As a security measure, you can rotate passwords for the logical and physical entities on all racks in your system. The process of password rotation generates randomized passwords for the selected accounts.

Password rotation does not change the password of the SDDC Manager 仮想マシン's root account. Also, the lookup password command does not report this password.

Prerequisites

  • Verify that there are no currently failed workflows in your Cloud Foundation system. To check for failed workflows, click Dashboard in the navigation pane and expand the Tasks pane at the bottom of the page.
  • Verify that no active workflows are running or are scheduled to run during the brief time period that the password rotation process is running. It is recommended that you schedule password rotation for a time when you expect to have no running workflows.

Procedure

  1. From the navigation pane, choose Administration > Security > Password Management.

    The Password Management page displays a table with detailed information about all domains, including their component, credential type, FQDN, IP address, and user name. This table is dynamic. Each column can be sorted.

    You can click the filter icon next to the table header and filter the results by a string value. For example, click this icon next to User Name and enter admin to display only domains with that user name value.

  2. Select one or more domains whose password(s) you want to rotate.
  3. Click Rotate at the top of the page.

    When asked to confirmed, click Rotate or Cancel as appropriate in the alert box.

    If you proceeded with the rotation, a message appears at the top of the page showing the progress of the operation. The Tasks panel also shows detailed status of the password rotation operation. Click on the task name to view sub-tasks.

    As each of these tasks are run, the status is updated. If the Tasks panel shows the task as having failed, click Retry.

Results

Password rotation is compete when all sub-tasks are completed successfully.