WilliamLam.com

  • About
    • About
    • Privacy
  • VMware Cloud Foundation
  • VKS
  • Homelab
    • Resources
    • Nested Virtualization
  • VMware Nostalgia
  • Apple

Recovering ESXi 7.x & 8.x host after forgetting or losing root password

10.23.2024 by William Lam // 14 Comments

The general guidance and quickest way to recover an ESXi host if you have forgotten or lost the root password is to reset using vSphere Host Profiles if it was managed by vCenter Server or simply reinstall ESXi which would allow you to preserve the existing VMFS volumes along with any workloads that may reside on them.

In the past, it was also possible to reset the ESXi root password by booting the system into Linux and then manually updating the /etc/shadow file, which is simliar to how you could reset the password on a Linux-base system and you can find a number of blog articles outlining the details. With the introduction of the ESXi Configuration Store, the previous methodology no longer works for modern ESXi releases starting from ESXi 7.0 Update 1 and later.

Having said that, I know this is still a topic that comes up frequently, especially in the context of administrators joining a brand new company where the ESXi root password has not been properly documented or an admin being asked to support a random set of standalone ESXi hosts that have no owners. Regardless of the scenario, while a reinstallation is the quickest way to recover, it certainly would be nice to be able to maintain the original configuration, especially if there is no documentation to begin with.

While there has been various snippets of information shared online (here, here and here), which includes information from myself, I figured it might be good to figure out the latest process for recovering an ESXi 7.x or 8.x host without requiring a reinstallation.

[Read more...]

Categories // ESXi, Security Tags // configstorecli, ESXi, password

Quick Tip - SSH Server, Client & Authorized Key Configurations for ESXi 8.0 Update 2 and later

10.14.2024 by William Lam // 4 Comments

The general best practice is to disable SSH on your ESXi host by default and if/when you need access, you can turn it on temporarily and disable it when you have completed your task.

For users that need to modify the default SSH configurations whether that is on the server side, client side or setting up SSH authorized keys, this was historically accomplished by manipulating the various SSH configuration files and then reloading the service, if applicable.

With the introduction of the ESXi Configuration Store in vSphere 7.0 Update 1, the process is now different with ESXi 8.0 Update 2 and later for services that requires a configuration file to run such as SSH, NTP or SNMP to name a few.

[Read more...]

Categories // Automation, ESXi Tags // configstorecli, ESXi, ssh, ssh keys

Updating handshakeTimeoutMs setting for ESXi 7.x & 8.x using configstorecli

05.14.2024 by William Lam // 3 Comments

With the introduction of the ESXi Configuration Store back in vSphere 7.0 Update 1, all ESXi configuration changes should be managed using either the configstorecli for an individual ESXi host or leveraging the new vSphere Configuration Profiles (VCP) for scale with vCenter Server.

For certain ESXi hostd configurations such as configuring the handshakeTimeoutUs property, which has changed locations from several locations including /etc/vmware/hostd/config.xml and /etc/vmware/vpxa/vpxa.cfg to now /etc/vmware/rhttpproxy/config.xml in the latest ESXi 8.x release, it can be challenging to figure out the correct configstorecli syntax.

Having spent some time playing with the configstorecli, I was able to quickly help a customer recently who was looking to update the handshakeTimeoutUs property for ESXi 7.x and I wanted to make it easy for folks to find the syntax for both ESXi 7.x and 8.x.

[Read more...]

Categories // Automation, ESXi, vSphere 7.0, vSphere 8.0 Tags // configstorecli, vSphere 7.0, vSphere 8.0

  • 1
  • 2
  • Next Page »

Search

Thank Author

Author

William is Distinguished Platform Engineering Architect in the VMware Cloud Foundation (VCF) Division at Broadcom. His primary focus is helping customers and partners build, run and operate a modern Private Cloud using the VMware Cloud Foundation (VCF) platform.

Connect

  • Bluesky
  • Email
  • GitHub
  • LinkedIn
  • Mastodon
  • Reddit
  • RSS
  • Twitter
  • Vimeo

Recent

  • VMware Flings is now available in Free Downloads of Broadcom Support Portal (BSP) 05/19/2025
  • VMUG Connect 2025 - Minimal VMware Cloud Foundation (VCF) 5.x in a Box  05/15/2025
  • Programmatically accessing the Broadcom Compatibility Guide (BCG) 05/06/2025
  • Quick Tip - Validating Broadcom Download Token  05/01/2025
  • Supported chipsets for the USB Network Native Driver for ESXi Fling 04/23/2025

Advertisment

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Copyright WilliamLam.com © 2025