Reset vCenter SSO Administrator Password vSphere 6.5

Reset vCenter SSO Administrator Password vSphere 6.5

By default, the vCenter Single Sign-On password expires every 90 days. To prevent unexpected expiration, the vSphere Client issues a warning when the password is about to expire; however, if you find yourself in a situation where you cannot recall the password or the password has expired, it can be reset. The reset process is performed from an SSH session to vCenter.

Reset SSO Administrator Password

To begin, SSH to the vCenter Server Appliance and log in with the root account.

Reset vCenter SSO Administrator Password vSphere 6.5

Next, enable BASH shell access and launch BASH.

shell.set –enabled true

shell

Reset vCenter SSO Administrator Password vSphere 6.5
With BASH launched, we will run the vdcadmintool to reset the SSO account password.

/usr/lib/vmware-vmdir/bin/vdcadmintool

Reset vCenter SSO Administrator Password vSphere 6.5

Select option 3 to Reset account password.

Reset vCenter SSO Administrator Password vSphere 6.5

Enter the Account UPN. After hitting enter, a new password is automatically generated.

NOTE – The account format is SSOusername@vsphereDomain.localTypically, the account is administrator@vsphere.local.

Reset vCenter SSO Administrator Password vSphere 6.5

Navigate back to the vSphere Web Client and log in with the newly generated password.

Reset vCenter SSO Administrator Password vSphere 6.5

Change SSO Administrator Password

To change the SSO admin password, select Administration from the Navigator menu.

Reset vCenter SSO Administrator Password vSphere 6.5

Next, locate the Administrator user from the Single Sign-on Users and Groups. Click the pencil to edit the account properties.

Reset vCenter SSO Administrator Password vSphere 6.5

Enter the Current Password and a new password. Confirm the password. Select OK to submit the changes.

Reset vCenter SSO Administrator Password vSphere 6.5

The SSO admin password has now been reset and changed. It is also possible to change the password expiration from the default 90 days.

Change SSO Administrator Password Expiration

To set the password lifetime, navigate to the Single Sign-On Configuration under Policies. Select Edit on the Password Policy.

Reset vCenter SSO Administrator Password vSphere 6.5

The maximum number of days allowed is 9999. To set the password to never expire, enter 0 in the Maximum Lifetime days. Press Ok to continue.

Reset vCenter SSO Administrator Password vSphere 6.5

That’s it!

Reset vCenter SSO Administrator Password vSphere 6.5

VMware KB – How to unlock and reset SSO password in vSphere 6.x

 

Leave a Reply

Your email address will not be published. Required fields are marked *

twenty − one =