Dell iDRAC for Blade Servers Owner's Manual

Integrated Dell™ Remote Access

Controller Firmware Version 1.4

User Guide

www.dell.com | support.dell.com

Notes and Cautions

NOTE: A NOTE indicates important information that helps you make better use of

your computer.

CAUTION: A CAUTION indicates potential damage to hardware or loss of data if

instructions are not followed.

___________________

Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden.

Trademarks used in this text : Dell, the DELL logo, Dell OpenManage, and PowerEdge, are trademarks of Dell Inc.; Microsoft, Windows, Windows Server, MS-DOS, Windows Vista, Internet Explorer and Active Directory are either trademarks or registered trademarks of Microsoft Corporation in the United States and/or other countries; Red Hat and Linux are registered trademarks of Red Hat, Inc.; Novell and SUSE are registered trademarks of Novell Corporation. Intel is a registered trademark of Intel Corporation; UNIX is a registered trademark of The Open Group in the United States and other countries.

Copyright 1998-2006 The OpenLDAP Foundation. All rights reserved. Redistribution and use in source and binary fo rms, with or without modi fication, are permitted onl y as authorized by the OpenLDAP Public License. A copy of this lic ense is available in t he file LICEN SE in the top-leve l directory of th e distribution or, alternatively, at www.OpenLDAP.org/license.html. OpenLDAP is a registered trademark of the OpenLDAP F oundation. Individua l files and/or contribute d packages may be copy righted by other parti es and subject to additional restrictions. This work is derived from the University of Michigan L DAP v3.3 distribution. This work al so contains mate rials derived f rom public sourc es. Information about OpenL DAP can be obtained at www.openldap.org/. Portions Copyright 1998-2004 Kurt D. Zeilenga. Portions Copyright 1998-2004 Net Boolean Incorporated. Portions Copyright 2001-2004 IBM Corporation. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted only as authorized by the OpenLDAP Public License. Portions Copyright 1999-2003 Howard Y.H. Chu. Portions Copyright 1999-2003 Symas Corporation. Portions Copyright 1998-2003 Hallvard B. Furuseth. All rights reserved. Redistribution and use in source and binary forms, with or without modificatio n, are permitted provided tha t this notice is preserved. The na mes of the copyright ho lders may not be used to endorse or promote products derived from this software without their specific prior written permission. This software is provided "as is'' without express or implied warranty. Portions Copyright (c) 1992-1996 Regents of the University of Michigan. All rights reserved. Redistribution and use in source and binary forms are permitted provided that this notice is preserved and that due credit is given to the University of Michigan at Ann Arbor. The name of the University may not be used to endorse or promote products derived from this software without specific prior written permission. This software is provided "as is'' without express or implied warranty. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell Inc. disclaims any proprietary interest in trademarks and trade names other than its own.

February 2009 Rev. A00

Contents

1 iDRAC Overview . . . . . . . . . . . . . . . . . . . 23

iDRAC Management Features . . . . . . . . . . . . . . 24

iDRAC Security Features

iDRAC Firmware Improvements . . . . . . . . . . . . . 26

Supported Platforms

Supported Operating Systems . . . . . . . . . . . . . . 26

Supported Web Browsers . . . . . . . . . . . . . . . . 27

Supported Remote Access Connections

iDRAC Ports . . . . . . . . . . . . . . . . . . . . . . . 28

Other Documents You May Need . . . . . . . . . . . . 29

. . . . . . . . . . . . . . . . 25

. . . . . . . . . . . . . . . . . . 26

. . . . . . . . 28

2 Configuring the iDRAC . . . . . . . . . . . . . . 33

Before You Begin . . . . . . . . . . . . . . . . . . . . 33

Interfaces for Configuring the iDRAC . . . . . . . . . . 33

Configuration Tasks . . . . . . . . . . . . . . . . . . . 36

Configure the Management Station

Configure iDRAC Networking

Configure iDRAC Users . . . . . . . . . . . . . . 37

Configure Active Directory

Configure IP Filtering and IP Blocking

. . . . . . . . . . . . . 37

. . . . . . . . 36

. . . . . . . . . . . 36

. . . . . . . 37

Contents 3

Configure Platform Events . . . . . . . . . . . . . 38

Enabling or Disabling Local Configuration

. . . . . . . . . . . . . . . . . . . . . . . 38

Access

Configure iDRAC Services

. . . . . . . . . . . . . 38

Configure Secure Sockets Layer (SSL) . . . . . . 38

Configure Virtual Media . . . . . . . . . . . . . . 39

Install the Managed Server Software

. . . . . . . 39

Configure the Managed Server for the Last Crash Screen Feature

. . . . . . . . . . . . . . . . . . . 39

Configuring Networking Using the CMC Web Interface

. . . . . . . . . . . . . . . . . . . . . . 39

Viewing FlexAddress Mezzanine Card Fabric Connections

. . . . . . . . . . . . . . . . . . . . . . . 40

Updating the iDRAC Firmware . . . . . . . . . . . . . 41

Downloading the Firmware or Update Package

Execute the Firmware Update

. . . . . . . . . . . . . . . . . . . . . . 41

. . . . . . . . . . . 42

Using the DOS Update Utility . . . . . . . . . . . . 43

Verifying the Digital Signature . . . . . . . . . . . 44

Clear Your Browser’s Cache

. . . . . . . . . . . . 47

3 Configuring the Management Station . . . 51

4 Contents

Configuring iDRAC for Use with IT Assistant

. . . . . . 48

Using the iDRAC Configuration Utility to Enable

Discovery and Monitoring . . . . . . . . . . . . . 48

Using the iDRAC Web Interface to Enable Discovery and Monitoring

. . . . . . . . . . . . . 49

Using the Dell IT Assistant to View iDRAC Status and Events

. . . . . . . . . . . . . . . . . 50

Management Station Set Up Steps . . . . . . . . . . . 51

Management Station Network Requirements

. . . . . 51

Configuring a Supported Web Browser . . . . . . . . 52

Opening Your Web Browser

. . . . . . . . . . . . 52

Configuring Your Web Browser to Connect to the Web Interface

Adding iDRAC to the List of Trusted Domains

. . . . . . . . . . . . . . . . . . . 52

. . . 55

Viewing Localized Versions of the Web Interface

Setting the Locale in Linux

. . . . . . . . . . . . . . . . . . . 55

. . . . . . . . . . . . . 57

Disabling the Whitelist Feature in Firefox . . . . . 58

Installing a Java Runtime Environment (JRE) . . . . . 59

Installing Telnet or SSH Clients

Telnet with iDRAC

. . . . . . . . . . . . . 60

. . . . . . . . . . . . . . . . . 60

Configuring the Backspace Key For Your Telnet Session

. . . . . . . . . . . . . . . . . . . 60

SSH With iDRAC . . . . . . . . . . . . . . . . . . 61

Installing a TFTP Server . . . . . . . . . . . . . . . . . 62

Installing Dell OpenManage IT Assistant . . . . . . . 63

4 Configuring the Managed Server . . . . . . 65

Installing the Software on the Managed Server . . . . 65

Configuring the Managed Server to Capture the Last Crash Screen

. . . . . . . . . . . . . . . . . . . . 66

Disabling the Windows Automatic Reboot Option . . . 67

5 Configuring the iDRAC Using the

Web Interface

Accessing the Web Interface . . . . . . . . . . . . . . 69

Logging In

. . . . . . . . . . . . . . . . . . . . . 70

Contents 5

Logging Out . . . . . . . . . . . . . . . . . . . . . 70

Using Multiple Browser Tabs and Windows . . . . 71

Configuring the iDRAC NIC . . . . . . . . . . . . . . . 71

Configuring the Network and IPMI LAN Settings

. . . . . . . . . . . . . . . . . . . . 72

Configuring IP Filtering and IP Blocking . . . . . . 75

Configuring Platform Events . . . . . . . . . . . . . . . 76

Configuring Platform Event Filters (PEF)

. . . . . . 77

Configuring Platform Event Traps (PET) . . . . . . 78

Configuring E-Mail Alerts

. . . . . . . . . . . . . 78

Configuring IPMI

. . . . . . . . . . . . . . . . . . . . 79

Adding and Configuring iDRAC Users . . . . . . . . . . 80

Securing iDRAC Communications Using SSL and Digital Certificates

Secure Sockets Layer (SSL)

. . . . . . . . . . . . . . . . . . . 83

. . . . . . . . . . . . 84

Certificate Signing Request (CSR) . . . . . . . . . 84

Accessing the SSL Main Menu

. . . . . . . . . . 85

Generating a New Certificate Signing Request

Uploading a Server Certificate

. . . . . . . . . . . . . . . . . . . . . . . 86

. . . . . . . . . . . 87

Viewing a Server Certificate . . . . . . . . . . . . 88

Configuring and Managing Active Directory Certificates

. . . . . . . . . . . . . . . . . . . . . . . 89

Configuring Active Directory (Standard Schema and Extended Schema)

Uploading an Active Directory CA Certificate

. . . . . . . . . . . . . . . 90

. . . 93

Downloading an iDRAC Server Certificate . . . . . 94

Viewing an Active Directory CA Certificate . . . . 94

Enabling or Disabling Local Configuration Access . . . 95

Enabling Local Configuration Access

. . . . . . . 95

6 Contents

Disabling Local Configuration Access . . . . . . . 95

Configuring iDRAC Services

. . . . . . . . . . . . . . 95

Updating the iDRAC Firmware . . . . . . . . . . . . . 99

Recovering iDRAC Firmware Using the CMC

6 Using the iDRAC with Microsoft

Active Directory

Advantages and Disadvantages of Extended Schema and Standard Schema

Extended Schema Active Directory Overview . . . . . 104

Active Directory Schema Extensions

Overview of the RAC Schema Extensions . . . . . 105

Active Directory Object Overview

Configuring Extended Schema Active Directory to Access Your iDRAC

Extending the Active Directory Schema

Installing the Dell Extension to the Active Directory Users and Computers Snap-In

Adding iDRAC Users and Privileges to Active Directory

Configuring the iDRAC With Extended Schema Active Directory Using the Web Interface

Configuring the iDRAC With Extended Schema Active Directory Using RACADM

Configuring the iDRAC With Extended Schema Active Directory and SM-CLP

103

. . . . . . . . . . . . . . . . . . 103

. . . . . . . . . 105

. . . . . . . . . . . . . . . 109

. . . . . . . . . . . . . . . . . . 116

. . . . . . . . . 120

. . . . . . . . . . . 121

. . . 100

. . . . . . . 104

. . . . . . 109

. . . . . 115

. . . . . 119

Active Directory Standard Schema Overview . . . . . 122

Configuring Standard Schema Active Directory to Access Your iDRAC

. . . . . . . . . . . . . . . 124

Configuring the iDRAC With Standard Schema Active Directory and the Web Interface

. . . . . . 124

Contents 7

Configuring the iDRAC With Standard Schema Active Directory and RACADM

. . . . . . . . . . . 126

Configuring the iDRAC With Standard Schema Active Directory and SM-CLP

. . . . . . . . . . . 127

Enabling SSL on a Domain Controller

. . . . . . . . . . 129

Exporting the Domain Controller Root

CA Certificate . . . . . . . . . . . . . . . . . . . . 130

Importing the iDRAC Firmware SSL Certificate . . 131

Using Active Directory to Log In To the iDRAC . . . . . 132

Frequently Asked Questions

. . . . . . . . . . . . . . 132

7 Viewing the Configuration and Health

of the Managed Server 135

System Summary . . . . . . . . . . . . . . . . . . . . . 135

Main System Enclosure

Integrated Dell Remote Access Controller

WWN/MAC Summary

System Health . . . . . . . . . . . . . . . . . . . . . . 137

. . . . . . . . . . . . . . . . . . . . . . . . 137

iDRAC

CMC . . . . . . . . . . . . . . . . . . . . . . . . . 138

Batteries

. . . . . . . . . . . . . . . . . . . . . . 138

Temperatures . . . . . . . . . . . . . . . . . . . . 138

Voltages

. . . . . . . . . . . . . . . . . . . . . . 138

Power Monitoring

CPU . . . . . . . . . . . . . . . . . . . . . . . . . 139

POST . . . . . . . . . . . . . . . . . . . . . . . . 139

Misc Health

. . . . . . . . . . . . . . . . . . . . . 139

. . . . . . . . . . . . . . 135

. . . . . 136

. . . . . . . . . . . . . . . . . . 137

. . . . . . . . . . . . . . . . . 138

8 Contents

8 Configuring and Using Serial Over

LAN 141

Enabling Serial Over LAN in the BIOS . . . . . . . . . 141

Configuring Serial Over LAN in the iDRAC Web GUI

. . . . . . . . . . . . . . . . . . . . . . . . . . . . 142

Using Serial Over LAN (SOL)

. . . . . . . . . . . . . . 145

Model for Redirecting SOL Over Telnet or SSH

. . . . . . . . . . . . . . . . . . . . . . . 145

Model for the SOL Proxy . . . . . . . . . . . . . . 146

Model for Redirecting SOL Over IMPItool . . . . . 146

Disconnecting an SOL Session in SM-CLP

. . . . 146

Using SOL Over PuTTY . . . . . . . . . . . . . . . 147

Using SOL Over Telnet With Linux . . . . . . . . . 147

Using SOL Over OpenSSH with Linux

. . . . . . . 148

Using SOL Over IPMItool . . . . . . . . . . . . . . 148

Opening SOL With SOL Proxy . . . . . . . . . . . 149

Operating System Configuration . . . . . . . . . . . . 154

Linux Enterprise Operating System

. . . . . . . . 154

Windows 2003 Enterprise . . . . . . . . . . . . . 159

9 Using GUI Console Redirection . . . . . . . 161

Overview . . . . . . . . . . . . . . . . . . . . . . . . 161

Using Console Redirection

Supported Screen Resolutions and Refresh Rates

Configuring Your Management Station . . . . . . 162

Configuring Console Redirection in the iDRAC Web Interface

Configuring Console Redirection in the SM-CLP Command Line Interface

. . . . . . . . . . . . . . . 161

. . . . . . . . . . . . . . . . . . . 162

. . . . . . . . . . . . . . . . . . . 163

. . . . . . . . . . . . . . 165

Contents 9

Opening a Console Redirection Session . . . . . . 165

Using the Video Viewer

Synchronizing the Mouse Pointers

Disabling or Enabling Local Console

Frequently Asked Questions

. . . . . . . . . . . . . . . . . 167

. . . . . . . . 170

. . . . . . . . 171

. . . . . . . . . . . . . . 172

10 Configuring and Using Virtual Media . . 177

Overview . . . . . . . . . . . . . . . . . . . . . . . . . 177

Windows-Based Management Station

Linux-Based Management Station . . . . . . . . . 179

Configuring Virtual Media . . . . . . . . . . . . . . . . 180

Running Virtual Media . . . . . . . . . . . . . . . . . . 182

Booting From Virtual Media

. . . . . . . . . . . . 183

Installing Operating Systems Using Virtual Media

. . . . . . . . . . . . . . . . . . . . 184

Using Virtual Media When the Server’s Operating System Is Running

. . . . . . . . . . . . 184

Frequently Asked Questions . . . . . . . . . . . . . . 185

. . . . . . 179

11 Using the Local RACADM Command Line

Interface

10 Contents

191

Using the RACADM Command . . . . . . . . . . . . . 191

RACADM Subcommands

. . . . . . . . . . . . . . . . 192

Using the RACADM Utility to Configure the iDRAC . . . 193

Displaying Current iDRAC Settings

. . . . . . . . . 193

Managing iDRAC Users with RACADM . . . . . . 194

Adding an iDRAC User

. . . . . . . . . . . . . . . 195

Enabling an iDRAC User With Permissions . . . . 195

Removing an iDRAC User . . . . . . . . . . . . . 196

Testing E-mail Alerting . . . . . . . . . . . . . . . 196

Testing the iDRAC SNMP Trap Alert Feature

. . . 197

Configuring iDRAC Network Properties . . . . . . 197

Configuring IPMI . . . . . . . . . . . . . . . . . . 198

Configuring PEF

. . . . . . . . . . . . . . . . . . 200

Configuring PET . . . . . . . . . . . . . . . . . . 201

Configuring IP Filtering (IpRange) . . . . . . . . . 203

Configuring IP Filtering

. . . . . . . . . . . . . . . 204

Configuring IP Blocking . . . . . . . . . . . . . . 205

Configuring iDRAC Telnet and SSH Services Using Local RACADM

. . . . . . . . . . . . . . . 207

Using an iDRAC Configuration File

Creating an iDRAC Configuration File

Configuration File Syntax

. . . . . . . . . . . 208

. . . . . . . 208

. . . . . . . . . . . . . 209

Modifying the iDRAC IP Address in a Configuration File

. . . . . . . . . . . . . . . . . 211

Loading the Configuration File Into the iDRAC

Configuring Multiple iDRACs

. . . . . . . . . . . . . . 212

12 Using the iDRAC SM-CLP Command

Line Interface 215

System Management With SM-CLP . . . . . . . . . . . 215

iDRAC SM-CLP Support . . . . . . . . . . . . . . . . . 216

SM-CLP Features . . . . . . . . . . . . . . . . . . . . 216

Navigating the MAP Address Space

Targets

. . . . . . . . . . . . . . . . . . . . . . . 220

Using the Show Verb . . . . . . . . . . . . . . . . . . 220

. . . . . . . . . . 219

. . . 212

Contents 11

Using the -display Option . . . . . . . . . . . . . . 221

Using the -level Option . . . . . . . . . . . . . . . 221

Using the -output Option . . . . . . . . . . . . . . 221

iDRAC SM-CLP Examples . . . . . . . . . . . . . . . . 222

Server Power Management

. . . . . . . . . . . . 222

SEL Management . . . . . . . . . . . . . . . . . . 222

MAP Target Navigation

. . . . . . . . . . . . . . 224

Setting the iDRAC IP Address, Subnet Mask, and Gateway Address

. . . . . . . . . . . . . . . 225

Updating the iDRAC Firmware Using SM-CLP

13 Deploying Your Operating System

Using iVM-CLI 229

Before You Begin . . . . . . . . . . . . . . . . . . . . 229

Remote System Requirements

Network Requirements . . . . . . . . . . . . . . . 229

Creating a Bootable Image File . . . . . . . . . . . . . 230

Creating an Image File for Linux Systems

Creating an Image File for Windows Systems . . . 230

. . . . . . . . . . . 229

. . . . . 230

. . . 226

12 Contents

Preparing for Deployment . . . . . . . . . . . . . . . . 230

Configuring the Remote Systems

Deploying the Operating System

. . . . . . . . . . 230

. . . . . . . . . . . . 231

Using the Virtual Media Command Line Interface Utility

Installing the iVM-CLI Utility

Command Line Options

iVM-CLI Parameters

. . . . . . . . . . . . . . . . . . . . . 232

. . . . . . . . . . . . 233

. . . . . . . . . . . . . . . 234

. . . . . . . . . . . . . . . . 234

iVM-CLI Operating System Shell Options . . . . . 237

14 Using the iDRAC Configuration

Utility 239

Overview . . . . . . . . . . . . . . . . . . . . . . . . 239

Starting the iDRAC Configuration Utility

. . . . . . . . 240

Using the iDRAC Configuration Utility . . . . . . . . . 240

. . . . . . . . . . . . . . . . . . . . . . . . . 241

LAN

IPMI Over LAN (On/Off) . . . . . . . . . . . . . . 241

LAN Parameters

. . . . . . . . . . . . . . . . . . 242

Virtual Media . . . . . . . . . . . . . . . . . . . . 244

LAN User Configuration . . . . . . . . . . . . . . 244

Reset to Default

. . . . . . . . . . . . . . . . . . 245

System Event Log Menu . . . . . . . . . . . . . . 245

Exiting the iDRAC Configuration Utility . . . . . . . 246

15 Recovering and Troubleshooting the

Managed Server 247

Safety First–For You and Your System . . . . . . . . . 247

Trouble Indicators . . . . . . . . . . . . . . . . . . . . 248

LED Indicators

Hardware Trouble Indicators . . . . . . . . . . . 249

Other Trouble Indicators

. . . . . . . . . . . . . . . . . . . 248

. . . . . . . . . . . . . . 249

Problem Solving Tools

Checking the System Health

Checking the System Event Log (SEL)

. . . . . . . . . . . . . . . . . 250

. . . . . . . . . . . . 250

. . . . . . . 251

Checking the Post Codes . . . . . . . . . . . . . 252

Viewing the Last System Crash Screen . . . . . . 252

Viewing the Most Recent Boot Sequences

. . . . 253

Checking the Server Status Screen for Error Messages

. . . . . . . . . . . . . . . . . . 254

Contents 13

Viewing the iDRAC Log . . . . . . . . . . . . . . . 262

Viewing System Information . . . . . . . . . . . . 263

Identifying the Managed Server in the Chassis

. . . . . . . . . . . . . . . . . . . . . . . 265

Using the Diagnostics Console . . . . . . . . . . . 266

Managing Power on a Remote System . . . . . . 267

Troubleshooting and Frequently Asked Questions . . . 268

A RACADM Subcommand Overview . . . . . 275

help . . . . . . . . . . . . . . . . . . . . . . . . . . . 275

config

. . . . . . . . . . . . . . . . . . . . . . . . . . 276

getconfig . . . . . . . . . . . . . . . . . . . . . . . . . 278

getssninfo . . . . . . . . . . . . . . . . . . . . . . . . 280

14 Contents

getsysinfo

. . . . . . . . . . . . . . . . . . . . . . . . 282

getractime . . . . . . . . . . . . . . . . . . . . . . . . 284

setniccfg . . . . . . . . . . . . . . . . . . . . . . . . . 285

getniccfg

. . . . . . . . . . . . . . . . . . . . . . . . . 287

getsvctag . . . . . . . . . . . . . . . . . . . . . . . . . 288

racreset . . . . . . . . . . . . . . . . . . . . . . . . . 288

racresetcfg

. . . . . . . . . . . . . . . . . . . . . . . . 289

serveraction . . . . . . . . . . . . . . . . . . . . . . . 290

getraclog

clrraclog

. . . . . . . . . . . . . . . . . . . . . . . . . 291

. . . . . . . . . . . . . . . . . . . . . . . . . 292

getsel . . . . . . . . . . . . . . . . . . . . . . . . . . 293

clrsel . . . . . . . . . . . . . . . . . . . . . . . . . . . 294

gettracelog

. . . . . . . . . . . . . . . . . . . . . . . 294

sslcsrgen . . . . . . . . . . . . . . . . . . . . . . . . 296

sslcertupload . . . . . . . . . . . . . . . . . . . . . . 297

sslcertdownload

sslcertview

. . . . . . . . . . . . . . . . . . . . 298

. . . . . . . . . . . . . . . . . . . . . . . 299

testemail . . . . . . . . . . . . . . . . . . . . . . . . . 301

testtrap

. . . . . . . . . . . . . . . . . . . . . . . . . . 303

B iDRAC Property Database Group and Object Definitions 305

Displayable Characters . . . . . . . . . . . . . . . . . 305

idRacInfo . . . . . . . . . . . . . . . . . . . . . . . . 305

idRacProductInfo (Read Only)

idRacDescriptionInfo (Read Only) . . . . . . . . . 306

idRacVersionInfo (Read Only)

idRacBuildInfo (Read Only) . . . . . . . . . . . . 307

idRacName (Read Only) . . . . . . . . . . . . . . 307

idRacType (Read Only)

. . . . . . . . . . . 306

. . . . . . . . . . . . . . . 307

cfgLanNetworking

. . . . . . . . . . . . . . . . . . . 307

cfgDNSDomainNameFromDHCP

(Read/Write) . . . . . . . . . . . . . . . . . . . . 308

cfgDNSDomainName (Read/Write) . . . . . . . . 308

cfgDNSRacName (Read/Write) . . . . . . . . . . 309

cfgDNSRegisterRac (Read/Write)

cfgDNSServersFromDHCP (Read/Write)

cfgDNSServer1 (Read/Write)

. . . . . . . . . 309

. . . . . 309

. . . . . . . . . . . 310

Contents 15

cfgDNSServer2 (Read/Write) . . . . . . . . . . . 310

cfgNicEnable (Read/Write) . . . . . . . . . . . . . 310

cfgNicIpAddress (Read/Write) . . . . . . . . . . . 311

cfgNicNetmask (Read/Write)

. . . . . . . . . . . 311

cfgNicGateway (Read/Write) . . . . . . . . . . . 312

cfgNicUseDhcp (Read/Write) . . . . . . . . . . . 312

cfgNicMacAddress (Read Only)

. . . . . . . . . . 313

cfgUserAdmin

cfgUserAdminIpmiLanPrivilege (Read/Write)

cfgUserAdminPrivilege (Read/Write)

. . . . . . . . . . . . . . . . . . . . . . 313

. . . 313

. . . . . . . 314

cfgUserAdminUserName (Read/Write) . . . . . . 315

cfgUserAdminPassword (Write Only) . . . . . . . 315

cfgUserAdminEnable

. . . . . . . . . . . . . . . . 316

cfgUserAdminSolEnable . . . . . . . . . . . . . . 316

cfgEmailAlert . . . . . . . . . . . . . . . . . . . . . . 316

cfgEmailAlertIndex (Read Only)

. . . . . . . . . . 317

cfgEmailAlertEnable (Read/Write) . . . . . . . . . 317

cfgEmailAlertAddress . . . . . . . . . . . . . . . 317

cfgEmailAlertCustomMsg

cfgSessionManagement

. . . . . . . . . . . . . 318

. . . . . . . . . . . . . . . . . 318

cfgSsnMgtConsRedirMaxSessions

(Read/Write) . . . . . . . . . . . . . . . . . . . . 318

cfgSsnMgtWebserverTimeout (Read/Write) . . . . 319

cfgSsnMgtSshIdleTimeout (Read/Write)

cfgSsnMgtTelnetIdleTimeout (Read/Write)

cfgSerial

. . . . . . . . . . . . . . . . . . . . . . . . . 320

cfgSerialSshEnable (Read/Write)

cfgSerialTelnetEnable (Read/Write)

. . . . . . 319

. . . . 320

. . . . . . . . . 320

. . . . . . . . 321

16 Contents

cfgRacTuning

. . . . . . . . . . . . . . . . . . . . . . 321

cfgRacTuneHttpPort (Read/Write)

. . . . . . . . . 321

cfgRacTuneHttpsPort (Read/Write) . . . . . . . . 322

cfgRacTuneIpRangeEnable . . . . . . . . . . . . 322

cfgRacTuneIpRangeAddr . . . . . . . . . . . . . 322

cfgRacTuneIpRangeMask

. . . . . . . . . . . . . 323

cfgRacTuneIpBlkEnable . . . . . . . . . . . . . . 323

cfgRacTuneIpBlkFailCount . . . . . . . . . . . . . 323

cfgRacTuneIpBlkFailWindow

. . . . . . . . . . . 324

cfgRacTuneIpBlkPenaltyTime . . . . . . . . . . . 324

cfgRacTuneSshPort (Read/Write) . . . . . . . . . 324

cfgRacTuneTelnetPort (Read/Write)

. . . . . . . . 325

cfgRacTuneConRedirEncryptEnable (Read/Write)

cfgRacTuneConRedirPort (Read/Write)

. . . . . . . . . . . . . . . . . . . . 325

. . . . . . 325

cfgRacTuneConRedirVideoPort (Read/Write) . . . 326

cfgRacTuneAsrEnable (Read/Write) . . . . . . . . 326

cfgRacTuneWebserverEnable (Read/Write)

. . . . 326

cfgRacTuneLocalServerVideo (Read/Write) . . . . 327

cfgRacTuneLocalConfigDisable (Read/Write) . . . 327

ifcRacManagedNodeOs . . . . . . . . . . . . . . . . . 328

ifcRacMnOsHostname (Read/Write)

. . . . . . . . 328

ifcRacMnOsOsName (Read/Write) . . . . . . . . 328

cfgRacSecurity . . . . . . . . . . . . . . . . . . . . . 328

cfgSecCsrCommonName (Read/Write)

cfgSecCsrOrganizationName (Read/Write)

cfgSecCsrOrganizationUnit (Read/Write)

. . . . . . 329

. . . . 329

. . . . . 329

cfgSecCsrLocalityName (Read/Write) . . . . . . . 330

cfgSecCsrStateName (Read/Write) . . . . . . . . 330

cfgSecCsrCountryCode (Read/Write)

. . . . . . . 330

cfgSecCsrEmailAddr (Read/Write) . . . . . . . . . 331

cfgSecCsrKeySize (Read/Write) . . . . . . . . . . 331

cfgRacVirtual . . . . . . . . . . . . . . . . . . . . . . 331

cfgVirMediaAttached (Read/Write)

. . . . . . . . 331

Contents 17

cfgVirAtapiSrvPort (Read/Write) . . . . . . . . . . 332

cfgVirAtapiSrvPortSsl (Read/Write) . . . . . . . . 332

cfgVirMediaBootOnce (Read/Write) . . . . . . . . 333

cfgFloppyEmulation (Read/Write)

. . . . . . . . . 333

cfgActiveDirectory

cfgADRacDomain (Read/Write)

cfgADRacName (Read/Write)

. . . . . . . . . . . . . . . . . . . 333

. . . . . . . . . . 334

. . . . . . . . . . . 334

cfgADEnable (Read/Write) . . . . . . . . . . . . . 334

cfgADAuthTimeout (Read/Write) . . . . . . . . . . 335

cfgADRootDomain (Read/Write)

. . . . . . . . . . 335

cfgADSpecifyServerEnable (Read/Write) . . . . . 335

cfgADDomainController (Read/Write) . . . . . . . 336

cfgADGlobalCatalog (Read/Write)

. . . . . . . . . 336

cfgADType (Read/Write) . . . . . . . . . . . . . . 336

cfgStandardSchema . . . . . . . . . . . . . . . . . . . 337

cfgSSADRoleGroupIndex (Read Only)

. . . . . . . 337

cfgSSADRoleGroupName (Read/Write) . . . . . . 337

cfgSSADRoleGroupDomain (Read/Write) . . . . . 337

cfgSSADRoleGroupPrivilege (Read/Write)

cfgIpmiSol

. . . . . . . . . . . . . . . . . . . . . . . . 338

cfgIpmiSolEnable (Read/Write)

cfgIpmiSolBaudRate (Read/Write)

. . . . . . . . . . 339

. . . . 338

. . . . . . . . . 339

cfgIpmiSolMinPrivilege (Read/Write) . . . . . . . 339

cfgIpmiSolAccumulateInterval (Read/Write)

cfgIpmiSolSendThreshold (Read/Write)

. . . 340

. . . . . . 340

18 Contents

cfgIpmiLan

. . . . . . . . . . . . . . . . . . . . . . . . 340

cfgIpmiLanEnable (Read/Write)

cfgIpmiLanPrivLimit (Read/Write)

cfgIpmiLanAlertEnable (Read/Write)

. . . . . . . . . . 340

. . . . . . . . . 341

. . . . . . . . 341

cfgIpmiEncryptionKey (Read/Write) . . . . . . . . 342

cfgIpmiPetCommunityName (Read/Write)

. . . . . 342

cfgIpmiPef . . . . . . . . . . . . . . . . . . . . . . . . 342

cfgIpmiPefName (Read Only)

. . . . . . . . . . . 342

cfgIpmiPefIndex (Read Only) . . . . . . . . . . . . 343

cfgIpmiPefAction (Read/Write) . . . . . . . . . . 343

cfgIpmiPefEnable (Read/Write)

. . . . . . . . . . 343

cfgIpmiPet

. . . . . . . . . . . . . . . . . . . . . . . . 344

cfgIpmiPetIndex (Read/Write)

. . . . . . . . . . . 344

cfgIpmiPetAlertDestIpAddr (Read/Write)

. . . . . 344

cfgIpmiPetAlertEnable (Read/Write) . . . . . . . . 345

C iDRAC SMCLP Property Database . . . . 347

/system1/sp1/account<1-16> . . . . . . . . . . . . . . 347

userid (Read Only)

username (Read/Write) . . . . . . . . . . . . . . 347

oemdell_ipmilanprivileges (Read/Write) . . . . . . 348

password (Write Only)

enabledstate (Read/Write) . . . . . . . . . . . . . 349

solenabled (Read/Write) . . . . . . . . . . . . . . 349

oemdell_extendedprivileges (Read/Write)

/system1/sp1/enetport1/*

macaddress (Read Only)

/system1/sp1/enetport1/lanendpt1/ipendpt1 . . . . . . 351

oemdell_nicenable (Read/Write)

ipaddress (Read/Write)

subnetmask (Read/Write)

oemdell_usedhcp (Read/Write) . . . . . . . . . . 352

committed (Read/Write) . . . . . . . . . . . . . . 353

. . . . . . . . . . . . . . . . . 347

. . . . . . . . . . . . . . . 348

. . . . 349

. . . . . . . . . . . . . . . . 351

. . . . . . . . . . . . . . 351

. . . . . . . . . 351

. . . . . . . . . . . . . . 352

. . . . . . . . . . . . . 352

/system1/sp1/enetport1/lanendpt1/ipendpt1/ dnsendpt1

. . . . . . . . . . . . . . . . . . . . . . . . 353

Contents 19

oemdell_domainnamefromdhcp (Read/Write) . . . 353

oemdell_dnsdomainname (Read/Write) . . . . . . 354

oemdell_dnsregisterrac (Read/Write) . . . . . . . 354

oemdell_dnsracname (Read/Write)

. . . . . . . . 355

oemdell_serversfromdhcp (Read/Write) . . . . . . 355

/system1/sp1/enetport1/lanendpt1/ipendpt1/dnsendpt1/ remotesap1

. . . . . . . . . . . . . . . . . . . . . . . 355

dnsserveraddress (Read/Write)

. . . . . . . . . . 355

/system1/sp1/enetport1/lanendpt1/ipendpt1/dnsendpt1/ remotesap2

. . . . . . . . . . . . . . . . . . . . . . . 356

dnsserveraddress (Read/Write)

. . . . . . . . . . 356

/system1/sp1/enetport1/lanendpt1/ipendpt1/ remotesap1

. . . . . . . . . . . . . . . . . . . . . . . 356

defaultgatewayaddress (Read/Write)

. . . . . . . 356

/system1/sp1/group<1-5> . . . . . . . . . . . . . . . . 357

oemdell_groupname (Read/Write)

. . . . . . . . . 357

oemdell_groupdomain (Read/Write) . . . . . . . . 357

oemdell_groupprivilege (Read/Write) . . . . . . . 357

/system1/sp1/oemdell_adservice1 . . . . . . . . . . . 358

enabledstate (Read/Write)

. . . . . . . . . . . . . 358

oemdell_adracname (Read/Write) . . . . . . . . . 359

oemdell_adracdomain (Read/Write)

. . . . . . . . 359

oemdell_adrootdomain (Read/Write) . . . . . . . 359

oemdell_timeout (Read/Write)

oemdell_schematype (Read/Write)

. . . . . . . . . . . 360

. . . . . . . . 360

oemdell_adspecifyserverenable (Read/Write) . . . 360

oemdell_addomaincontroller (Read/Write) . . . . 361

oemdell_adglobalcatalog (Read/Write)

. . . . . . 361

20 Contents

/system1/sp1/oemdell_racsecurity1

commonname (Read/Write)

. . . . . . . . . . . . 362

. . . . . . . . . . 361

organizationname (Read/Write) . . . . . . . . . . 362

oemdell_organizationunit (Read/Write) . . . . . . 362

oemdell_localityname (Read/Write) . . . . . . . . 363

oemdell_statename (Read/Write)

. . . . . . . . . 363

oemdell_countrycode (Read/Write) . . . . . . . . 363

oemdell_emailaddress (Read/Write) . . . . . . . 364

oemdell_keysize (Read/Write)

. . . . . . . . . . . 364

/system1/sp1/oemdell_ssl1

generate (Read/Write)

oemdell_status (Read Only)

. . . . . . . . . . . . . . . 364

. . . . . . . . . . . . 365

oemdell_certtype (Read / Write) . . . . . . . . . . 365

/system1/sp1/oemdell_vmservice1 . . . . . . . . . . . 366

enabledstate (Read/Write)

. . . . . . . . . . . . . 366

oemdell_singleboot (Read/Write) . . . . . . . . . 366

oemdell_floppyemulation (Read/Write) . . . . . . 367

/system1/sp1/oemdell_vmservice1/tcpendpt1 . . . . . 367

portnumber (Read/Write)

. . . . . . . . . . . . . 367

portnumber (Read/Write) . . . . . . . . . . . . . 368

oemdell_sslenabled (Read Only)

. . . . . . . . . . 368

D RACADM and SM-CLP Equivalencies

369

Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . 381

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 391

Contents 21

22 Contents

iDRAC Overview

The Integrated Dell™ Remote Access Controller (iDRAC) is a systems management hardware and software solution that provides remote management capabilities, crashed system recovery, and power control functions for Dell PowerEdge™ systems.

The iDRAC uses an integrated System-on-Chip microprocessor for the remote monitor/control system. The iDRAC co-exists on the system board with the managed PowerEdge server. The server operating system is concerned with executing applications; the iDRAC is concerned with monitoring and managing the server’s environment and state outside of the operating system.

You can configure the iDRAC to send you an e-mail or Simple Network Management Protocol (SNMP) trap alert for warnings or errors. To help you diagnose the probable cause of a system crash, iDRAC can log event data and capture an image of the screen when it detects that the system has crashed.

Managed servers are installed in a Dell M1000e system enclosure (chassis) with modular power supplies, cooling fans, and a chassis management controller (CMC). The CMC monitors and manages all components installed in the chassis. A redundant CMC can be added to provide hot failover if the primary CMC fails. The chassis provides access to the iDRACs through its LCD display, local console connections, and its web interface.

All network connections to the iDRAC are through the CMC network interface (CMC RJ45 connection port labelled "GB1"). The CMC routes traffic to the iDRACs on its servers through a private, internal network. This private management network is outside of the server’s data path and outside of the operating system’s control, that is, out-of-band. The managed servers’ inband network interfaces are accessed through I/O modules (IOMs) installed in the chassis.

iDRAC Overview 23

The iDRAC network interface is disabled by default. It must be configured before the iDRAC is accessible. After the iDRAC is enabled and configured on the network, it can be accessed at its assigned IP address with the iDRAC web interface, telnet or SSH, and supported network management protocols, such as Intelligent Platform Management Interface (IPMI).

iDRAC Management Features

The iDRAC provides the following management features:

• Dynamic Domain Name System (DDNS) registration

• Remote system management and monitoring using a Web interface, the local RACADM command line interface via console redirection, and the SM-CLP command line over a telnet/SSH connection

• Support for Microsoft iDRAC user IDs and passwords in Active Directory using the standard schema or an extended schema

• Console Redirection — Provides remote system keyboard, video, and mouse functions

• Virtual Media — Enables a managed server to access a local media drive on the management station or ISO CD/DVD images on a network share

• Monitoring — Provides access to system information and status of components

• Access to system logs — Provides access to the system event log, the iDRAC log, and the last crash screen of the crashed or unresponsive system that is independent of the operating system state

• Dell OpenManage™ software integration — Enables you to launch the iDRAC Web interface from Dell OpenManage Server Administrator or IT Assistant

• iDRAC alert — Alerts you to potential managed node issues through an email message or SNMP trap

• Remote power management — Provides remote power management functions, such as shutdown and reset, from a management console

• Single Sign-On from CMC Web interface — Once credentials are accepted by CMC, users can access any iDRAC without additional login

Active Directory® authentication — Centralizes

24 iDRAC Overview

NOTE: If a warning window appears during the Single Sign-On process, it

must be bypassed within 20 seconds or Single Sign-On will fail.

• One-to-Many firmware update – Enables user configurable update of more

than one iDRAC using CMC GUI and command line

• Intelligent Platform Management Interface (IPMI) support

• Secure Sockets Layer (SSL) encryption — Provides secure remote system

management through the Web interface

• Password-level security management — Prevents unauthorized access to a

remote system

• Role-based authority — Provides assignable permissions for different

systems management tasks

iDRAC Security Features

The iDRAC provides the following security features:

• User authentication through Microsoft Active Directory (optional) or

hardware-stored user IDs and passwords

• Role-based authority, which enables an administrator to configure specific

privileges for each user

• User ID and password configuration through the Web interface or SM-CLP

• SM-CLP and Web interfaces, which support 128-bit and 40-bit encryption

(for countries where 128 bit is not acceptable), using the SSL 3.0 standard

• Session time-out configuration (in seconds) through the Web interface or

SM-CLP

• Configurable IP ports (where applicable)

NOTE: Telnet does not support SSL encryption.

• Secure Shell (SSH), which uses an encrypted transport layer for higher

security

• Login failure limits per IP address, with login blocking from the IP address

when the limit is exceeded

• Limited IP address range for clients connecting to the iDRAC

iDRAC Overview 25

iDRAC Firmware Improvements

The following improvements have been made to the iDRAC firmware:

• Major improvements in Active Directory lookup performance

• Improved responsiveness of TCP-IP networking stack

• Improved health status interface between iDRAC and CMC

• Security improvements using multiple third-party analysis tools

Supported Platforms

The iDRAC supports the following PowerEdge systems in the Dell PowerEdge M1000e system enclosure:

• PowerEdge M600

• PowerEdge M605

• PowerEdge M805

• PowerEdge M905

Check the iDRAC Readme file and the Dell PowerEdge Compatibility Guide located on the Dell Support website at support.dell.com for the latest supported platforms.

Supported Operating Systems

Table 1-1 lists the operating systems that support the iDRAC.

See the Dell OpenManage Server Administrator Compatibility Guide located on the Dell Support website at support.dell.com for the latest information.

26 iDRAC Overview

Table 1-1. Supported Operating Systems

Operating System Family

Microsoft Windows

Operating System

Microsoft (32-bit x86) Editions with SP2

Microsoft Windows Server 2003 Web, Standard and Enterprise (32-bit x86) Editions with SP2

Microsoft Windows Server 2003 Standard and Enterprise (x64) Editions with SP2

Microsoft Windows Storage Server 2003 R2 Express, Workgroup, Standard, and Enterprise x64 Editions

Microsoft Windows Server 2008 Web, Standard, and Enterprise (32-bit x86) Editions

Microsoft Windows Server 2008 Web, Standard, Enterprise and Datacenter (x64) Editions

Windows Server® 2003 R2 Standard and Enterprise

NOTE: When installing Windows Server 2003 with Service Pack 1,

be aware of changes to DCOM security settings. For more information, see article 903220 from the Microsoft Support website at support.microsoft.com/kb/903220.

Red Hat

SUSE® Linux Enterprise Server 10 (Gold) (x86_64)

VMware ESX(i) 3.5 U2 or later

Linux®Enterprise Linux WS, ES, and AS (version 4) (x86 and x86_64)

Enterprise Linux 5 (x86 and x86-64)

Supported Web Browsers

Table 1-2 lists the Web browsers that are supported as iDRAC clients.

See the iDRAC Readme file and the Dell OpenManage Server Administrator Compatibility Guide located on the Dell Support website at support.dell.com for the latest information.

NOTE: Due to serious security flaws, support for SSL 2.0 has been discontinued.

Your browser must be configured to enable SSL 3.0 in order to work properly.

iDRAC Overview 27

Table 1-2. Supported Web Browsers

Operating System Supported Web Browser

Windows Internet Explorer

Windows XP and Windows 2003 R2 SP2 only

Internet Explorer 7.0 for Windows Vista, Windows XP, Windows 2003 R2 SP2, and Windows Server 2008 only

Mozilla Firefox 2.0 for Windows (Java vKVM/vMedia console only)

Linux Mozilla Firefox 1.5 on SUSE Linux (version 10) only

Mozilla Firefox 2.0 on Red Hat Enterprise Linux 4 and 5 (32-bit or 64-bit) and SUSE Linux Enterprise Server 10 (32-bit or 64-bit)

6.0 with Service Pack 2 (SP2) for

Supported Remote Access Connections

Table 1-3 lists the connection features.

Table 1-3. Supported Remote Access Connections

Connection Features

iDRAC NIC

• 10Mbps/100Mbs/1Gbps Ethernet via CMC Gb Ethernet port

• DHCP support

• SNMP traps and e-mail event notification

• Support for SM-CLP (telnet or SSH) command shell for operations such as iDRAC configuration, system boot, reset, power-on, and shutdown commands

• Support for IPMI utilities such as ipmitool and ipmishell

iDRAC Ports

Table 1-4 lists the ports iDRAC listens on for connections. Table 1-5 identifies the ports that the iDRAC uses as a client. This information is required when opening firewalls for remote access to an iDRAC.

28 iDRAC Overview

Table 1-4. iDRAC Server Listening Ports

Port Number Function

22*

23*

80*

443*

623

3668*, 3669*

3770*, 3771*

5900*

5901*

* Configurable port

Table 1-5. iDRAC Client Ports

Port Number Function

162

636

3269

Secure Shell (SSH)

Teln et

HTTP

HTTPS

RMCP/RMCP+

Virtual Media Service

Virtual Media Secure Service

Console Redirection keyboard/mouse

Console Redirection video

SMTP

DNS

DHCP-assigned IP address

TFTP

SNMP trap

LDAPS

LDAPS for global catalog (GC)

Dell iDRAC for Blade Servers Owner's Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

iDRAC Overview

iDRAC Management Features

iDRAC Security Features

iDRAC Firmware Improvements

Supported Platforms

Supported Operating Systems

Supported Web Browsers

Supported Remote Access Connections

iDRAC Ports

Other Documents You May Need