NVP-vProxy: How to update or change vProxy admin or root password

Summary: This KB provides instructions for how to reset the NetWorker VMware Protection (NVP) vProxy appliance credentials.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

The Linux passwd command can be used to change the NetWorker VMware Protection (NVP) vProxy appliances user credentials. The information in this KB is also available in the NetWorker VMware Integration Guide, available through: https://www.dell.com/support/product-details/product/networker/docs

NOTE: The admin and root passwords are set during vProxy deployment. If the passwords are not set, the password for root account is "changeme" and for admin account is "a3dp@m8n." 

Perform the following steps to unlock the admin account and reset the password.

NOTE: The vProxy appliance does not permit root SSH access by default. You must first log in as admin, the switch to root. This setting can be changed; however, the setting is not retained when the vProxy appliance is upgraded. It is recommended to leave direct root SSH access disabled.
  1. From the vSphere Client application, open a console window on the vProxy appliance.
  2. Log in to the appliance with the root account.
  3. Use the pam_tally2 command to unlock the admin account.
pam_tally2 --user admin --reset
  1. Use the passwd command to reset the admin password:
passwd admin
  1. If the vProxy is already registered to a NetWorker server, you must update the admin password in the vProxy properties. Delete the vProxy from the NetWorker Management Console (NMC) or NetWorker Web User Interface (NWUI) and add it back with the new password.
NMC: Devices -> VMware Proxies
NWUI: Protection->VMware Proxies
 
NOTE: Deleting the vProxy from NetWorker unregisters it. Adding the vProxy back with the new admin password ensures that it is registered with the correct credentials. An alternative process is outlined in: NVP vProxy: How To Unregister/Re-Register a vProxy Appliance?

Reset the root user credentials.

The following process details how to change the root user password when the current root password is known.

  1. From the vSphere Client application, open a console window on the vProxy appliance. Alternatively, open an SSH session to the vProxy appliance.
  2. Log in using the admin user account.
  3. Switch to the root user:
sudo su -
  1. Use the passwd command to reset the root password:
passwd root

The following process details how to change the root password when the current root password is not known; however, this process is only supported for 4.4.0.x vProxies.

NOTE: If the vProxy is 4.3.0.x or older and the root password is not known, the vProxy must be redeployed. 4.3.0.x vProxy (SUSE 12) does not support single-user mode.
  1. Log in to vSphere using an administrative user account. For example: administrator@vsphere.local.
  2. Open a Web console to the vProxy appliance.
  3. Reboot the vProxy appliance. Right-click the vProxy and select Power->Reset.
  4. During the vProxy GNU GRUB boot up menu, select the OS and press 'e' on your keyboard:

Example of vProxy 4.4.0-6 GNU GRUB boot loader

  1. Scroll down to the line that starts with linux and append init=/bin/bash, then press CTRL and X or press F10

Example of enabling single-user mode by appending init bash to linux kernel

  1. The vProxy boots into single-user mode, enter the following command at the prompt to remount the root file system:
mount -o remount,rw /
  1. Use the passwd command to reset the root password:
passwd
  1. From vSphere, reboot the vProxy again. When the vProxy reboots, it boots back to the normal login prompt.
  2. Validate that you can log in using the new root password.

Additional Information

If the admin password account keeps getting locked due to failed login attempts, you must check where the login requests are coming from. For example, using:

sudo journalctl | grep 'Failed password'

Example:

Feb 03 18:19:41 nsr-vproxy01.amer.lan sshd[32597]: Failed password for admin from 192.168.9.100 port 59660 ssh2
Feb 03 18:19:47 nsr-vproxy01.amer.lan sshd[32597]: Failed password for admin from 192.168.9.100 port 59660 ssh2
Feb 03 18:19:51 nsr-vproxy01.amer.lan sshd[32597]: Failed password for admin from 192.168.9.100 port 59660 ssh2
Feb 03 18:19:59 nsr-vproxy01.amer.lan sshd[32640]: Failed password for admin from 192.168.9.100 port 59661 ssh2
Feb 03 18:20:04 nsr-vproxy01.amer.lan sshd[32640]: Failed password for admin from 192.168.9.100 port 59661 ssh2
Feb 03 18:20:10 nsr-vproxy01.amer.lan sshd[32640]: Failed password for admin from 192.168.9.100 port 59661 ssh2

In the above example, we can see that someone attempted to log in as admin using SSH from host 192.168.9.100. The following conditions may apply:

  • The host is a NetWorker server with the incorrect vProxy password set in the vProxy properties
  • There is an automated tool or script that is configured with the incorrect credentials (This would be outside of NetWorker).
  • A user keeps attempting to access the vProxy using the incorrect credentials and locking the account.
NOTE: The address shown does not account for Network Address Translation (NAT) configurations. If NAT or Port Forwarding is used to redirect SSH traffic to the vProxy, the journalctl output shows the NAT target address as the source, not where the SSH session originated from.

Additional articles for changing vProxy settings:

Affected Products

NetWorker
Article Properties
Article Number: 000010703
Article Type: How To
Last Modified: 03 Feb 2026
Version:  7
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.