VMware vSphere

Hi. The policy has been changed several times by others, and know its lost track when an SSO user expires. I cannot find any information on you can tell from the CLI when an SSO user will expire. We are v7.0U1. Thanks,,,

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-4FBEA58E-9492-409B-B584-C18477F041D8.html
Try :  /usr/lib/vmware-vmafd/bin/dir-cli user find-by-name --account <user-name> --level 2

Hi. I am curious what version you are on? my administrator@vsphere.local always shows password never expires

 /usr/lib/vmware-vmafd/bin/dir-cli user find-by-name --account administrator --level 2

Enter password for administrator@vsphere.local: 

Account: administrator

UPN: Administrator@VSPHERE.LOCAL

Account disabled: FALSE

Account locked: FALSE

Password never expires: TRUE

Password expired: FALSE

Password expiry: N/A

And I my policy is 90d expiration. I even just changed it again. I am on v7.0U1c

Thanks,,,

Hi. I fixed this. Someone had the account to never expire and I changed it to use the policy. Thanks,,,

This is for one user and we have to check manually .How can we check for multiple users.

is there any PowerShell script to derive list of vcenter users with their expiry date and time.

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-4FBEA58E-9492-409B-B584-C18477F041D8.html
Try :    /usr/lib/vmware-vmafd/bin/dir-cli user find-by-name --account <user-name> --level 2

From LAB:       /usr/lib/vmware-vmafd/bin/dir-cli user find-by-name --account expire --level 2

Password expiry: 899 day(s) 23 hour(s) 59 minute(s) 44 second(s)

Please note password expiry is 900 days in my LAB