Accessing NSX appliances via SSH or CLI with non-system local users fails

search cancel

Accessing NSX appliances via SSH or CLI with non-system local users fails

book

Article ID: 376064

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

You are unable to access NSX appliances (NSX Managers or Edges) via CLI or SSH with local user accounts that were not generated by the system.
Attempting such connection gives an access denied error or the session resets.
This includes remote users such as AD users and local users created in the NSX UI.

Environment

VMware NSX
VMware NSX-T Data Center

Cause

Only the root, admin, and audit local user accounts are permitted to access NSX appliances via SSH and CLI.

Note: User-added local accounts or system-generated local accounts (guestuser1 and guestuser2) are not authorized to access the CLI.

Resolution

Utilize local system user accounts(root, admin & audit) to directly access NSX appliances via SSH and CLI (admin is recommended for administrative tasks).

Additional Information

The ability to add local users is only available in 4.1 onwards

Administration Guide - Add a Local User

Feedback

thumb_up Yes

thumb_down No