\\Update
[Jump to the solution later in the thread here]
Tips:
- Remember that the admin@system-domain password requires greater strength than most VMware passwords. As such, if you think you know the password but it's not working, try adding a special character at the end such as !. It only requires 8 characters but there must be at least one special character. It will also lock you out after 3 bad attempts. Try back later after it has reset the lock.
- Admin is not admin
The user name is case sensitive. It should always be admin@system-domain (domain portion not case sensitive).
Don't even think about upgrading vCenter / SSO without good DB and vCenter backups and/or snaps
- If you are dealing with a failed SSO upgrade from a previous version, then you should a) Roll back to a snapshot/restore; or b) Reinstall SSO and repoint your vCenter. Remember to reinstall SSO you _must_ use the same version that was installed. Also remember that a failed upgrade of SSO can and will stop the SSO service and/or your vCenter service. From that point on you won't be able to login to an otherwise previously healthy sso.
admin@system-domain (Not cached in plain text)
- Despite what's listed below in my original post, the admin@system-domain password is _not_ cached in plain text. However, the DBA_USER password is.
DBA_User password (this is cached in plain text):
"C:\Program Files\VMware\Infrastructure\SSOServer\webapps\lookupservice\WEB-INF\classes\config.properties"
Why is the above useful? In the rare case where the technician set all passwords the same (or at least the admin@system-domain and the RSA_USER) then and only then could one glean the admin@system-domain password from the above file. More details and other options in this thread.
\\original post
I'm sure this will be fixed eventually, but the answer you seek is (shockingly) available in plain text.
Browse to the following directory:
[intentionally deleted by grasshopper]
In the above directory, locate and open the following file in notepad:
[intentionally deleted by grasshopper]
Edit 0.1: As it turns out admin@system-domain is not cached in plain text, only the RSA_USER is. More details in the Tips section above.
Edit 0.2: Added quick link to solution by memaad and added additional tips since this post has gotten quite long. I will try to add more over time.
Message was edited by: grasshopper