Local users' password expired "thousands of days ago" after admin user changed their password
search cancel

Local users' password expired "thousands of days ago" after admin user changed their password

book

Article ID: 414821

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

  • The status of a local user shows as "Password Expired" after the admin user changes the password:



  • The NSX CLI command get user testuser password-expiration reports that the password has expired a thousand days ago:
    Fri Oct 17 2025 UTC 14:18:54.909
    Password expires 90 days after last change,
    Current password expired 20288 days ago.

  • The NSX CLI command get user testuser status reports that is expired
    Fri Oct 17 2025 UTC 14:26:39.085
    Full name:
    Username:  testuser
    Status:    PASSWORD_EXPIRED

Cause

This behavior is expected as part of the password change process. For security reasons, the NSX administrator should not have access to a user's password. Therefore, when the administrator changes a local user's password, the status will automatically change to "Password Expired." 

Resolution

As part of the workflow, the local user must then log in to the NSX UI to change their password themselves. After changing their password, the user's status will appear as "Active".

Steps to reset and validate the password:

  1. Log in to the NSX using the admin account.

  2. Navigate to Administration → Users.

  3. Reset the password for the Localuseraccount user.

  4. Log out of the UI as admin.

  5. Log in using the Localuseraccount user with the newly reset password.

  6. Upon login, the UI should prompt you to change the password again. Please complete this step.


The key point to note is that when logging in with the Localuseraccount  user, the UI must prompt for a password change. If this prompt does not appear or if login fails, Please contact Broadcom support.

 

 

Powered by Wolken Software