Month: October 2021

How to fix vCenter password expiration “Exception in invoking authentication handler User password expired”

The Appliance was deployed more than 90 days ago with default settings. Logging in to the VAMI page of a vCenter (https://:5480) fails with the message “Exception in invoking authentication handler User password expired”

Login to the VCSA Appliance Shell (SSH or VM Console) is working.

Check password expiration
root@localhost [ ~ ]# chage -l root
You are required to change your password immediately (password expired)
chage: PAM: Authentication token is no longer valid; new one required
Change password
root@localhost [ ~ ]# passwd root
New password:
Retype new password:
passwd: password updated successfully
Change expiration – use it only for LABs …
root@localhost [ ~ ]# chage -M -1 root

Verify password expiration

root@localhost [ ~ ]# chage -l root
Last password change : Dec 21, 2021
Password expires : never
Password inactive : never
Account expires : never
Minimum number of days between password change : 0
Maximum number of days between password change : -1
Number of days of warning before password expires : 7

Links:

Field Notice: FN – 70432 – Improved Memory RAS Features for UCS M5 Platforms – Software Upgrade Recommended – 4.2(1i)

I recommend upgrade to a Server Firmware Bundle that includes ADDDC Sparing to expand the memory error coverage – 4.2(1i). More info:

Handling RAS events

When BANK-level or RANK-level RAS events are observed (and PPR is enabled):

  1. Verify that no other DIMM faults are present (for example, an uncorrectable error)
  2. Schedule a maintenance window (MW).
  3. During MW, put the host in maintenance mode and reboot the server to attempt a permanent repair of the DIMM using Post Package Repair (PPR).
    1. If no errors occur after reboot, PPR was successful, and the server can be put back into use.
    2. If new ADDDC events occur, repeat the reboot process to perform additional permanent repairs with PPR.
  4. If an uncorrectable error occurs after reboot, replace the DIMM.

Release 4.1(1) firmware generates a Major severity fault for all BANK and RANK RAS events so that proactive action can be taken relative to a critical ADDDC defect CSCvr79388.

Releases 4.1(2) and 4.1(3) firmware generates a Major severity fault for RANK RAS events on advanced CPU SKUs. BANK RAS events will generate a fault for standard CPU SKUs.

Problem Symptom

Due to memory DIMM errors and architectural changes in memory error handling on Intel Xeon Scalable processors (formerly code-named “Skylake Server”) and 2nd Gen Intel Xeon Scalable processors (formerly code-named “Cascade Lake Server”), Cisco UCS M5 customers that experience memory DIMM errors might experience a higher rate of runtime uncorrectable memory errors than they experienced on previous generations with default SDDC Memory RAS mode.

Workaround/Solution

Cisco recommends that you upgrade to a Server Firmware Bundle that includes ADDDC Sparing to expand the memory error coverage. Refer to this table for supported and recommended firmware that includes ADDDC Sparing.

 Server Firmware That Supports ADDDC SparingRecommended Server Firmware
UCS M5 Blades and Integrated UCS M5 Rack Servers3.2(3p) or later
4.0(4i) or later
4.1(1d) or later		4.1(3d) or later
Defect IDHeadline
CSCvq38078UCSM:Default option for “SelectMemory RAS configuration” changed to ADDDC sparing
Links

Time for Change with Kit Colbert

Time for Change with Kit Colbert

Time for Change with Kit Colbert

Change is inevitable, it’s the only constant we have in life. Growth is optional. It is not necessary to change. Survival is not mandatory~ W Edwards Demming. To be able to handle change is the great differentiator. A company/person with the agility to see the change coming can adapt the quickest, one that has the change impact thrust upon it must respond, and that which can’t adapt will not survive. Change happens gradually, gradually – then suddenly. There is always a catalyst for change. Sometimes it’s a nice to have business need, other times it’s a hurricane that wipes out your entire business. The catalyst only determines the speed. Preparedness is essential in either situation. In this series, Time for Change, Kit Colbert talks…Read More

VMware Social Media Advocacy

Updates to Nested ESXi Virtual Appliance for…

Updates to Nested ESXi Virtual Appliance for vSphere 7.0 Update 3

Updates to Nested ESXi Virtual Appliance for…

✔️Corrected vSphere 7.0 Update 3 Release Note URLs 🔸vCenter:https://t.co/pQxSj5ltxk 🔹ESXihttps://t.co/qrKrtmo87c https://t.co/oYMMWVWmWy — William Lam (@lamw) October 5, 2021 vSphere 7.0 Update 3 officially GA’ed this morning and I am happy to share a quick that my Nested ESXi Virtual Appliance (OVA and Content Library) has also been updated to support the latest release. In addition, […]

VMware Social Media Advocacy

Introducing VMware Tanzu Community Edition

Introducing VMware Tanzu Community Edition

Today is a big day for the Tanzu team at VMware. It’s a day we’ve long been looking forward to, and a day that we’d like to celebrate with you. Just this morning we released VMware Tanzu Community Edition, a freely available, community-supported, open source distribution of VMware Tanzu that […]

VMware Social Media Advocacy