• VMware Identity Manager shows as needing to be remediated in the SDDC Manager UI.

• The root account expired, and the password was reset or expired using the exact same password (e.g., by clearing the shadow file for password history).

• Even though the actual password remains identical to the one stored in SDDC Manager, the UI continues to flag the account for remediation.

• VMware Cloud Foundation (SDDC Manager)

• VMware Identity Manager

Once the root account expires, an expiry notification is sent to SDDC Manager. Even if you manually reset the password at the OS level using the identical password, SDDC Manager has already registered the expired state. To clear this notification and resynchronize the status, the password must be formally remediated through the SDDC Manager UI.

1. Log in to SDDC Manager at https://<sddc_manager_fqdn> with a user assigned the Admin role.

2. In the left pane, navigate to Security > Password management.

3. On the Password management page, filter the list to include all required accounts.

4. In the table, click the vertical ellipses for the account whose password you want to remediate, and select Remediate password.

5. In the Update password dialog box, enter the new password you want to set for the user, and click Update.

6. Repeat the procedure for the remaining accounts.

Password Remediation for Identity and Access Management for VMware Cloud Foundation