重启实例。重启实例,参数修改失效.有部分参数你会发现,进入RZ11后发现只能查看不能修改,一种原因是这个参数不在RZ10中存在,如果排除这个原因,其他的原因我也不清楚。




Authorizationupdates completed without loggingoff
auth/new_buffering to 该参数设为4,权限的修改将立即起作用,不用用户重新登录. 如果有其他疑问请查阅note209899.

Preventing multipledialog user logons
login/disable_multi_gui_login该参数可以设置同个client同个用户ID可以允许同时登录几个,当设为1时,系统将提示用户选择: 'Terminate theCurrent Sessions' or 'Terminate this Login.',以达到保证只允许一个登录.

3Profile Parameters for Logon andPassword (Login Parameters)
To make the parametersglobally effective in an SAP System (system profileparameters), set them in the default system profile DEFAULT.PFL.However, to make them instance-specific, you must set them in theprofiles of each application server in your SAPSystem.

To display the documentation for one of the parameters,choose Tools® CCMS® Configuration® ProfileMaintenance(transaction RZ10), specify the parameter nameand choose Display. On the following screen, choose theDocumentation pushbutton.
Password Checks

 

Parameter
Description
login/min_password_lng
Defines the minimum length of the password.
Default value: 3; permissible values: 3 – 40
Until SAP NetWeaver 6.40 (inclusive), up to 8characters.
login/min_password_digits
Defines the minimum number of digits (0-9) in passwords.
Default value: 0; permissible values: 0 – 40
Available as of SAP Web AS 6.10 (Until SAP NetWeaver 6.40(inclusive), up to 8 characters.)
login/min_password_letters
Defines the minimum number of letters (A-Z) inpasswords.
Default value: 0; permissible values: 0 – 40
Available as of SAP Web AS 6.10 (Until SAP NetWeaver 6.40(inclusive), up to 8 characters.)
login/min_password_specials
Defines the minimum number of special characters in thepassword Permissible special characters are, in particular, !"@$%&/()=?'`*+~#-_.,;:{[]}<>|and space
After SAP NetWeaver 6.40, all characters that are not lettersor digits are regarded as special characters.
Default value: 0; permissible values: 0 – 40
Available as of SAP Web AS 6.10 (Until SAP NetWeaver 6.40(inclusive), up to 8 characters.)
login/password_charset
This parameter defines the characters of which a password canconsist.
Permissible values:
·        0(restrictive):The password can only consist of digits, letters, and the following(ASCII) special characters :!"@$%&/()=?'`*+~#-_.,;:{[]}<>|and space
·        1(backward compatible, default value): The password can consist ofany characters including national special characters (such as ä, ç,ß from ISO Latin-1, 8859-1). However, all characters that are notcontained in the set above (for value = 0) are mapped to the samespecial character, and the system therefore does not differentiatebetween them.
·        2(not backward compatible): The password can consist of anycharacters. It is converted internally into the Unicode formatUTF-8. If your system does not support Unicode, you may not be ableto enter all characters on the logon screen. This restriction islimited by the codepage specified by the systemlanguage.
With login/password_charset = 2, passwords arestored in a format that systems with older kernels cannotinterpret. You must therefore only set the profile parameter to thevalue 2 after you have ensured that all systems involved supportthe new password coding.
Available in the standard system as of SAP Web AS 6.40.
login/min_password_diff
Defines the minimum number of characters that must bedifferent in the new password compared to the old password.
Default value: 1; permissible values: 1 – 40
Available as of SAP Web AS 6.10 (Until SAP NetWeaver 6.40(inclusive), up to 8 characters.)
login/password_expiration_time
Defines the validity period of passwords in days.
Default value: 0; permissible values: 0 -1000
login/password_change_for_SSO
If the user logs on with Single Sign-On, checks whether theuser must change his or her password.
Available as of SAP Web AS 6.10, as of SAP Basis 4.6 bySupport Package
login/disable_password_logon
Controls the deactivation of password-based logon
This means that the user can no longer log on using apassword, but only with Single Sign-On variants (X.509 certificate,logon ticket). See Logon Data Tab Page
Available as of SAP Web AS 6.10, as of SAP Basis 4.6 bySupport Package
login/password_logon_usergroup
Controls the deactivation of password-based logon for usergroups
Available as of SAP Web AS 6.10, as of SAP Basis 4.6 bySupport Package
login/min_password_lowercase
Specifies how many characters in lower-case letters a passwordmust contain. Permissible values: 0 – 40; default value 0
Available after SAP NetWeaver 6.40
login/min_password_uppercase
Specifies how many characters in upper-case letters a passwordmust contain. Permissible values: 0 – 40; default value 0
Available after SAP NetWeaver 6.40
login/password_history_size
Specifies the number of passwords (chosen by the user, not theadministrator) that the system stores and that the user cannot useagain.
Permissible values: 1 – 100 (unit: number of entries); defaultvalue 5
Available after SAP NetWeaver 6.40
login/password_downwards_compatibility
Specifies the degree of backward compatibility to be achieved.The default value is 1, where the values have the followingmeaning:
0
With login/password_downwards_compatibility= 0,passwords are stored in a format that systems with older kernelscannot interpret. The system only generates new (backwardincompatible) password hash values.
1
The system also generates backward compatible password hashvalues internally, but does not evaluate these for password-basedlogons (to its own system). This setting is required, if thissystem is used as the central system of a Central UserAdministration that systems that only support backward compatiblepassword hash values are also connected to the system group.
2
The system also generates backward compatible password hashvalues internally, which it evaluates if a logon with the new,non-backward compatible password failed. In this way, the systemchecks whether the logon would have been accepted with the backwardcompatible password (truncated after eight characters, andconverted to upper-case). This is recorded in the system log. Thelogon fails. This setting is to allow the identification ofbackward incompatibility problems.
3
As with 2, but the logon is regarded as successful. Thissetting is to allow the avoidance of backward incompatibilityproblems.
4
As with 3, but no entry is created in the system log.
5
Full backward compatibility: the system only creates backwardcompatible password hash values.
Available after SAP NetWeaver 6.40
login/password_change_waittime
Specifies the number of days that a user must wait beforechanging the password again.
Permissible values: 1 – 1,000 (unit: days); default value1
Available after SAP NetWeaver 6.40
login/password_compliance_to_current_policy
Permissible values: 0 – no check; 1 – the system checks duringpassword logon whether the current password complies with thecurrent password rules and forces a password change if this is notthe case.
Default value: 0
Available after SAP NetWeaver 6.40
login/password_max_idle_productive
Specifies the maximum period for which a productive password(a password chosen by the user) remains valid if it is not used.After this period has expired, the password can no longer be usedfor authentication. The user administrator can reactivatepassword-based logon by assigning a new initial password.
Permissible values: 0 – 24,000 (unit: days); Default value 0,that is, the check is deactivated
Available after SAP NetWeaver 6.40
login/password_max_idle_initial
Specifies the maximum period for which an initial password (apassword chosen by the administrator) remains valid if it is notused. After this period has expired, the password can no longer beused for authentication. The user administrator can reactivatepassword-based logon by assigning a new initial password.
This parameter replaces the profileparameters login/password_max_new_validand login/password_max_reset_valid.
Permissible values: 0 – 24,000 (unit: days); Default value 0,that is, the check is deactivated
Available after SAP NetWeaver 6.40
login/password_max_new_valid
Defines the validity period of passwords for newly createdusers.
Only available in SAP Web Application Server 6.20 and6.40.
login/password_max_reset_valid
Defines the validity period of reset passwords.
Only available in SAP Web Application Server 6.20 and6.40.

 

Multiple Logon

 

Parameter
Description
login/disable_multi_gui_login
Controls the deactivation of multiple dialog logons
Available as of SAP Basis 4.6
login/multi_login_users
List of excepted users (multiple logon)
Available as of SAP Basis 4.6

 

Incorrect Logon

 

Parameter
Description
login/fails_to_session_end
Defines the number of unsuccessful logon attempts before thesystem does not allow any more logon attempts. The parameter is tobe set to a value lower than the value of parameterlogin/fails_to_user_lock.
Default value: 3; permissible values: 1 -99
login/fails_to_user_lock
Defines the number of unsuccessful logon attempts before thesystem locks the user. By default, the lock applies untilmidnight.
Default value: 12; permissible values: 1 -99
login/failed_user_auto_unlock
Defines whether user locks due to unsuccessful logon attemptsshould be automatically removed at midnight.
Default value: 1 (Lock applies only on same day); permissiblevalues: 0, 1

 

SSO Logon Ticket

 

Parameter
Description
login/accept_sso2_ticket
Allows or locks the logon using SSO ticket.
Available as of SAP Basis 4.6D, as of SAP Basis 4.0 by SupportPackage
login/create_sso2_ticket
Allows the creation of SSO tickets.
Available as of SAP Basis 4.6D
login/ticket_expiration_time
Defines the validity period of an SSO ticket.
Available as of SAP Basis 4.6D
login/ticket_only_by_https
The logon ticket is only transferred using HTTP(S).
Available as of SAP Basis 4.6D
login/ticket_only_to_host
When logging on over HTTP(S), sends theticket onlyto the server that created theticket.
Available as of SAP Basis 4.6D

 

Other Login Parameters

 

Parameter
Description
login/disable_cpic
Refuse inbound connections of type CPIC
login/no_automatic_user_sapstar
Controls the emergency user SAP* (SAP Notes 2383 and68048)
login/system_client
Specifies the default client. This client is automaticallyfilled in on the system logon screen. Users can type in a differentclient.
login/update_logon_timestamp
Specifies the exactness of the logon timestamp.
Available as of SAP Basis 4.6

 

Other User Parameters

 

Parameter
Description
rdisp/gui_auto_logout
Defines the maximum idle time for a user in seconds (appliesonly for SAP GUI connections).
Default value: 0 (no restriction); permissible values: anynumerical value

 

 

相应tCODE: RZ11,RZ10


你可能感兴趣的:(SAP-Basis)