Each NSX Manager and NSX Edge appliance has three local accounts, admin, audit, and root. You can manage the password for these users but you cannot add or delete users.

The audit user is not active by default. To activate it, log in as admin and run the set user audit command and provide a new password. When prompted for the current password, press the Enter key.

By default, user passwords expire after 90 days. You can change or disable the password expiration for each user.

When the password of a local user on the NSX Manager will expire within 30 days, the NSX Manager web interface displays a password expiration notification. If you set a local user's password expiration to 30 days or fewer the notification is always present.

Starting in NSX-T Data Center 2.5.1, the notification includes a "Change Password" link. Click the link to change the local user's password from the web interface.


Familiarize yourself with the password complexity requirements for NSX Manager and NSX Edge. See "NSX Manager Installation" and "NSX Edge Installation" in the NSX-T Data Center Installation Guide.


  1. Log in to the appliance's CLI.
  2. To change the password, run the set user command. For example:
    nsx> set user admin
    Current password:
    New password:
    Confirm new password:
  3. To get the password expiration information, run the get user <username> password-expiration command. For example:
    nsx> get user admin password-expiration
    Password expires 90 days after last change
  4. To set the password expiration time in days, run the set user <username> password-expiration <number of days> command. For example:
    nsx> set user admin password-expiration 120
  5. To disable password expiration, run the clear user <username> password-expiration command. For example:
    nsx> clear user admin password-expiration