Windchill EAI software components access distribution targets such as SAP systems via a user name (ESISYS) and a password which are specified in the adapter configuration.

This user name is the name that is typically recorded in the created by field in the SAP distribution target for the affected business objects for example, CNs, BOMs, parts, and documents. This account should not be configured as a GUI-enabled dialog-type user. For security reasons, an SAP system should not allow end-users to log onto the account through the SAP GUI.

You should be familiar with the security authorization profile of this account, and may want to configure alerts and notification in case of invalid logon attempts, password expiration, or a locked account in an SAP system.

To maintain security, do not grant a broad security authorization profile, such as SAP_ALL to the ESISYS account.

You can also use TIBCO BusinessWorks security features, to obfuscate the account credentials in the associated TIBCO Runtime Agent (.tra) file.

Refer to the Windchill Enterprise Systems Integration Installation and Configuration Guide - SAP for details on setting up this account.