Dell OpenManage Server Administrator Version 2.3 Manual

Download

Page 1

Dell OpenManage™

Server Administrator Version 2.3

User’s Guide

www.dell.com | support.dell.com

Page 2

Notes and Notices

NOTE: A NOTE indicates important information that helps you make better use of your computer.

NOTICE: A NOTICE indicates either potential damage to hardware or loss of data and tells you how to avoid the problem.

____________________

Reproduction in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden.

Trademarks used in this text: Dell, the DELL logo, PowerEdge, PowerVault, and Dell OpenManage are trademarks of Dell Inc.; Microsoft, Windows, MS-DOS, and Windows NT are registered trademarks and Windows Server is a trademark of Microsoft Corporation; Intel and Pentium are registered trademarks and Intel386 is a trademark of Intel Corporation; Novell and NetWare are registered trademarks of Novell Inc.; Red Hat is a registered trademark of Red Hat, Inc.; VESA is a registered trademark of Video Electronics Standards Association; UNIX is a registered trademark of The Open Group in the United States and other countries; OS/2 is a registered trademark of International Business Machines Corporation.

Server Administrator includes software developed by the Apache Software Foundation (www.apache.org). Server Administrator utilizes the OverLIB JavaScript library. This library can be obtained from www.bosrup.com.

Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell Inc. disclaims any proprietary interest in trademarks and trade names other than its own.

November 2005

Page 3

1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Integrated Features

Installation Server Administrator Home Page Instrumentation Service Remote Access Service Storage Management Service Diagnostic Service Logs

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Introduction

Overview

Server Administrator provides a comprehensive, one-to-one systems management solution in two ways: from an integrated, Web browser-based GUI (the Server Administrator home page) and from a command line interface (CLI) through the operating system. Server Administrator is designed for system administrators to both locally and remotely manage systems on a network. Server Administrator allows system administrators to focus on managing their entire network by providing comprehensive one-to-one systems management.

NOTE: For the purposes of Server Administrator, a system can be a stand-alone system, a server with

attached network storage units in separate chassis, or a modular system consisting of one or more server modules in a chassis.

Server Administrator provides information about:

• Systems that are operating properly and systems that have problems

• Systems that require updates

• Systems that require remote recovery operations

Integrated Features

Server Administrator provides easy-to-use management and administration of local and remote systems through a comprehensive set of integrated management services. Server Administrator resides solely on the system being managed and is accessible both locally and remotely from the Server Administrator home page. Remotely monitored systems may be accessed by dial-in, LAN, or wireless connections. Server Administrator ensures the security of its management connections through role-based access control (RBAC), authentication, and industry-standard secure socket layer (SSL) encryption.

Installation

You can install Server Administrator by using several methods. The Dell™ PowerEdge™ Installation and Server Management CD provides a setup program to install, upgrade, and uninstall Server

Administrator and other managed system software components on your managed system. The Dell Systems Management Consoles CD provides a setup program to install, upgrade, and uninstall management station software components on your management station. Additionally, you can install Server Administrator on multiple systems through an unattended installation across a network. Lastly, if you have a modular system, or if your Microsoft was preinstalled, you already have the Server Administrator installed on your system.

Windows® operating system

Introduction 9

Page 10

NOTE: If you have a modular system, you must install Server Administrator on each server module that is installed

in the chassis.

To update individual Server Administrator components, use component specific Dell Update Packages. Use the Dell Server Update Utility application CD to view the complete version report and to update an entire system. The Server Update Utility is a CD-ROM based application for identifying and applying updates to your server. The Server Update Utility can be downloaded from support.dell.com.

See the Server Update Utility User's Guide for more information about obtaining and using the Server Update Utility (SUU) to update your Dell PowerEdge server or to view the updates available for any server listed in the Repository.

Server Administrator Home Page

The Server Administrator home page provides easy to set up and easy-to-use Web browser-based system management from the managed system or from a remote host through a LAN, dial-up service, or wireless network. When the Server Administrator secure port server is installed and configured on the managed system, you can perform remote management functions from any system that has a supported Web browser and connection. Additionally, the Server Administrator home page provides extensive, context-sensitive online help.

Instrumentation Service

The Instrumentation Service provides rapid access to detailed fault and performance information gathered by industry-standard systems management agents and allows remote administration of monitored systems, including shutdown, startup, and security.

Remote Access Service

NOTE: The Remote Access Service is not available on modular systems. You must directly connect to the Dell

Remote Access Controller (DRAC) on a modular system. See the Dell Embedded Remote Access/MC User's Guide for more information.

The Remote Access Service provides a complete, remote system management solution for systems equipped with a DRAC solution. The Remote Access Service provides remote access to an inoperable system, allowing you to get the system up and running as quickly as possible. The Remote Access Service also provides alert notification when a system is down and allows you to remotely restart a system. Additionally, the Remote Access Service logs the probable cause of system crashes and saves the most recent crash screen.

10 Introduction

Page 11

Storage Management Service

The Storage Management Service provides storage management information in an integrated graphical view. The current release of Server Administrator provides two staggered versions of the Storage Management Service:

Basic Storage Management Service

The basic Storage Management Service is similar to the Storage Management Service provided in earlier releases of Server Administrator.

The basic Storage Management Service of Server Administrator:

• Enables you to view the status of local and remote storage attached to a monitored system.

• Supports SATA and ATA. Does not support Fibre Channel.

NOTE: Array Manager is not available if no previous Dell OpenManage™ systems management software (with

Array Manager installed) is detected. It is only available for upgrade. Support for Array Manager will be discontinued in a future release. It is recommended that you switch to use Storage Management Service where applicable.

Enhanced Storage Management Service

The enhanced Storage Management Service provides additional features for configuring storage. On Windows and Linux, the enhanced Storage Management Service is installed using Express Setup providing that the system does not have an existing Array Manager installation.

In addition to the tasks that you can perform using basic Storage Management Service, enhanced Storage Management Service of Server Administrator:

• Allows you to perform controller and enclosure functions for all supported RAID and non-RAID controllers and enclosures from a single graphical or command line interface without the use of the controller BIOS utilities.

• Supports SCSI, SATA, ATA, and SAS; however; Fibre Channel is not supported.

• Protects your data by configuring data redundancy, assigning hot spares, or rebuilding failed drives.

Diagnostic Service

NOTE: The Diagnostic Service is not available on modular systems.

The Diagnostic Service provides a suite of diagnostic programs that run locally on your system or remotely on a system connected to the network. The Diagnostic Service is engineered to diagnose problems on individual systems and to run concurrently with all other applications running on the system under test.

Logs

Server Administrator displays logs of commands issued to or by the system, monitored hardware events, POST events, and system alerts. You can view logs on the home page, print or save them as reports, and send them by e-mail to a designated service contact.

Introduction 11

Page 12

Obtaining Technical Assistance

If at any time you do not understand a procedure described in this guide or if your product does not perform as expected, help tools are available to assist you. For more information about these help tools, see "Getting Help" in your system's Installation and Troubleshooting Guide.

Additionally, Dell Enterprise Training and Certification is available; see www.dell.com/training for more information. This service may not be offered in all locations.

Introduction 13

Page 14

14 Introduction

Page 15

What’s New for Version 2.3

• Added Serial Attached SCSI (SAS) support for Dell™ PowerEdge™ 6800 and 6850

• Added support for PERC 5/e

• Added support for a new SAS hard-drive enclosure —PowerVault MD1000

• Removed support for Novell

NetWare® on Dell PowerEdge 6800 and 6850

What’s New for Version 2.3 15

Page 16

16 What’s New for Version 2.3

Page 17

Setup and Administration

Security Management

Server Administrator provides security through role-based access control (RBAC), authentication, and encryption for both the Web-based and command line interfaces.

Role-Based Access Control

RBAC manages security by determining the operations that can be executed by persons in particular roles. Each user is assigned one or more roles, and each role is assigned one or more user privileges that are permitted to users in that role. With RBAC, security administration corresponds closely to an organization's structure.

User Privileges

Server Administrator grants different access rights based on the user's assigned group privileges. The three user levels are: User, Power User, and Administrator.

Users can view most information.

Power Users can set warning threshold values, run diagnostic tests, and configure which alert actions

are to be taken when a warning or failure event occurs.

Administrators can configure and perform shutdown actions, configure Auto Recovery actions in case a system has a hung operating system, and clear hardware, event, and command logs. Administrators can also send e-mail.

Server Administrator grants read-only access to users logged in with User privileges, read and write access to users logged in with Power User privileges, and read, write, and admin access to users logged in with Admin privileges. See Table 3-1.

Table 3-1. User Privileges

User Privileges Access Type

Admin Write Read

User X

Pow er Us er XX

Admin XXX

Setup and Administration 17

Page 18

Read access allows viewing of data reported by Server Administrator. Read access does not allow changing or setting values on the managed system.

Write access allows values to be changed or set on the managed system.

Admin access allows shutdown of the managed system.

Privilege Levels to Access Server Administrator Services

Table 3-2 summarizes which user levels have privileges to access and manage Server Administrator Services.

Table 3-2. Server Administrator User Privilege Levels

Service User Privilege Level Required

View Manage

Instrumentation U, P, A P, A

Remote Access U, P, A A

Diagnostics P, A P, A

Storage Management U, P, A A

Table 3-3 defines the user privilege level abbreviations used in Table 3-2.

Table 3-3. Legend for Server Administrator User Privilege Levels

U User

P Power User

A Administrator

NA Not Applicable

Authentication

The Server Administrator authentication scheme ensures that the correct access types are assigned to the correct user privileges. Additionally, when the command line interface (CLI) is invoked, the Server Administrator authentication scheme validates the context within which the current process is running. This authentication scheme ensures that all Server Administrator functions, whether accessed through the Server Administrator home page or CLI, are properly authenticated.

Microsoft Windows Authentication

For supported Microsoft® Windows® operating systems, Server Administrator authentication is based on the operating system's user authentication system using Windows NT modules to authenticate. This underlying authentication system allows Server Administrator security to be incorporated in an overall security scheme for your network.

18 Setup and Administration

LAN Manager (NTLM)

Page 19

Red Hat Enterprise Linux Authentication

For supported Red Hat® Enterprise Linux operating systems, Server Administrator authentication is based on the Red Hat Enterprise Linux Pluggable Authentication Modules (PAM) library. This documented library of functions allows an administrator to determine how individual applications authenticate users.

Encryption

Server Administrator is accessed over a secure HTTPS connection using secure socket layer (SSL) technology to ensure and protect the identity of the system being managed. Java Secure Socket Extension (JSSE) is used by supported Microsoft Windows, and Red Hat Enterprise Linux to protect the user credentials and other sensitive data that is transmitted over the socket connection when a user accesses the Server Administrator home page.

Assigning User Privileges

You must properly assign user privileges to all Server Administrator users before installing Server Administrator in order to ensure critical system component security.

The following procedures provide step-by-step instructions for creating Server Administrator users and assigning user privileges for each supported operating system:

• Creating Server Administrator Users for Supported Windows Operating Systems

• Creating Server Administrator Users for Supported Red Hat Enterprise Linux Operating Systems

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

access to your critical system components. Additionally, users who do not have an assigned password cannot log into Server Administrator on a system running Windows Server™ 2003 due to operating system constraints.

NOTICE: You should disable guest accounts for supported Microsoft Windows operating systems in order to

protect access to your critical system components. See "Disabling Guest and Anonymous Accounts in Supported Windows Operating Systems" for instructions.

Creating Server Administrator Users for Supported Windows Operating Systems

NOTE: You must be logged in with Admin privileges to perform these procedures.

Creating Users and Assigning User Privileges for Supported Windows Server 2003 Operating Systems

NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions,

see your operating system documentation.

Click the

In the console tree, expand

Click

Start

Action

, and then click

button, right-click

Local Users and Groups

New User

My Computer,

and point to

, and then click

Manage

Users

Setup and Administration 19

Page 20

Type the appropriate information in the dialog box, select or clear the appropriate check boxes, and

Create

then click

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

access to your critical system components. Additionally, users who do not have an assigned password cannot log into Server Administrator on a system running Windows Server 2003 due to operating system constraints.

In the console tree, under

Click the group to which you want to add the new user:

Click

Action

Click

Add

Type the user name that you are adding and click

Click OK.

, and then click

Local Users and Groups

Properties

, click

Groups

Users, Power Users

Check Names

to validate.

, or

Administrators

New users can log into Server Administrator with the user privileges for their assigned group.

Creating Users and Assigning User Privileges for Supported Windows 2000 Operating Systems

NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions,

see your operating system documentation.

Right-click

In the console tree, expand

Click

Type the appropriate information in the dialog box, select or clear the appropriate check boxes, and then click

My Computer

Action

, and then click

Create

and point to

Local Users and Groups

New User

Manage

, and then click

Users

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

In the console tree, under

Click the group to which you want to add the new user:

Click

Action

, and then click

Click

Add

Click the name of the user you want to add, and then click

Click

Check Names

Click OK.

Local Users and Groups

, click

Groups

Users, Power Users

Properties

Add

to validate the user name that you are adding.

, or

Administrators

New users can log into Server Administrator with the user privileges for their assigned group.

20 Setup and Administration

Page 21

Adding Users to a Domain

NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions,

see your operating system documentation.

NOTE: You must have Active Directory installed on your system to perform the following procedures.

Click the

Users and Computers

In the console tree, right-click and then point to

Type the appropriate user name information in the dialog box, and then click

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

Click

Double-click the icon representing the user you just created.

Click the

Click

Select the appropriate group and click

Click OK, and then click OK again.

Start

button, and then point to

, and then click

Member of

Add

New→

tab.

User

Finish

Control Panel→

Users

or right-click the container in which you want to add the new user,

Administrative Tools→

Active Directory

Add

New users can log into Server Administrator with the user privileges for their assigned group and domain.

Creating Server Administrator Users for Supported Red Hat Enterprise Linux Operating Systems

Admin access privileges are assigned to the user logged in as root. To create users with User and Power User privileges, perform the following steps.

NOTE: You must be logged in as root to perform these procedures.

NOTE: You must have the useradd utility installed on your system to perform these procedures.

Setup and Administration 21

Page 22

Creating Users

NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions,

see your operating system documentation.

Creating Users With User Privileges

Run the following command from the command line:

useradd -d <

where

group

NOTE: If <group> does not exist, you must create it by using the groupadd command.

Ty p e

passwd <

When prompted, enter a password for the new user.

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

access to your critical system components.

The new user can now log in to Server Administrator with User group privileges.

Creating Users With Power User Privileges

Run the following command from the command line:

useradd -d <

NOTE: You must set root as the primary group.

Ty p e

passwd <

When prompted, enter a password for the new user.

home-directory

not root

username

and press <Enter>.

home-directory

username

and press <Enter>.

> -g <

> -g root <

group

> <

username

NOTICE: You must assign a password to every user account that can access Server Administrator to protect

access to your critical system components.

The new user can now log in to Server Administrator with Power User group privileges.

Disabling Guest and Anonymous Accounts in Supported Windows Operating Systems

NOTE: You must be logged in with Admin privileges to perform this procedure.

If your system is running Windows Server 2003, click the point to

In the console tree, expand

Click the

Click

Select

A red circle with an X appears over the user name. The account is disabled.

22 Setup and Administration

Manage

Action

Account is disabled

. If your system is running Windows 2000, right-click

Guest

IUSR

and point to

Local Users and Groups

_sys tem name

Properties

and click OK.

user account.

Start

and click

button, right-click

My Computer

Users

My Computer,

and point to

and

Manage

Page 23

Configuring the SNMP Agent

Server Administrator supports the Simple Network Management Protocol (SNMP) systems management standard on all supported operating systems. In most cases, SNMP is installed as part of your operating system installation. An installed supported systems management protocol standard, such as SNMP, is required before installing Server Administrator. See "Installation Requirements" for more information.

You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as the Dell OpenManage™ IT Assistant and Array Manager, perform the procedures described in the following sections.

NOTE: For IT Assistant to retrieve management information from a system running Server Administrator, the

community name used by IT Assistant must match a community name on the system running Server Administrator. For IT Assistant to modify information or perform actions on a system running Server Administrator, the community name used by IT Assistant must match a community name that allows Set operations on the system running Server Administrator. For IT Assistant to receive traps (asynchronous event notifications) from a system running Server Administrator, the system running Server Administrator must be configured to send traps to the system running IT Assistant.

The following procedures provide step-by-step instructions for configuring the SNMP agent for each supported operating system:

• Configuring the SNMP Agent for Systems Running Supported Windows Operating Systems

• Configuring the SNMP Agent on Systems Running Supported Red Hat Enterprise Linux Operating Systems

Configuring the SNMP Agent for Systems Running Supported Windows Operating Systems

Server Administrator uses the SNMP services provided by the Windows SNMP agent. You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as IT Assistant and Array Manager, perform the procedures described in the following sections.

NOTE: See your operating system documentation for additional details on SNMP configuration.

Enabling SNMP Access By Remote Hosts

Windows Server 2003, by default, does not accept SNMP packets from remote hosts. For systems running Windows Server 2003, you must configure the SNMP service to accept SNMP packets from remote hosts if you plan to manage the system by using SNMP management applications from remote hosts.

To enable a system running the Windows Server 2003 operating system to receive SNMP packets from a remote host, perform the following steps:

Click the

The

Expand the

Start

button, right-click

Computer Management

Services and Applications

My Computer

window appears.

icon in the window, if necessary.

icon and click

, and point to

Services

Manage

Setup and Administration 23

Page 24

Scroll down the list of services until you find

Properties

click

The

SNMP Service Properties

Click the

Select

Accept SNMP packets from any host

from these hosts

Changing the SNMP Community Name

Security

window appears.

tab.

list.

SNMP Service

, right-click

SNMP Service

, or add the remote host to the

, and then

Accept SNMP packets

Configuring the SNMP community names determines which systems are able to manage your system through SNMP. The SNMP community name used by management applications must match an SNMP community name configured on the Server Administrator system so that the management applications can retrieve management information from Server Administrator.

If your system is running Windows Server 2003, click the point to

The

Expand the

Scroll down the list of services until you find click

The

Click the

Manage

Computer Management

Properties

SNMP Service Properties

To add a community name, click

The

. If your system is running Windows 2000, right-click

window appears.

Computer Management

Services and Applications

icon in the window, if necessary.

icon and click

SNMP Service

window appears.

Security

SNMP Service Configuration

tab to add or edit a community name.

Add

under the

window appears.

Start

Services

button, right-click

My Computer

, right-click

SNMP Service

My Computer,

and point to

Accepted Community Names

and

Manage

, and then

list.

Type the community name of a system that is able to manage your system (the default is public) in the

Community Name

SNMP Service Properties

The

To change a community name, select a community name in the and click

The

Make all necessary edits to the community name of the system that is able to manage your system in the

The

Click OK to save the changes.

Edit

SNMP Service Configuration

Community Name

SNMP Service Properties window appears

24 Setup and Administration

text box and click

Add

window appears.

text box, and then click OK.

Accepted Community Names

list

Page 25

Enabling SNMP Set Operations

SNMP Set operations must be enabled on the Server Administrator system to change Server Administrator attributes using IT Assistant.

If your system is running Windows Server 2003, click the

point to

The

Expand the

Scroll down the list of services until you find

Manage

. If your system is running Windows 2000, right-click

Computer Management

Services and Applications

window appears.

icon in the window, if necessary.

icon, and then click

SNMP Service

Start

button, right-click

My Computer

Services

, right-click

My Computer,

and point to

SNMP Service

and

Manage

, and click

Properties.

The

SNMP Service Properties

Click the

Select a community name in the

The

Set the

The

Click OK to save the changes.

Configuring Your System to Send SNMP Traps to a Management Station

Security

tab to change the access rights for a community.

SNMP Service Configuration

Community Rights

SNMP Service Properties

window appears.

Accepted Community Names

window appears.

READ WRITE

READ CREATE

window appears.

list, and then click

, and click OK.

Edit

Server Administrator generates SNMP traps in response to changes in the status of sensors and other monitored parameters. You must configure one or more trap destinations on the Server Administrator system for SNMP traps to be sent to a management station.

If your system is running Windows Server 2003, click the

point to

The

Manage

. If your system is running Windows 2000, right-click

Computer Management

window appears.

Start

button, right-click

My Computer

My Computer,

and point to

and

Manage

Expand the

Scroll down the list of services until you find

Properties

The

SNMP Service Properties

Computer Management

Services and Applications

window appears.

icon in the window, if necessary.

icon and click

SNMP Service

Services

, right-click

SNMP Service

Setup and Administration 25

, and click

Page 26

Click the

Click OK to save the changes.

Traps

tab to add a community for traps or to add a trap destination for a trap community.

To add a community for traps, type the community name in the

Add to list

, which is located next to the

Community Name

box.

box and click

To add a trap destination for a trap community, select the community name from the

Name

drop-down box and click

The

SNMP Service Configuration

Type in the trap destination and click

The

SNMP Service Properties

Add

under the

window appears.

Add

window appears.

Trap Destinations

box.

Community

Configuring the SNMP Agent on Systems Running Supported Red Hat Enterprise Linux Operating Systems

Server Administrator uses the SNMP services provided by the ucd-snmp or net-snmp SNMP agent. You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as IT Assistant and Array Manager, perform the procedures described in the following sections.

NOTE: See your operating system documentation for additional details on SNMP configuration.

SNMP Agent Access Control Configuration

The management information base (MIB) branch implemented by the Instrumentation Service is identified by the OID, 1.3.6.1.4.1.674.10892.1. Management applications must have access to this branch of the MIB tree to manage systems running the Instrumentation Service.

For Red Hat Enterprise Linux operating systems, the default SNMP agent configuration gives read-only access for the "public" community only to the MIB-II "system" branch (identified by the OID,

1.3.6.1.2.1.1) of the MIB tree. This configuration does not allow management applications to retrieve or change Instrumentation Service and other systems management information outside of the MIB-II "system" branch.

If Server Administrator detects this configuration during installation, it attempts to modify the SNMP agent configuration to give read-only access to the entire MIB tree for the "public" community. It does this by changing the SNMP agent configuration file, /etc/snmp/snmpd.conf, in two ways.

The first change is to create a view to the entire MIB tree by adding the following line if it does not exist:

view all included .1

The second change is to modify the default "access" line to give read-only access to the entire MIB tree for the "public" community. Server Administrator looks for the following line:

access notConfigGroup "" any noauth exact systemview none none

If Server Administrator finds the line above, it modifies the line so that it reads:

access notConfigGroup "" any noauth exact all none none

26 Setup and Administration

Page 27

These changes to the default SNMP agent configuration give read-only access to the entire MIB tree for the "public" community.

NOTE: To ensure that Server Administrator is able to modify the SNMP agent configuration to provide proper

access to systems management data, it is recommended that any other SNMP agent configuration changes be made after installation of Server Administrator.

Changing the SNMP Community Name

To change the SNMP community name used for retrieving management information from a system running Server Administrator, edit the SNMP agent configuration file, /etc/snmp/snmpd.conf, and perform the following steps:

Find the line that reads:

com2sec publicsec default public

com2sec notConfigUser default public

Edit this line, replacing

public

with the new SNMP community name. When edited, the new line

should read:

com2sec publicsec default

community_name

com2sec notConfigUser default

To enable SNMP configuration changes, restart the SNMP agent by typing:

community_name

service snmpd restart

Setup and Administration 27

Page 28

Enabling SNMP Set Operations

SNMP Set operations must be enabled on the system running Server Administrator in order to change Server Administrator attributes using IT Assistant.

To enable SNMP Set operations on the system running Server Administrator, edit the SNMP agent configuration file, /etc/snmp/snmpd.conf, and perform the following steps:

Find the line that reads:

access publicgroup "" any noauth exact all none none

access notConfigGroup "" any noauth exact all none none

Edit this line, replacing the first

none

with

all

. When edited, the new line should read:

access publicgroup "" any noauth exact all all none

access notConfigGroup "" any noauth exact all all none

To enable SNMP configuration changes, restart the SNMP agent by typing:

service snmpd restart

Configuring Your System to Send Traps to a Management Station

Server Administrator generates SNMP traps in response to changes in the status of sensors and other monitored parameters. One or more trap destinations must be configured on the system running Server Administrator for SNMP traps to be sent to a management station.

To configure your system running Server Administrator to send traps to a management station, edit the SNMP agent configuration file, /etc/snmp/snmpd.conf, and perform the following steps:

Add the following line to the file:

trapsink

IP_address community_name

where

IP_address

SNMP community name

To enable SNMP configuration changes, restart the SNMP agent by typing:

service snmpd restart

28 Setup and Administration

is the IP address of the management station and

community_name

is the

Page 29

X.509 Certificate Management Prerequisites

Web certificates are necessary to ensure the identity of a remote system and to ensure that information exchanged with the remote system cannot be viewed or changed by others.

This section explains the administrative prerequisites for ensuring your ability to generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from Certification Authority (CA) on each supported operating system.

The X.509 certificate management is provided through the Server Administrator home page for all supported operating systems.

Firewall Configuration on Systems Running Supported Red Hat Enterprise Linux Operating Systems

If you enable firewall security when installing Red Hat Enterprise Linux, the SNMP port on all external network interfaces is closed by default. To enable SNMP management applications such as IT Assistant to discover and retrieve information from Server Administrator, the SNMP port on at least one external network interface must be open. If Server Administrator detects that the SNMP port is not open in the firewall for any external network interface, Server Administrator displays a warning message and logs a message to the system log.

You can open the SNMP port by disabling the firewall, opening an entire external network interface in the firewall, or opening the SNMP port for at least one external network interface in the firewall. You can perform this action before or after Server Administrator is started.

To open the SNMP port using one of the previously described methods, perform the following steps:

At the Red Hat Enterprise Linux command prompt, type Mode Setup Utility.

setup

and press <Enter> to start the Text

NOTE: This command is available only if you have performed a default installation of the operating system.

The

Choose a Tool

Select

Firewall Configuration

The

Select the Security Level by tabbing to it and pressing the spacebar. The selected Security Level is indicated by an asterisk.

NOTE: Press <F1> for more information about the firewall security levels. The default SNMP port number is 161.

If you are using the X Window System GUI, pressing <F1> may not provide information about firewall security levels on newer versions of Red Hat Enterprise Linux.

To disable the firewall, select

To open an entire network interface or the SNMP port, select continue with step 4.

menu appears.

using the down arrow and press <Enter>.

screen appears.

No firewall

Disabled

and go to step 7.

High, Medium,

Setup and Administration 29

Enabled

and

Page 30

Tab t o

Customize

The

Firewall Configuration - Customize

Select whether to open an entire network interface or just the SNMP port on all network interfaces.

To open an entire network interface, tab to one of the Trusted Devices and press the spacebar.

and press <Enter>.

screen appears.

An asterisk in the box to the left of the device name indicates that the entire interface will be opened.

To open the SNMP port on all network interfaces, tab to

Tab t o OK and press <Enter>.

The

Firewall Configuration

Tab t o OK and press <Enter>.

The

Choose a Tool

Tab t o

Quit

menu appears.

and press <Enter>.

screen appears.

Other ports

and type

snmp:udp

30 Setup and Administration

Page 31

Using Server Administrator

Starting Your Server Administrator Session

To start a Server Administrator session in a local system, click the Dell™ OpenManage™ icon on your desktop.

To start a Server Administrator session on a remote system, open your Web browser and type one of the following in the address field and press <Enter>:

https://

where hostname is the assigned name for the managed node system and 1311 is the default port

https://

where IP address is the IP address for the managed system and 1311 is the default port

The Dell OpenManage Log in window appears.

NOTE: You must type https:// (not http://) in the address field to receive a valid response in

Logging In and Out

hostname

IP address

your browser.

NOTE: The default port for Dell OpenManage is 1311. You can change the port, if necessary. See "Secure Port

Server and Security Setup" for instructions on setting up your system preferences.

:1311

To log into Server Administrator, type your preassigned Username and Pa sswo rd in the appropriate fields on the Systems Management Log in window. See "Single Sign-On" for information on how you can bypass the login page and access the Server Administrator web application by clicking on the Dell OpenManage icon on your desktop.

NOTE: You must have preassigned user rights to log into Server Administrator. See "Setup and

Administration" for instructions on setting up new users.

NOTE: When logging into Server Administrator from a system running a supported Microsoft

Windows

NOTE: When logging into Server Administrator from a remote system running a supported Microsoft

Windows Server™ 2003 operating system, you cannot use a blank password due to operating system constraints.

Server™ 2003 operating system, you cannot use a blank password due to operating system constraints.

Using Server Administrator 31

Page 32

If you are accessing Server Administrator from a defined domain, you will also need to specify the correct Domain name.

NOTE: The Application drop-down menu will appear as a nonselectable field for systems that can only access one

Dell OpenManage component. The drop-down menu is only functional when two or more Dell OpenManage components are available on the managed system.

Click the Active Directory Login check box to log in using Microsoft Active Directory.

To end your Server Administrator session, click Log Out on the global navigation bar. The Log Out button is located in the upper-right corner of each Server Administrator home page.

Single Sign-On

The Single Sign-On option in Windows enables all logged-in users to bypass the login page and access the Server Administrator web application by clicking the Dell OpenManage icon on your desktop.

NOTE: See the Knowledge Base article at support.microsoft.com/default.aspx?scid=kb;en-us;Q258063 for more

information.

For local machine access, you must have an account on the machine with the correct privileges (user, power user, or administrator). Other users are authenticated against Microsoft Active Directory.

To launch Server Administrator using Single Sign-On authentication against Microsoft Active Directory, the following parameters must also be passed in:

authType=ntlm&application=[

plugin name

]

Where

plugin name

omsa, ita

, etc.

For example:

https://localhost:1311/?authType=ntlm&application=omsa

To launch Server Administrator using Single Sign-On authentication against the local machine user accounts, the addition of the following parameters must be passed in:

authType=ntlm&application=[

Where

plugin name

omsa, ita

plugin name

, etc.

]&locallogin=true

For example:

https://localhost:1311/?authType=ntlm&application=omsa&locallogin=true

Server Administrator has also been extended to allow other products (such as Dell OpenManage IT Assistant) to directly access Server Administrator web pages without going through the logon page (if you are currently logged on and have the requisite privileges).

Systems Running a Supported Microsoft Windows Server 2003 Operating System

You must configure the security settings for your browser to log into Server Administrator from a remote management system that is running a supported Microsoft Windows Server 2003 operating system.

32 Using Server Administrator

Page 33

The security settings for your browser might prevent the execution of client-side scripts that are used by Server Administrator. To enable the use of client-side scripting, perform the following steps on the remote management system.

NOTE: If you have not configured your browser to enable the use of client-side scripting, you might receive a blank

screen when logging into Server Administrator. In this case, an error message will appear instructing you to configure your browser settings.

Internet Explorer

Start your browser.

Click

Tools→

Click the

Click

Sites

Copy the Web address used to access the remote managed system from the browser’s address bar and paste it onto the

Click

Custom Level

Internet Options→

Trusted Sites

icon.

Add this Web Site to the Zone

Security

field.

For Windows 2000:

– Under

Miscellaneous

Active Scripting

, select the

Allow Meta Refresh

Enable

radio button.

For Windows 2003:

– Under

Miscellaneous

Active Scripting

, select the

Allow Meta Refresh

Enable

radio button.

Allow scripting of Internet Explorer web browser controls

radio button.

Click OK to save the new settings.

Close the browser.

Log into Server Administrator.

To allow Single Sign-On for Server Administrator without prompts for user credentials, perform the following steps:

Start your browser.

Click

Tools→

Click the

Click

Sites

Copy the Web address used to access the remote managed system from the browser’s address bar and paste it onto the

Click

Custom Level

Internet Options→

Trusted Sites

icon.

Add this Web Site to the Zone

Security

field.

Using Server Administrator 33

Page 34

Under

User Authentication

radio button.

Click OK to save the new settings.

Close the browser.

Log into Server Administrator.

Mozilla

Start your browser.

Click

Edit→

Preferences

Click

Advanced→

Ensure that the Navigator check box is checked under

Click OK to save the new settings.

Close the browser.

Log into Server Administrator.

Scripts and Plugins.

, select the

Automatic Logon with current username and password

Enable JavaScript for

The Server Administrator Home Page

NOTE: Do not use your Web browser toolbar buttons (such as Back and Refresh) while using Server

Administrator. Use only the Server Administrator navigation tools.

With only a few exceptions, the Server Administrator home page has three main areas:

• The

•The

Additionally, when logged into the Server Administrator home page, the system model, the assigned name of the system, and the current user's user name and user privileges are displayed in the top-right corner of the window.

Figure 4-1 shows a sample Server Administrator home page layout for a user logged in with administrator privileges.

global navigation bar

system tree

action window

on the user's access privileges. The action window contains three functional areas:

– The action tabs display the primary actions or categories of actions that are available for the

selected object based on the user's access privileges.

– The action tabs are divided into subcategories of all available secondary options for the action tabs

based on the user's access privileges.

– The

based on the user's access privileges.

displays all visible system objects based on the user's access privileges.

data area

displays information for the selected system tree object, action tab, and subcategory

provides links to general services.

displays the available management actions for the selected system tree object based

34 Using Server Administrator

Page 35

Figure 4-1. Sample Server Administrator Home Page

system tree

action tab

action tab subcategories

action window

global navigation bar

Clicking an object in the system tree opens a corresponding action window for that object. You can navigate in the action window by clicking action tabs to select major categories and clicking the action tab subcategories to access more detailed information or more focused actions. The information displayed in the data area of the action window can range from system logs to status indicators to system probe gauges. Underlined items in the data area of the action window indicate a further level of functionality. Clicking an underlined item creates a new data area in the action window that contains a greater level of detail. For example, clicking Main System Chassis under the Health subcategory of the Properties action tab lists the health status of all the components contained in the Main System Chassis object that are monitored for health status.

data area

NOTE: Many of the system tree objects, system components, action tabs, or data area features are not available to

users logged in with only User privileges. Admin or Power User privileges are required to view many of the system tree objects, system components, action tabs, and data area features that are configurable. Additionally, only users logged in with Admin privileges have access to the shutdown functionality included under the Shutdown tab.

Using Server Administrator 35

Page 36

Global Navigation Bar

The global navigation bar and its links are available to all user levels regardless of where you are in the program.

• Clicking

Preferences

Support

Help

About

Log Out

opens the

connects you to the Dell Support website.

opens the context-sensitive online help window. See "Using the Online Help."

displays Server Administrator version and copyright information.

ends your current Server Administrator program session.

Preferences

home page. See "Using the Preferences Home Page."

System Tree

The system tree appears on the left side of the Server Administrator home page and lists the components of your system that are viewable. The system components are categorized by component type. When you expand the main object known as System, the major categories of system components that may appear are Main System Chassis, Software, and Storage.

To expand a branch of the tree, click the plus sign ( ) to the left of an object, or double-click the object. A minus sign ( ) indicates an expanded entry that cannot be expanded further.

Action Window

When you click an item on the system tree, details about the component or object appear in the data area of the action window. Clicking an action tab displays all available user options as a list of subcategories.

Clicking an object on the system tree opens that component's action window, displaying the available action tabs. The data area defaults to a preselected subcategory of the first action tab for the selected object. The preselected subcategory is usually the first option. For example, clicking the Main System Chassis object opens an action window in which the Properties action tab and Health subcategory is displayed in the window's data area.

Data Area

The data area is located below the action tabs on the right side of the home page. The data area is where you perform tasks or view details about system components. The content of the window depends on the system tree object and action tab that are currently selected. For example, when you select BIOS from the system tree, the Properties tab is selected by default and the version information for the system BIOS appears in the data area. The data area of the action window contains many common features, including status indicators, task buttons, underlined items, and gauge indicators.

36 Using Server Administrator

Page 37

System Component Status Indicators

The icons that appear next to component names show the status of that component (as of the latest page refresh).

A green check mark indicates that a component is healthy (normal).

A yellow triangle containing an exclamation point indicates that a component has a warning (noncritical) condition. A warning condition occurs when a probe or other monitoring tool detects a reading for a component that falls within certain minimum and maximum values. A warning condition requires prompt attention.

A red X indicates that a component has a critical (failure) condition. A critical condition occurs when a probe or other monitoring tool detects a reading for a component that falls within certain minimum and maximum values. A critical condition requires immediate attention.

A blank space indicates that a component's health status is unknown.

Task Buttons

Most windows opened from the Server Administrator home page contain at least four task buttons: Print, Export, Email, and Refresh. Other task buttons are included on specific Server Administrator windows. Log windows, for example, also contain Save As and Clear Log task buttons. For specific information about individual task buttons, click Help on any Server Administrator home page window to view detailed information about the specific window you are viewing.

• Clicking

prints a copy of the open window to your default printer.

Export

generates a text file that lists the values for each data field on the open window. The export file is saved to a location you specify. See "Setting User and System Preferences" for instructions on customizing the delimiter separating the data field values

• Clicking

creates an e-mail message addressed to your designated e-mail recipient. See "Setting

User and System Preferences" for instructions on setting up your e-mail server and default e-mail recipie

nt.

• Clicking

Refresh

Save As

reloads the system component status information in the action window data area.

saves an HTML file of the action window in a

Clear Log

.zip

file.

erases all events from the log displayed in the action window data area.

NOTE: The Export, Email, Save As, and Clear Log buttons are only visible for users logged in with Power User or

Admin privileges.

Underlined Items

Clicking an underlined item in the action window data area displays additional details about that item.

Using Server Administrator 37

Page 38

Gauge Indicators

Temperature probes, fan probes, and voltage probes are each represented by a gauge indicator. For example, Figure 4-2 shows readings from a system's CPU fan probe.

Figure 4-2. Gauge Indicator

Using the Online Help

Context-sensitive online help is available for every window of the Server Administrator home page. Clicking Help on the global navigation bar opens an independent help window that contains detailed information about the specific window you are viewing. The online help is designed to help guide you through the specific actions required to perform all aspects of the Server Administrator services. Online help is available for all windows you can view, based on the software and hardware groups that Server Administrator discovers on your system and your user privilege level.

Using the Preferences Home Page

The Preferences home page defaults to the Access Configuration window under the Preferences tab.

From the Preferences home page you can restrict access to users with User and Power User privileges, set the SNMP password, and configure user settings and secure port system settings.

38 Using Server Administrator

Page 39

Like the Server Administrator home page, the Preferences home page has three main areas:

• The global navigation bar provides links to general services.

–Clicking

• The left pane of the Preferences home page (where the system tree is displayed on the Server Administrator home page) displays the preference categories for the managed system.

• The action window displays the available settings and preferences for the managed system.

Figure 4-3 shows a sample Preferences home page layout.

Figure 4-3. Sample Preferences Home Page

Back to Server Administrator

returns you to the Server Administrator home page.

Using the Server Administrator Command Line Interface

The Server Administrator command line interface (CLI) allows users to perform essential systems management tasks from the operating system command prompt of a monitored system.

In many cases, the CLI allows a user with a very well-defined task in mind to rapidly retrieve information about the system. Using CLI commands, for example, administrators can write batch programs or scripts to execute at specific times. When these programs execute, they can capture reports on components of interest, such as fan RPMs. With additional scripting, the CLI can be used to capture data during periods of high system usage to compare with the same measurements at times of low system usage. Command results can be routed to a file for later analysis. The reports can help administrators to gain information that can be used to adjust usage patterns, to justify purchasing new system resources, or to focus on the health of a problem component.

For complete instructions on the functionality and use of the CLI, see the Server Administrator Command Line Interface User's Guide.

Using Server Administrator 39

Page 40

Secure Port Server and Security Setup

This section contains the following topics:

• Setting User and System Preferences

• X.509 Certificate Management

Setting User and System Preferences

You set user and secure port system preferences from the Preferences home page.

NOTE: You must be logged in with Admin privileges to set or reset user or system preferences.

Perform the following steps to set up your user preferences:

Click

Preferences

The

Click

General Settings

To add a preselected e-mail recipient, type the e-mail address of your designated service contact in the

Mail To:

To change the home page appearance, select an alternative value in the

Apply Changes

field, and click

NOTE: Clicking Email in any window sends an e-mail message with an attached HTML file of the window to

the designated e-mail address.

on the global navigation bar.

home page appears.

Apply Changes

skin

scheme

fields and click

40 Using Server Administrator

Page 41

Perform the following steps to set up your secure port system preferences:

Click

The

Click

In the

• The

Preferences

General Settings

Server Preferences

Session Timeout

session can remain active. Select the

on the global navigation bar.

home page appears.

, and the

Web Server

window, set options as necessary.

feature can set a limit on the amount of time that a Server Administrator

Enable

tab.

radio button to allow Server Administrator to time out if there is no user interaction for a specified number of minutes. Users whose session times out must log in again to continue. Select the

Disable

radio button to disable the Server Administrator

session timeout feature.

• The

HTTPS Port

field specifies the secure port for Server Administrator. The default secure port

for Server Administrator is 1311.

NOTE: Changing the port number to an invalid or in-use port number might prevent other applications or

browsers from accessing Server Administrator on the managed system. See the The Dell OpenManage Installation and Security User's Guide for the list of default ports.

• The

IP Address to Bind to

Administrator binds to when starting a session. Select the addresses applicable for your system. Select the

NOTE: Changing the IP Address to Bind to value to a value other than All may prevent other applications or

browsers from accessing Server Administrator on the managed system.

SMTP Server name

field specifies the IP address(es) for the managed system that Server

All

radio button to bind to all IP

Specific

and

DNS Suffix for SMTP Server

radio button to bind to a specific IP address.

fields specify your company or organization's Simple Mail Transfer Protocol (SMTP) and domain name server (DNS) suffix. To enable Server Administrator to send e-mails, you must type the IP address and DNS suffix for the SMTP Server for your company or organization in the appropriate fields.

NOTE: For security reasons, your company or organization might not allow e-mails to be sent through the

SMTP server to outside accounts.

• The

Command Log Size

Support Link

field specifies the URL for the business entity that provides support for your

field specifies the largest file size in MB for the command log file.

managed system.

• The

When you finish setting options in the

Custom Delimiter

created using the

Export

#, $, %, ^, *, ~, ?, :,|

field specifies the character used to separate the data fields in the files

button. The ; character is the default delimiter. Other options are !, @,

, and ,.

Server Preferences

window, click

Using Server Administrator 41

Apply Changes

Page 42

X.509 Certificate Management

Web certificates are necessary to ensure the identity of a remote system and ensure that information exchanged with the remote system cannot be viewed or changed by others. To ensure system security, it is strongly recommended that you either generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from a Certification Authority (CA).

NOTE: You must be logged in with Admin privileges to perform certificate management.

To manage X.509 certificates through the Preferences home page, click General Settings, click the Web S erver tab, and click X.509 Certificate.

Use the X.509 certificate tool to either generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from a CA. Authorized CAs include Verisign, Entrust, and Thawte.

Controlling Server Administrator

Server Administrator automatically starts each time you reboot the managed system. To manually start, stop, or restart Server Administrator, use the following instructions.

NOTE: To control Server Administrator, you must be logged in with administrator privileges (logged in as root for

supported Red Hat

Enterprise Linux operating systems).

Starting Server Administrator

Supported Microsoft Windows Operating Systems

To start Server Administrator on systems running a supported Microsoft Windows operating system, perform the following steps:

Click the

The

Right-click the

Click

Supported Red Hat Enterprise Linux Operating Systems

To start Server Administrator on systems running a supported Red Hat Enterprise Linux operating system, run the following command from the command line:

omawsd start

Start

Services

Start

button and point to

window appears.

Secure Port Server

Settings→

icon.

Control Panel→

Administrative Tools→

Services

42 Using Server Administrator

Page 43

Stopping Server Administrator

Supported Microsoft Windows Operating Systems

To stop Server Administrator, perform the following steps:

Click the

The

Right-click the

Click

Supported Red Hat Enterprise Linux Operating Systems

Start

Services

Stop

button and point to

window appears.

Secure Port Server

Settings→

icon.

Control Panel→

Administrative Tools→

Services

To stop Server Administrator on systems running a supported Red Hat Enterprise Linux operating system, run the following command from the command line:

omawsd stop

Restarting Server Administrator

Supported Microsoft Windows Operating Systems

To restart Server Administrator, perform the following steps:

Click the

The

Right-click the

Click

Start

Services

Restart

button and point to

window appears.

Secure Port Server

Settings→

icon.

Control Panel→

Administrative Tools→

Services

Supported Red Hat Enterprise Linux Operating Systems

To restart Server Administrator on systems running a supported Red Hat Enterprise Linux operating system, run the following command from the command line:

omawsd restart

Using Server Administrator 43

Page 44

44 Using Server Administrator

Page 45

Installing Server Administrator

Overview

You can install Server Administrator using several methods. The Dell™ PowerEdge™ Installation and Server Management CD provides a setup program to install, upgrade, and uninstall Server

Administrator and other managed system software components on your managed system. The Dell Systems Management Consoles CD provides a setup program to install, upgrade, and uninstall management station software components on your management station. Additionally, you can install Server Administrator on multiple systems through an unattended installation across a network. The Dell OpenManage™ products are installed using the install process native to the operating system. If you have a Dell installed Microsoft operating system, Server Administrator is already installed on your system. Follow the configuration wizard to set up Server Administrator. For details, see the Dell OpenManage Installation and Security User's Guide.

Upgrade Using the Service Pack Capability

If you are running a Microsoft Windows operating system and Dell OpenManage™ Server Administrator version 2.0, you can download and install the service pack from support.dell.com. You do not need to uninstall Server Administrator before installing the service pack. If you have a version of Server Administrator earlier than 2.0, upgrade to version 2.0 and then download and install the service pack.

If you are running Server Administrator on a system with a supported Red Hat Enterprise Linux operating system, uninstall the previous version of Server Administrator and perform a fresh installation of the most recent version of Server Administrator.

Windows® or Red Hat® Enterprise Linux

NOTE: Upgrade of Dell OpenManage 3.x to Dell OpenManage 4.2 is no longer supported. You can upgrade

only from Dell OpenManage version 4.3.

See the Dell OpenManage Installation and Security User's Guide for information on installation procedures and step-by-step instructions for installing, upgrading, and uninstalling Server Administrator on each supported operating system.

Dell PowerEdge Installation and Server Management CD

The Dell PowerEdge Installation and Server Management CD provides a setup program to install, upgrade, and uninstall Server Administrator and other managed system software components on your managed system. Additionally, you can install Server Administrator on multiple systems through an unattended installation across a network.

Installing Server Administrator 45

Page 46

Using the setup program on the Installation and Server Management CD, you can install and upgrade Server Administrator on systems running all supported operating systems. On systems running supported Microsoft Windows and Red Hat Enterprise Linux operating systems, you can uninstall Server Administrator with the Installation and Server Management CD or through the operating system. See the Dell OpenManage Installation and Security User's Guide for more details.

NOTE: Server Administrator installation is not supported on PowerEdge 300, 2300, 4300, 4350, 6300, or 6350

systems, or on systems containing a version of systems management software prior to version 3.0.

Unattended and Silent Installation

You can use the Installation and Server Management CD to perform an unattended installation and uninstallation of Server Administrator on systems running supported Microsoft Windows, and Red Hat Enterprise Linux operating systems. Additionally, you can install and uninstall Server Administrator from the command line on systems running supported Microsoft Windows, and Red Hat Enterprise Linux operating systems.

Upgrading Server Administrator

To upgrade from Dell OpenManage 4.3, use setup.exe or type:

msiexec /i SysMgmt.msi REINSTALL=ALL REINSTALLMODE=vomus

You can upgrade your systems management software using the Windows Installer Patch (MSP) file. The MSP file is available on the Dell PowerEdge Updates CD. To apply the MSP file either double-click on the msp file or enter:

Msiexec.exe /p filename.msp

NOTE: You can use msiexec parameters like /q for silent upgrades.

Before You Begin

• Read and follow the applicable instructions in "Setup and Administration."

• Read the installation requirements to ensure that your system meets or exceeds the minimum requirements.

• Read the installing, upgrading, and uninstalling Server Administrator for each supported operating system.

• Read the information about Server Administrator installation and operation on various hardware platforms (or systems) running supported Microsoft Windows, and Red Hat Enterprise Linux operating systems.

• Read the Dell OpenManage Install readme file on the contains the latest information about new features, in addition to information about known issues.

46 Installing Server Administrator

Dell OpenManage Installation and Security User's Guide

Server Administrator Compatibility Guide

. This document contains compatibility

Installation and Server Management

for step-by-step instructions on

CD. The file

Page 47

• Read the Server Administrator readme file on the contains the latest information about software, firmware, and driver versions, in addition to information about known issues.

• Read the installation instructions for your operating system.

Installation and Server Management

CD. The file

Installation Requirements

The following sections describe the Server Administrator general requirements. Operating system–specific installation prerequisites are listed as part of the installation procedures.

Supported Operating Systems

Server Administrator supports each of the following operating systems:

• Microsoft Windows 2000 Server family (32–bit extension) (includes Windows 2000 Server SP3 and greater, Windows 2000 Advanced Server SP3 and greater, Windows 2000 Small Business Server [SBS], and Windows 2000 SBS SP1)

• Microsoft Windows Server 2003 family (32–bit and 64–bit extensions) (includes SP1 with Web, Standard, and Enterprise editions) and Microsoft Windows Small Business Server [SBS] 2003

• Red Hat Enterprise Linux AS, ES, and WS, (Version 3 and 4) (32–and 64–bit extensions)

NOTE: Support for updated kernels released by Red Hat and for later versions of Red Hat Enterprise Linux

may require the use of Dynamic Kernel Support (see the Installation and Security User’s Guide for an explanation of this feature).

• VMWare 2.5.1 ESX service console

NOTE: See the Server Administrator readme file on the Installation and Server Management CD or the

Compatibility Guide on the Documentation CD for the latest detailed list of the Server Administrator Services that

are supported on each supported operating system.

System Requirements

Server Administrator must be installed on each system to be managed. You can then manage each system running Server Administrator locally or remotely through a supported Web browser.

The Prerequisite Checker (setup.exe) on the Installation and Server Management CD will automatically analyze your system to determine if the system requirements have been met. For more information, see "Prerequisite Checker for Windows."

Managed System Requirements

•One of the

• A minimum of 64 MB of RAM.

• A minimum of 256 MB of free hard-drive space.

• Administrator rights.

supported operating systems

Installing Server Administrator 47

Page 48

• A TCP/IP connection on the monitored system and the remote system to facilitate remote system management.

• One of the supported Web browsers.

•One of the

supported systems management protocol standards

• A mouse, keyboard, and monitor to manage a system locally. The monitor requires a minimum screen resolution of 800 x 600. The recommended screen resolution setting is 1024 x 768.

• The Server Administrator Remote Access Service requires that a Dell Remote Access Controller (DRAC) is installed on the system to be managed. See "Remote Access Service" and the

Access Controller Installation and Setup Guide User's Guide

NOTE: The DRAC software is installed as part of the Express Setup and Custom Setup installation options

when installing managed system software from the Installation and Server Management CD, provided that the managed system meets all of the DRAC installation prerequisites. See "Remote Access Service" and the

Dell Remote Access Controller Installation and Setup Guide or the Dell Embedded Remote Access/MC Controller User's Guide for complete software and hardware requirements.

for complete software and hardware requirements.

• The enhanced Storage Management Service is installed by default using

or the

Dell Embedded Remote Access/MC Controller

Express Setup

Dell Remote

on systems that do not have an existing installation of Dell OpenManage Array Manager. If you wish to install Array Manager instead of the enhanced Storage Management Service, use

Custom Setup

. On the other hand, if the system has an existing installation of Array Manager, then Array Manager is installed by default using Service, use

NOTE: See the Dell OpenManage Array Manager User's Guide for complete software and

hardware requirements.

Express Setup

Custom Setup

. In this case, if you wish to install the enhanced Storage Management

Remote Management System Requirements

• One of the supported Web browsers to manage a system remotely from the Server Administrator home page.

• A TCP/IP connection on the managed system and the remote system to facilitate remote system management.

• A minimum screen resolution of 800 x 600. The recommended screen resolution setting is 1024 x 768.

Supported Web Browsers

A supported Web browser is required to manage a system locally from the Server Administrator home page. Supported browsers are:

• Microsoft Internet Explorer 6.0

• Mozilla 1.7.1 and 1.7.3

• Firefox 1.0 and 1.0.1

48 Installing Server Administrator

Page 49

NOTE: When you install Mozilla 1.7.3 (32–bit) on Red Hat Enterprise Linux (version 3) x86_64, the installation fails if

libgtk-1.2.so.0 is not installed. You must install gtk+-1.2.10-31.i386.rpm (32–bit) that provides libgtk-1.2.so.0.

gtk+-1.2.10-31.i386.rpm is available on the Red Hat Enterprise Linux (version 3) Update 4 x86_64 CD. gtk+-1.2.10-

31.i386.rpm is dependent on other .i386.rpm packages. The other .i386.rpm (s) are also available on the Red Hat

Enterprise Linux (version 3) Update 4 x86_64 CD.

Supported Systems Management Protocol Standards

A supported systems management protocol standard must be installed on the managed system before installing Server Administrator. On supported Microsoft Windows operating systems, Server Administrator supports these two systems management standards: Common Information Model/Windows Management Instrumentation (CIM/WMI) and Simple Network Management Protocol (SNMP). On supported Red Hat Enterprise Linux operating system, Server Administrator supports the SNMP systems management standard.

NOTE: For information about installing a supported system management protocol standard on your managed system,

see your operating system documentation.

Table 5-1 shows the availability of the systems management standards for each supported operating system.

Table 5-1. Availability of Systems Management Protocol by Operating Systems

Operating System SNMP CIM/WMI

Supported Microsoft Windows operating systems.

Supported Red Hat Enterprise Linux operating systems.

Available from the operating system installation media.

You must install the SNMP package provided with the operating system.

Always installed.

Unavailable.

Prerequisite Checker for Windows

The setup.exe prerequisite checker program, located in the Windows directory on the Installation and Server Management CD, provides the capability of examining the prerequisite status for software

components without launching the actual installation. This program displays a status window that provides information about the system hardware that some software components may require for operation.

The Prerequisite Check can be executed silently using runprereqcheck.exe /s.

Installation Procedures

Installing Server Administrator 49

Page 50

Installing Server Administrator with Citrix

If you want to install Server Administrator with Citrix, you must perform the installation in the following order:

Install the operating system using the

NOTE: Do not install Server Administrator or other system management software, until you have installed the

Citrix software.

Install the Citrix software. See your Citrix documentation for complete information about installing

Installation and Server Management CD

and configuring the Citrix software.

Install Server Administrator using the

Installation and Server Management CD

All applications (including Server Administrator) work fine if installed after installing Citrix. Citrix remaps all your hard drive letters when installed.

For example, if you install Server Administrator on drive C: and then install Citrix, it will change your drive letter C: to M:. This results in Server Administrator not working properly if you install Citrix after installing Server Administrator. You can repair Server Administrator by typing msiexec.exe /fa

SysMgmt.msi

Considerations Before Installing Storage Management Service

The enhanced Storage Management Service and Array Manager are two separate storage management product offerings. These products cannot be installed together; you can use one or the other to manage your storage controllers. After installation, Array Manager is launched separately from the Server Administrator. The enhanced Storage Management Service provides the same features as Array Manager and is integrated with Server Administrator. The enhanced Storage Management Service is a replacement for Array Manager.

The enhanced Storage Management Service is installed by default using Express Setup on systems that do not have an existing installation of Array Manager. If Array Manager is already installed, then Express Setup installs the latest version of Array Manager and the enhanced Storage Management Service is not installed. You can use Custom Setup to install either Array Manager or the enhanced Storage Management Service regardless of whether the system has an existing Array Manager installation or not. If you install the enhanced Storage Management Service, any previous installation of Array Manager will be uninstalled.

NOTE: Array Manager is not available if no previous Dell OpenManage systems management software (with Array

Manager installed) is detected. It is only available for upgrade. Support for Array Manager will be discontinued in a future release. It is recommended that you switch to use Storage Management Service where applicable.

50 Installing Server Administrator

Page 51

Choosing between the Enhanced Storage Management Service and Array Manager

Storage Management is a replacement for Array Manager and provides the same storage management functions with the following exceptions:

• Windows disk and volume management are provided by Array Manager but not by Storage Management. If you need disk and volume management, there are two options:

– Install Array Manager.

– Install Storage Management and use the native disk and volume management utilities provided by

your operating system.

• Fibre channel support for the Dell PowerVault 660F Storage System is provided by Array Manager but not by Storage Management.

•

Red Hat Enterprise Linux

support is provided by Storage Management but not by Array Manager.

The following table summarizes significant differences in supported features between Array Manager and the enhanced Storage Management Service.

Table 5-2. Features Supported by Array Manager and the Enhanced Storage Management Service

Feature Array Manager Enhanced Storage

Management Service

Linux support No Yes

Windows Server 2003 32-bit support

Windows Server 2003 64-bit support

Fiber Channel hardware management

Windows 2000 disk and volume management

Yes Ye s

No Yes

Yes (Dell PowerVault™ 660F storage system)

Yes (See the Array Manager documentation for details.)

PERC Console and FAST Compatibility Issues When Installing the Enhanced Storage Management Service

Installing the enhanced Storage Management Service on a system that has FAST or the PERC Console installed is an unsupported configuration. In particular, you may find that the enhanced Storage Management Service or the FAST features are disabled at run time when using the enhanced Storage Management Service on a system that also has FAST installed. Therefore, it is recommended that you uninstall FAST and the PERC Console before installing the enhanced Storage Management Service.

The enhanced Storage Management Service replaces all storage management features provided by FAST and the PERC Console. In addition, the enhanced Storage Management Service has features not provided by FAST and the PERC Console.

Installing Server Administrator 51

Page 52

Compatibility With Linux Utilities When Installing the Enhanced Storage Management Service

It is recommended to not install the enhanced Storage Management Service on a Linux system that has RAID storage management utilities provided by Dell or other vendors. You should uninstall these utilities before installing the enhanced Storage Management Service. The enhanced Storage Management Service replaces the storage management features provided by these utilities. Examples of the Linux utilities provided by Dell or other vendors include:

• LinFlash

• DellMgr

•DellMON

• LINLib

• MegaMgr

• MegaMON

Prerequisite Drivers and Firmware on Linux and the Enhanced Storage Management Service

On Linux, the enhanced Storage Management Service installation is unable to detect whether the drivers and firmware on the system are at the required level for installing and using Storage Management. When installing on Linux, you will be able to complete the installation regardless of whether the driver and firmware versions meet the required level. If the driver and firmware versions do not meet the required level, however, you may not have access to all functions provided by the enhanced Storage Management Service. At the enhanced Storage Management Service runtime, check your application log files for notifications on outdated firmware versions. See the enhanced Storage Management Service readme (readme_sm.txt) for a complete listing of supported controller firmware and driver versions.

Install and Upgrade Scenarios for the Enhanced Storage Management Service and Array Manager

On Windows operating systems, the enhanced Storage Management Service is installed by default (using Express Setup) provided that the installation process does not detect the presence of Array Manager on the system. If Array Manager is detected, then the installation upgrades Array Manager to the latest version and the enhanced Storage Management Service is not installed. When using Custom Setup, either the enhanced Storage Management Service or Array Manager can be installed. The enhanced Storage Management Service cannot be installed on a system that has Array Manager (managed system component). However, the Array Manager management station component (console) can reside on the same system as the enhanced Storage Management Service.

52 Installing Server Administrator

Page 53

If you wish to upgrade an Array Manager installation to the enhanced Storage Management Service, use Custom Setup and select Storage Management. The installation process will then uninstall Array Manager and install the enhanced Storage Management Service. It is important to upgrade using Custom Setup in order to preserve the names of the virtual disks created with Array Manager. If you uninstall Array Manager through any means other than upgrading to the enhanced Storage Management Service using Custom Setup, then the enhanced Storage Management Service will rename the virtual disks created with Array Manager.

NOTE: See the

Express Setup

Dell OpenManage Installation and Security User's Guide

and

Custom Setup

options

for more information on

the

On a system with the enhanced Storage Management Service, you cannot replace the enhanced Storage Management Service with Array Manager without first uninstalling the enhanced Storage Management Service manually.

On Red Hat Enterprise Linux, the enhanced Storage Management Service is the only installation choice. Array Manager does not support Linux.

Installing Server Administrator 53

Page 54

54 Installing Server Administrator

Page 55

Instrumentation Service

Overview

The Server Administrator Instrumentation Service monitors the health of a system and provides rapid access to detailed fault and performance information gathered by industry standard systems management agents. The reporting and viewing features allow retrieval of overall health status for each of the chassis that comprise your system. At the subsystem level, you can view information about the voltages, temperatures, current, fan rpm, and memory function at key points in the system. A detailed account of every relevant cost of ownership (COO) detail about your system can be seen in summary view. Version information for BIOS, firmware, operating system, and all installed systems management software is easy to retrieve.

Additionally, systems administrators can use the Instrumentation Service to perform the following essential tasks:

• Specify minimum and maximum values for certain critical components. The values, called thresholds, determine the range in which a warning event for that component occurs (minimum and maximum failure values are specified by the system manufacturer).

• Specify how the system responds when a warning or failure event occurs. Users can configure the actions that a system takes in response to notifications of warning and failure events. Alternatively, users who have around-the-clock monitoring can specify that no action is to be taken and rely on human judgment to select the best action in response to an event.

• Populate all of the user-specifiable values for the system, such as the name of the system, the phone number of the system's primary user, the depreciation method, whether the system is leased or owned, and so on.

NOTE: For both managed systems and network management stations running Microsoft®

Windows Server™ 2003, you must configure the SNMP service to accept SNMP packets. See "Configuring the SNMP Agent for Systems Running Supported Windows Operating Systems" for details.

Instrumentation Service 55

Page 56

Managing Your System

The Server Administrator home page defaults to the System object of the system tree view. The default for the System object opens the Health components under the Properties tab.

Figure 6-1. Sample Server Administrator Home Page

system tree

action tab

NOTE: Context-sensitive online help is available for every window of the Server Administrator home page. Clicking

Help on the global navigation bar opens an independent help window that contains detailed information about the specific window you are viewing. The online help is designed to guide you through the specific actions required to perform all aspects of the Server Administrator services. Online help is available for all windows you can view, based on the software and hardware groups that Server Administrator discovers on your system and your user privilege level.

action tab subcategories

action window

global navigation bar

data area

NOTE: Many of the system tree objects, system components, action tabs, action tab subcategories, or data area

features are not available to a user logged in with only User privileges. Admin or Power User privileges are required to view many of the system tree objects, system components, action tabs, and data area features that are configurable. Additionally, only users logged in with Admin privileges have access to critical system features such as the shutdown functionality included under the Shutdown tab.

The Preferences home page defaults to the Access Configuration window under the Preferences tab.

From the Preferences home page you can restrict access to users with User and Power User privileges, set the SNMP password, and configure user settings and secure port server settings.

56 Instrumentation Service

Page 57

Managing System Tree Objects

The Server Administrator system tree displays all visible system objects based on the software and hardware groups that Server Administrator discovers on the managed system and on the user's access privileges. The system components are categorized by component type. When you expand the main object known as System, the major categories of system components that may appear are Main System Chassis, Software, and Storage.

To expand a branch of the tree, click the plus sign ( ) to the left of an object, or double-click the object. A minus sign ( ) indicates an expanded entry that cannot be expanded further.

See Figure 6-2 available Server Administrator home page system tree objects.

Figure 6-2. Server Administrator Home Page System Tree Objects

System

Main System Chassis

AC Switch

BIOS

BMC

Currents

Fans

Firmware

Intrusion

Memory

Network

Ports

Power Supplies

Processors

Remote Access Controller

Slots

Temperatures

Voltages

Software

Operating System

Storage

Arra

Subsystems

Instrumentation Service 57

Page 58

NOTE: In the previous figure, the Storage tree object expands to display the Array Systems and OS Disks objects

only when Array Manager (basic Storage Management Service) is installed. If enhanced Storage Management Service is installed, depending on the controller and storage attached to the system, the Storage tree object will expand to display the following objects:

1. Controller

2. Battery

3. Channel

4. Enclosure or Backplane

5. Array Disks

6. EMMs

7. Fans

8. Power Supplies

9. Temperatures

10. Virtual Disks

Server Administrator Home Page System Tree Objects

NOTE: Many of the system tree objects, system components, action tabs, action tab subcategories, or data area

System

The System object contains three main system component groups: Main System Chassis, Software, and Storage. The Server Administrator home page defaults to the System object of the system tree view. Most

administrative functions can be managed from the System object action window. The System object action window can have the following tabs, depending on the user's group privileges: Properties, Shutdown, Logs,

Alert Management, Update, and Diagnostics.

Properties

Subtabs: Health | Summary | Asset Information | Auto Recovery

Under the Properties tab, you can:

• View the current health alert status for hardware and software components in the object, the attached storage components, and the Diagnostic Service for the system being monitored.

Main System Chassis

NOTE: Diagnostic Service is not listed on the Health page for the System object at startup. The Diagnostic

Service waits for the Server Administrator service to start completely before enumerating (scanning the system for available devices to diagnose). If you press <F5> to refresh, Diagnostic Service shows up when enumeration is complete. This process can take several minutes on some systems.

• View detailed summary information for all components in the system being monitored.

58 Instrumentation Service

Page 59

• View and configure asset information for the system being monitored.

• View and set the Automatic System Recovery (watchdog timer) actions for the system being monitored.

NOTE: Automatic System Recovery actions may not execute exactly per the time-out period

(n seconds) when the watchdog identifies a system that has stopped responding. The action execution time ranges from n-h+1 to n+1 seconds, where n is the time-out period and h is the heart beat interval. The value of the heart beat interval is 7 seconds when n <= 30 and 15 seconds when n > 30.

NOTE: The functionality of the watchdog timer feature cannot be guaranteed when an uncorrectable

memory event occurs in the system DRAM Bank_1. If an uncorrectable memory event occurs in this location, the BIOS code resident in this space may become corrupted. Because the watchdog feature uses a call to BIOS to effect the shutdown or reboot behavior, the feature may not work properly. If this occurs, you must manually reboot the system.

Shutdown

Subtabs: Remote Shutdown | Thermal Shutdown | Web Server Shutdown

Under the Shutdown tab, you can:

• Configure the operating system shutdown and remote shutdown options.

• Set the thermal shutdown severity level to shut down your system in the event that a temperature sensor returns a warning or failure value.

NOTE: A thermal shutdown occurs only when the temperature reported by the sensor goes above the

temperature threshold. A thermal shutdown does not occur when the temperature reported by the sensor goes below the temperature threshold.

• Shut down the Server Administrator secure port server (Web server).

NOTE: Server Administrator is still available using the CLI when the secure port server is shut down. The

CLI functions do not require that the secure port server is running.

NOTE: The secure port server starts automatically after a reboot, so you must shut down the secure port

server every time a system starts up.

Logs

Subtabs: Hardware | Alert | POST | Command

• Under the

Logs

tab, you can:

• View the Embedded System Management (ESM) log or the System Event Log (SEL) for a list of all events related to your system's hardware components. The status indicator icon next to the log name will change from a green check mark ( ) to a yellow triangle containing an exclamation point ( ) when the log file reaches 80 percent capacity.

NOTE: It is recommended that you clear the hardware log when it reaches 80 percent capacity. If the log is

allowed to reach 100 percent capacity, the latest events are discarded from the log.

Instrumentation Service 59

Page 60

• View the Alert log for a list of all events generated by the Server Administrator Instrumentation Service in response to changes in the status of sensors and other monitored parameters.

NOTE: See the Server Administrator Messages Reference Guide for a complete explanation of each alert

event ID's corresponding description, severity level, and cause.

• View the POST log for a list of the POST codes and their corresponding descriptions recorded during system start-up.

• View the Command log for a list of each command executed from either the Server Administrator home page or from its command line interface.

NOTE: See "Server Administrator Logs" for complete instructions on viewing, printing, saving, and e-mailing logs.

Alert Management

Subtabs: Alert Actions | Platform Events | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a system component sensor returns a warning or failure value.

• View current Platform Event Filter settings and set the Platform Event Filtering actions to be performed in the event that a system component sensor returns a warning or failure value. You can also use the

Configure Destination

option to select a destination where an alert for a platform event is to

be sent.

• View current SNMP trap alert thresholds and set the alert threshold levels for instrumented system components. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

NOTE: Alert actions for all potential system component sensors are listed on the Alert Actions window, even

if they are not present on your system. Setting alert actions for system component sensors that are not present on your system has no effect.

Update

Subtab: Software

The Update tab in Server Administrator allows you to view the system component version report. Use the Dell™ Server Update Utility application CD to view the complete version report and to update an entire system. To update individual components, use component specific Dell Update Packages.

NOTE: Update functionality is not supported in this release. The Dell Server Update Utility and Dell Update

Packages can be downloaded from support.dell.com. These are supported on Microsoft Windows and Red Hat Enterprise Linux.

NOTE: The Dell Server Update Utility or Dell Update Packages must be launched from the system you want to update.

60 Instrumentation Service

Page 61

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: The Diagnostics tab is not available in Server Administrator at startup. The Diagnostic Service waits for the

Server Administrator service to start completely before enumerating (scanning the system for available devices to diagnose). If you press <F5> to refresh, the Diagnostics tab shows up when enumeration is complete. This process can take several minutes on some systems.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

Main System Chassis

Clicking the Main System Chassis object allows you to manage your system's essential hardware and software components. The system may contain one main system chassis or several chassis. The main system chassis contains the essential components of a system. The Main System Chassis object action window can have the following tabs, depending on the user's group privileges: Properties and Diagnostics.

Properties

Subtabs: Health | Information | Front Panel

Under the Properties tab, you can:

• View the health or status of hardware components and sensors. Each listed component has a "System Component Status Indicators" icon next to its name. A green check mark ( ) indicates that a component is healthy (normal). A yellow triangle containing an exclamation point ( ) indicates that a component has a warning (noncritical) condition and requires prompt attention. A red X ( ) indicates a component has a critical (failure) condition and requires immediate attention. A blank space ( ) indicates that a component's health status is unknown. The available monitored components include:

• AC Switch

•BIOS

•BMC

• Currents

• Diagnostic Service

Instrumentation Service 61

Page 62

•Fans

• Firmware

• Hardware Log

• Intrusion

•Memory

• Network

•Ports

• Power Supplies

• Processors

• Remote Access Controller

•Slots

•Temperatures

• Voltages

• View information about the main system chassis attributes.

• Enable or disable the managed system's front panel buttons, namely Power button and or Non-Masking Interrupt (NMI) button (if present on the system).

NOTE: Diagnostic Service is not listed on the Health page for the Main System Chassis object at startup.

The Diagnostic Service waits for the Server Administrator service to start completely before enumerating (scanning the system for available devices to diagnose). If you press <F5> to refresh, Diagnostic Service shows up when enumeration is complete. This process can take several minutes on some systems.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

62 Instrumentation Service

Page 63

AC Switch

Clicking the AC Switch object allows you to display key features of your system's AC failover switch. The AC Switch object action window can have the following tab, depending on the user's group privileges: Properties.

Properties

Subtab: Information

Under the Properties tab, you can view AC switch redundancy information and view information about the AC power lines.

BIOS

Clicking the BIOS object allows you to manage key features of your system's BIOS. Your system's BIOS contains programs stored on a flash memory chip set that control communications between the microprocessor and peripheral devices, such as the keyboard and the video adapter, and other miscellaneous functions, such as system messages. The BIOS object action window can have the following tabs, depending on the user's group privileges: Properties and Setup.

Properties

Subtab: Information

Under the Properties tab, you can view BIOS information.

Setup

Subtab: BIOS

Under the Setup tab, you can set the state for each BIOS setup object.

NOTE: Setting the boot sequence to Device List on the Setup tab results in the following boot sequence: diskette,

IDE CD drive, hard drive, option ROMs (if the devices are available).

BMC

Clicking the BMC object allows you to manage the Baseboard Management Controller (BMC) features such as, general information on the BMC. You can also manage the configuration of the BMC on a LAN, serial port for the BMC, terminal mode settings for the serial port, BMC on a serial over LAN connection, BMC users, and BIOS setup.

NOTE: If an application other than Server Administrator is used to configure the BMC while Server Administrator

is running, the BMC configuration data displayed by Server Administrator may become asynchronous with the BMC. It is recommended that Server Administrator be used to configure the BMC while Server Administrator is running.

Instrumentation Service 63

Page 64

The BMC object action window can have the following tabs, depending on the user's group privileges: Properties, Configuration, Users, and BIOS Setup.

Properties

Subtab: Information

Under the Properties tab, you can view general BMC information. Click Reset to Defaults to reset all the attributes to their system default values.

Configuration

Subtabs: LAN | Serial Port | Serial Over LAN

Under the Configuration tab, you can configure the BMC on a LAN, the serial port for the BMC, and the BMC on a serial over LAN connection.

Users

Subtab: BMC Users

Under the Users tab, you can modify the BMC user configuration.

BIOS Setup

Subtabs: Serial Configuration | Console Redirection | Console Redirection Failsafe Baud Rate

Under the BIOS Setup tab, you can modify the state of the Serial Port, Console Redirection, and Console Redirection Failsafe Baud Rate.

NOTE: The NIC configuration information within the Server Administrator BIOS Setup screen may be inaccurate

for embedded NICs. Using the BIOS Setup screen to enable or disable NICs might produce unexpected results. It is recommended that you perform all configurations for embedded NICs through the actual System Setup screen that is available by pressing <F2> while a system is booting.

Currents

Clicking the Currents object allows you to manage current levels in your system. Server Administrator monitors currents across critical components in various chassis locations in the monitored system. The Current object action window can have the following tabs, depending on the user's group privileges:

Properties and Alert Management.

Properties

Subtab: Current Probes

Under the Properties tab, you can:

• View the current readings and status for your system's current probes.

• Configure current probe warning threshold values.

• Set alert actions in the event that a current probe returns a warning or failure value.

NOTE: When assigning probe threshold values, Server Administrator sometimes rounds the minimum or maximum

values you enter to the closest assignable value.

64 Instrumentation Service

Page 65

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a current sensor returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for current sensors. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Fans

Clicking the Fans object allows you to manage your system fans. Server Administrator monitors the status of each system fan by measuring fan rpms. Fan probes report rpms to the Server Administrator Instrumentation Service. When you select Fans from the device tree, details appear in the data area in the right-hand pane of the Server Administrator home page. The Fans object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.

Properties

Subtabs: Fan Probes | Fan Control

Under the Properties tab, you can:

• View the current readings for your system's fan probes and configure minimum and maximum values for fan probe warning threshold.

NOTE: Some fan probe fields differ according to the type of firmware your system has: BMC or ESM.

Some threshold values are not editable on BMC-based systems.

• Select fan control options.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a fan returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for fans. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Instrumentation Service 65

Page 66

Firmware

Clicking the Firmware object allows you to manage your system firmware. Firmware consists of programs or data that have been written to ROM. Firmware can boot and operate a device. Each controller contains firmware that helps provide the controller's functionality. The Firmware object action window can have the following tab, depending on the user's group privileges: Properties.

Properties

Subtab: Information

Under the Properties tab, you can view your system's firmware information.

Intrusion

Clicking the Intrusion object allows you to manage your system's chassis intrusion status. Server Administrator monitors chassis intrusion status as a security measure to prevent unauthorized access to your system's critical components. Chassis intrusion indicates that someone is opening or has opened the cover to the system's chassis. The Intrusion object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.

Properties

Subtab: Intrusion

Under the Properties tab, you can view the chassis intrusion status.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that the intrusion sensor returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for the intrusion sensor. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Memory

Clicking the Memory object allows you to manage your system's memory devices. Server Administrator monitors the memory device status for each memory module present in the monitored system. Memory device prefailure sensors monitor memory modules by counting the number of ECC memory corrections. Server Administrator also monitors memory redundancy information if your system supports this feature. The Memory object action window can have the following tabs, depending on the user's group privileges: Properties, Alert Management, and Diagnostics.

66 Instrumentation Service

Page 67

Properties

Subtab: Memory

Under the Properties tab, you can view memory attributes, memory device details, and memory device status.

NOTE: If a system with spare bank memory enabled enters a redundancy lost state, it may not be apparent which

memory module is the cause. If you cannot determine which DIMM to replace, see the switch to spare memory bank detected log entry in the ESM system log to find which memory module failed.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a memory module returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for memory modules. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

Network

Clicking the Network object allows you to manage your system's NICs. Server Administrator monitors the status of each NIC present in your system to ensure continuous remote connection. The Network object action window can have the following tabs, depending on the user's group privileges: Properties and Diagnostics.

Instrumentation Service 67

Page 68

Properties

Subtab: Information

Under the Properties tab, you can view information about the NICs installed in your system.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

Ports

Clicking the Ports object allows you to manage your system's external ports. Server Administrator monitors the status of each external port present in your system. The Ports object action window can have the following tabs, depending on the user's group privileges: Properties and Diagnostics.

Properties

Subtab: Information

Under the Properties tab, you can view information about your system's external ports.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

68 Instrumentation Service

Page 69

Power Supplies

Clicking the Power Supplies object allows you to manage your power supplies. Server Administrator monitors power supply status, including redundancy, to ensure that each power supply present in your system is functioning properly. The Power Supplies object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.

Properties

Subtab: Elements

Under the Properties tab, you can:

• View information about your power supply redundancy attributes.

• Check the status of individual power supply elements.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a power supply returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for power supplies. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Processors

Clicking the Processors object allows you to manage your system's microprocessor(s). A processor is the primary computational chip inside a system that controls the interpretation and execution of arithmetic and logic functions. The Processors object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.

Properties

Subtab: Information

Under the Properties tab, you can view information about your system's microprocessor(s) and access detailed cache information.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a processor returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for processors. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

Instrumentation Service 69

Page 70

Remote Access Controller

Clicking the Remote Access Controller object allows you to access your system's remote system management capabilities. The Server Administrator Remote Access Service provides remote access to inoperable systems, alert notification when a system is down, and the ability to restart a system. The Remote Access Controller object action window can have the following tabs, depending on the user's group privileges: Properties, Configuration, Users, Remote Connect, Security, Update, and

Diagnostics.

Properties

Subtab: Information

Under the Properties tab, you can view information about each remote access controller (RAC) attribute.

Configuration

Under the Configuration tab, you can:

• Configure network properties.

• Configure SNMP traps.

• Configure demand dial-out entries.

• Configure dial-in users.

• Configure remote properties such as remote boot parameters.

• Configure modem properties.

Users

Subtab: Information

Under the Users tab, you can add, configure, and view information about Remote Access Service users.

Remote Connect

Under the Remote Connect tab, you can access the RAC.

Security

Subtabs: CSR Management | Authentication Options

Under the Security tab, you can:

• Perform CSR certificate management by generating a new CSR certificate, uploading an existing CSR certificate, viewing an existing server certificate, or viewing an existing CA certificate.

• Set login authentication options to only allow remote access controller login by users created thought the Remote Access Service (RAC users), or to allow remote access controller login by users created through the Remote Access Service and through the local operating system.

70 Instrumentation Service

Page 71

Update

Subtab: Firmware Update

Update is no longer supported. Use the Dell Server Update Utility or the Dell Update Packages to carry out your system software updates. The Dell Server Update Utility and Dell Update Packages can be downloaded from support.dell.com.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service.

Slots

Clicking the Slots object allows you to manage the connectors or sockets on your system board that accept printed circuit boards, such as expansion cards. The Slots object action window has the

Properties tab.

Properties

Subtab: Information

Under the Properties tab, you can view information about each slot and installed adapter.

Temperatures

Clicking the Temperatures object allows you to manage your system temperature in order to prevent thermal damage to your internal components. Server Administrator monitors the temperature in a variety of locations in your system's chassis to ensure that temperatures inside the chassis do not become too high. The Temperatures object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.

Instrumentation Service 71

Page 72

Properties

Subtab: Temperature Probes

Under the Properties tab, you can view the current readings and status for your system's temperature probes and configure minimum and maximum values for temperature probe warning threshold.

NOTE: Some temperature probe fields differ according to the type of firmware your system has: BMC or ESM.

Some threshold values are not editable on BMC-based systems. When assigning probe threshold values, Server Administrator sometimes rounds the minimum or maximum values you enter to the closest assignable value.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a temperature probe returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for temperature probes. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

NOTE: Users can set minimum and maximum temperature probe threshold values for an external chassis to whole

numbers only. If users attempt to set either the minimum or maximum temperature probe threshold value to a number that contains a decimal, only the whole number before the decimal place is saved as the threshold setting.

Voltages

Clicking the Voltages object allows you to manage voltage levels in your system. Server Administrator monitors voltages across critical components in various chassis locations in the monitored system. The Volta ges object action window can have the following tabs, depending on the user's group privileges:

Properties and Alert Management.

Properties

Subtab: Voltage Probes

Under the Properties tab, you can view the current readings and status for your system's voltage probes and configure minimum and maximum values for voltage probe warning threshold.

NOTE: Some voltage probe fields differ according to the type of firmware your system has: BMC or ESM.

Some threshold values are not editable on BMC-based systems.

Alert Management

Subtabs: Alert Actions | SNMP Traps

Under the Alert Management tab, you can:

• View current alert actions settings and set the alert actions that you want to be performed in the event that a system voltage sensor returns a warning or failure value.

• View current SNMP trap alert thresholds and set the alert threshold levels for voltage sensors. The selected traps will be triggered if the system generates a corresponding event at the selected severity level.

72 Instrumentation Service

Page 73

Software

Clicking the Software object allows you to view detailed version information about the managed system's essential software components, such as the operating system and the systems management software. The Software object action window can have the following tab, depending on the user's group privileges:

Properties.

Properties

Subtab: Summary

Under the Properties tab, you can view a summary of the monitored system's operating system and system management software.

Operating System

Clicking the Operating System object allows you to view basic information about your operating system. The Operating System object action window has the following tabs, depending on the user's group privileges: Properties.

Properties

Subtab: Information

Under the Properties tab, you can view basic information about your operating system.

Storage

Server Administrator provides two staggered versions of the Storage Management Service:

• Basic Storage Management Service (Array Manager)

The Basic Storage Management Service is similar to the Storage Management Service provided in earlier releases of Server Administrator. The Basic Storage Management Service is available only on Microsoft Windows operating system.

NOTE: Array Manager is not available if no previous Dell OpenManage systems management software

(with Array Manager installed) is detected. It is only available for upgrade. Support for Array Manager will be discontinued in a future release. It is recommended that you switch to use Storage Management Service where applicable.

• Enhanced Storage Management Service

The Enhanced Storage Management Service provides additional features for configuring storage. In most cases, the enhanced Storage Management Service is installed using Express Setup. The Enhanced Storage Management Service is available only on Microsoft Windows and Red Hat Enterprise Linux operating systems.

Depending on which version of the Storage Management Service is installed, clicking the Storage object allows you to view the status and settings for various attached array storage devices, volumes, system disks, and so on.

Instrumentation Service 73

Page 74

Basic Storage Management Service

In the case of Basic Storage Management Service, depending on the storage attached to the system, the expanded Storage object may display the following lower-level objects:

• Array Subsystems

• OS Disks

• Volumes

In Basic Storage Management Service, the Storage object action window can have the following tabs, depending on the user's group privileges: Properties and Diagnostics.

Properties

Subtab: Health

Under the Properties tab, you can view the health or status of attached storage components and sensors such as array subsystems, operating system disks, and volumes.

NOTE: Diagnostic Service is not listed on the Health page for the Storage object at startup. The Diagnostic Service

waits for the Server Administrator service to start completely before enumerating (scanning the system for available devices to diagnose). If you press <F5> to refresh, Diagnostic Service shows up when enumeration is complete. This process can take several minutes on some systems.

Diagnostics

Under the Diagnostics tab, you can:

• View and select to run all available diagnostics tests for components installed in your system.

• Review the selected tests.

• View the status of the tests being executed.

• View the results for the diagnostics test that have been run.

• View any current hardware configuration changes (hardware configuration differences).

• Configure settings for diagnostics tests and log files.

• View a list of scheduled tests and make changes to them.

NOTE: See "Diagnostic Service" for complete instructions on using the Server Administrator Diagnostic Service

Array Subsystems

Clicking the Array Subsystems object allows you to view information about your array subsystems. Array subsystems include physical and logical objects. The Array Subsystems object action window can have the following tab, depending on the user's group privileges: Properties

74 Instrumentation Service

Page 75

Properties

Subtab: Array Subsystems

Under the Properties tab, you can view the current status of and detailed information about your array subsystems, including installed RAID controllers, direct attached storage enclosures, and physical and virtual disks.

OS Disks

Clicking the OS Disks object allows you to view information about your operating system disks. The OS Disks object action window can have the following tab, depending on the user's group privileges:

Properties.

Properties

Subtab: OS Disks

Under the Properties tab, you can view the current status of and detailed information about your operating system disks.

Volumes

Clicking the Volume s object allows you to view information about volumes on your system. A volume may be formatted and may have a file system and/or drive letter. The Volumes object action window can have the following tab, depending on the user's group privileges: Properties.

Properties

Subtab: Volumes

Under the Properties tab, you can view the current status of and detailed information about your volumes.

Enhanced Storage Management Service

In the case of Enhanced Storage Management Service, clicking the Storage object allows you to view the status and settings for the supported controllers attached to the system. The controller object expands to display the storage attached to the controller.

Depending on the controller and storage attached to the system, the expanded Storage object may display the following lower-level objects:

•Controller

• Battery

• Connector

• Enclosure or Backplane

•Array Disks

•EMMs

Instrumentation Service 75

Page 76

•Fans

• Power Supplies

•Temperatures

• Virtual Disks

The Storage object action window can have the following tabs, depending on the user’s group privileges: Properties.

Properties

Subtab: Health

In the Health window of the Properties tab, you can view the current health or status of the attached storage components. This window displays the status of all lower-level objects.

A quick way to review the status of all storage components is to select the Storage object and view the

Health window under the Properties tab. You can click the required storage components in the Health window to view detailed information on the health or status of the component.

Subtab: Information/Configuration

In the Information/Configuration window of the Properties tab, you can view the properties for the controllers attached to the system. You can also execute global tasks that apply to all controllers.

Controller

Clicking the Controller object allows you to view information about your controllers and the various components attached to the controller. The components attached to the controller can include battery, virtual disks, and so on. The Controller object action window can have the following tabs, depending on the user’s group privileges: Health and Information/Configuration.

Health

Under the Health tab, you can view the current status of the battery, virtual disks, and other storage components attached to the controller. The status is visually indicated with the icons described in "Storage Component Severity."

Information/Configuration

Under the Information/Configuration tab, you can view the property information of the controller and the components attached to the controller. You can also execute controller tasks in this tab.

Connector

Clicking the Connector object allows you to view information about the channel and the enclosure or backplane attached to the channel. The Connector object action window can have the following tabs, depending on the user’s group privileges: Health and Configuration/Information.

76 Instrumentation Service

Page 77

Health

Under the Health tab, you can view the current status of the channel and the enclosure or backplane attached to the channel. The status is visually indicated with the icons described in "Storage Component Severity."

Configuration/Information

Under the Configuration/Information tab, you can view the property information of the channel and the enclosure or backplane attached to the channel. You can also execute channel tasks in this tab.

Enclosure or Backplane

Clicking the Enclosure or Backplane object allows you to view information about the array disks, temperature probes, and other components attached to the enclosure or backplane. The Enclosure or

Backplane object action window can have the following tabs, depending on the user’s group privileges: Health and Configuration/Information.

Health

Under the Health tab, you can view the current status of array disks and other components attached to the enclosure or backplane. For example, the status of an enclosure’s fans, power supplies, temperature probes, and so on is displayed in this tab. The status of array disks attached to the backplane is also displayed here. The status is visually indicated with the icons described in "Storage Component Severity."

Configuration/Information

Under the Configuration/Information tab, you can view the property information of the array disks, temperature probes, EMMs (Enclosure Management Modules) and other components attached to the enclosure or backplane. For enclosures, you can also execute enclosure tasks in this tab.

Array Disks

Clicking the Array Disks object allows you to view information about the array disks attached to the enclosure or backplane. The Array Disks object action window can have the following tabs, depending on the user’s group privileges: Configuration/Information.

Configuration/Information

Under the Configuration/Information tab, you can view the current status and property information of the array disks attached to the enclosure or backplane. The status is visually indicated with the icons described in "Storage Component Severity."

Property information includes name, state, capacity, used and available disk space, and other information. You can also execute array disk tasks in this tab.

EMMs

Clicking the EMMs object allows you to view information about the Enclosure Management Modules (EMMs). The EMMs object action window can have the following tabs, depending on the user’s group privileges: Configuration/Information.

Instrumentation Service 77

Page 78

Configuration/Information

Under the Configuration/Information tab, you can view the current status and property information of the EMMs. The status is visually indicated with the icons described in "Storage Component Severity."

Property information includes name, state, part number, firmware version, and SCSI rate.

Fans

Clicking the Fans object allows you to view information about the enclosure fans. The Fans object action window can have the following tabs, depending on the user’s group privileges:

Configuration/Information.

Configuration/Information

Under the Configuration/Information tab, you can view the current status and property information of the fans. The status is visually indicated with the icons described in "Storage Component Severity."

Property information includes fan name, state, part number, and speed.

Power Supplies

Clicking the Power Supplies object allows you to view information about the enclosure power supplies. The Power Supplies object action window can have the following tabs, depending on the user’s group privileges: Configuration/Information.

Configuration/Information

Under the Configuration/Information tab, you can view the current status and property information of the enclosure power supplies. The status is visually indicated with the icons described in "Storage Component Severity."

Property information includes name, state, and part number.

Temperatures

Clicking the Temperatures object allows you to view information about the enclosure temperature probes. The Temperatures object action window can have the following tabs, depending on the user’s group privileges: Configuration/Information.

Configuration/Information

Under the Configuration/Information tab, you can view the current status and property information of the enclosure temperature probes. The status is visually indicated with the icons described in "Storage Component Severity."

Property information includes name, state, and reading (current temperature). The minimum and maximum values set for the temperature probes’ Warning and Failure thresholds are also displayed under this tab.

Virtual Disks

Clicking the Virtual Disks object allows you to view information about the virtual disks configured on the controller. The Virtual Disks object action window can have the following tabs, depending on the user’s group privileges: Configuration/Information.

78 Instrumentation Service

Page 79

Configuration/Information

Under the Configuration/Information tab, you can view the property information of the virtual disks configured on the controller. Property information includes name, state, and layout (RAID level). The read, write, and cache policy and stripe size are also displayed. You can also execute virtual disk tasks in this tab.

Storage Component Severity

The status of a component is graded for degrees of severity. Each level of severity requires you to take different actions in response. For example, you must take immediate reparative action in response to a Wa rn in g or Critical/Failure status to avoid any data loss.

It may be useful to review the Alert Log for events indicating why a component has a Warning or Critical status. For additional troubleshooting information, see the Storage Management online help.

NOTE: The status displayed reflects the status at the time the browser first displayed the page. If you believe the

status has changed and wish to update the displayed information, click the Refresh button in the upper-right corner of the action window. Some storage configuration changes can only be detected if you perform a controller rescan; click the Information/Configuration tab in the required controller and click Rescan.

Table 6-1 explains the various severity levels and the corresponding component status.

Table 6-1. Severity Levels and Component Status

Severity Level Component Status

Normal/OK. The component is working as expected.

Warning/Non-critical. A probe or other monitoring device has detected a reading for the

component that is above or below the acceptable level. The component may still be functioning, but it could fail. The component may also be functioning in an impaired state. Data loss is possible.

Critical/Failure/Error. The component has either failed or failure is imminent. The component requires immediate attention and may need to be replaced. Data loss may have occurred.

Managing Preferences: Home Page Configuration Options

The left pane of the Preferences home page (where the system tree is displayed on the Server Administrator home page) displays all available configuration options in the system tree window. The options displayed are based on the systems management software installed on the managed system.

See Figure 6-3 for available Preferences home page configuration options.

Figure 6-3. Preferences Home Page Configuration Options

General Settings

Server Administrator

Instrumentation Service 79

Page 80

General Settings

Clicking the General Settings object allows you to set user and secure port server (Web server) preferences for selected Server Administrator functions. The General Settings object action window has the following tabs, depending on the user's group privileges: User and Web S erver.

User

Subtab: Properties

Under the User tab, you can set user preferences, such as the home page appearance and the default e-mail address for the Email button.

Web Server

Subtabs: Properties | X.509 Certificate

Under the Web Se r ver tab, you can:

• Set secure port server preferences. See "Secure Port Server and Security Setup" for instructions on configuring your server preferences.

• Perform X.509 certificate management by generating a new X.509 certificate, reusing an existing X.509 certificate, or importing a root certificate or certificate chain from a Certification Authority (CA). For more information about certificate management, see "X.509 Certificate Management."

Server Administrator

Clicking the Server Administrator object allows you to enable or disable access to users with User or Power User privileges and to configure the SNMP root password. The Server Administrator object action window can have the following tabs, depending on the user's group privileges: Preferences and Diagnostics.

Preferences

Subtabs: Access Configuration | SNMP Configuration

Under the Preferences tab, you can:

• Enable or disable access to users with User or Power User privileges.

• Configure the SNMP root password.

Diagnostics

Subtab: Settings

Under the Diagnostics tab, you can set preferential options for running diagnostics tests. You can set options for both Applications Settings and Test Execution Settings.

80 Instrumentation Service

Page 81

Working With the Baseboard Management Controller (BMC)

Overview

The Dell™ PowerEdge™ systems baseboard management controller (BMC) monitors the system for critical events by communicating with various sensors on the system board and sends alerts and log events when certain parameters exceed their preset thresholds. The BMC supports the industry-standard Intelligent Platform Management Interface (IPMI) specification, enabling you to configure, monitor, and recover systems remotely.

Server Administrator allows remote, in-band access to event logs, power control, and sensor status information and provides the ability to configure the BMC. You can manage the BMC through the Server Administrator GUI by clicking the BMC object, which is a subcomponent of the Main System Chassis group. You can perform the following BMC–related tasks:

• View basic BMC information

• Configure BMC users

• Set BMC platform event filter alerts

• Configure the BMC on a serial over LAN connection

• Configure the BMC on a serial port connection

• Configure the BMC on a virtual LAN connection

In addition, you can use the Server Administrator Instrumentation Service to manage the Platform Event Filters (PEF) parameters and alert destinations.

NOTE: You can view BMC data on Dell PowerEdge x8xx or later systems only. Other systems allow you to only

install and uninstall BMC. Dell PowerEdge x6xx and x7xx systems support limited BMC data. However; sensor data is available to Server Administrator using the BMC or Embedded System Management (ESM) on the system.

See the Dell OpenManage Baseboard Management Controller User's Guide for more information about the BMC.

Working With the Baseboard Management Controller (BMC) 81

Page 82

Viewing Basic BMC Information

You can view the basic information about the BMC and also reset the BMC settings to their default values.

NOTE: You must be logged in with Admin privileges to reset the BMC settings.

Click the

The BMC page displays the following base information of the system’s BMC:

•BMC Name

• IPMI Version

• System GUID

• Number of Possible Active Sessions

• Number of Current Active Sessions

• LAN Enabled

• SOL Enabled

• IP Address Source

• IP Address

• IP Subnet

• IP Gateway

• MAC Address

System

object.

Main System Chassis

BMC

object.

Configuring BMC Users

BMC users can be configured through the BMC User Configuration page; this page is accessed by browsing through the following path.

Click the

The

82 Working With the Baseboard Management Controller (BMC)

System

object.

Main System Chassis

BMC

object.

Users

tab.

Users

subtab.

BMC Users

NOTE: BMC Users are created independently of the users assigned or created through Server Administrator

or the operating system.

window displays information about users that can be configured as BMC users.

object.

Page 83

Click

User ID

The

BMC User Configuration

Specify the following general information:

• Select

• Enter the name for the user in the

• Select the

• Enter a new password in the

• Re-enter the new password in the

Specify the following user privileges:

• Select the maximum LAN user privilege level limit.

• Select the maximum serial port user privilege granted.

Click

Apply Changes

Click

Back to BMC User Window

to configure a new or existing BMC user.

window allows you to to configure a specific BMC user.

Enable User

Change Password

to enable the user.

User Name

check box.

New Password

Confirm New Password

to save changes.

to go back to the

field.

BMC Users

field.

window.

Setting BMC Platform Event Filter Alerts

You can use the Server Administrator Instrumentation Service to configure the most relevant BMC features, such as Platform Event Filter (PEF) parameters and alert destinations.

Click the

Click

The select those events for which you want to take shutdown actions and generate alerts for selected actions. You can also send alerts to specific IP address destinations of your choice.

System

object.

Alert Management

Platform Events

tab.

window allows you to take individual action on specific platform events. You can

You can configure the following platform events.

• Fan Probe Failure

• Voltage Probe Failure

• Discrete Voltage Probe Failure

• Temperature Probe Warning

• Temperature Probe Failure

• Chassis Intrusion Detected

• Redundancy Degraded

• Redundancy Lost

• Processor Warning

Working With the Baseboard Management Controller (BMC) 83

Page 84

• Processor Failure

• PS/VRM/DCtoDC Warning

• PS/VRM/DCtoDC Failure

• Hardware Log Failure

• Automatic System Recovery

NOTE: The Enable Platform Event Filters Alerts setting disables or enables platform event filter alert

generation. It is independent of the individual platform event alert settings.

Choose the platform event for which you want to take shutdown actions or generate alerts for selected actions and click

Set Platform Events

The

Set Platform Events

window allows you to specify the actions to be taken if the system is to be

shut down in response to a platform event.

Select one of the following actions:

•None

Takes no action when the operating system is hung or has crashed.

• Reboot System

Shuts down the operating system and initiates system startup, performing BIOS checks and reloading the operating system.

• Power Cycle System

Turns the electrical power to the system off, pauses, turns the power on, and reboots the system. Power cycling is useful when you want to reinitialize system components such as hard drives.

• Power Off System

Turns off the electrical power to the system.

NOTICE: If you select a Platform Event shutdown action other than none, your system will shut down forcefully

when the specified event occurs. This shutdown is initiated by firmware and is done without first shutting down the operating system or any running applications.

Select the

Click

Generate Alert

NOTE: To generate an alert, you must select both Generate Alert and the Enable Platform Events Alerts

settings.

Apply Changes

Go Back to Platform Events Page

check box for the alerts to be sent.

to go back to the

Platform Event Filters

window.

84 Working With the Baseboard Management Controller (BMC)

Page 85

Setting Platform Event Alert Destinations

You can also use the Platform Event Filters window to select a destination where an alert for a platform event is to be sent. Depending on the number of destinations that are displayed, you can configure a separate IP address for each destination address. A platform event alert will be sent to each destination IP address that you configure.

Click

Configure Destinations

The

Configure Destinations

Click the number of the destination you want to configure.

NOTE: The number of destinations that you can configure on a given system may vary.

Click

Destination Number

IP address to which the platform event alert will be sent.

Enter a value in the between a management station and a managed system. The community string (also called the community name) is sent in every packet between the management station and a managed system.

Click

Apply Changes

Click

Go Back to Platform Events Page

Community String

in the

Platform Event Filters

window displays a number of destinations.

to enter an individual IP address for that destination. This IP address is the

field to act as a password to authenticate messages sent

to go back to the

window.

Platform Event Filters

window.

Configuring the BMC to use a Serial Over LAN (SOL) Connection

You can configure the BMC on a serial over LAN connection.

Click the

Click

The

System

object.

Main System Chassis

BMC

object.

Configuration

Serial Over LAN

Serial Over LAN Configuration

object.

tab.

window appears.

Configure the following details:

• Enable Serial Over LAN

• Baud Rate

• Channel Privilege Limit

Clic

k Apply Changes.

Click

Advanced Settings

In the

Serial Over LAN Configuration Advanced Settings window

• Character Accumulate Interval

• Character Send Threshold

to further configure BMC.

, specify the following information:

Working With the Baseboard Management Controller (BMC) 85

Page 86

Click

Apply Changes.

Click

Go Back to Serial Over LAN Configuration

to return to the

Serial Over LAN Configuration

Configuring the BMC to use a Serial Port Connection

You can configure the BMC on a serial port connection.

Click the

Click

In the

• Connection Mode Setting

• Baud Rate

• Flow Control

• Channel Privilege Level Limit

Click

In the

System

object.

Main System Chassis

BMC

object.

Configuration

Serial Port

Serial Port Configuration

Apply Changes.

Terminal Mode Settings

tab.

object.

window, specify the following details:

window, you can configure terminal mode settings for the serial port.

window.

Terminal mode is used for Intelligent Platform Interface Management (IPMI) messaging over the serial port using printable ASCII characters. Terminal mode also supports a limited number of text commands to support legacy, text-based environments. This environment is designed so that a simple terminal or terminal emulator can be used.

Specify the following customizations to increase compatibility with existing terminals:

• Line Editing

• Delete Control

• Echo Control

• Handshaking Control

• New Line Sequence

• Input New Line Sequence

Click

Apply Changes

Click

Back To Serial Port Configuration Window

86 Working With the Baseboard Management Controller (BMC)

to go to back to the

Serial Port Configuration

window.

Page 87

Configuring the BMC to use a Virtual LAN Connection

You can configure the BMC on a virtual LAN (VLAN).

Click the

Click

The LAN Configuration page appears.

Specify the following NIC configuration details:

• Enable LAN Interface

• IP Address Source

• IP Address

• Subnet Mask

• Gateway Address

• MAC Address

• Channel Privilege Level Limit

Specify the following VLAN configuration details:

•VLAN ID Enable

•VLAN ID

• Priority

Click

System

object.

Main System Chassis

BMC

object.

Configuration

LAN

NOTE: BMC management traffic will not function if the LAN on motherboard (LOM) is used in a Port Channel

or Link Aggregation team.

Apply Changes.

object.

tab.

Working With the Baseboard Management Controller (BMC) 87

Page 88

88 Working With the Baseboard Management Controller (BMC)

Page 89

Remote Access Service

Overview

The Server Administrator Remote Access Service provides a complete remote system management solution for SNMP- and CIM-instrumented systems equipped with a Dell™ Remote Access Card (DRAC) III, a DRAC III/XT, an Embedded Remote Access (ERA) controller, or an ERA Option (ERA/O) card. These hardware and software solutions are collectively known as Dell Remote Access Controllers (DRACs). With regard to the latest DRAC solution offering from Dell—DRAC 4, the Remote Access Service also allows a basic management task to be performed from Dell OpenManage Server Administrator: you can connect to DRAC 4 from the Server Administrator GUI.

The DRAC 4 is a systems management hardware and software solution designed to provide remote management capabilities, crashed system recovery, and power control functions for Dell PowerEdge™ systems.

By communicating with the system’s baseboard management controller (BMC), the DRAC 4 can be configured to send you e-mail alerts for warnings or errors related to voltages, temperatures, and fan speeds. The DRAC 4 also logs event data and the most recent crash screen (for systems running the Microsoft

Depending on your system, the DRAC 4 hardware is either a system card (DRAC 4/I) or a full-length PCI card (DRAC 4/P). The DRAC 4/I and DRAC 4/P are identical except for the hardware differences.

The DRAC 4 has its own microprocessor and memory, and is powered by the system in which it is installed. The DRAC 4 may be preinstalled on your system, or available separately in a kit.

Windows® operating system only) to help you diagnose the probable cause of a system crash.

NOTE: The information contained in this section pertains to the previous generation of DRACs. See the

Dell Remote Access Controller 4 User’s Guide for more information on using DRAC 4.

The Remote Access Service provides remote access to an inoperable system, allowing you to get the system up and running as quickly as possible. The Remote Access Service also provides alert notification when a system is down and allows you to remotely restart a system. Additionally, the Remote Access Service logs the probable cause of system crashes and saves the most recent crash screen.

You can log into the Remote Access Service through the Server Administrator home page or by directly accessing the controller's IP address using a supported browser.

See the Server Administrator Command Line Interface User's Guide and the Dell Remote Access Controller Racadm User's Guide for information about running the Remote Access Service from the command line.

Remote Access Service 89

Page 90

When using the Remote Access Service, you can click Help on the global navigation bar for more detailed information about the specific window you are viewing. Remote Access Service help is available for all windows accessible to the user based on user privilege level and the specific hardware and software groups that Server Administrator discovers on the managed system.

NOTE: The Remote Access Service is not available on modular systems. You must directly connect to the DRAC on

a modular system. See the Dell Embedded Remote Access/MC Controller User's Guide for more information.

NOTE: See the Dell Remote Access Controller Installation and Setup Guide for complete information about

installing and configuring a DRAC III, a DRAC III/XT, or an ERA/O controller, configuring an ERA controller, and using a DRAC to remotely access an inoperable system. See the Dell Embedded Remote Access/MC Controller User's Guide for complete information about configuring and using an ERA/MC controller to remotely manage and monitor your modular system and its shared resources through a network.

Hardware Prerequisites

The managed system must have a DRAC installed to use the Remote Access Service.

For a list of specific hardware requirements for your DRAC, see the readme file for your remote access controller on the Systems Management Consoles CD and the Dell Remote Access Controller Installation and Setup Guide or the Dell Embedded Remote Access/MC Controller User's Guide on the documentation CD.

NOTE: The DRAC software is installed as part of the Express Setup and Custom Setup installation options when

installing managed system software from the Dell PowerEdge™ Installation and Server Management CD, provided that the managed system meets all of your DRAC's installation prerequisites. See the appropriate DRAC documentation for complete software and hardware requirements.

Software Prerequisites

The managed system must have the DRAC software installed. See the Dell Remote Access Controller Installation and Setup Guide or the Dell Embedded Remote Access/MC Controller User's Guide for a

complete list of software installation prerequisites.

NOTE: The DRAC software is installed as part of the Express Setup and Custom Setup installation options when

installing managed system software from the Installation and Server Management CD, provided that the managed system meets all of your DRAC's installation prerequisites. See the appropriate DRAC documentation for complete software and hardware requirements.

90 Remote Access Service

Page 91

Adding and Configuring DRAC Users

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

The DRAC can store information for up to 16 users. The Remote Access Service provides security by requiring a user to provide a user name and password prior to establishing a remote connection. The Remote Access Service can also provide paging services to notify users if the system crashes, loses power, or experiences a defined list of other events. Paging services are only available for DRAC III cards.

NOTE: Some configuration capabilities are available only on systems with DRAC III, DRAC III/XT, ERA, and ERA/O,

and not on systems with DRAC 4. To configure DRAC 4, use the Launch Remote Connect Interface option in the RAC Properties window. See the Dell Remote Access Controller 4 User's Guide for more information.

To create a DRAC user, perform the following steps:

Click the

Remote Access Controller

Click the

The

Click

The

Type a user name in the

Type a new password in the

Type the new password again in the

Configure numeric paging (for DRAC III users only):

Configure e-mail paging:

Configure alphanumeric paging (for DRAC III users only):

Main System Chassis

object on the Server Administrator home page, and then click the

object.

Users

tab.

Remote Access Controller Users

Add

Add Remote Access Controller User

User Name

New Password

Click the check box next to

Number

field.

Enter the numeric message in the

window appears.

field.

Confirm Password

field.

Enable Numeric Paging

Numeric Message

and enter a pager number in the

field that you want the DRAC to send when

it receives certain events.

Click the check box next to

Address

field.

Enter the message in the

Click the check box next to

Pager Number

field.

Enable Email Paging

Message

field that you want the DRAC to send when it receives certain events.

Enable Alpha-Numeric Paging

and enter an e-mail address in the

and enter a pager number in the

Select the alphanumeric protocol used by the pager's service provider,

Select the pager's baud rate,

300

1200

7E0

8N1

Page r

Remote Access Service 91

Page 92

Enter the message in the

Custom Message

field that you want the DRAC to send when it receives

certain events.

Enter the pager's PIN in the

Pager Password

Click

Apply Changes

Under

Severity Configuration

field.

Pager ID

field, and then, if required, enter a pager password in the

at the bottom of the window.

, specify the trap and the severity that the trap must have to trigger a

paging action from the DRAC.

Traps enable you to configure the DRAC to respond to alert conditions from the system's ESM hardware or to other conditions such as operating system crashes or power failures.

The first (left-most) column of check boxes corresponds to the severity level second column corresponds to the severity level severity level

Click

Apply Changes

Critical

. The last seven events can only report the severity level

and then click OK to save the alert, paging, and user configuration to the Server

Wa rn ing

, and the third column corresponds to the

Informational

Administrator data repository.

Server Administrator returns to the the

User Name

list.

Users

tab. The user you just created and configured is displayed in

Configuring an Existing DRAC User

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

To configure a DRAC user, perform the following steps:

Click the

Remote Access Controller

Click the

The

Click the user name for the user you want to configure.

Change the password:

Configure numeric paging (for DRAC III users only):

Main System Chassis

object on the Server Administrator home page, and then click the

object.

Users

tab.

Remote Access Controller Users

Click the check box next to

window appears.

Change Password

Type the new password again in the

Click the check box next to

Number

field.

Enable Numeric Paging

Enter the numeric message in the it receives certain events.

and type a new password in the

Confirm Password

Numeric Message

field.

and enter a pager number in the

field that you want the DRAC to send when

Pass word

, the

field.

Page r

92 Remote Access Service

Page 93

Configure e-mail paging:

Click the check box next to

Address

Enter the message in the

field.

Enable Email Paging

Message

field that you want the DRAC to send when it receives certain

and enter an e-mail address in the

events.

Configure alphanumeric paging (for DRAC III users only):

Click the check box next to

Pager Number

Select the alphanumeric protocol used by the pager's service provider,

Select the pager's baud rate,

Enter the message in the

field.

Enable Alpha-Numeric Paging

300

1200

Custom Message

field that you want the DRAC to send when it receives

and enter a pager number in the

7E0

8N1

certain events.

Enter the pager's PIN in the

Pager Password

Click

Apply Changes

Under

Severity Configuration

field.

Pager ID

field, and then, if required, enter a pager password in the

at the bottom of the window.

, specify the trap and the severity that the trap must have to trigger a

paging action from the DRAC.

Traps enable you to configure the DRAC to respond to alert conditions from the system's ESM hardware or to other conditions such as operating system crashes or power failures.

The first (left-most) column of check boxes corresponds to the severity level second column corresponds to the severity level severity level

Click

Apply Changes

Critical

. The last seven events can only report the severity level

and then click OK to save the alert, paging, and user configuration to the Server

Wa rn ing

, and the third column corresponds to the

Informational

, the

Administrator data repository.

Server Administrator returns you to the

Users

tab.

Configuring the DRAC Network Properties

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

Your DRAC contains an integrated 10BASE-T/100BASE-T Ethernet NIC and supports TCP/IP. The NIC has a default address of 192.168.20.1 and a default gateway of 192.168.20.1.

NOTE: If your DRAC is configured to the same IP address as another NIC on the same network, an IP address

conflict occurs. The DRAC stops responding to network commands until the IP address is changed on the DRAC. The DRAC must be reset even if the IP address conflict is resolved by changing the IP address of the other NIC.

NOTE: Changing the IP address of the DRAC causes the DRAC to reset. If SNMP polls the DRAC before it initializes,

a temperature warning is logged because the correct temperature is not transmitted until the DRAC is initialized.

Remote Access Service 93

Page 94

To configure the network properties of your DRAC, perform the following steps:

Click the

Remote Access Controller

Click the

The

Click the check box next to

To have the DHCP system assign the NIC information, click the check box next to

(For NIC IP Address)

information in the

Enable dial-in networking (for DRAC III users only):

To enable SMTP server address control, click the check box next to SMTP server address in the

Click

Main System Chassis

Configuration

Configure Network Properties

. If you do not, clear (deselect) this check box and enter the DRAC's NIC

Static IP Address, Static Subnet Mask

Click the check box next to

To have the DHCP system assign the dial-in information, click the check box next to

(For Dial-In IP Address)

modem's base IP Address in the

Specify the

•

Any

Encrypted

•

CHAP

Apply Changes

Dial-In Authentication

— Allows the connection to use any type of encryption, including no encryption

— Requires the connection to use some type of encryption

— Requires the connection to use the CHAP

and click OK to save your changes.

object on the Server Administrator home page, and then click the

object.

tab.

window appears.

Enable NIC

Enable Dial-In

. If you do not, clear (deselect) this check box and enter the DRAC III

SMTP (Email) Server Address

(this option is selected by default).

, and

Static Gateway Address

(this option is selected by default).

Base IP Address

settings that dial-in connections require:

field.

Enable SMTP

field.

Use DHCP

fields.

Use DHCP

, and type the

Configuring the DRAC Alert Properties

DRACs can be configured to respond to alert conditions from the system's ESM or to other conditions such as operating-system crashes or power failures.

DRACs offer the following types of alert actions:

• Alphanumeric paging (DRAC IIIs only) (See "Adding and Configuring DRAC Users" for information about configuring this type of alert action.)

• Numeric paging (DRAC IIIs only) (See "Adding and Configuring DRAC Users" for information about configuring this type of alert action.)

• E-mail (See "Adding and Configuring DRAC Users" for information about configuring this type of alert action.)

• SNMP traps (See the following subsection for information about configuring this type of alert action.)

94 Remote Access Service

Page 95

Configuring the SNMP Alert Properties

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

To configure the Remote Access Service alert properties, perform the following steps:

Click the

Remote Access Controller

Click the

Click

Click the check box next to

Enter the SNMP community name to which the destination management station belongs in the

Community

Enter a destination IP address of the management station to which you want the DRAC to send SNMP traps when an event occurs in the

Use the check boxes under those events must have to trigger an alert action from the DRAC.

The first (left-most) column of check boxes corresponds to the severity level second column corresponds to the severity level severity level

Click

Main System Chassis

Configuration

SNMP

Add

or click the

field.

Critical

Apply Changes

. The last seven events can only report the severity level

and then click OK to save your changes.

object on the Server Administrator home page, and then click the

object.

tab.

Destination IP Address

Enable SNMP Trap

IP Address

Severity Configuration

to edit existing SNMP alert properties.

, if a check isn't already in the check box.

field.

to specify the events and the severity level that

Informational

Wa rn ing

, and the third column corresponds to the

Informational

, the

Configuring DRAC III Dial-in (PPP) Users and Modem Settings

Dial-in (PPP) users and modem features are currently only available for the DRAC III.

Adding and Configuring a DRAC III Dial-In (PPP) User

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

This subsection describes how to add and configure a dial-in (PPP) user. After dial-in users are authenticated, they must enter the DRAC user authentication at the remote access controller login screen to access the DRAC III.

NOTE: The Server Administrator managed-system PPP client uses the 192.168.234.235 network to talk with the

installed DRAC III. It is possible that this network IP address could already be in use by other systems or applications. If this situation occurs, the PPP connection fails to operate. If this address is already in use, the user is required to change the managed-system PPP client IP address to a different number. To change the managed-system PPP server IP address to use another network so that conflicts do not occur, you must use the racadm utility. See the Dell Remote Access Controller Racadm User's Guide for information about using the racadm utility.

Remote Access Service 95

Page 96

To add and configure dial-in users, perform the following steps:

On the Server Administrator home page, click the

Remote Access Controller

Click the

Click

Type a user name in the

Type a new password in the

Type a callback number in the

Configuration

Dial-In Users

Add

tab.

User Name

object.

field.

Password

field.

Callback Number

Main System Chassis

field.

This number is the one the Remote Access Service calls if

Select a setting from the

•

None

— When called, the Remote Access Service does not disconnect and call back; the

Callback Type

drop-down menu:

connection remains active.

•

Preset —

the

•

User Specified

When called, the Remote Access Service disconnects and calls the number specified in

Callback Number

field; this setting activates the callback number control.

— When called, the Remote Access Service asks the user for the callback number.

Then the Remote Access Service disconnects and calls the number the user specified.

Click

Apply Changes

and then click OK to save your changes.

Adding and Configuring DRAC III Demand Dial-Out Entries

Callback Type

object, and then click the

is set to

Preset

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

If you set the dial-in (PPP) setting to Preset, the demand dial-out entry causes the Remote Access Service to disconnect and call the management station back at a preset number. Upon callback, you must provide your DRAC user authentication to access the Remote Access Service.

NOTE: The DRAC managed system software uses a PPP connection to talk to the installed DRAC. The IP address

for this PPP connection is 192.168.234.235. It is possible that this network IP address could already be in use by other systems or applications. If this situation occurs, the PPP connection fails to operate. If this address is already in use, the user is required to change the managed-system PPP client IP address to a different number. To change the managed-system PPP server IP address to use another network so that conflicts do not occur, you must use the racadm utility. See the Dell Remote Access Controller Racadm User's Guide for information about using the racadm utility.

To add a demand dial-out entry, perform the following steps:

On the Server Administrator home page, click the

Remote Access Controller

Click the

Select

Configuration

Demand Dial-Out

object.

tab.

Main System Chassis

object, and then click the

96 Remote Access Service

Page 97

Click

Add

Enter the management station IP address that the Remote Access Service calls back when called by this user.

Enter the phone number used by the system's modem in the

Enter the user name for the demand dial-out user in the

Enter the password for the demand dial-out user in the

Select a setting from the

Any

— Allows the connection using any type of encryption, including no encryption

Encrypted

CHAP

— Requires the connection to use the CHAP

Apply Changes

•

Click

— Requires the connection to use some type of encryption

Authentication

and click OK to save your changes.

drop-down menu:

Phone Number

User Name

Password

field.

Configuring the DRAC III Modem Settings

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

If your DRAC III kit includes the optional PCMCIA modem, you must configure the modem prior to use.

To configure the DRAC III modem, perform the following steps:

On the Server Administrator home page, click the

Remote Access Controller

Click the

Click

For

From the

Fo r

Select a

Click

Configuration

Modem

Dial Mode

Initialization String

Apply Changes

, choose either

Country Code

Baud Rate

object.

tab.

Pulse

To ne

drop-down menu, select the country where the DRAC III is located.

, enter the required initialization string for the DRAC III modem in the text field.

setting from the drop-down menu (the default is

, and then click OK to save your changes.

Main System Chassis

object, and then click the

38400

Configuring the DRAC Remote Features Properties

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

If the local boot image on the managed system has been corrupted, a DRAC has the ability to boot its host server using a diskette boot image that it downloads from a Trivial File Transfer Protocol (TFTP) server. This feature is called remote floppy boot. A DRAC can also update its firmware using a firmware image located on a TFTP server. This feature is called remote firmware update, and the process is similar to flashing a system BIOS.

Remote Access Service 97

Page 98

To configure the remote floppy boot feature and the remote firmware update feature of your DRAC, perform the following steps:

Click the

Remote Access Controller

Click the

The

Click

The

Click the check box next to

Configure the DRAC's remote boot parameters:

Main System Chassis

object on the Server Administrator home page, and then click the

object.

Configuration

Configure Network Properties

Remote Features

Remote Properties

tab.

window appears.

Enable Remote Floppy Boot

Click the check box next to

Enable Remote Floppy Boot

Type the TFTP server's IP address in the

Type the boot image filename in the

Remote Floppy TFTP Path

to configure the remote boot parameters,

Remote Floppy TFTP Address

field. The path must be relative

field.

to the root directory of the TFTP server.

Configure the DRAC's firmware update parameters:

Click the check box next to

Type the TFTP server's IP address in the

Type the firmware image filename in the

Enable Remote Firmware Update

Remote Firmware TFTP Address

Remote Firmware Update Path

field.

field. The path must be

relative to the root directory of the TFTP server.

Click

Apply Changes

and click OK to save your changes.

Configuring DRAC Security

NOTE: You must have Admin privileges in Server Administrator to use the Remote Access Service.

NOTE: See the Dell Remote Access Controller Installation and Setup Guide for more information about

DRAC security features.

To configure your DRAC security from the Server Administrator home page, click System→ Main System Chassis→ Remote Access Controller and then click the Security tab. Under the Security tab,

you can perform CSR certificate management and set DRAC user login authentication options.

NOTE: Some of the DRAC certificate management operations use the FTP protocol to communicate with the

DRAC firmware. If a firewall software is installed on the system, these operations may fail.

98 Remote Access Service

Page 99

Certificate Management

Use the Certificate Management window to generate a certificate signing request (CSR), upload a server certificate or certificate authority (CA) certificate to the DRAC firmware, or view an existing server certificate or CA certificate. From the Certificate Management window, the following options are available:

• Generating a CSR

• Uploading a Certificate

• Viewing a Certificate

A CSR is a digital request to a CA for a secure server certificate. Secure server certificates ensure the identity of a remote system and ensure that information exchanged with the remote system cannot be viewed or changed by others. To ensure the security for your DRAC, it is strongly recommended that you generate a CSR, submit the CSR to a CA, and upload the certificate returned from the CA.

A certificate authority is a business entity that is recognized in the IT industry for meeting high standards of reliable screening, identification, and other important security criteria. Examples of CAs include Thwate and VeriSign. Once the CA receives your CSR, they review and verify the information the CSR contains. If the applicant meets the CA's security standards, the CA issues a certificate to the applicant that uniquely identifies that applicant for transactions over networks and on the internet.

After the CA approves the CSR and sends you a certificate, you must upload the certificate to the DRAC firmware. The CSR information stored on the DRAC firmware must match the information contained in the certificate.

Generating a CSR

NOTICE: Each new CSR overwrites any previous CSR on the firmware. It is crucial that the CSR on the firmware

matches the certificate returned from a CA.

From the

The

Certificate Management

window, select the

Certificate Signing Request (CSR) Generation

Generate a new CSR

window appears.

option and click

Type a value or choose a value from a drop-down menu for each listed attribute and click

Generate

A message appears stating that the CSR was successfully generated and giving the path where it was saved.

You are now ready to send your CSR to a CA.

Remote Access Service 99

Page 100

Uploading a Certificate

To upload your server certificate or CA certificate to the DRAC firmware, the certificate must reside on the DRAC’s host server. You must designate the CSR type, the exact filename, and the absolute file path to the certificate on the server. Then, click Upload.

NOTE: Failure to enter the correct path for the location of the certificate on the host server does not result in a

warning message.

From the

The

Select the certificate type from the drop-down menu.

The selections are

Type the exact path and filename of the certificate to be uploaded.

Certificate Management

Upload Certificate

window appears.

Server Certificate

NOTE: When you have a fully qualified path or filename that contains spaces, you must place double

quotation marks around the string. For example, if your file is contained in c:\security files\certificates\sslcert.cer, you must place the fully qualified path name and filename in double quotations because a space appears between "security" and "files." For example:

window, select the

and

CA Certificate

Upload certificate

c:\security

option and click

files\certificates\sslcert.cer

Click

Upload

A message appears stating that the certificate was successfully uploaded to the DRAC firmware.

Reset the DRAC to enable the new certificate.

NOTE: You must reset the DRAC after uploading the certificate to ensure that the new certificate is used.

Viewing a Certificate

The following information is included on both the View Server Certificate and View CA Certificate windows. See Table 8-1.

Table 8-1. Certificate Information

Attribute Value

Type Type of certificate, either a server certificate or a CA certificate

Serial Certificate serial number

Key Size Encryption key size

Valid From Issuance date of the certificate

Valid To Expiration date of the certificate

Subject Certificate attributes entered by the subject

Issuer Certificate attributes returned by the issuer

100 Remote Access Service

Dell OpenManage Server Administrator Version 2.3 Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

Contents

Introduction

Overview

Integrated Features

Installation

Server Administrator Home Page

Instrumentation Service

Remote Access Service

Storage Management Service

Diagnostic Service

Logs

Other Documents You Might Need

Obtaining Technical Assistance

What’s New for Version 2.3

Setup and Administration

Security Management

Role-Based Access Control

Authentication

Encryption

Assigning User Privileges

Creating Server Administrator Users for Supported Windows Operating Systems

Creating Server Administrator Users for Supported Red Hat Enterprise Linux Operating Systems

Disabling Guest and Anonymous Accounts in Supported Windows Operating Systems

Configuring the SNMP Agent

Configuring the SNMP Agent for Systems Running Supported Windows Operating Systems

Configuring the SNMP Agent on Systems Running Supported Red Hat Enterprise Linux Operating Systems

X.509 Certificate Management Prerequisites

Firewall Configuration on Systems Running Supported Red Hat Enterprise Linux Operating Systems

Using Server Administrator

Starting Your Server Administrator Session

Logging In and Out

Single Sign-On

Systems Running a Supported Microsoft Windows Server 2003 Operating System

The Server Administrator Home Page

Global Navigation Bar

System Tree

Action Window

Using the Online Help

Using the Preferences Home Page

Using the Server Administrator Command Line Interface

Secure Port Server and Security Setup

Setting User and System Preferences

X.509 Certificate Management

Controlling Server Administrator

Starting Server Administrator

Stopping Server Administrator

Restarting Server Administrator

Installing Server Administrator

Overview

Upgrade Using the Service Pack Capability

Dell PowerEdge Installation and Server Management CD

Unattended and Silent Installation

Upgrading Server Administrator

Before You Begin

Installation Requirements

Supported Operating Systems

System Requirements

Installation Procedures

Installing Server Administrator with Citrix

Considerations Before Installing Storage Management Service

Instrumentation Service

Overview

Managing Your System

Managing System Tree Objects

Server Administrator Home Page System Tree Objects

System

Managing Preferences: Home Page Configuration Options

General Settings

Server Administrator

Working With the Baseboard Management Controller (BMC)

Overview

Viewing Basic BMC Information

Configuring BMC Users

Setting BMC Platform Event Filter Alerts

Setting Platform Event Alert Destinations

Configuring the BMC to use a Serial Over LAN (SOL) Connection