Symptoms

• Alert in a vCenter after resetting a root password directly from the vCenter:
  "[1] account(s) has been disconnected. Visit Password Management page to take action."
  
  

VCF 9.0
vCenter 9.0
VCF Operations 9.0

1. Take a snapshot of the vCenter
2. Gather the vCenter old root password from the SDDC manager UI:
   Go to the Developer Center >Credentials >Get (Retrieve a list of credentials)
   Enter a value VCENTER in resourceType and EXECUTE
3. Reset the vCenter's root password with its old password:
   a. SSH into the vCenter with root user using the new password
   b. Clear the password history with the following command:
       cat /dev/null > /etc/security/opasswd
   c. Reset the root vCenter's root password with the old password:
     passwd root 
4. SSH into the SDDC Manager with vcf user and su to root
   Run the following command to get password failed workflow IDs:
   psql -h localhost -U postgres -d operationsmanager -c "select workflow_id, operation_type, transaction_status from passwordmanager.password_operations where transaction_status='FAILED' OR transaction_status='PREVALIDATION_FAILED';"
   Note:
   If there are some IDs, move to a step 5.
   If not, move to a step 6.
5. Delete the failed workflow ID from the Developer Center >Credentials >DELETE (cancel a failed credential task by its ID) and delete them by entering each ID, then EXECUTE.
6. From the VCF Operation, go to Fleet Management >Passwords >VCF instances >vCenter and remediate the root password.