Skip to Content
Author's profile photo Ralf Witt

Controlling security aspects for WCEM users

You want to define the number of failed login attempts allowed before the user account will be locked. In a User Storage System scenario like ‚ABAP only‘ or ‚UME and ABAP‘, this is controlled by the underlying AS ABAP Server.


Image 1: WCB-Settings

In case the UME has a user storage AS ABAP, its own policies doesn’t apply but only the one of the AS ABAP server.


Image 2: UME and ABAP system overview

Depending of the ABAP component SAP_BASIS


Image 3: System Status

this can be defined either in the ‚profile parameters‘ (SAP_BASIS before 7.31) or in the ‚Security Policy‘ (SAP_BASIS 7.31 and higher).

ATTENTION: In case of SAP_BASIS lower 7.31 there is no possiblitly to define different settings for internal users and WCEM users.

In case your AS ABAP system runs on a version SAP_BASIS 7.31 you can easly influce the ‚Security Policy‘ for WCEM users without modifying SAP standard coding.

First you need to create a new Security Policy using transaction SECPOL.

Now, depending on your AS ABAP system, either CRM or ERP, you can use the following injection locations for your coding.


ERP: form ‚create_su01_user‘ in function group WEC_USER using parameter p_wa_logondata -> SECURITY_POLICY

In both cases use the implicit enhancement spot (for more details please see here: at the beginning of the coding unit to set the security policy relevant for WCEM users.

Now while registering a new user for WCEM your security policy for this user will be applied.

Assigned Tags

      1 Comment
      You must be Logged on to comment or reply to a post.
      Author's profile photo Ingo Woesner
      Ingo Woesner

      Thank you Ralf!

      I have added your blog to the WCEM Expert Blogs index.

      Keep up the good work!

      Best regards,