Activating the Emergency User

Use
In emergency situations where you configured user management incorrectly and can no
longer log on to any applications, or all administrator users are locked, you can activate the
emergency user SAP*. SAP* enables you to log on to applications, in particular the
configuration tools, and change the configuration. The SAP* user has full administrator
authorizations. For security reasons, the SAP* user does not have a default password, so you
must specify a password when you activate the user.
Prerequisites
SAP NetWeaver Application Server (AS) Java is running as a Java-only installation.

If you are working with a dual stack installation, then log on to the ABAP system as an
administrator or the emergency user SAP*. Then you can create a new administrator for the
AS Java or unlock the administrator using the transaction SU01.
Procedure
1. Activate the SAP* user:
a. Start the config tool.
b. Set the following UME properties:
Property Value Comment
ume.superadmin.activated true This activates the SAP*
user.
ume.superadmin.password <password> Enter any password of
your choice. This defines
the password for the
SAP* user.
For more information, see Editing UME Properties.
c. Restart the AS Java.
The SAP* user is now activated. While it is activated, all other users are deactivated. You can
only log on with the SAP* user.
2. Fix your configuration as required, logging on with the user ID SAP*and the password
you specified.

Log on to identity management to unlock users or create a new administrator user.
For more information, see Identity Management.
3. When you have fixed your configuration, deactivate the SAP* user again.
a. Start the config tool.
b. Set the property ume.superadmin.activated to false.
c. Restart the AS Java.