mwolfe412
Contributor
Contributor

Root account locked permanently after 4 failed attempts - not sustainable.

Jump to solution

Per my own testing and posts in this forum, the root account becomes locked after 4 failed attempts.

If I understand correctly, the way to recover the account is to first reset the password via the process in KB52652.  Then, the account must be unlocked manually with this command, per this post:

/sbin/pam_tally2 -r -u root

We have automatic security scanning systems in place which periodically test common passwords against all of our systems, to ensure that nothing is using a weak or default password.

This effectively means that we have to use this onerous password reset process every time that we want to login to the root account, since it'll have been automatically locked out.

This does not happen with ESXi, vCenter, vROPs, LogInsight, etc. appliances.  Either the account does not get locked out, or is automatically unlocked after some time interval.

Please update the Skyline appliance to match the behavior of VMware's other appliances, or let me know if I'm missing something.

Thanks!

1 Solution

Accepted Solutions
sri_vmware
VMware Employee
VMware Employee

Hi richardmcg,

The password would be unlocked post 5 minutes.

Sincerely
Srikanth HS
Skyline Support Moderator

View solution in original post

0 Kudos
3 Replies
sri_vmware
VMware Employee
VMware Employee

Hi mwolfe412,

Welcome to communities !!!

Thank you for the feedback. We will discuss with engineering regarding the root password concern and get back to you.

Sincerely
Srikanth HS
Skyline Support Moderator
richardmcg
Contributor
Contributor

Hi Sri_VMware,

Did Engineering come back with anything useful?

0 Kudos
sri_vmware
VMware Employee
VMware Employee

Hi richardmcg,

The password would be unlocked post 5 minutes.

Sincerely
Srikanth HS
Skyline Support Moderator
0 Kudos