During the deployment of a new Workload Domain (WLD), the SDDC Manager orchestration workflow fails at approximately 74% completion.

The specific task causing the failure is "Configuring NSX Manager for backup schedule." Users may observe that the workflow reaches a terminal state. Manual attempts to modify the workflow.json or skip the task do not resolve the issue and often lead to a broken orchestration state, preventing further progress or remediation within the current deployment task.

VMware Cloud Foundation (VCF) / SDDC Manager

The failure is due to a disconnected  account status within the SDDC Manager Password Management module.

• Disconnected Account State: The vCenter Root and internal Backup user accounts were in a "Disconnected" state.
• Authentication Failure: Because these accounts were not in an ACTIVE status, the SDDC Manager could not authenticate against the necessary services to inject SFTP credentials into the NSX Manager backup configuration.
• Database Mismatch: Discrepancies between the credentials stored in the SDDC Manager database for the BACKUP username and the actual provided credentials caused the backup scheduling task to timeout or return an unauthorized error.

The failed deployment must be cleaned up and the credential health must be restored before attempting a redeployment.

Step 1: Decommission Failed Resources:  The workflow reached a terminal state and cannot be bypassed, a clean slate is required.

Action: Perform a Full Decommission of the partially deployed Workload Domain.

Purpose: This clears the blocked NSX Virtual IP (VIP), stale manager nodes, and associated resources that may conflict with a new deployment.

Step 2: Remediate vCenter Root Credentials

1. Log in to the vCenter Server via SSH using the current root credentials.
2. If expired or out of sync, reset the root password using the vCenter CLI; Reset vCenter Server Appliance root password
3. In the SDDC Manager UI, navigate to Administration > Password Management.
4. Locate the vCenter entity and select Remediate. Input the updated password to return the account to an ACTIVE state.

Step 3:Remediate Internal Backup User.

1. In the SDDC Manager UI, navigate back to Password Management.
2. Identify the Backup user account currently in a "Disconnected" state.
3. Perform a password reset/remediation for the Backup user.
4. Verify that the status transitions from Disconnected to ACTIVE.

Step 4: Validate Environment Health before restarting the deployment, ensure the following:

• All management component passwords (vCenter, ESXi, NSX, Backup) show as ACTIVE in the SDDC Manager.

Step 5: Redeployment

1. Re-initiate the Workload Domain Deployment wizard.
2. The automated workflow will now successfully inject the synchronized SFTP credentials into the NSX Manager backup configuration.