A high rate of login failures occurs for an Active Directory (AD) service account on a Domain Controller. Additionally, when you log into the virtual machine with this service account, the system prompts for a password change, despite the account configuration set to never expire.

vSphere 8.0 U1

The issue is isolated to the Microsoft Active Directory service account configuration and state, which is external to VMware products.

• Verify that the affected Active Directory service account is not configured or utilized within vCenter Single Sign-On (SSO).

• Confirm the affected Virtual Machine is powered on and responding to ICMP ping requests to rule out fundamental network or power state issues.

• Investigate and remediate the service account lockout and password expiration prompts directly within Microsoft Active Directory.

• You do not need to perform any remediation action within the VMware environment, as the authentication failure is external to the VMware infrastructure stack.

For Active Directory account troubleshooting and password policy configuration, consult Microsoft documentation.