I have noticed that SAP GUI users seem to be able to continue to single sign on through the GUI even after their users have been locked. This could be due to the fact that the client certificate issued by the server to the secure login client is still valid, but my question is whether the behaviour is intended or whether it is a bug?
When the secure logon client is facilitating the logon to the SAP server, is it using the RFC gateway directly to the SAP system? Does this mean that this should be considered in the ACL for the RFC gateway?
Best regards,
Anders