actually what you guys recommend may not work - at least on my systems, to login to single user mode you unfortunately do need a password. We run boks but the same might be true as well for ldap environments.
What does work is to boot from any boot media (nim or CD) via sms menu into MAINTENANCE mode and reset the password from there.
IBM explains it quite nicely
here
Regards
zxmaus