This article provides steps to prevent forced lockout when the root account is still active by modifying the /etc/cron.daily/pass-expiration script If the root account is still accessible through the vCenter Server Appliance console or through the secure shell (SSH).
If the root account is still accessible through the vCenter Server Appliance console or through the secure shell (SSH), you can prevent this issue from occurring by modifying the /etc/cron.daily/pass-expiration script.
To prevent the forced lockout when the root account is still active:
Note: By default, the password expiration on the local root account in vCenter Server Appliance is set to 90 days after the password is changed. This typically occurs at first boot. If the password is not changed on installation, there is a 90-day period before expiration.