SAP comes with a default user ID SAP*. This default user ID SAP* comes with lot of privileges. The default password for this user ID is also in the public domain. This makes it all the more important to restrict access to SAP*. Normally, the SAP* user ID does not need a User Master Record UMR since the same is hardcoded into the SAP. Even if one goes on and deletes this User Master Record, it regenerates itself. Below, I ahve written the steps to deactivate the default user ID SAP*.

1. Assign a new password to the user ID SAP*.
2. Delete all profiles from SAP* user master record.
3. Now, assign SAP* to the user group SUPER so that it can be modified or deleted easily.
4. Once all of the above is done, lock the user ID SAP*.
5. Finally, deactivate the special attributes of SAP*. This can be done by changing the default value 0 to 1 for system profile parameter login/no_automatic_user_sap*.

More on SAP Configurations >>

SAP Locked Entries , Batch Input in SAP , ASAP Accelerated SAP