Profile parameter login/password_downwards_compatibility meaning?

I am currently evaluating the use of the login/password_downwards_compatibility parameter, but I can not fully understand it.

In what cases is it used? And what risks would it have associated?

Solution

What exactly don't you understand in official documentation for this parameter?

Values from 0 to 5 shows strictness of SAP password hash generation and evaluation during logon, starting from the most strict (0) to the most legacy way (5).

You do not need to change the default value (aka 1) of the parameter unless:

your system is a central storage system of CUA, where landscape consists of old systems
your system is very old itself, i.e. SAP Netveawer ≤ 7.00 (SAP_BASIS 700)

You must not touch this parameter at all unless you are a professional BASIS. Period.

How to securely store access token and secret in Android?
Where to save a JWT in a browser-based application and how to use it
What's the difference between retrieving WindowsPrincipal from WindowsIdentity and Thread.CurrentPrincipal?
Can't find class org.bouncycastle.cms.CMSSignedData
Safety of leaking memory
Security Warning when running scripts - Unblock-File not unblocking file
Why do people put code like "throw 1; <dont be evil>" and "for(;;);" in front of json responses?
Secure method to download files in Ruby
Amazon Web Services : Setting S3 policy to allow putObject and getObject but deny listBucket
Escaping strings for use in XML
Limiting the scopes of an OAuth 2.0 flow
How can I tell password managers what pattern to use?
Protecting against MitM (https) seeing password with encryption using included pub. key in iOS/Android app
Why are iframes considered dangerous and a security risk?
Vulnerabilities in spring-webmvc-5.3.39 to 5.3.40
Limit GraphQL Queries by Breadth
Securing a UDP connection
Cross Domain Form POSTing
How is PHP's mt_rand seeded?
Customize android app preview when it is in background with secure flag
Can a client-side login be safe?
How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
How to validate if a URL is an Okta domain?
How to make Google Analytics respond to "Do Not Track"
My Vercel API tokens leaked on GitHub. How do I regenerate them?
Implementing Custom Expression Handling with Spring Security 6
What are the security concerns for JSF?
App attestation failed with Firebase App check in release on Android
SQL Server returns error "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'." in Windows application
When should I use the deny access functions in Symfony 4.4 controllers?