Dell IDRAC6 User Manual

Integrated Dell Remote

Access Controller 6 (iDRAC6)

Version 1.5

User Guide

Notes and Cautions

NOTE: A NOTE indicates important information that helps you make better use of

your computer.

CAUTION: A CAUTION indicates potential damage to hardware or loss of data if

instructions are not followed.

___________________

Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden.

Trademarks used in this text: Dell™, the DELL logo, OpenManage™, and PowerEdge™, are trademarks of Dell Inc.; Microsoft Windows Vista Corporation in the United States and/or other countries; Red Hat registered trademarks of Red Hat, Inc. in the United States and other countries; SUSE trademark of Novell Corporation; Intel in the United States and other countries; UNIX United States and other countries; Java™ is a trademark or registered trademark of Sun Microsystems, Inc. or its subsidiaries in the United States and other countries.

Copyright 1998-2009 The OpenLDAP Foundation. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted only as authorized by the OpenLDAP Public License. A copy of this license is available in the file LICENSE in the top-level directory of the distribution or, alternatively, at www.OpenLDAP.org/license.html. OpenLDAP™ is a trademark of the OpenLDAP Foundation. Individual files and/or contributed packages may be copyrighted by other parties and subject to additional restrictions. This work is derived from the University of Michigan LDAP v3.3 distribution. This work also contains materials derived from public sources. Information about OpenLDAP can be obtained at www.openldap.org/. Portions Copyright 1998-2004 Kurt D. Zeilenga. Portions Copyright 1998-2004 Net Boolean Incorporated. Portions Copyright 2001-2004 IBM Corporation. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted only as authorized by the OpenLDAP Public License. Portions Copyright 1999-2003 Howard Y.H. Chu. Portions Copyright 1999-2003 Symas Corporation. Portions Copyright 1998-2003 Hallvard B. Furuseth. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that this notice is preserved. The names of the copyright holders may not be used to endorse or promote products derived from this software without their specific prior written permission. This software is provided "as is'' without express or implied warranty. Portions Copyright (c) 1992-1996 Regents of the University of Michigan. All rights reserved. Redistribution and use in source and binary forms are permitted provided that this notice is preserved and that due credit is given to the University of Michigan at Ann Arbor. The name of the University may not be used to endorse or promote products derived from this software without specific prior written permission. This software is provided "as is'' without express or implied warranty. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell Inc. disclaims any proprietary interest in trademarks and trade names other than its own.

, and Active Directory® are either trademarks or registered trademarks of Microsoft

, Windows®, Windows Server®, .NET®, Internet Explorer®,

and Red Hat Enterprise Linux® are

and Pentium® are registered trademarks of Intel Corporation

is a registered trademark of The Open Group in the

is a registered

July 2010

1 iDRAC6 Overview. . . . . . . . . . . . . . . . . . . 19

iDRAC6 Express Management Features. . . . . . . . . 19

iDRAC6 Enterprise and vFlash Media . . . . . . . . . . 21

Supported Platforms

Supported Operating Systems

Supported Web Browsers . . . . . . . . . . . . . . . . 25

Supported Remote Access Connections

iDRAC6 Ports

Other Documents You May Need . . . . . . . . . . . . 27

. . . . . . . . . . . . . . . . . . . 25

. . . . . . . . . . . . . . 25

. . . . . . . . 26

. . . . . . . . . . . . . . . . . . . . . . . 26

2 Getting Started With the iDRAC6 . . . . . . 31

3 Basic Installation of the iDRAC6 . . . . . . . 33

Before You Begin . . . . . . . . . . . . . . . . . . . . 33

Installing the iDRAC6 Express/Enterprise Hardware

Configuring Your System to Use an iDRAC6

Software Installation and Configuration Overview. . . 36

. . . . . . . . . . . . . . . . . . . . . . . . 33

. . . . . . . 34

Installing iDRAC6 Software

. . . . . . . . . . . . . 36

Contents 3

Configuring iDRAC6 . . . . . . . . . . . . . . . . . 36

Installing the Software on the Managed System

. . . . 37

Installing the Software on the Management Station

. . . . . . . . . . . . . . . . . . . 37

Installing and Removing RACADM on a Linux Management Station

Installing RACADM

. . . . . . . . . . . . . . . . . 38

. . . . . . . . . . 37

Uninstalling RACADM. . . . . . . . . . . . . . . . 38

Updating the iDRAC6 Firmware . . . . . . . . . . . . . 39

Before You Begin

. . . . . . . . . . . . . . . . . . 39

Downloading the iDRAC6 Firmware . . . . . . . . 39

Updating the iDRAC6 Firmware Using the Web-Based Interface

. . . . . . . . . . . . . . 40

Updating the iDRAC6 Firmware

Using RACADM . . . . . . . . . . . . . . . . . . . 40

Updating the iDRAC6 Firmware Using Dell Update Packages for Supported Windows and Linux

Operating Systems . . . . . . . . . . . . . . . . . 40

Configuring a Supported Web Browser

. . . . . . . . . 41

Configuring Your Web Browser to Connect to the iDRAC6 Web-Based Interface

List of Trusted Domains

. . . . . . . . . . . . . . . . 41

. . . . . . . . . . . . . . . 41

Viewing Localized Versions of the

Web-Based Interface. . . . . . . . . . . . . . . . 42

4 Configuring the iDRAC6 Using

the Web Interface . . . . . . . . . . . . . . . . . . 45

4 Contents

Accessing the Web Interface . . . . . . . . . . . . . . 46

Logging In

. . . . . . . . . . . . . . . . . . . . . . 47

Logging Out . . . . . . . . . . . . . . . . . . . . . 48

Using Multiple Browser Tabs and Windows

. . . . 48

Configuring the iDRAC6 NIC

. . . . . . . . . . . . . . . 49

Configuring the Network and IPMI LAN Settings

. . . . . . . . . . . . . . . . . 49

Configuring IP Filtering and IP Blocking . . . . . . 55

Configuring Platform Events. . . . . . . . . . . . . . . 57

Configuring Platform Event Filters (PEF)

. . . . . . 59

Configuring Platform Event Traps (PET) . . . . . . 59

Configuring E-Mail Alerts

Configuring IPMI Using Web Interface

Configuring iDRAC6 Users

. . . . . . . . . . . . . . 60

. . . . . . . 61

. . . . . . . . . . . . . . . . 63

Securing iDRAC6 Communications Using SSL and Digital Certificates

Secure Sockets Layer (SSL)

Certificate Signing Request (CSR)

. . . . . . . . . . . 64

. . . . . . . . . . . . 64

. . . . . . . . . 65

Accessing SSL Through the

Web-Based Interface. . . . . . . . . . . . . . . . 65

Generating a Certificate Signing Request

. . . . . 66

Uploading a Server Certificate . . . . . . . . . . . 68

Configuring and Managing Active Directory

. . . . . . 70

Configuring and Managing Generic LDAP

Configuring iDRAC6 Services

. . . . . . . . . . . . . . 73

. . . . . . . 73

Updating the iDRAC6 Firmware/System Services Recovery Image

iDRAC6 Firmware Rollback

. . . . . . . . . . . . . . . . 77

. . . . . . . . . . . . . 79

Remote Syslog . . . . . . . . . . . . . . . . . . . . . . 79

First Boot Device

. . . . . . . . . . . . . . . . . . . . . 81

Contents 5

Remote File Share . . . . . . . . . . . . . . . . . . . . 82

Internal Dual SD Module

. . . . . . . . . . . . . . . . . 84

Viewing Internal Dual SD Module Status Using GUI

. . . . . . . . . . . . . . . . . . 85

5 Advanced iDRAC6 Configuration . . . . . . 87

Before You Begin. . . . . . . . . . . . . . . . . . . . . 87

Configuring iDRAC6 for Viewing Serial Output Remotely Over SSH/Telnet

Configuring the iDRAC6 Settings to Enable SSH/Telnet

Starting a Text Console Through

Telnet or SSH . . . . . . . . . . . . . . . . . . . . 88

Using a Telnet Console

Using the Secure Shell (SSH)

Configuring Linux for Serial Console

During Boot . . . . . . . . . . . . . . . . . . . . . 92

Configuring iDRAC6 for Serial Connection

Configuring iDRAC for Direct Connect Basic Mode and Direct Connect Terminal Mode

. . . . . . . . . . . . . . . . . . . 99

Switching Between RAC Serial Interface Communication Mode

and Serial Console . . . . . . . . . . . . . . . . 101

. . . . . . . . . . . . 87

. . . . . . . . . . . . . . . . 88

. . . . . . . . . . . . . . . 89

. . . . . . . . . . . . 91

. . . . . . . 97

6 Contents

Connecting the DB-9 or Null Modem Cable for the Serial Console

. . . . . . . . . . . . . . 102

Configuring the Management Station Terminal Emulation Software

. . . . . . . . . . . . . 103

Configuring Linux Minicom for Serial Console Emulation

. . . . . . . . . . . . . 103

Configuring HyperTerminal for Serial Console

. . . . . . . . . . . . . . . . . . . 105

Configuring Serial and Terminal Modes . . . . . . . . 106

Configuring IPMI and iDRAC6 Serial

Configuring Terminal Mode

. . . . . . . . . . . . . 108

. . . . . . . . 106

Configuring the iDRAC6 Network Settings

Accessing the iDRAC6 Through a Network

. . . . . . . 109

Using RACADM Remotely . . . . . . . . . . . . . . . . 111

RACADM Synopsis

. . . . . . . . . . . . . . . . . 113

RACADM Options . . . . . . . . . . . . . . . . . . 113

Enabling and Disabling the RACADM Remote Capability

RACADM Subcommands

. . . . . . . . . . . . . . . . . . . . 114

. . . . . . . . . . . . . . 114

Frequently Asked Questions About RACADM Error Messages

Configuring Multiple iDRAC6 Controllers

Creating an iDRAC6 Configuration File

Parsing Rules

. . . . . . . . . . . . . . . . . . . . 121

. . . . . . . . . . . . . 117

. . . . . . . . 118

. . . . . . . 119

Modifying the iDRAC6 IP Address . . . . . . . . . 122

Configuring iDRAC6 Network Properties

. . . . . . 123

Frequently Asked Questions about Network Security

. . . . . . . . . . . . . . . . . . . . 125

6 Adding and Configuring

iDRAC6 Users

Using the Web Interface to Configure

iDRAC6 Users . . . . . . . . . . . . . . . . . . . . . . 129

Adding and Configuring iDRAC6 Users

Public Key Authentication over SSH . . . . . . . . 134

. . . . . . . . . . . . . . . . . . . . 129

. . . . . . . 129

Contents 7

Uploading, Viewing, and Deleting SSH Keys Using the iDRAC6 Web-Based Interface

. . . . . . . . . . . . . . . 136

Uploading, Viewing, and Deleting SSH Keys Using RACADM

. . . . . . . . . . . . 138

Using the RACADM Utility to Configure iDRAC6 Users

Before You Begin

. . . . . . . . . . . . . . . . . . . . . . 139

. . . . . . . . . . . . . . . . . 139

Adding an iDRAC6 User. . . . . . . . . . . . . . 140

Removing an iDRAC6 User

. . . . . . . . . . . . 141

Enabling an iDRAC6 User

With Permissions . . . . . . . . . . . . . . . . . 141

7 Using the iDRAC6 Directory

Service . . . . . . . . . . . . . . . . . . . . . . . . . 143

Using iDRAC6 With Microsoft Active Directory. . . . 143

Prerequisites for Enabling Microsoft Active Directory Authentication for iDRAC6

Enabling SSL on a Domain Controller

Exporting the Domain Controller Root CA Certificate to the iDRAC6

. . . . . . . . . . . 146

Importing the iDRAC6 Firmware SSL Certificate

. . . . . . . . . . . . . . . . . . 147

. . . . . 145

. . . . . . . 145

8 Contents

Supported Active Directory Authentication Mechanisms

Extended Schema Active Directory Overview

. . . . . . . . . . . . . . . . . . . . . . 148

Active Directory Schema Extensions

. . . . 148

. . . . . . . 148

Overview of the iDRAC Schema Extensions

Active Directory Object Overview

. . . . . . . . 149

Accumulating Privileges Using

Extended Schema. . . . . . . . . . . . . . . . . 151

. . . 149

Configuring Extended Schema Active

Directory to Access Your iDRAC6 . . . . . . . . . . . . 152

Extending the Active Directory Schema

. . . . . . 153

Installing Dell Extension to Microsoft Active Directory Users and

Computers Snap-In . . . . . . . . . . . . . . . . . 159

Adding iDRAC Users and

Privileges to Microsoft Active Directory . . . . . . 160

Configuring Microsoft Active Directory With Extended Schema

Using the iDRAC6 Web-Based Interface . . . . . . 162

Configuring Microsoft Active Directory

With Extended Schema Using RACADM . . . . . . 164

Standard Schema Active Directory Overview . . . . . 168

Single Domain Versus Multiple Domain Scenarios

. . . . . . . . . . . . . . . . . 169

Configuring Standard Schema Microsoft Active Directory to Access iDRAC6

. . . . . . . . . . . 170

Configuring Microsoft Active Directory With Standard Schema Using the iDRAC6 Web-Based Interface

. . . . . . . . . . . 170

Configuring Microsoft Active Directory

With Standard Schema Using RACADM . . . . . . 174

Testing Your Configurations

Generic LDAP Directory Service

. . . . . . . . . . . . . . . 177

. . . . . . . . . . . . 178

. . . . . . . . . . . . . . . . . . . . . 178

Configuring Generic LDAP Directory Service Using the iDRAC6

Web-Based Interface. . . . . . . . . . . . . . . . 178

Configuring Generic LDAP Directory Service Using RACADM

. . . . . . . . . . . . . . 182

Frequently Asked Questions about Active Directory

. . . . . . . . . . . . . . . . . . . . . 183

Contents 9

8 Configuring iDRAC6 for Single

Sign-On or Smart Card Login . . . . . . . . 187

About Kerberos Authentication . . . . . . . . . . . . 187

Prerequisites for Active Directory SSO and Smart Card Authentication

. . . . . . . . . . 188

Using Microsoft Active Directory SSO

Configuring iDRAC6 to Use SSO

Logging Into iDRAC6 Using SSO

Configuring Smart Card Authentication

. . . . . . . . 191

. . . . . . . . . 191

. . . . . . . . . 192

. . . . . . . . 193

Configuring Local iDRAC6 Users for Smart Card Logon

. . . . . . . . . . . . . . . 193

Configuring Active Directory Users

for Smart Card Logon . . . . . . . . . . . . . . . 194

Configuring Smart Card Using iDRAC6

. . . . . . 194

Logging Into the iDRAC6 Using

the Smart Card . . . . . . . . . . . . . . . . . . 196

Logging Into the iDRAC6 Using Active Directory Smart Card

Authentication . . . . . . . . . . . . . . . . . . 197

Troubleshooting the Smart Card Logon in iDRAC6

Frequently Asked Questions About SSO

. . . . . . . . . . . . . . . . . . . . 198

. . . . . . . . 200

9 Using GUI Virtual Console . . . . . . . . . . . 203

10 Contents

Overview . . . . . . . . . . . . . . . . . . . . . . . . 203

Using Virtual Console

Configuring Your Management Station

Clear Your Browser’s Cache

. . . . . . . . . . . . . . . . . 203

. . . . . . 204

. . . . . . . . . . . 206

Internet Explorer Browser Configurations for ActiveX based Virtual Console and Virtual Media Applications

. . . . . . . . . . . . . 207

Supported Screen Resolutions and Refresh Rates

. . . . . . . . . . . . . . . . . 208

Configuring Virtual Console in the

iDRAC6 Web Interface . . . . . . . . . . . . . . . 208

Opening a Virtual Console Session

. . . . . . . . . 210

Virtual Console Preview . . . . . . . . . . . . . . 212

Using iDRAC6 Virtual Console (Video Viewer) . . . . . 213

Disabling or Enabling Local Server Video

. . . . . 218

Launching Virtual Console and Virtual Media Remotely

URL Format

. . . . . . . . . . . . . . . . . . . . . 219

General Error Scenarios . . . . . . . . . . . . . . 220

Frequently Asked Questions on Virtual Console . . . . 221

10 Using the WS-MAN Interface . . . . . . . . 225

Supported CIM Profiles . . . . . . . . . . . . . . . . . 225

11 Using the iDRAC6 SM-CLP

Command Line Interface

iDRAC6 SM-CLP Support . . . . . . . . . . . . . . . . 231

SM-CLP Features

Using SM-CLP

SM-CLP Targets

. . . . . . . . . . . . . . . . . . . . 232

. . . . . . . . . . . . . . . . . . . 232

. . . . . . . . . . . . . . . . . . 232

. . . . . . . . . . . . 231

Contents 11

12 Deploying Your Operating

System Using VMCLI . . . . . . . . . . . . . . . 239

Before You Begin. . . . . . . . . . . . . . . . . . . . 239

Remote System Requirements

Network Requirements

. . . . . . . . . . 239

. . . . . . . . . . . . . . 239

Creating a Bootable Image File

. . . . . . . . . . . . 240

Creating an Image File for Linux Systems

Creating an Image File for

Windows Systems . . . . . . . . . . . . . . . . 240

Preparing for Deployment . . . . . . . . . . . . . . . 240

Configuring the Remote Systems

Deploying the Operating System

Using the VMCLI Utility

. . . . . . . . . . . . . . . . 242

Installing the VMCLI Utility

Command Line Options

VMCLI Parameters

. . . . . . . . . . . . . . 243

. . . . . . . . . . . . . . . . 244

. . . . . . . . . 240

. . . . . . . . . . . . 241

. . . . . . . . . . . . 243

VMCLI Operating System Shell Options . . . . . 247

13 Configuring Intelligent Platform

Management Interface (IPMI)

Configuring IPMI Using Web-Based Interface . . . . 249

Configuring IPMI Using the RACADM CLI

. . . . 240

. . . . . . . 249

12 Contents

Using the IPMI Remote Access Serial Interface

. . . . . . . . . . . . . . . . . . . . . 254

Configuring Serial Over LAN Using the Web-Based Interface

. . . . . . . . . . . . . . . 254

14 Configuring and Using

Virtual Media . . . . . . . . . . . . . . . . . . . . 255

Overview . . . . . . . . . . . . . . . . . . . . . . . . . 255

Windows-Based Management Station

Linux-Based Management Station

. . . . . . 256

. . . . . . . . . 257

Configuring Virtual Media

Running Virtual Media

Supported Virtual Media Configurations

Booting From Virtual Media

. . . . . . . . . . . . . . . . 257

. . . . . . . . . . . . . . . . . . 259

. . . . . . 259

. . . . . . . . . . . . 261

Installing Operating Systems

Using Virtual Media . . . . . . . . . . . . . . . . 262

Using Virtual Media When the Server’s Operating System Is Running

. . . . . . . . . . . . 263

Frequently Asked Questions about Virtual Media

15 Configuring vFlash SD Card and

Managing vFlash Partitions . . . . . . . . . 269

Configuring vFlash or Standard SD Card Using iDRAC6 Web Interface

Configuring vFlash or Standard SD Card Using RACADM

Displaying the vFlash or Standard SD Card Properties

Enabling or Disabling the vFlash or Standard SD Card

Initializing the vFlash or Standard SD Card

Getting the Last Status on the vFlash or Standard SD Card

Resetting the vFlash or Standard SD Card . . . . . 273

. . . . . . . . . . . . . . 270

. . . . . . . . . . . . . . . . . . . 272

. . . . . . . . . . . . . . . . . 272

. . . . . . . . . . . . . . . . . . 273

. . . . . . . . . . . . . . . . 273

. . . 264

. . . . 273

Contents 13

Managing vFlash Partitions Using

iDRAC6 Web Interface . . . . . . . . . . . . . . . . . 274

Creating an Empty Partition

. . . . . . . . . . . . 274

Creating a Partition Using an Image File . . . . . 276

Formatting a Partition

Viewing Available Partitions

. . . . . . . . . . . . . . . 278

. . . . . . . . . . . 279

Modifying a Partition . . . . . . . . . . . . . . . 281

Attaching and Detaching Partition

Deleting Existing Partitions

. . . . . . . . 281

. . . . . . . . . . . . 282

Downloading Partition Contents . . . . . . . . . 283

Booting to a Partition

. . . . . . . . . . . . . . . 284

Managing vFlash Partitions Using RACADM

Creating a Partition

Deleting a Partition

. . . . . . . . . . . . . . . . 286

Getting the Status of a Partition

. . . . . 284

. . . . . . . . . 286

Viewing Partition Information. . . . . . . . . . . 286

Booting to a Partition

Attaching or Detaching a Partition

. . . . . . . . . . . . . . . 287

. . . . . . . . 287

Modifying a Partition . . . . . . . . . . . . . . . 287

Frequently Asked Questions . . . . . . . . . . . . . . 288

16 Power Monitoring and

Management . . . . . . . . . . . . . . . . . . . . . 289

Power Inventory, Power Budgeting, and Capping

Power Monitoring . . . . . . . . . . . . . . . . . . . 290

Configuring and Managing Power

Viewing the Health Status of the Power Supply Units

. . . . . . . . . . . . . . . . . . . . . . 290

. . . . . . . . . . . 290

. . . . . . . . . . . . . . . . . . 291

14 Contents

Using the Web-Based Interface . . . . . . . . . . 291

Using RACADM

. . . . . . . . . . . . . . . . . . . 292

Viewing Power Budget

Using the Web Interface

Using RACADM

Power Budget Threshold

Using the Web-Based Interface

Using RACADM

Viewing Power Monitoring

Using the Web Interface

Using RACADM

. . . . . . . . . . . . . . . . . 293

. . . . . . . . . . . . . . 293

. . . . . . . . . . . . . . . . . . . 293

. . . . . . . . . . . . . . . . 294

. . . . . . . . . . 294

. . . . . . . . . . . . . . . . . . . 295

. . . . . . . . . . . . . . . 295

. . . . . . . . . . . . . . 295

. . . . . . . . . . . . . . . . . . . 298

Executing Power Control Operations on the Server

Using the Web Interface

. . . . . . . . . . . . . . . . . . . . . . . 298

. . . . . . . . . . . . . . 298

Using RACADM . . . . . . . . . . . . . . . . . . . 299

17 Using the iDRAC6 Configuration

Utility . . . . . . . . . . . . . . . . . . . . . . . . . . . 301

Overview . . . . . . . . . . . . . . . . . . . . . . . . . 301

Starting the iDRAC6 Configuration Utility

. . . . . . . . 302

Using the iDRAC6 Configuration Utility

iDRAC6 LAN

IPMI Over LAN

LAN Parameters

. . . . . . . . . . . . . . . . . . . . . 303

. . . . . . . . . . . . . . . . . . . 303

. . . . . . . . . . . . . . . . . . 304

Virtual Media Configuration

Smart Card Logon

. . . . . . . . . . . . . . . . . . 309

. . . . . . . . . 302

. . . . . . . . . . . . 307

System Services Configuration . . . . . . . . . . . 309

LCD Configuration

. . . . . . . . . . . . . . . . . 310

Contents 15

LAN User Configuration. . . . . . . . . . . . . . 311

Reset to Default

. . . . . . . . . . . . . . . . . . 311

System Event Log Menu . . . . . . . . . . . . . 314

Exiting the iDRAC6 Configuration Utility

. . . . . 314

18 Monitoring and Alert Management . . . . 315

Configuring the Managed System to

Capture the Last Crash Screen. . . . . . . . . . . . . 315

Disabling the Windows Automatic Reboot Option

Disabling the Automatic Reboot Option in Windows 2008 Server

Disabling the Automatic Reboot Option

in Windows Server 2003 . . . . . . . . . . . . . 316

. . . . . . . . . . . . . . . . . . . . . 316

. . . . . . . . . . . . . 316

19 Recovering and Troubleshooting

the Managed System

16 Contents

Configuring Platform Events

Configuring Platform Event Filters (PEF)

Configuring PET

Configuring E-Mail Alerts

. . . . . . . . . . . . . . 316

. . . . . 317

. . . . . . . . . . . . . . . . . . 319

. . . . . . . . . . . . . 320

Testing E-mail Alerting . . . . . . . . . . . . . . 321

Testing the RAC SNMP Trap Alert Feature

. . . . 322

Frequently Asked Question about SNMP Authentication

. . . . . . . . . . . . . . . . . 322

. . . . . . . . . . . . . . . 325

First Steps to Troubleshoot a Remote System . . . . . 325

Managing Power on a Remote System

. . . . . . . . 326

Selecting Power Control Actions from the iDRAC6 Web-Based Interface

. . . . . 326

Selecting Power Control Actions

from the iDRAC6 CLI . . . . . . . . . . . . . . . . 326

Viewing System Information

Main System Chassis

Remote Access Controller

Using the System Event Log (SEL)

. . . . . . . . . . . . . . . 326

. . . . . . . . . . . . . . . . 327

. . . . . . . . . . . . . 328

. . . . . . . . . . . . 330

Using the Command Line to View System Log

Using the POST Boot Logs

Viewing the Last System Crash Screen

. . . . . . . . . . . . . . . . . . 331

. . . . . . . . . . . . . . . . 332

. . . . . . . . . 333

20 Recovering and Troubleshooting

the iDRAC6 . . . . . . . . . . . . . . . . . . . . . . 335

Using the RAC Log . . . . . . . . . . . . . . . . . . . . 335

Using the Command Line . . . . . . . . . . . . . . . . 337

Using the Diagnostics Console

Using Identify Server

Using the Trace Log

. . . . . . . . . . . . . . . . . . 338

. . . . . . . . . . . . . . . . . . . 339

. . . . . . . . . . . . . 337

Using the racdump

Using the coredump

. . . . . . . . . . . . . . . . . . . . 339

. . . . . . . . . . . . . . . . . . . 340

21 Sensors . . . . . . . . . . . . . . . . . . . . . . . . . 341

Battery Probes . . . . . . . . . . . . . . . . . . . . . . 341

Fan Probes

. . . . . . . . . . . . . . . . . . . . . . . . 341

Contents 17

Chassis Intrusion Probes . . . . . . . . . . . . . . . 341

Power Supplies Probes

. . . . . . . . . . . . . . . . 342

Removable Flash Media Probes . . . . . . . . . . . . 342

Power Monitoring Probes

Temperature Probe

. . . . . . . . . . . . . . . 342

. . . . . . . . . . . . . . . . . . . 342

Voltage Probes . . . . . . . . . . . . . . . . . . . . . 343

22 Configuring Security Features. . . . . . . . 345

Security Options for the iDRAC6 Administrator . . . . 346

Disabling the iDRAC6 Local Configuration

Disabling iDRAC6 Virtual Console

Securing iDRAC6 Communications Using SSL and Digital Certificates

Secure Sockets Layer (SSL)

. . . . . . . . . . . . . . 349

. . . . . . . . . . . 349

Certificate Signing Request (CSR) . . . . . . . . 349

Accessing the SSL Main Menu

. . . . . . . . . . 350

Generating a Certificate Signing Request

Viewing a Server Certificate . . . . . . . . . . . 352

. . . . 346

. . . . . . . . 348

. . . . 351

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 363

18 Contents

Using the Secure Shell (SSH)

Configuring Services

. . . . . . . . . . . . . 353

. . . . . . . . . . . . . . . . . . 353

Enabling Additional iDRAC6 Security Options

Configuring the Network Security Settings Using the iDRAC6 GUI

. . . . . . . . . . 361

. . . . 357

iDRAC6 Overview

Integrated Dell Remote Access Controller6 (iDRAC6) is a systems management hardware and software solution that provides remote management capabilities, crashed system recovery, and power control functions for the Dell PowerEdge systems.

The iDRAC6 uses an integrated System-on-Chip microprocessor for the remote monitor/control system. The iDRAC6 co-exists on the system board with the managed PowerEdge server. The server operating system is concerned with executing applications; the iDRAC6 is concerned with monitoring and managing the server’s environment and state outside of the operating system.

You can configure the iDRAC6 to send you an e-mail or Simple Network Management Protocol (SNMP) trap alert for warnings or errors. To help you diagnose the probable cause of a system crash, iDRAC6 can log event data and capture an image of the screen when it detects that the system has crashed.

The iDRAC6 network interface is enabled with a static IP address of

192.168.0.120 by default. It must be configured before the iDRAC6 is accessible. After the iDRAC6 is configured on the network, it can be accessed at its assigned IP address with the iDRAC6 Web interface, Telnet, or Shell (SSH) Intelligent Platform Management Interface (IPMI).

, and supported network management protocols, such as

Secure

iDRAC6 Express Management Features

The iDRAC6 Express provides the following management features:

• Dynamic Domain Name System (DDNS) registration

• Provides remote system management and monitoring using a Web interface and the SM-CLP command line over a serial, Telnet, or SSH connection

iDRAC6 Overview 19

• Provides support for Microsoft Active Directory authentication — Centralizes iDRAC6 user IDs and passwords in Active Directory using an extended schema or a standard schema

• Provides a generic solution to support Lightweight Directory Access Protocol (LDAP)-based authentication — This feature does not require any schema extension on your directory services.

• Monitoring — Provides access to system information and status of components

• Access to system logs — Provides access to the system event log, the iDRAC6 log, and the last crash screen of the crashed or unresponsive system, that is independent of the operating system state

• Dell OpenManage software integration — Enables you to launch the iDRAC6 Web interface from Dell OpenManage Server Administrator or Dell OpenManage IT Assistant

• iDRAC6 alert — Alerts you to potential managed node issues through an e-mail message or SNMP trap

• Remote power management — Provides remote power management functions, such as shutdown and reset, from a management console

• Intelligent Platform Management Interface (IPMI) support

• Secure Sockets Layer (SSL) encryption — Provides secure remote system management through the Web interface

• Password-level security management — Prevents unauthorized access to a remote system

• Role-based authority — Provides assignable permissions for different systems management tasks

• IPv6 support — Adds IPv6 support such as providing access to the iDRAC6 Web interface using an IPv6 address, specifies iDRAC6 NIC IPv6 address, and specifies a destination number to configure an IPv6 SNMP alert destination.

•WS-MAN support — the Web Services for Management (WS-MAN) protocol.

Provides network accessible management using

20 iDRAC6 Overview

•SM-CLP support — Adds

Server Management-Command Line Protocol (SM-CLP) support, which provides standards for systems management CLI implementations.

• Firmware rollback and recovery — Allows you to boot from (or rollback to) the firmware image of your choice.

For more information about iDRAC6 Express, see your Hardware Owner’s Manual at support.dell.com\manuals.

iDRAC6 Enterprise and vFlash Media

Adds support for RACADM, Virtual Console, Virtual Media features, a dedicated NIC, and vFlash (with an optional Dell vFlash Media card). vFlash allows you to store emergency boot images and diagnostic tools on the vFlash Media. For more information about the iDRAC6 Enterprise and vFlash Media, see your Hardware Owner’s Manual at support.dell.com/manuals.

Table 1-1 lists the features available for BMC, iDRAC6 Express, iDRAC6 Enterprise, and vFlash Media.

Table 1-1. iDRAC6 Feature List

Feature BMC iDRAC6

Express

Interface and Standards Support

IPMI 2.0

Web-based GUI

SNMP

WSMAN

SMASH-CLP (SSHonly)

RACADM Command Line (SSH and local)

RACADM Command Line (remote)

iDRAC6 Enterprise

iDRAC6 Overview 21

iDRAC6 Enterprise with vFlash

Table 1-1. iDRAC6 Feature List

(continued)

Feature BMC iDRAC6

Express

Connectivity

Shared/Failover Network Modes

IPv4

VLAN Tagging

IPv6

Dynamic DNS

Dedicated NIC

Security and Authentication

Role-based Authority

Local Users

SSL Encryption

Active Directory

Generic LDAP Support

iDRAC6 Enterprise

iDRAC6 Enterprise with vFlash

Tw o - f a c t o r Authentication

Single sign-on

PK Authentication (for SSH)

Remote Management and Remediation

Remote Firmware

Update

Server Power Control

22 iDRAC6 Overview

Table 1-1. iDRAC6 Feature List

(continued)

Feature BMC iDRAC6

Express

Serial-over-LAN

(with proxy)

Serial-over-LAN

(no proxy)

Power Capping

Last Crash Screen Capture

Boot Capture

Virtual Media

Virtual Console

Virtual Console Sharing

Remote Virtual Console Launch

vFlash

Monitoring

Sensor Monitoring and

Alerting

Real-time Power Monitoring

Real-time Power Graphing

Historical Power Counters

Logging

System Event Log (SEL)

iDRAC6 Enterprise

iDRAC6 Enterprise with vFlash

iDRAC6 Overview 23

Table 1-1. iDRAC6 Feature List

(continued)

Feature BMC iDRAC6

Express

RAC Log

Lifecycle Controller

Unified Server Configurator

Remote Services (through WS-MAN)

Par t Replacem ent

Two-factor authentication requires Internet Explorer.

Feature is available only through IPMI and not through a Web GUI.

Virtual Console and Virtual Media are available using both Java and Active-X plug-

ins.

The Unified Server Configurator available through BMC is limited to operating

system installation and diagnostics only.

= Supported; =Not Supported

iDRAC6 Enterprise

iDRAC6 Enterprise with vFlash

The iDRAC6 provides the following security features:

• Single Sign-on, Two-Factor Authentication, and Public Key Authentication

• User authentication through Active Directory (optional), LDAP authentication (optional) or hardware-stored user IDs and passwords

• Role-based authorization, which enables an administrator to configure specific privileges for each user

• User ID and password configuration through the Web-based interface or SM-CLP

• SM-CLP and Web interfaces, which support 128-bit and 40-bit encryption (for countries where 128 bit is not acceptable), using the SSL 3.0 standard

• Session time-out configuration (in seconds) through the Web interface or SM-CLP

24 iDRAC6 Overview

• Configurable IP ports (where applicable)

NOTE: Telnet does not support SSL encryption.

• SSH, which uses an encrypted transport layer for higher security

• Login failure limits per IP address, with login blocking from the IP address when the limit is exceeded

• Ability to limit the IP address range for clients connecting to the iDRAC6

Supported Platforms

For the latest supported platforms, see the iDRAC6 Readme file and the Dell Systems Software Support Matrix available at support.dell.com/manuals.

Supported Operating Systems

For the latest information, see the iDRAC6 Readme file and the Dell Systems Software Support Matrix available at support.dell.com/manuals.

Supported Web Browsers

For the latest information, see the iDRAC6 Readme file and the Dell Systems Software Support Matrix available at support.dell.com/manuals.

NOTE: Due to serious security flaws, support for SSL 2.0 has been discontinued.

Your browser must be configured to enable SSL 3.0 in order to work properly. Internet Explorer 6.0 is not supported.

iDRAC6 Overview 25

Supported Remote Access Connections

Table 1-2 lists the connection features.

Table 1-2. Supported Remote Access Connections

Connection Features

iDRAC6 NIC

• 10Mbps/100Mbs/Ethernet

• DHCP support

• SNMP traps and e-mail event notification

• Support for SM-CLP (Telnet, SSH, and RACADM) command shell, for operations such as iDRAC6 configuration, system boot, reset, power-on, and shutdown commands

• Support for IPMI utilities, such as IPMItool and ipmish

iDRAC6 Ports

Table 1-3 lists the ports iDRAC6 listens on for connections. Table 1-4 identifies the ports that the iDRAC6 uses as a client. This information is required when opening firewalls for remote access to an iDRAC6.

Table 1-3. iDRAC6 Server Listening Ports

Port Number Function

22*

23*

80*

443*

623

5900*

* Configurable port

SSH

Te ln e t

HTTP

HTTPS

RMCP/RMCP+

Virtual Console keyboard/mouse, Virtual Media Service, Virtual Media Secure Service, and Virtual Console video

26 iDRAC6 Overview

Table 1-4. iDRAC6 Client Ports

Port Number Function

162

636

3269

SMTP

DNS

DHCP-assigned IP address

TFTP

SNMP trap

LDAPS

LDAPS for global catalog (GC)

Dell IDRAC6 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

User Guide

Contents

iDRAC6 Overview

iDRAC6 Express Management Features

iDRAC6 Enterprise and vFlash Media

Supported Platforms

Supported Operating Systems

Supported Web Browsers

Supported Remote Access Connections

iDRAC6 Ports

Other Documents You May Need