WilliamLam.com

  • About
    • About
    • Privacy
  • VMware Cloud
  • Tanzu
    • Application Modernization
    • Tanzu services
    • Tanzu Community Edition
    • Tanzu Kubernetes Grid
    • vSphere with Tanzu
  • Home Lab
  • Nested Virtualization
  • Apple
You are here: Home / Default Password for vCenter SSO Admin Account on VCSA

Default Password for vCenter SSO Admin Account on VCSA

09.21.2012 by William Lam // 14 Comments

I thought I share this quick tidbit about the VCSA (vCenter Server Appliance) default password for the vCenter SSO Administrator account as I was just asked about it today and this was something I had research just earlier in the week. In the Windows version of vCenter SSO installation, users are prompted during the install to select a password for this account, you might have seen it show up as [email protected]. For the VCSA, vCenter SSO is already installed and you might be wondering what the default password is?

Well, the answer is ... there is no default password. During the installation process, there is a random password that is generated and once the installation is complete, the password is then immediately removed. This is a good thing from a security perspective, by not having a default password set. This account is not only a vCenter SSO Administrator but it also the only account that has access to the internal RSA IMS system. You should definitely go in and set a password for this account after setting up your VCSA which can only be done through the vSphere Web Client.

Here are the steps:

1. Click on the Administration tab on the left hand side of the vSphere Web Client navigation bar.

2. Next click on "SSO Users ad Groups" and you should see the admin user account.

3. Lastly, you just need to right click and edit the user or select the pencil icon and set a password for the admin user account. Be sure to use a strong password, as there is a password validation before the system accepts the change.

Big thanks goes out to Michael Haines for helping me track down this answer about the default (or not so default) password for the admin account on the VCSA.

More from my site

  • Dude, Where's My vCenter Server 5.1 Components Installed At?
  • VCSA (vCenter Server Appliance) 5.1 VCDB & SSODB Password
  • Configuring Additional VCSA 5.1 as vSphere Web Client Servers
  • How to automatically repoint & failover VCSA to another replicated Platform Services Controller (PSC)?
  • vCenter Server 6.0 Tidbits Part 10: Automating SSO Admin configurations

Categories // Uncategorized Tags // admin, password, sso, vcsa, vcva, vSphere 5.1

Comments

  1. Loren says

    10/02/2012 at 8:53 pm

    Any way to script this while logged into an ssh session as root?

    Reply
  2. Ed Grigson says

    10/17/2012 at 6:25 pm

    Thanks for the post William, just ran into this while configuring SSO in vShield Manager 5.1.

    Reply
  3. Anonymous says

    01/09/2013 at 10:48 am

    Hi; nice article.

    I am baffled. If there is no password to login to the web client interface for [email protected], how does initially log into the web client at all?

    I've tried blank passwords and the root account's password, but to no avail.

    My assumption is that I need to first get into SSO admin in order to assign rights to AD accounts, right?

    Thanks,

    Kim

    Reply
    • William says

      01/09/2013 at 4:07 pm

      @Kim,

      As mentioned in the article "During the installation process, there is a random password that is generated and once the installation is complete, the password is then immediately removed."

      You don't login as [email protected] when you first login, you will login using root. From there you could add additional local SSO users OR connect to directory source such as openLDAP or AD and set the appropriate permissions for others to login.

      Reply
  4. Phil P says

    02/01/2013 at 2:31 am

    I have lost my access to vCenter and hosts when logging to Web Client with AD account. I see everything with Root, recking my brain... My servers took a hard shutdown do to power outage.

    Reply
  5. Lewis Bowman says

    09/26/2014 at 7:18 am

    Does this still apply to VCSA 5.5, since the *protected email* is now privileged automatically with SSO ?

    Reply
    • William Lam says

      09/26/2014 at 1:13 pm

      Well this is no longer required as the default password for *protected email* is vmware, but you still may want to go in and change it from the default.

      Reply
  6. Kishore says

    02/19/2015 at 3:58 pm

    Hi William

    Can we query the embedded DB , if so which user/password to use ?

    Reply
    • William Lam says

      02/19/2015 at 4:36 pm

      Take a look at http://www.virtuallyghetto.com/2012/11/vcsa-vcenter-server-appliance-51-vcdb.html

      You can also find all my VCSA resources here http://www.virtuallyghetto.com/vcsa

      Reply
  7. Arne says

    03/04/2015 at 5:57 am

    Hi William
    Do you know how to reset the *protected email* password on 5.1? the only article i can find is this using the vdcadmintool - but this directory doesnt exist in 5.1 on my vcenter server.
    http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2034608
    Arne

    Reply
    • William Lam says

      03/04/2015 at 6:22 am

      Hi Arne,

      I don't. For this, I would recommend contacting VMware GSS, they should be able to help with this request.

      Reply
  8. Ricardo says

    04/12/2016 at 3:33 pm

    what is the difference between vSphere.local vs system.domain

    Reply

Trackbacks

  1. vsphere default login - Credit One says:
    02/09/2021 at 8:17 am

    […] 7. Default Password for vCenter SSO Admin Account on VCSA […]

    Reply
  2. default vcenter login - Credit One says:
    02/24/2021 at 9:25 pm

    […] 5. Default Password for vCenter SSO Admin Account on VCSA […]

    Reply

Thanks for the comment! Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Search

Author

William Lam is a Senior Staff Solution Architect working in the VMware Cloud team within the Cloud Infrastructure Business Group (CIBG) at VMware. He focuses on Cloud Native technologies, Automation, Integration and Operation for the VMware Cloud based Software Defined Datacenters (SDDC)

Connect

  • Email
  • GitHub
  • LinkedIn
  • RSS
  • Twitter
  • Vimeo

Recent

  • How to disable the Efficiency Cores (E-cores) on an Intel NUC? 03/24/2023
  • Changing the default HTTP(s) Reverse Proxy Ports on ESXi 8.0 03/22/2023
  • NFS Multi-Connections in vSphere 8.0 Update 1 03/20/2023
  • Quick Tip - How to download ESXi ISO image for all releases including patch updates? 03/15/2023
  • SSD with multiple NVMe namespaces for VMware Homelab 03/14/2023

Advertisment

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Copyright WilliamLam.com © 2023