VMware Cloud Community
AhmedTabl
Contributor
Contributor
‎09-03-2014 03:08 AM
Jump to solution

Reset an Expired vCenter Single Sign On Administrator Password on Windows.

Hello ,

I'm in a middle of Vcenter Support Assistance Appliance installation and configuration, and one of the needed entries to configure the appliance is the admin logon for SSO, I found that the admin account is expired. please check attached. (SSO-error01.jpg)

I thought it is never expire but unfortunately it expires after one year without notification.!!!!.

So I found this nice article that tells me what to do.

http://pubs.vmware.com/vsphere-51/index.jsp?topic=%2Fcom.vmware.vsphere.security.doc%2FGUID-06FF691C...

the first part asks me to use the web interface with Administrator privilege (which I font have), so I went through the second option by using cmd.

but when I run the command I receive the below error:

ssopass admin

Error: JAVA_HOME environment variable is not set.

please check attached. (SSO-error02.jpg)

Please advice.

BR

Ahmed Salah

Preview file
27 KB
Preview file
22 KB
0 Kudos
1 Solution

Accepted Solutions
schepp
Leadership
Leadership
‎09-03-2014 04:35 AM
Jump to solution

Hey Ahmed,

the SSL error comes up because you look up the IP addresss and not the FQDN.

To prevent this error use the -d switch of ssopass and specifiy the FQDN of your server:

ssopass -d https://servername.domain:7444/lookupservice/sdk admin

Tim

View solution in original post

0 Kudos
6 Replies
schepp
Leadership
Leadership
‎09-03-2014 03:24 AM
Jump to solution

Hi,

try to set the JAVA_HOME in your cmd before you run the command:

SET JAVA_HOME=C:\Program Files\VMware\Infrastructure\jre

AhmedTabl
Contributor
Contributor
‎09-03-2014 04:11 AM
Jump to solution

Hello Tim,

thanks for the support, it worked fine but after setting the Java home I received the below error:

C:\Program Files\VMware\Infrastructure\SSOServer\ssolscli

Using Lookup Service: https://172.16.5.144:7444/lookupservice/sdk (on the current machine).

Intializing registration provider...

Getting SSL certificates for https://172.16.5.144:7444/lookupservice/sdk

com.vmware.vim.vmomi.core.exception.CertificateValidationException: Server certificate assertion not verified and thumbprint not matched

Return code is: SslHandshakeFailed

1

Smiley Sad:smileyangry:

Any suggestions.

BR

Ahmed Salah

0 Kudos
schepp
Leadership
Leadership
‎09-03-2014 04:35 AM
Jump to solution

Hey Ahmed,

the SSL error comes up because you look up the IP addresss and not the FQDN.

To prevent this error use the -d switch of ssopass and specifiy the FQDN of your server:

ssopass -d https://servername.domain:7444/lookupservice/sdk admin

Tim

0 Kudos
AhmedTabl
Contributor
Contributor
‎09-03-2014 05:02 AM
Jump to solution

Dear Tim,

It is working supper fine.

Many thanks,

BR

Ahmed Salah

0 Kudos
a_p_
Leadership
Leadership
‎09-03-2014 08:38 AM
Jump to solution

Although this issue has already been resolved, you may want to take a look at http://kb.vmware.com/kb/2060150 which shows a workaround by editing the SQL database. Event after resetting the password through the command line, you may consider to reconfigure the password's maximum lifetime (steps 9 ... 13) to avoid this from happening again.

André

AhmedTabl
Contributor
Contributor
‎09-03-2014 11:53 PM
Jump to solution

Thanks A.P.

It is really helpful solution.

BR

Ahmed Salah

0 Kudos