We encounter the following errors when renewing VMware Identity Manager certificates through Aria Suite Lifecycle.

Error Code: LCMVRAVACONFIG590062
Failed to check VMware Identity Manager root certificate on VMware Aria Automation. Check VMware Aria Suite Lifecycle logs for more details

VMware Identity Manager 3.3.7

Root password are expired on VMware Identity Manager nodes

• Connect to VIDM via SSH using the root account. If prompted to change the password, reset it accordingly.
• If you are unable to reset the password through the SSH session and the account appears to be locked, please follow the steps below.

1. In the vSphere Client, open the console of the desired node.
2. With the console open, restart or power on the virtual machine.
3. When the GRUB loader menu appears with the Photon splash screen, immediately press the letter e to launch the GNU GRUB edit menu. Navigate to the end of the line that starts with linux.

4. At the end of the line, add a space, then type rw init=/bin/bash which adds another option to the line.
5. Press F10 or CTRL+X to boot the appliance.

• The virtual appliance starts in single-user mode.

6. Type mount -o remount,rw / to mount the partition in read/write mode.
7. Type passwd root, and follow the prompts to create a new root password.
8. Validate the root account is not locked and unlock if needed.

• Type pam_tally2 -u root to determine if the root account is locked.
• If the value of Failures is 3 or more, type pam_tally2 -u root --reset to reset the Failures count and unlock the root account.

8. Type sync and press Enter to flush the data to disk.
9. Type umount / and press Enter.
10. Type reboot -f and press Enter.