Jeff Wallace
Apr 3, 2012
visibility 11111
star star star star star
(0 votes)

Forcefully Unlock Administrative User in EPiServer Commerce

Based on CMS 6 R2, Commerce 1 R2 SP1 (or SP2), and SQL Server 2008

 

So you went on vacation (or holiday depending on your country’s term for that time we all look forward to), had a long weekend, or just did a fresh install of EPiServer Commerce and either totally forgot or have no idea what your administrator users password is.  You try logging in with a variety of your favorite passwords without luck.  Unfortunately you realize you probably did this too many times and can no longer log in because your account has been locked due to excessive failed login attempts.  This is also the moment where you realize you probably should have created two or more admin users.  Oops!  If you have access to the database, have no fear, you can undo your wrong, get back to work, and not feel guilty having a few beers again next weekend and forgetting that password all over again.  Winking smile

 

Please note, the EPiServer Commerce Manager allows you to unlock users through the backend user interface which is the most typical approach in a real environment. This is for the case where you’ve locked your only administrator account, likely in a new install, demo environment, or something comparable.

 

  • Log into SQL Server Management Studio (assuming you’ve installed it, otherwise you’ll need to open up your favorite command line tool).
  • Navigate to the Commerce Manager database for the site with the locked user.
  • Expand the database and the “Tables” node.

clip_image001

  • Navigate to the “aspnet_Membership” table
  • Select the option to “Edit Top 200  Rows”.  (If you have more than 200 users use your preferred standard SQL methods to get to the locked user).

clip_image002

  • Locate the locked user and scroll the table to the right to find the “IsLockedOut” field.  If the user is locked it will be set to “True”.
  • Change this field to “False”

image

  • You should now be able to go back to your site and log in.

 

Cheers!

Apr 03, 2012

Comments

Apr 3, 2012 05:51 PM

If you forgot the password completely you can also use the stored procedure to set it to whatever you want: aspnet_Membership_SetPassword

Set the PasswordFormat to 0, to be able to pass in a clear text password:
exec aspnet_Membership_SetPassword
N'CommerceManager',
N'admin',
N'store',
N'',
(SELECT GETUTCDATE()),
0

Jeff Wallace
Jeff Wallace Apr 3, 2012 05:57 PM

Nice addition Tobias!

Petri Isola
Petri Isola Apr 3, 2012 07:44 PM

Thanks for doing this, Jeff. And thanks for the added bonus, Tobias.

Justin Le
Justin Le May 20, 2015 10:17 AM

Thanks! noted to self

error Please login to comment.
Latest blogs
Implementing the Bynder DAM Connector with Optimizely SaaS CMS: Lessons Learned

What I learned while integrating Bynder DAM with Optimizely SaaS CMS, exploring Optimizely Graph, and building a headless frontend experience....

Vipin Banka | Jul 3, 2026

Optimizely London developer meetup 2026: a round up

Well, what can I say? Last night we wrapped up! Yet another London Developer Meetup, hosted at the superb Lightwell venue And this is also a...

Scott Reed | Jul 3, 2026

AvantiBit Custom Settings for Optimizely CMS

AvantiBit Custom Settings is a free, Apache-2.0 Optimizely CMS add-on for typed, site- and language-aware configuration that stays out of content...

Enes Bajramovic | Jul 3, 2026 |

Building an experience with Visual Builder in Optimizely CMS 13

Visual Builder changes how we can think about campaign pages, landing pages and other highly curated editorial experiences in Optimizely CMS. Inste...

Pär Wissmark | Jul 2, 2026 |