Friends,
So well summarized:
GRCAC10 / SP14
We created a user called "GRCGUEST" in GRCAC10 environment.
This user is used by all logins AD(LDAP connector) Company.
Two weeks ago, for us to use in a mass execution, he turned in FF'ID. The idea was to keep the mass modification log, the user GRCGUEST and not my user.
After the mass execution, he removed the NWBC Setup (Owners, Firefighter IDs, Firefighters and controllers) and also removed the Role of Firefighter.
Even after removal, until today is generated log on using this user.
Every logged by a user of AD (LDAP connector), is to unlock SAP user or to request access, log appears.
See the attachment.
Many thanks for the help