SDDC - ESXi Service Account - Password remediate for resource fails after applying custom password length on host

search cancel

SDDC - ESXi Service Account - Password remediate for resource fails after applying custom password length on host

book

Article ID: 401681

calendar_today

Updated On:

Products

VMware SDDC Manager

Issue/Introduction

Custom password policy was applied to ESXi hosts, then SDDC password remediation failed. Password shows "disconnected".

Validation of password of ESXi host: has failed

Environment

SDDC 5.2.x

Cause

Custom password policy was applied to ESXi hosts, then password remediation failed. This was due to the mismatch between the length requirement and the actual password length.

Resolution

Workaround:

Remove the custom password requirements from the ESXi host.
Retrieve the service accounts credentials from SDDC Manager
SSH into the ESXi host as root
Update the service account password to match SDDC database
passwd svc-vcf-labwld1vxr05
Clear any password lockouts
pam_tally2 -u svc-vcf-labwld1vxr05 -r
SSH into the ESXi host with the service account
Run a password remediation from SDDC towards the service account.

Additional Information

Configure the Local User Password Complexity Policy for ESXi

Feedback

thumb_up Yes

thumb_down No