How to update the VCF 9 Automation password
search cancel

How to update the VCF 9 Automation password

book

Article ID: 417192

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • How to update the default "vmware-system-user" password on VCF Automation. 

Environment

  • VCF Automation 9.x

Resolution

Fleet Management is the new LCM (Lifecycle Manager). Unfortunately, getting passwords via the GUI is no longer available, but we can still fetch the passwords via API. Here is the filtered list of passwords within VCF Operations:

  • Login to VCF Operations. 
  • Navigate to the API Documentation : Developer Center - API & SDKs - Fleet Management API
  • Switch to Private Internal API's 

Step 1: Generate API Token:

  • To generate an API token, you can use either the VCF Operations Fleet Management appliance  logging into the shell as a root user or any Base64 encoding tool.
  • Encode your credentials in the following format:
    echo 'admin@local:youradminatlocalpassword' | base64
  • or if that doesn't work try echo -n 'admin@local:youadminatlocalpassword' | base64 
  • Copy the resulting Base64-encoded string. This will be used for authorization.

Step 2: Authenticate via Swagger UI:

  1. Open the API documentation in your browser:
    https://<vcf-operations-fleet-mgmt>/api/swagger-ui/index.html

  2. Navigate to VCF Operations → Developer Central → Fleet Management API → API Documentation.

  3. In the Swagger UI, locate the API Token section.

         When prompted for authorization, enter the following format in the input field:

         Basic <Base64-encoded credentials>

    1.  Replace <Base64-encoded credentials> with the string you copied in Step 1.

    2. Click Authorize to authenticate and begin executing API requests.

 

Step 3: Retrieve Passwords from Locker:

  1. Firstly let’s retrieve all passwords from the locker. So that we can use leverage the VMID out of the response and then retrieve specific password

          GET https://vcf-operations-fleetmanagement-appliance-fqdn/lcm/locker/api/passwords

     2. Above API will return response with the paginated list of passwords

 

[

  {

    "alias": "Default Password for vCenters",

    "createdOn": 1605791587373,

    "lastUpdatedOn": 1605791587373,

    "password": "PASSWORD****",

    "passwordDescription": "This password is being used for all my vCenters",

    "principal": "string",

    "referenced": true,

    "tenant": "string",

    "transactionId": "string",

    "userName": "[email protected]",

    "vmid": ""xxxx-xxxxx-xxxxx-xxxxx-xxxx"

  }

]

     3. Now retrieve the password by using the root password of VCF Operations fleet management appliance. Fetch the VMID of the password from the 

         POST https://vcf-operations-fleetmanmagement-appliance-fqdn/lcm/locker/api/passwords/view/{vmid}

         The Body should be {\"rootPassword\":\"Password!!\"}

         The response of the previous call will retrieve the password needed. 

Powered by Wolken Software