Adding a user to the users table updates the internal user list that the host maintains.

Review the password requirements described in Password Requirements.


Log in to ESXi using the vSphere Client.


Click the Local Users & Groups tab and click Users.


Right-click anywhere in the Users table and click Add to open the Add New User dialog box.


Enter a login, a user name, a numeric user ID (UID), and a password.


Do not create a user named ALL. Privileges associated with the name ALL might not be available to all users in some situations. For example, if a user named ALL has Administrator privileges, a user with ReadOnly privileges might be able to log in to the host remotely. This is not the intended behavior.

Specifying the user name and UID are optional. If you do not specify the UID, the vSphere Client assigns the next available UID.

Create a password that meets the length and complexity requirements. The host checks for password compliance using the default authentication plug-in, If the password is not compliant, the following error appears: A general system error occurred: passwd: Authentication token manipulation error.


To change the user’s ability to access ESXi through a command shell, select or deselect Grant shell access to this user.


To be granted shell access, users must also have an Administrator role for an inventory object on the host.

In general, do not grant shell access unless the user has a justifiable need. Users that access the host only through the vSphere Client do not need shell access.


To add the user to a group, select the group name from the Group drop-down menu and click Add.


Click OK.