With SDDC Manager, you can schedule automatic password rotation for both the root and the adminVMware Aria Operations for Logs accounts. You set the password rotation interval to a period shorter than the period in your password expiration policy.

To avoid password expiry before the automated rotation triggers, ensure that the next password rotation occurs between the last modified date and the password expiration date.

Procedure

VMware Cloud Foundation 5.2.1 or later

1. Log in to SDDC Manager at https://<sddc_manager_fqdn> with a user assigned the Admin role.
2. In the left pane, navigate to Security > Password management.
3. On the Password management page, filter the list to include all VMware Aria Operations for Logs users.
4. Select the check boxes for all root accounts and, from the Schedule rotation drop-down menu, select your desired rotation interval.
5. In the Confirm changes dialog box, click Yes.
6. Repeat the procedure for the admin account.

VMware Cloud Foundation 5.2 or earlier

1. Log in to SDDC Manager at https://<sddc_manager_fqdn> with a user assigned the Admin role.
2. In the left pane, click Security > Password management.
3. On the Password management page, from the components list, select Operations for Logs.
4. In the table, select the check boxes for all root accounts and, from the Schedule rotation drop-down menu, select your desired rotation interval.
5. In the Confirm changes dialog box, click Yes.
6. Repeat the procedure for the admin account.