Update WS1A sshuser password for WS1A deployed in VCF mode
Article ID: 312167
Updated On:
Products
VMware Cloud Foundation
Issue/Introduction
Symptoms:
1. Password update of the sshuser is not supported in VCF and disabled in vRSLCM
2. When the password is expired - Inventory sync for WS1A environment in vRSLCM fails with "Unable to verify SSH user's password. Ensure the password is not already expired and retry after providing valid credentials".
1. Password update of the sshuser is not supported in VCF and disabled in vRSLCM
2. When the password is expired - Inventory sync for WS1A environment in vRSLCM fails with "Unable to verify SSH user's password. Ensure the password is not already expired and retry after providing valid credentials".
Environment
VMware Cloud Foundation 4.x
Cause
sshuser password management is disabled when vRSLCM is in VCF mode.
Resolution
Workaround:
- Login to the vIDM appliance directly creating an ssh connection and update the expired password. For more information see VMware Workspace One Access and IDM, resetting admin and configurator passwords
(you have to run passwd sshuser). - Create locker entry for the new password in vRSLCM.
- Run inventory sync in vRSLCM, which would be failing(Since vRSLCM would not be aware of the password which is being set outside vRSLCM). Please note in the case of clustered vIDM, the same task would be checking the passwords of all the 3 nodes, hence provide the right password by looking at the hostname and user name for which the request failed. On 3rd wrong attempt, the vIDM password would get locked.
- Retry the failed inventory sync request in vRSLCM, choosing the locker entry of the new password created in above step 2.
Feedback
Yes
No
Powered by
