VMware VCSA 6.5 – Reset / Recover SSO Password

This article will provide a step by step procedure to reset / recover VMware vCenter SSO password. VMware vCenter server is core component of VMware vSphere. “Single Sign-On”  is the main component of Platform Service Controller and responsible to provide a token to the users to access the solutions which are connected to the vCenter server. SSO acts like an authentication broker and it simplifies the authentication of VMware vSphere. Let’s walk through that how to reset /recover the SSO password.

Prerequisite: You must have VCSA’s root password to reset/recover the SSO account password. If you forget the VCSA 6.5’s root password, please check out here.

 

1. Login to VMware vCenter server appliance as root user account.

login as: root
VMware vCenter Server Appliance 6.5.0.12000
Type: vCenter Server with an embedded Platform Services Controller
root@192.168.2.212's password:
Connected to service
* List APIs: "help api list"
* List Plugins: "help pi list"
* Launch BASH: "shell"
Command>

 

2. Enable the bash shell access if not already.

Command> set --enabled true
Ambiguous API call set --enabled true
Command> 

 

3. Access the bash shell of VCSA 6.5.

Command> shell
Shell access is granted to root
root@photon-machine [ ~ ]#

 

4.Access vdcadmintool to reset SSO account password.

root@photon-machine [ ~ ]# /usr/lib/vmware-vmdir/bin/vdcadmintool
==================
Please select:
0. exit
1. Test LDAP connectivity
2. Force start replication cycle
3. Reset account password
4. Set log level and mask
5. Set vmdir state
6. Get vmdir state
7. Get vmdir log level and mask
==================

 

5. Select option “3” to reset the account password. The system automatically generates the new password on the terminal. You must enter the account name for which you would like to reset the password.

root@photon-machine [ ~ ]# /usr/lib/vmware-vmdir/bin/vdcadmintool
==================
Please select:
0. exit
1. Test LDAP connectivity
2. Force start replication cycle
3. Reset account password
4. Set log level and mask
5. Set vmdir state
6. Get vmdir state
7. Get vmdir log level and mask
==================
3
Please enter account UPN : administrator@vsphere.local
New password is -
i_M4ETdX$OC:>/VF6\j{

 

6. Access the vCenter server webpage & tried to login with new SSO password.

VMware vCenter server 6.5 - Login page
VMware vCenter server 6.5 – Login page

 

7. Change the password by selecting the user on right top.

VCSA 6.5 - change password
VCSA 6.5 – change password

 

8. You must provide the existing temporary password to set the desired password for vCenter server SSO.

Change VCSA 6.5 password - VMware
Change VCSA 6.5 password – VMware

 

Hope this article is informative to you. Share it! Comment it !! Be Sociable !!!

VMTURBO-CLOUD-CAPACITY

Leave a Reply

Your email address will not be published. Required fields are marked *