When the vmware-system-user password has been lost or forgotten and the current password cannot be retrieved from the VCF Fleet Manager appliance, the steps in this KB can be used to reset the password.

• VCF Operations 9.0.x
• VCF Identity Broker 9.0.x

1. Log in to the management domain vCenter's vSphere UI

2. Open a console to the appliance VM

3. Restart the appliance VM

4. In the Appliance VM console window, type 'e' when the Photon splash screen is seen to edit the Grub boot menu

5. Append the following to the line that starts with linux /$photon_linux...

    rw init=/bin/bash

   

6. Press CTRL+X or F10 to boot

7. Change the vmware-system-user password

   passwd vmware-system-user

8. Unlock the vmware-system-user account

   faillock --reset

9. Reboot the appliance VM

   reboot -f

10. Repeat steps 2 through 8 for the remaining VCF Identity Broker appliance VMs

11. Allow 5-10 minutes for VCF Identity Broker services to fully start

12. Log in to VCF Operations UI and navigate to Fleet Management > Passwords > VCF Management

13. Check VCF Identity Broker in the Filters and click Apply

14. Select the Radio button next to the first vmware-system-user entry and click Remediate Password

15. Enter the password that was set in Step 7 in the Password and Confirm Password fields then click Remediate Password

16. Repeat steps 13 through 15 for the remaining vmware-system-user entries

17. Navigate to Fleet Management > Lifecycle VCF Management > Components and click Manage next to identity broker

18. Click Trigger Inventory Sync and then click Submit

19. Verify the inventory sync completes successfully