Changing the NSX Edge Services Gateway (ESG) “admin” user is easy via the web client “Change CLI Credentials”. The root password is unknown.
- SSH into the NSX Manager as the admin user.
- Enable mode by typing in : en
- Enter engineering mode by typing: st eng
- The password is: IAmOnThePhoneWithTechSupport per KBA 2149630 Tested with 6.4.4 Build 11197766
- Run this command the list the edge root password: /home/secureall/secureall/sem/WEB-INF/classes/./GetSpockEdgePassword.sh
- You can also display the admin password: /home/secureall/secureall/sem/WEB-INF/classes/./GetCliUserEdgePassword.sh
- Make sure SSH is enabled on the Edge in scope.
- Connect to the console of the Edge VM. I will connect to the active edge VM edge1-0
Why the console? You can not enable engineering mode via SSH.
nsx-edge1.my.lab-0# debug engineeringmode enable
ERROR: This command is only available from console. - At the console, login as the admin user.
- enable mode by typing in: en
- Type in: debug engineeringmode enable
- SSH into the edge active VM. Make sure your have a firewall rule to allow TCP 22.
- enable mode by typing in: en
- enter engineering mode by typing: st eng
The password is the root one found from the GetSpockEdgePassword.sh output. - Run your linux commands.Note – WinSCP will still not connect so if you need to ship a packet capture off, you will need to run debug copy scp id@ip:/temp/tcpdump_vnic0.1
** UPDATE May 17th, 2020 – Step to all WinSCP to work https://vmscribble.com/nsx/winscp-into-an-nsx-edge/ **