With SDDC Manager, you can schedule automatic password rotation for the root account of VMware Aria Automation appliances. You set the password rotation interval to a period shorter than the period in your password expiration policy.

To avoid password expiry before the automated rotation triggers, ensure that the next password rotation occurs between the last modified date and the password expiration date.

Procedure

VMware Cloud Foundation 5.2.1 or later

1. Log in to SDDC Manager at https://<sddc_manager_fqdn> with a user assigned the Admin role.
2. In the left pane, navigate to Security > Password management.
3. On the Password management page, filter the list to include all VMware Aria Automation accounts.
4. Select the check boxes for all root accounts and, from the Schedule rotation drop-down menu, select your desired rotation interval.
5. In the Confirm changes dialog box, click Yes.
6. Repeat the procedure for the admin account.

VMware Cloud Foundation 5.2 or earlier

1. Log in to SDDC Manager at https://<sddc_manager_fqdn> with a user assigned the Admin role.
2. In the left pane, click Security > Password management.
3. On the Password management page, from the components list, select Automation.
4. In the table, select the check boxes for all root accounts and, from the Schedule rotation drop-down menu, select your desired rotation interval.
5. In the Confirm changes dialog box, click Yes.