Hello,
I'm new to the vSphere Server and it seems like I did my first big mistake.
I have installed a VMware ESXi 6 Server and I am not able to login to the admin account with the vSphere Client anymore.
If I use the same credentials to login via ssh or PowerCLI, I can connect and everything is working. But when I use the vSphere client it says that the username or password is wrong.
I tried to add a new user in the shell but when I try to log in with this user via the vSphere Client, I get the message that the account does not have the permission to log in.
I also tried to use "pam_tally2 --user=root --reset" to reset the count of failed logins, but it always says 0 failures and doesn't change anything for me.
Changing the admin-Password (in the shell via passwd) does not help either.
Is there any way to grant login-permissions for the vSphere-Client for users out of the shell or the PowerCLI?
Or is there any way to "reactivate" or "unlock" my admin-account?
Thanks in advance,
DerpDerpson
[root@VMS2:~] esxcli system permission list
Principal Is Group Role Role Description
---------- -------- -------- --------------------------------------------
dcui false Admin Full access rights
root false Admin Full access rights
vi-admin00 false Admin Full access rights
vpxuser false Admin Full access rights
nagios false ReadOnly See details of objects, but not make changes
vi-user00 false ReadOnly See details of objects, but not make changes
esxcli system permission set -r=Admin -i=nagios
[root@VMS2:~] esxcli system permission list
Principal Is Group Role Role Description
---------- -------- -------- --------------------------------------------
dcui false Admin Full access rights
nagios false Admin Full access rights
root false Admin Full access rights
vi-admin00 false Admin Full access rights
vpxuser false Admin Full access rights
vi-user00 false ReadOnly See details of objects, but not make changes
This was an example of how to assign the user rights from ssh.
Can you try with your test user?
Brgds
According to documentation the account lockout is for a temporary period and only for ssh not the the client.
Did you assign permissions to the new user you created for testing? By default it has no permissions.
Thanks for your reply.
I thought it would also concern the client.
I didn't assign any permissions to the new user, because it couldn't figure out how to do this with the shell/PowerCLI.
Hi, you may use following command for create new user through SSH and assign root permission to created new user.
/usr/lib/vmware/busybox/bin/busybox adduser -s /bin/sh -G root -h / testing
after run above command, system will ask for put new password, new password should be matched with password security policy.
Hi,
I added a user with the command you stated, and set a password. That worked.
But when use the vSphere client and try to login with the new user and the password I get the message, that I don't have permissions to log in.
Logging the new user in via ssh works fine.
[root@VMS2:~] esxcli system permission list
Principal Is Group Role Role Description
---------- -------- -------- --------------------------------------------
dcui false Admin Full access rights
root false Admin Full access rights
vi-admin00 false Admin Full access rights
vpxuser false Admin Full access rights
nagios false ReadOnly See details of objects, but not make changes
vi-user00 false ReadOnly See details of objects, but not make changes
esxcli system permission set -r=Admin -i=nagios
[root@VMS2:~] esxcli system permission list
Principal Is Group Role Role Description
---------- -------- -------- --------------------------------------------
dcui false Admin Full access rights
nagios false Admin Full access rights
root false Admin Full access rights
vi-admin00 false Admin Full access rights
vpxuser false Admin Full access rights
vi-user00 false ReadOnly See details of objects, but not make changes
This was an example of how to assign the user rights from ssh.
Can you try with your test user?
Brgds
That's it. Thank you very much.