Each user password has an expiration date tracked by NSX-T Data Center. If you log in with an expired password, the error message, Your password has expired, appears. A notification also appears if your password is expiring soon. Depending on what release you are using and what user you are, there are different actions to take.

The admin user can reset the expired passwords for their own, as well as the audit and Enterprise Admin user, using the CLI. The admin user can reset the expired passwords for all other local users, but not themselves in the UI.

When the admin resets any local user's expired password using the CLI and UI, the password expiration date does not reset. To extend the password expiration date to a new date or to the default 90 days, the admin must change it using the CLI or API. Another quick way for the admin to reset a local user's password expiration date is to deactivate and then activate the user. For details, see Manage Local User’s Password or Name Using the CLI or Manage Local User Accounts.