After upgrading your vCenter Server or vCenter Server Appliance to vSphere 5.5, you experience these symptoms:

• You are unable to change the password of the [email protected].
• Changing the password of the [email protected] fails.
• When reviewing the [email protected] account information in the vSphere Web Client, all fields are grayed out.
• When logged in with the [email protected] account to the vSphere Web Client, the option to Change Password... is grayed out.

For the vCenter Server:

1. Log in to the vCenter Server with a domain administrator account. If vCenter Single Sign-On is installed separate from the vCenter Server, log into the vCenter Single Sign-On server.
2. Open an elevated command prompt. For more information, see Opening a command or shell prompt (1003892).
3. Navigate to the vmdird directory with this command:
   
   c:\>cd Program Files\VMware\Infrastructure\VMware\CIS\vmdird
   
   
4. Open the vdcadmintool service tool with this command:
   
   c:\Program Files\VMware\Infrastructure\VMware\CIS\vmdird>vdcadmintool.exe
   
   This console loads:
   
   ===============================
   Please select:
   0. exit
   1. Test LDAP connectivity
   2. Force start replication cycle
   3. Reset account password
   4. Set log level and mask
   5. Set vmdir state
   ===============================
   
   
5. Press 3 to enter the Reset account password option.
6. When prompted for the Account DN, enter:
   
   cn=administrator,cn=users,dc=vSphere,dc=local
   
   
7. A new password is generated. Use this password to log into the [email protected] account.
   
   Note: Review the password to ensure it is compliant with VMware's list of unsupported characters. For more information on the list of unsupported characters, see vSphere 5.5 Single Sign-On [email protected] password issues (2060637). If the password generated is not compliant, perform the generation process again.
   

For the vCenter Server Appliance:

1. Connect to the vCenter Server Appliance via SSH. For more information, see Enable or Disable SSH Administrator Login on the VMware vCenter Server Appliance in the vCenter Server and Host Management Guide.
2. Open the vdcadmintool service tool with this command:
   
   /usr/lib/vmware-vmdir/bin/vdcadmintool
   
   This console loads:
   
   ================================
   Please select:
   0. exit
   1. Test LDAP connectivity
   2. Force start replication cycle
   3. Reset account password
   4. Set log level and mask
   5. Set vmdir state
   ================================
   
   
3. Press 3 to enter the Reset account password option.
4. When prompted for the Account DN, enter:
   
   cn=administrator,cn=users,dc=vSphere,dc=local
   
   
5. A new password is generated. Use this password to log in to the [email protected] account.
   
   Note: Review the password to ensure it is compliant with VMware's list of unsupported characters. For more information on the list of unsupported characters, see vSphere 5.5 Single Sign-On [email protected] password issues (2060637). If the password generated is not compliant, perform the generation process again.