To Set root Password expiry in esxi 4.1

I have  to set the password expiry [max number of days ]for root and other user available on esxi 4.1

please advice how to configure and check ?
Who is Participating?
MysidiaConnect With a Mentor Commented:
I believe the answer is no.    Aging functionality works in ESX but not ESXi.
If you need to enforce password changes,  then you must do so through administrative procedures,  as there is not a technical control available.

I would suggest the use of password vauling tools such as those available from Reflex or HyTrust,  to  implement automatic management of administrative passwords.

In general, ESXi local credentials are for initial setup and emergencies; not to be used for day-to-day management.

Furthemore,   ESXi5  does not support password aging, and  VMware has no plans to support it.

End of Support for  ESXi 4.1  is May 21, 2014.    You have approximately 6 months to update to a newer release,   before VMware will  no longer provide any security updates or technical assistance for any issues.
Seth SimmonsSr. Systems AdministratorCommented:
patronAuthor Commented:
Thanks, But am looking for ESXI 4.1
WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

TimotiStDatacenter TechnicianCommented:
The article posted by @seth2740 is valid for 4.1.
patronAuthor Commented:
Thanks ,agreed,pls confirm if this is applicable for esxi as well
patronAuthor Commented:
Great, this is something i was expecting for this question.
Thanks a lot again
Please can you share any kb or vmware recommandation  like password expiry and criteria should not be configured on esxi 4.1 ?
patronAuthor Commented:
can we do something for security hardning on esxi 4.1

like access of diff dir ?
user limitation/creataion  ?
MysidiaConnect With a Mentor Commented:
Remember the ESXi hosts can be joined to an AD domain,  and you can then enforce password policies  (on users other than root)  using AD password controls.

The vSphere ESXi 4.1  Security Hardening guide is here:

The absence of a feature from this list, is an indication that it is not there.
VMware is not known to be writing KB articles  on features that don't exist.

Password aging for root is clearly a  feature not frequently requested,  otherwise,  it would be supported,  or a workaround would be published.

For ESX  (not ESXi)  this is discussed in the security hardening guide:

To set the maximum password age, use the following command:
esxcfg-auth --passmaxdays=n

You have the option of lockdown mode   from vCenter
patronAuthor Commented:
patronAuthor Commented:
yes please
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.