esxi root user permission

Pochoclo Loco
Pochoclo Loco used Ask the Experts™
Hi there, root user was changed from Administrator role, to a very privilage role. Is there a way I can rolback this action, because now I can't do any administration task.
Is there a way to change permission from other user, like dcui?
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Bradley FoxLAN/WAN Systems Administrator
To resolve this issue you have to manually edit the authorization.xml or authentication.xml file depending on the version of product that you  are using. To correct the issue:
Connect to the ESX host's service console via SSH or local console.

Note: ESXi connection to the local console is made using the "unsupported mode"
Open this file in a text editor :

Note: In ESX4.1 and later the file name is authorization.xml

Change the existing value of the <ACEDataRoleId> </ACEDataRoleID> to -1.
After editing this file, save it and restart the management agents on the host or reboot the host.



Thank you for the reply. I also saw that I have to change it using nano.
I can't access the ESXi Console:
-I hit Alt+F1
-Type unsupported, hit enter, but nothing ever happend
So I can't access the console.
Can you help me out with that?
Bradley FoxLAN/WAN Systems Administrator
You have to enable the service first.

Enabling ESXi Shell access using the Direct Console User Interface
Use the direct console user interface to enable the ESXi Shell:
  1. From the Direct Console User Interface, press F2 to access the System Customization menu.
  2. Select Troubleshooting Options and press Enter.
  3. From the Troubleshooting Mode Options menu, select Enable ESXi Shell.
  4. Enable ESXi Shell
  5. Enable SSH

Press Enter to enable the service.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!


Thanks for the follow up, now it ask me login and password. I imagine is Root and its password, right?


I can't get past unsupported mode, I enable both services and when I got to the console to try login, I log with root but it says I don't have authorization.
LAN/WAN Systems Administrator
If you do not have another user setup on the ESXi host you will have to follow the instructions here to boot from a Linux live CD.


Well, now I know you can't mess around with root without having a backup user.
Thanks for your help!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial