HP ntegrity iLO 2 MP Скачать руководство пользователя страница 30

Страница: 30 / 199

NOTE:

This figure is oriented vertically to match the orientation of the core I/O board.

Figure 2-4 HP Integrity rx3600 and rx6600 Server Rear Ports and LEDs

USB 2.0 Ports (any USB
device)

iLO 2 MP Serial Console
Port (RS-232) (DB-9F to

VGA Port (No iLO 2 MP
access; EFI only)

DB-9F cable) Connected to

iLO 2 MP LAN Port (10/100
LAN)

emulation terminal device
(PC, laptop, or ASCII
terminal)

General Use Serial Port
(Printers, etc.)

iLO 2 MP Status LEDs

Table 2-1

lists the state of the iLO 2 MP status LEDs during normal operation.

Table 2-1 iLO 2 MP Status LEDs

LED State

iLO 2 MP Status LED

Solid green.

Standby Power

Off. The LED is solid amber when ac power is first applied. It remains solid amber for
a few seconds until the MP completes its self test; then the LED turns off.

iLO 2 MP Self Test

Ports and LEDs

Содержание ntegrity iLO 2 MP

Страница 1: ...HP Integrity iLO 2 MP Operations Guide HP Part Number 5991 5992 Published November 2007 ...

Страница 2: ...y HP shall not be liable for technical or editorial errors or omissions contained herein Intel Pentium Intel Inside Itanium and the Intel Inside logo are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries Linux is a U S registered trademark of Linus Torvalds Microsoft and Windows are U S registered trademarks of Microsoft Corporati...

Страница 3: ...n 21 DHCP and DNS Support 21 HP SIM Group Actions 21 SNMP 22 SMASH 22 SM CLP 22 Mirrored Console 22 Remote Power Control 22 Event Logging 22 Advanced Features 22 Virtual Media 22 IRC 22 Directory Based Secure Authorization Using LDAP 22 LDAP Lite 23 Power Meter Readings 23 HP Insight Power Manager 23 Advanced Pack License 23 Obtaining and Activating iLO 2 MP Advanced Pack Licensing 24 Supported Sy...

Страница 4: ...sion 43 User Account Cleanup during IPF Blade Initialization 43 Auto Login Troubleshooting 43 Connecting the Server Blade to the iLO 2 MP Using the Console Serial Port 43 Connecting the SUV Cable to the Server Blade 44 Additional Setup 46 Modifying User Accounts and Default Passwords 46 Setting Up Security 47 Setting Security Access 47 4 Accessing the Host Console 49 Interacting with the iLO 2 MP ...

Страница 5: ... FRU information 69 DI Disconnect LAN WEB SSH or Console 70 DNS DNS settings 70 FW Upgrade the MP firmware 70 HE Display help for menu or command in command menu interface 70 ID System information settings 71 IT Inactivity timeout settings 71 LC LAN configuration usage 72 LDAP LDAP directory settings 72 LDAP LDAP group administration 74 LDAP LDAP Lite 74 LM License management 74 LOC Locator UID LE...

Страница 6: ...102 Java Plug in Version 103 Client Operating System and Browser Support for vMedia 103 Power Management 103 Power Reset 103 Power Meter Readings 105 Power Regulator 107 Administration 108 Firmware Upgrade 109 Licensing 109 User Administration Local Accounts 111 Group Accounts 112 Access Settings 113 LAN 113 Serial Page 114 Login Options Page 115 Current LDAP Parameters 116 Network Settings 117 Ne...

Страница 7: ...4 Entering the MP Main Menu Interface From SM CLP 134 Exiting the MP Main Menu Session and Returning to SM CLP 134 Firmware Revision Display and Upgrade 134 SM CLP Firmware Targets 134 Target map1 swinstallsvc1 134 Target map1 swinventory1 135 Target map1 swinventory1 swid 135 Displaying Firmware Revisions 135 Firmware Upgrade 136 Remote Access Configuration 136 Telnet SM CLP Targets 136 Target ma...

Страница 8: ...ory 154 Directory Services Objects 158 Active Directory Snap Ins 158 Managing HP Devices In a Role 158 Managing Users In a Role 159 Setting Login Restrictions 160 Setting Time Restrictions 160 Defining Client IP Address or DNS Name Access 161 Setting User or Group Role Rights 162 Directory Services for eDirectory 163 Installing and Initializing Snap In for eDirectory 163 Example Creating and Confi...

Страница 9: ...ltiple Restrictions and Roles 178 Directory Services Schema LDAP 179 HP Management Core LDAP Object Identifier Classes and Attributes 179 Core Classes 180 Core Attributes 180 Core Class Definitions 180 hpqTarget 180 hpqRole 181 hpqPolicy 181 Core Attribute Definitions 181 hpqPolicyDN 181 hpqRoleMembership 181 hpqTargetMembership 182 hpqRoleIPRestrictionDefault 182 hpqRoleIPRestrictions 182 hpqRole...

Страница 10: ...10 ...

Страница 11: ...le Window 94 6 11 Virtual Media Page 96 6 12 Virtual Media Dialog Box Before Connection 98 6 13 Virtual Media Dialog Box After Connection 99 6 14 Local Image File Dialog Box 100 6 15 Create Media Image Dialog Box 101 6 16 Virtual Floppy USB Key 102 6 17 Power Reset Page 104 6 18 Power Meter Readings Page 106 6 19 Power Regulator Page 107 6 20 Licensing Page 110 6 21 Local Accounts Page 111 6 22 Gr...

Страница 12: ... 7 18 Members Tab eDirectory 167 7 19 Role Restrictions Subtab eDirectory 167 7 20 Add New Restriction Dialog Box 168 7 21 Lights Out Management Device Rights Tab 169 7 22 Admin User Gaining Admin Role Right Example 1 175 7 23 Admin User Gaining Admin Role Right Example 2 175 7 24 User and Role Access Restrictions 177 7 25 User Time Restrictions 178 7 26 Restricting General Use 179 7 27 Restrictin...

Страница 13: ...ing System Support for vMedia 102 6 14 Client Operating System and Browser Support for vMedia 103 6 15 Power Reset Page Description 104 6 16 Power Meter Readings Page Description 106 6 17 Power Regulator Page Description 108 6 18 Licensing Page Description 110 6 19 Local Accounts Page Description 112 6 20 Group Accounts Page Description 113 6 21 LAN Page Description 114 6 22 Serial Page Descriptio...

Страница 14: ...nt Rights 162 7 2 Management Device Rights 169 7 3 Core Classes 180 7 4 Core Attributes 180 7 5 hpqTarget 180 7 6 hpqRole 181 7 7 hpqPolicy 181 7 8 hpqPolicyDN 181 7 9 hpqRoleMembership 181 7 10 hpqTargetMembership 182 7 11 hpqRoleIPRestrictionDefault 182 7 12 hpqRoleIPRestrictions 182 7 13 hpqRoleTimeRestriction 182 7 14 iLO 2 MP Classes 183 7 15 iLO 2 MP Attributes 183 7 16 hpqLOMv100 183 7 17 h...

Страница 15: ...he latest version of this document can be found on the HP website at http www docs hp com Intended Audience This document provides technical product and support information for authorized service providers system administrators and HP support personnel New and Changed Information in This Edition The following information available for BL860c rx2660 rx3600 and rx6600 servers was added to this guide...

Страница 16: ...t currently available on this server Document Organization This guide is divided into the following chapters Chapter 1 Introduction Use this chapter to learn about the iLO 2 MP functionality Chapter 2 Ports and LEDs Use this chapter to learn about ports and LEDs Chapter 3 Setting Up and Connecting the Console Use this chapter to set up and connect the console Chapter 4 Accessing the Host Console U...

Страница 17: ...rn and Enter both refer to the same key User Input Commands and other text that you enter The contents are optional in formats and command descriptions If the contents are a list separated by a pipe you must select one of the items The contents are required in formats and command descriptions If the contents are a list separated by a pipe you must select one of the items The preceding element can ...

Страница 18: ...omputer stores Warranty Information The latest versions of the BCS Global Limited Warranty and Technical Support documentation is posted on the HP website in the Enterprise Servers Workstations and System Hardware collection under each server to which it applies at http www docs hp com HP Encourages Your Comments HP encourages your comments concerning this document We are truly committed to provid...

Страница 19: ...y of methods iLO 2 is an Integrated Lights Out 2 Management Processor iLO 2 MP with the latest advanced digital video redirection technology This new feature gives you a higher performance graphics console redirection experience than with the previous iLO This chapter addresses the following topics Features page 19 Advanced Pack License page 23 Supported Systems and Required Components and Cables ...

Страница 20: ...stricted by user accounts User accounts are password protected and are assigned access rights that define a specific level of access to the server and to the iLO 2 MP commands The iLO 2 MP supports both LDAP directory user authentication and locally stored iLO 2 MP user accounts iLO 2 MP users can have any of the following access rights Console Access Right to access the system console the host op...

Страница 21: ...FPGA PSOC firmware You can download and upgrade the firmware package from the HP website at http www hp com go bizsupport Internal Subsystem Information The iLO 2 MP displays information about the following internal subsystems FRU information System power state and fan status Processor Status DHCP and DNS Support The iLO 2 MP supports the Dynamic Host Configuration Protocol DHCP and the Domain Nam...

Страница 22: ...stem events Advanced Features The iLO 2 MP advanced features provide additional functionality such as the graphical integrated remote console and virtual media In addition the advanced features increase security by integrating iLO 2 MP user administration with the Active Directory or eDirectory The advanced features require the iLO 2 MP Advanced Pack license See Advanced Pack License page 23 NOTE ...

Страница 23: ...eadings feature enables you to graphically view and monitor server power usage temperature and power regulator settings HP Insight Power Manager HP Insight Power Manager HP IPM a plug in to HP Systems Insight Manager HP SIM is an integrated power monitoring and management application that provides centralized control of server power consumption and thermal output It extends the unified infrastruct...

Страница 24: ...tory install or manual install instructions located on the Integrated Lights Out Advanced Pack for HP Integrity Servers Certificate of License to Use License Installation Card to activate your license Supported Systems and Required Components and Cables Table 1 1 lists the systems on which the iLO 2 MP is supported and the components and cables that are required to operate the iLO 2 MP Table 1 1 S...

Страница 25: ...urity requirements of the enterprise and architected the iLO 2 MP include the following Authentication iLO 2 MP incorporates authentication techniques with the use of 128 bit Secure Socket Layer SSL encryption It is password based for web and password and key based for secure shell SSH Authorization Using local accounts iLO 2 MP enables you to define up to 19 separate users and to vary the server ...

Страница 26: ...t server only if it comes from one of the predetermined management workstations TIP Telnet sends data without encryption and is not a secure connection HP recommends using SSH instead of telnet because SSH uses encryption To enable and disable telnet access use the SA command Lights Out Advanced KVM Card The Lights Out Advanced KVM card LOA is a PCI X card that you install into any sx2000 based mi...

Страница 27: ...e Onboard Administrator provides a single point from which to perform basic management tasks on server blades or switches within the enclosure Using this hardwired knowledge Onboard Administrator performs initial configuration steps for the enclosure enables runtime management and configuration of the enclosure components and informs you of problems within the enclosure through e mail SNMP or the ...

Страница 28: ...own Port 3 Onboard Administrator Bay 2 redundant if used Figure 2 2 shows the Onboard Administrator LEDs and buttons Figure 2 2 Onboard Administrator LEDs and Buttons 4 Onboard Administrator Health LED 1 Onboard Administrator UID LED 2 Enclosure UID LED 5 Onboard Administrator Reset Button 3 Onboard Administrator Active LED 28 Ports and LEDs ...

Страница 29: ...ry Serial Port 1 Power Supply 1 and LED 2 Power Supply 2 and LED 11 iLO 2 MP Status LEDs 7 VGA Port 8 USB Ports 3 PCI x PCI e Slots 12 iLO 2 MP Reset Button 13 9 4 Core LAN Ports UID Button LED Console Serial Port RS 232 5 Smart Array P400 Controller Slot HP Integrity rx3600 and rx6600 Server Components Figure 2 4 shows the controls ports and LEDs on the rear of the HP Integrity rx3600 and rx6600 ...

Страница 30: ...LO 2 MP LAN Port 10 100 LAN emulation terminal device PC laptop or ASCII terminal 2 General Use Serial Port Printers etc iLO 2 MP Status LEDs Table 2 1 lists the state of the iLO 2 MP status LEDs during normal operation Table 2 1 iLO 2 MP Status LEDs LED State iLO 2 MP Status LED Solid green Standby Power Off The LED is solid amber when ac power is first applied It remains solid amber for a few se...

Страница 31: ...een configured properly in LDAP command you can reset local user accounts and passwords to their default values To reset local user accounts and passwords to default values follow these steps 1 Connect a serial terminal or serial cabled laptop with serial emulation to the console serial port 2 Press and hold the iLO 2 MP Reset button for more than four seconds The iLO 2 MP reboots to factory defau...

Страница 32: ...descriptions Table 2 3 iLO 2 MP LAN Port Pinouts Signal Description Pin Number TXP 1 TXN 2 RXP 3 Not used 4 Not used 5 RXN 6 Not used 7 Not used 8 iLO 2 MP LAN LEDs Table 2 4 lists the iLO 2 MP LAN link status LEDs and states Table 2 4 iLO 2 MP LAN Link Status LEDs LED State Link State Blinking green Activity Solid green Link with no activity Off No link Table 2 5 lists the iLO 2 MP LAN link speed...

Страница 33: ... with DNS comes preconfigured with default factory settings including a default user account and password Other options include the following ARP Ping Console serial port RS 232 This chapter addresses the following topics Setup Checklist page 34 Setup Flowchart page 35 Preparing to Set Up iLO 2 MP page 36 Configuring the iLO 2 MP LAN Using DHCP and DNS page 37 Configuring the iLO 2 MP LAN Using AR...

Страница 34: ...ported web browser or command line using the default user name and password Log in to the iLO 2 MP 3 Change the default user name and password on the administrator account to your predefined selections Change default user name and password 4 Set up the user accounts if you are using the local accounts feature Set up user accounts 5 Set up the security access settings Set up security access 6 Acces...

Страница 35: ...Setup Flowchart Use this console setup flowchart as a guide to help set up the Integrity iLO 2 MP Figure 3 1 Setup Flowchart Setup Flowchart 35 ...

Страница 36: ...ation Method To access the iLO 2 MP through the iLO 2 MP LAN the iLO 2 MP must acquire an IP address The way the iLO 2 MP acquires an IP address is dependent upon whether DHCP is enabled or disabled on the server and if DHCP and DNS services are available to the server see Table 3 3 Once you have determined the iLO 2 MP access method you must determine how you will configure the iLO 2 MP LAN in or...

Страница 37: ... This address is assigned to the iLO 2 MP system board The system board has a unique MAC address that identifies the hardware on the network 2 Connect the iLO 2 MP LAN cable from the server to an active network port 3 Apply ac power to the server 4 Open a browser telnet or SSH client and enter the DNS name The iLO 2 MP Log In window appears 5 Log in using the default user name and password Admin A...

Страница 38: ...edure explains how to use the ARP Ping utility using a PC that is connected to the network that is on the same physical subnet as the server To configure a static IP address using the ARP Ping utility follow these steps 1 Obtain the iLO 2 MP MAC address To set the IP address using ARP you must know the MAC address of the iLO 2 MP LAN You can find the MAC address of the iLO 2 MP LAN on a label on t...

Страница 39: ...e is correctly configured a Verify that the communication settings are configured as follows 8 none parity 9600 baud None receive None transmit b Verify that the terminal type is configured appropriately The following are supported terminal types hpterm vt100 vt100 vt utf8 IMPORTANT Do not mix hpterm and vt100 terminal types at the same time Consult the help section of the emulation software appli...

Страница 40: ...ement Command Line Protocol HE Main Menu Help X Exit Connection See Section Text User Interface page 59 for information on the iLO 2 MP menus and commands TIP When logging in using the local or remote console serial ports the login prompt may not display if another user is logged in through these ports In this case use Ctrl B to access the MP Main Menu and the MP prompt Physically Connecting the S...

Страница 41: ...e server blade from the options on the screen and click OK The screen displays the iLO 2 MP IP address 5 Write down the iLO 2 MP IP address 6 Access the iLO 2 MP through telnet SSH or the web using the assigned DHCP iLO 2 MP IP address NOTE For the HP Integrity server blades you can use the Onboard Administrator to set the IP addresses for all the iLO 2 MPs You can also find the iLO 2 MP address s...

Страница 42: ...as Administer User Accounts Remote Console Access Virtual Power and Reset Virtual Media and Configure iLO settings It allows access to all aspects of the OA including configuration firmware updates user management and resetting default settings Operators Provided access to the host system IRC serial console and vMedia This level equates to an iLO 2 MP user with Remote Console Access Virtual Power ...

Страница 43: ...has reached the maximum number of users 19 users There is already a user registered with the same login name User Login After an OA user has been created in the MP database OA user login can still fail for a number of reasons iLO 2 MP upgrade is currently in progress and no new connections are allowed Maximum number of connections for the requested connection type SSH Telnet web GUI to iLO 2 MP ha...

Страница 44: ...erminal device using the SUV port CAUTION Disconnect the SUV cable from the port when it is not in use The port and connector are not intended to provide a permanent connection On the SUV cable locking buttons are located on the sides of the server blade connector Always squeeze the locking buttons on the SUV cable connector before disconnecting the SUV cable from the SUV cable port Failure to do ...

Страница 45: ...ure 3 2 SUV Cable 1 Server Blade Connector 2 2 Port USB 3 VGA no access to iLO 2 MP 4 9 Pin Console Serial Port RS 232 5 USB Label 6 USB 1 7 USB 0 Physically Connecting the Server Blade to the iLO 2 MP 45 ...

Страница 46: ...ecurity reasons HP strongly recommends you modify the default settings during the initial login session Make the following changes using any of the iLO 2 MP user interfaces To modify default account configuration settings follow these steps 1 Log in as the administrator to modify default user configuration settings 2 To modify default passwords follow these steps a Access the MP Main Menu b Enter ...

Страница 47: ... name and password See Modifying User Accounts and Default Passwords page 46 CAUTION When DHCP is enabled the system is vulnerable to security risks because anyone can access the iLO 2 MP until you change the default user name and password HP strongly recommends you assign user groups and rights before proceeding Create local accounts You can store up to 19 user names and passwords to manage iLO 2...

Страница 48: ...48 ...

Страница 49: ... MP Before starting this procedure you must have the following information DNS name for the iLO 2 MP LAN This is found on the toe tag on the server Host name To interact with the iLO 2 MP through the web follow these steps 1 Open a web browser and enter the DNS name or the IP address for the iLO 2 MP 2 Log in using your user account name and password at the login page Figure 4 1 Figure 4 1 Web Log...

Страница 50: ...display help about that page Accessing the Host Console Using the TUI To access the host console using the text user interface TUI follow these steps 1 Log in using your user account name and password at the login page 2 To switch the console terminal from the MP Main Menu to mirrored redirected console mode enter the CO command at the MP login prompt All mirrored data appears 3 To return to the i...

Страница 51: ... MP Using Onboard Administrator NOTE The HP BladeSystem Onboard Administrator is only available on HP Integrity server blades To access the iLO 2 MP using Onboard Administrator follow these steps 1 Establish a network connection through the OA iLO network port 2 Enter the iLO MP IP address you obtained previously through the OA iLO port in the appropriate screen You now have access to the iLO 2 MP...

Страница 52: ... the iLO 2 MP LAN Using the Console Serial Port page 39 To access the graphic console with VGA follow these steps 1 Perform preparation tasks 2 Connect the cables See Figure 2 3 and Figure 2 4 page 30 for specific port information a Connect the monitor VGA cable to the appropriate VGA port b Connect the keyboard USB cable to the appropriate USB port c Connect the mouse USB cable to the appropriate...

Страница 53: ...he host name and the IP address was obtained through DHCP and registered with dynamic DNS DDNS a delete old name request for the old host name and an add name request for the new host name are sent to the DDNS server If you change the DHCP status between enabled and disabled the IP address subnet mask and gateway IP address are set to default values 127 0 0 1 0xffffff00 Also the DNS parameters are...

Страница 54: ...rompted enter Enabled or Disabled The screen displays the current register with DDNS server value 6 When prompted enter Yes or No The screen displays the current DNS domain name 7 When prompted enter a new value The screen displays the primary DNS server IP address 8 When prompted enter a new value The screen displays the optional secondary DNS server IP address 9 When prompted enter a new value T...

Страница 55: ...screen displays the current object distinguished name This specifies the full distinguished name of the iLO 2 MP device object in the directory service For example CN RILOE2OBJECT CN Users DC HP DC com Distinguished names are limited to 255 characters maximum plus one for the NULL terminator character 8 Enter a new name The Current User Search Context 1 appears 9 Enter a new search setting The Cur...

Страница 56: ... credentials allow read access to the iLO 2 MP device object and the role object the iLO 2 MP determines the role object s distinguished name and the associated user privileges The iLO 2 MP then calculates the current user privileges based on those roles and grants them to that user Configuring LDAP Lite Default Schema IMPORTANT Due to command syntax changes in LDAP Lite some customer developed sc...

Страница 57: ...cess has taken place there is no advantage for the schema free approach until a schema change is required To configure LDAP Lite follow these steps 1 Follow the procedure for Configuring LDAP Extended Schema page 55 but omit Step 8 It is not necessary to enter a new port number 2 Set up directory security groups Setting up Directory Security Groups The following procedure describes how to set up d...

Страница 58: ... Directory Services Without Schema Extensions You can control access to the iLO 2 MP using directories without schema extensions The iLO 2 MP acquires the user name to determine group membership from the directory The iLO 2 MP then cross references the group names with its locally stored names to determine user privilege level The iLO 2 MP must be configured with the appropriate group names and th...

Страница 59: ... such as setting up the iLO 2 MP LAN retrieving events resetting and powering on control of the server switching to the console and so on You can enter the MP Main Menu commands at the MP prompt MP Main Menu The Command menu provides a set of commands that help monitor and manage the server It switches the console terminal from the MP Main Menu to command interface mode You can access commands tha...

Страница 60: ...ot from another window while interacting with the console from a third window Table 6 2 lists the MP Main Menu commands Table 6 2 MP Main Menu Commands Description Command Selects console mode CO Displays the virtual front panel VFP Enters command interface mode CM Accesses the SMASH SM CLP SMCLP Views the console log CL Shows event logs SL Displays help for the menu or command HE Exits X TIP An e...

Страница 61: ... VFP is in private session mode See also LOC locator LED and SL show logs CM Command Mode Enter command mode CM switches the console terminal from the MP Main Menu to mirrored command interface mode The Command menu provides you with a set of standard command line interface commands that help monitor and manage the server To display the list of MP command mode commands that are not displayed in th...

Страница 62: ... Events Action Event Displays the next block forward in time Displays the previous block backward in time Continues to the next or previous block Enter CR Dumps the entire log for capture or analysis D Displays the first entry F Displays the last entry L Jumps to entry number J Displays the mode configuration hex H Displays the mode configuration keyword K Displays the view mode configuration text...

Страница 63: ...6 5 lists the Command Menu commands Table 6 5 Command Menu Commands Description Command Resets the BMC passwords BP Displays blade parameters NOTE This command is available only on a server blade BLADE Configures asynchronous local serial port CA Displays the current date DATE Resets all parameters to default configuration DC Displays field replaceable unit FRU information DF Disconnects the LAN c...

Страница 64: ...ny of these commands press Ctrl B Command Line Interface Scripting A command line interface is provided for all commands to assist you in scripting This section provides syntax examples used in the iLO 2 MP command line or scripted interface Typically tools like Expect see Expect Script Example page 65 and http expect nist gov are used to string together several commands to accomplish a task These...

Страница 65: ... just before the previous send Setting force_conservative to 1 see below makes Expect do this automatically pausing briefly before sending each character This pacifies every program I know of The c flag makes the script do this in the first place The C flag allows you to define a character to toggle this mode off and on set force_conservative 0 set to 1 to force conservative mode even if script wa...

Страница 66: ...pect CM_PROMPT send ma r expect MA_PROMPT send x r expect eof Command Menu Commands and Standard Command Line Scripting Syntax The following list of commands is provided to help you learn about the Command menu commands Command line interface scripting syntax for each command is provided to help you accomplish a scripting task The following rules apply to scripting syntax The nc no confirmation is...

Страница 67: ...C passwords Command access level MP configuration access BP resets the BMC user and administrator passwords Command line usage and scripting BP nc See also DC RB UC BLADE Display BLADE parameters NOTE This command is available only on a server blade Command access level Login access BLADE facilitates the cabling and initial installation of HP Integrity server blades It also provides a quick view o...

Страница 68: ...ONTROL Hardware uses RTS CTS software uses Xon Xoff For HP Integrity server blades the CA command also provides an option to change between the Integrity iLO mode or the dedicated AUX UART mode Switching to AUX UART mode when MP remote access is disabled or LAN parameters are not configured requires a push button reset to change back to iLO MP mode NOTE Inconsistent bit rate settings can result in...

Страница 69: ...ss DC sets all iLO 2 MP parameters back to their default values To restore specific configurations to their default values use the following commands MP IP configuration LC all DEFAULT Remote Access Configuration SA all DEFAULT Command Interface configuration IT all DEFAULT MP Security configuration SO opt DEFAULT MP Session configuration IT all DEFAULT MP User configuration UC all DEFAULT MP LDAP...

Страница 70: ...s long as it is authoritative for the zone If no DNS server IP addresses are specified or the DNS domain is undefined DNS is not used If an IP address was obtained through DHCP an add name request is sent to the DDNS server if it is enabled and registered Command line usage and scripting DNS server e d domain text name e d register y n 1ip ipaddr 2ip ipaddr 3ip ipaddr all default nc See also LC FW...

Страница 71: ...y timeout settings Command access level MP configuration access IT prevents sessions on the system from being inadvertently left open When you initiate an iLO 2 MP command other users are prohibited from running any commands until the first command has been completed or until it times out Command interface inactivity timeout specifies that timeout value This prevents a user from inadvertently keep...

Страница 72: ...et to disabled and the Register with DDNS parameter is set to No When you change the DHCP status from disabled to enabled the DNS parameters for DHCP are set to enabled and the Register with DDNS parameter is set to Yes iLO 2 MP host name The iLO 2 MP host name set in this command is displayed at the iLO 2 MP command mode prompt Its primary purpose is to identify the iLO 2 MP LAN interface in a DN...

Страница 73: ... server Directory Server LDAP Port Port number for the secure LDAP service on the server The default value for this port is 636 Distinguished Name Specifies where this iLO 2 MP instance is listed in the directory tree For example cn MP Server ou Management Devices o hp User Search Contexts 1 2 3 User name contexts that are applied to the login name entered to access the iLO 2 MP User name contexts...

Страница 74: ... extension on the directory server or snap in installation on the client For information on LDAP Lite see Configuring LDAP Lite Default Schema page 56 LM License management Command access level MP configuration access LM displays your current license status Use it to enter a license key to enable the Advanced Pack license features Command line usage and scripting LM key license key nc LOC Locator ...

Страница 75: ... will be powered on System is being powered on Command successful gstlhpg1 MP CM See also PR PS PM Power regulator mode Command access level Power control access PM provides the following options for remote control of the system power regulator Dynamic Enables the system to dynamically change the processor power level when needed based on current operating conditions The system remains in this mod...

Страница 76: ...power returns after an ac power loss If PR is set to On the system powers on after ac is applied If PR is set to Off the system stays powered off after ac is applied Push the system power button or run the PC command to power on the system If PR is set to Previous the power is restored to the state that was in effect when the ac power was removed or lost Command line usage and scripting PR on off ...

Страница 77: ...jected Command line usage and scripting SA telnet e d web e d ssh e d lanipmi e d command mpmenu smclp nc SNMP Configure SNMP parameters Command access level MP configuration access SNMP performs the following actions Enable or disable the SNMP server Disabling the SNMP server prevents all access to the SNMP management information base MIB objects and also prevents sending of any SNMP alerts Enabl...

Страница 78: ...her terminal types the connection is closed A timeout value of 0 means there is no timeout set for the login The login timeout and the timeout value is effective on all ports including the local port However the local port cannot be disconnected like other ports on login timeout For example if a local port user sits at the MP Login prompt nothing happens even if a timeout occurs But if a local por...

Страница 79: ...NIT or TOC signal Command access level MP configuration access NOTE During normal operation shut down the OS before issuing this command TC resets the system through the INIT or TOC signal Running this command irrecoverably halts all system processing and I O activity and restarts the computer system It is different from the RS command in that the processors are signaled to dump state as they shut...

Страница 80: ...llowing rights Console Access Right to access the system console the host OS This does not bypass host authentication requirements if any Command CO Power Control Access Right to power on power off or reset the server and to configure the power restore policy Commands PC PR RS TC Local User Administration Access Right to configure locally stored user accounts Commands UC iLO 2 MP Configuration Acc...

Страница 81: ...connected console client users the ports on which they are connected and the mode used for the connection Login name Login type LDAP or local authentication User access rights Connection port local remote telnet web SSH IP address for telnet web SSH Current MP mode that user is in MA MP Main Menu CM Command menu LIVE live event viewer VFP VFP mode For LAN and serial console clients the command dis...

Страница 82: ...2c lan ipaddr reset hist nc Web GUI This section describes the functions and features of the web graphical user interface GUI Some of the functionality in the web GUI only display if you have the iLO 2 MP Advanced Pack license For more information on the iLO 2 MP Advanced Pack license see Advanced Pack License page 23 and the HP website at http h71028 www7 hp com enterprise cache 279991 0 0 0 121 ...

Страница 83: ...MP BMC EFI system firmware PDH UCIO and PRS Firmware Revisions The IP address of the iLO 2 MP subsystem iLO 2 MP IP Address Displays the date and time as known to the iLO 2 MP Date Time Displays the status of the blue locator or UID LED and enables you to turn the Locator LED on or off Note The system s Yellow attention LED which is separate from the locator LED is lit automatically if a Warning e...

Страница 84: ...ally stored iLO 2 MP user accounts local Authorized Rights control the iLO functions a user can perform There are five user access rights console access iLO 2 MP configuration power control virtual media and user administration A user can be configured to have some none or all the access rights Rights Current iLO 2 MP mode that the user is in Text user interface modes are MA MP Main Menu CM MP Com...

Страница 85: ...LED state System Power Displays the temperature status Temperature Lists the power supplies and their status and type Power Supplies Lists the fans and fan status Fans Displays the status of the processor NOTE For BL c Class servers you can obtain information on power supplies and fans through the Onboard Administrator See BL c Class page 121 System Processors Server Status Identification The Iden...

Страница 86: ...n viewed from the rack front the bays are numbered from left to right and from 1 to 8 The bay number is used to locate and identify a blade Bay Enter the contact information in these fields Contact Person NOTE Many of the fields are published by the iLO 2 MP s SNMP for visibility to management applications on the network System Event Log The System Event Log SEL page Figure 6 6 enables you to view...

Страница 87: ...The boot log from the previous boot Previous Boot Log Deletes the log Delete Log NOTE You can view only the most pertinent fields for each event on the web For a more complete decoding of the events use the TUI available by logging in to the iLO 2 MP through telnet or SSH Events Events can be a result of a failure or an error such as fan failure Machine Check Abort and so on They can indicate a ma...

Страница 88: ...automatic server recovery event View a log of remote console events Modify login passwords without administrator access right Remotely change the configuration parameters of the IRC Because the iLO 2 MP IRC is hardware based it is available regardless of the state of the operating system IRC Requirements and Usage The IRC feature is only available if you have the iLO 2 MP Advanced Pack license If ...

Страница 89: ...VM Mouse and Keyboard IRC does not yet provide identical virtualization of the Windows keyboard Some known issues are No support for system level commands such as Ctrl Esc or Print Screen Pressing the Ctrl key locks the virtual mouse Releasing the Ctrl key unlocks the virtual mouse No support for simultaneous mouse click and keystroke combinations The IRC closes after 15 minutes if there is no mou...

Страница 90: ...ct None for mouse pointer scheme Select Disable Pointer Trails Deselect Enable Pointer Shadow Select Motion or Pointer Options and set the pointer speed slider to the middle position Deselect Enhanced pointer precision To automate setting an optimal mouse configuration download the Lights Out Optimization utility from the HP website at http www hp com servers lights out Click the Best Practices gr...

Страница 91: ...age Description Action Fields and Buttons Resizes the IRC page For fullscreen with multi head client launch the browser from the primary display Fullscreen Resizes the IRC page to the same display resolution as the remote host To open the server s graphic console in a new browser window click Launch Launch The IRC displays the host server s graphics console Figure 6 8 Web GUI 91 ...

Страница 92: ...eturn to the client desktop Exit red button IMPORTANT For security purposes if you log in to a host server through the IRC you should log out before closing the IRC NOTE When you run system discovery utilities such as MAPPER or IOSCAN the output might display an extra keyboard and mouse that are not physically connected This is a consequence of the vKVM feature Integrated Remote Console Fullscreen...

Страница 93: ...gure 6 9 Remote Serial Console Page NOTE The BL c Class tab is available only on HP Integrity server blades The remote serial console is a Java applet that requires Java Plug in 1 4 2 10 to be installed on the client system This applet enables connection to the server serial console over default port 2023 You can configure this port through the Administration Access Settings page All data on this ...

Страница 94: ...ng in the applet is a supported setting The operating system environment settings and your client terminal type are set properly All mirrored consoles are of the same terminal type for proper operation Supported terminal types are VT100 VT100 VT UTF8 IMPORTANT Do not mix hpterm and vt100 terminal types at the same time To connect to the system console Figure 6 10 click Launch NOTE If Launch is dis...

Страница 95: ...are provides a Java applet that connects to the server serial port If the serial redirection feature is enabled on the host server iLO intercepts the data coming from the serial port encrypts it and sends it to the web browser applet For Linux users the iLO virtual serial port feature provides an important function for remote access to the Linux server By configuring a Linux login process attached...

Страница 96: ...l iLO 2 MP Advanced Pack license and granting the vMedia right If not licensed the message iLO 2 feature not licensed appears For more information see Advanced Pack License page 23 NOTE You can use the vMedia applet only on x86 clients To access the iLO 2 MP vMedia devices using the graphical interface follow these steps 1 From the Virtual Devices tab select Virtual Media The Virtual Media page ap...

Страница 97: ...the server is running can be especially useful if you must diagnose and repair a problem with the NIC driver The virtual CD DVD can be the physical CD DVD drive on the client system which you are running on the web browser or an image file stored on the client or network drive For maximum performance HP recommends using local image files stored either on the hard drive of your client system or on ...

Страница 98: ...al devices on the server The vMedia applet appears Figure 6 12 NOTE Only one user and one device can be connected at a time Figure 6 12 Virtual Media Dialog Box Before Connection 3 Select Local Media Drive 4 Select the drive letter of the desired physical CD DVD drive on your client system from the list 98 Using iLO 2 MP ...

Страница 99: ... EFI console only supports El Torito bootable CD format media Windows Server 2003 The virtual CD DVD displays automatically after Windows has recognized the mounting of the USB device Use it as you would a locally attached CD DVD device Linux On servers with a locally attached IDE CD DVD the virtual CD DVD device is accessible at dev cdrom1 However on servers without a locally attached CD DVD such...

Страница 100: ...erformance than using a physical CD in your client computer Use the Disk Image option to create image files from physical diskettes CDs or DVDs The Image Disk option is not valid for a virtual CD DVD image The Disk Image button changes to Image Disk when clicked NOTE The iLO 2 MP Create Media Image utility does not currently support USB devices in Linux or NetWare The following procedure explains ...

Страница 101: ...ing system might prompt you to complete a New Hardware Found wizard Virtual Floppy USB Key The iLO 2 virtual floppy disk is available at server boot time for all operating systems Booting from the iLO 2 virtual floppy enables you to upgrade the host system ROM deploy an operating system from network drives and perform disaster recovery of failed operating systems among other tasks If the host serv...

Страница 102: ...key appears to your operating system just like any other drive When using iLO 2 MP for the first time the host operating system might prompt you to complete a New Hardware Found wizard Virtual Media Applet Timeout The vMedia applet does not timeout when it is connected to a host server The vMedia applet must remain open when using a vMedia device The vMedia applet closes when you log out Supported...

Страница 103: ...e XP WS 2003 Enterprise Mozilla 1 7 12 01 00 X X X X Mozilla 1 7 13 X X Internet Explorer 6 0 X X HP Secure Web Browser 1 7 13 Power Management The iLO 2 MP power management feature enables you to view and control the power state of the server monitor power usage monitor the processor and modify power settings The Power Management page has three menu options Power Reset Power Meter Readings Power ...

Страница 104: ...Power A user with power control access can issue the following options for remote control of the system power Power Cycle Turns system power off and on The delay between off and on is 30 seconds Power On Turns system power on it has no effect if power is already on Power Off Turns system power off This is equivalent to forcing the system power off with the front panel power switch There is no sign...

Страница 105: ...of Control TOC signal Under normal operation shut down the OS before issuing this command Execution of this command irrecoverably halts all system processing and I O activity and restarts the computer system It is different from the previous option in that the processors are signaled to dump state on the way down You must have iLO configuration access right to issue this option System Reset This f...

Страница 106: ...server reset Data can be displayed in Watts or Btu hr To display a tool tip that indicates the power usage power regulator mode temperature and timestamp pause the mouse over the particular sample on the bar graph Power Meter Readings Displays the peak power reading from the server over the last 24 hour period Peak Displays the average power reading from the server over the last 24 hour period Ave...

Страница 107: ...Refresh Data Power Regulator The Power Regulator page Figure 6 19 enables you to view and modify the power efficiency regulator mode of the system The Power Regulator feature is available on systems where support is provided by the operating system processors processor dependant hardware PDH System Firmware SFW and iLO firmware The following is required in order to use this feature You must have t...

Страница 108: ... previous states requires a server reboot Enable OS Control Mode Submits the selected function Submit Cancels the action Cancel Power regulation requires the server to have both a CPU and an operating system that is capable of power regulation Power regulation functions are available only when the OS is booted and the system has the required hardware firmware OS and software The power regulation f...

Страница 109: ...ware upgrade you can download and upgrade the firmware package from the HP website at http www hp com go bizsupport IMPORTANT When performing a firmware upgrade that contains system programmable hardware FPGA EFI PSOC BMC you must properly shut down any OS that is running before starting the firmware upgrade process Select the download for Integrity firmware and follow the directions provided in t...

Страница 110: ...ers some advanced features which can be used only with the iLO 2 MP Advanced Pack license Directory based authentication and authorization using LDAP LDAP Lite schema free integration Integrated Remote Console vKVM Virtual Media Table 6 18 lists the fields buttons and descriptions Table 6 18 Licensing Page Description Description Fields and Buttons The status of the license inactive if no license ...

Страница 111: ... Accounts page Figure 6 21 displays the current list of users their privilege rights and whether they are enabled or disabled and the mode CM MA VFP This page enables you to modify the user configuration of the iLO 2 MP add new users assign rights and modify or delete existing users You must have administration access right to use this feature Figure 6 21 Local Accounts Page NOTE The BL c Class ta...

Страница 112: ...ts The Group Accounts page Figure 6 22 enables you to enter one or more directory groups by specifying the distinguished name of the group and privileges that should be granted to users who are members of that group You must configure group administration information when the directory is enabled with the default schema When a user attempts to login into the iLO 2 MP the iLO 2 MP reads that user s...

Страница 113: ...Group Settings page and enter information Custom 1 2 3 4 Opens the Group Settings page Edit Cancels the action Cancel Access Settings The Access Settings tab enables you to access the following pages LAN Serial Login Options LAN The LAN page Figure 6 23 enables you to modify LAN settings You must have iLO configuration access right to use this feature Figure 6 23 LAN Page NOTE The BL c Class tab i...

Страница 114: ...he iLO 2 MP using the enable or disable option In order to make an SSL connection you need to generate a certificate The certificate status indicates if a certificate has been generated previously To generate a new certificate fill in the fields shown and check Generate New Certificate The system alerts you when the certificate is about to expire or if it has already expired You will need to gener...

Страница 115: ...tions Page The Login Option page Figure 6 25 enables you to modify the security options of the iLO 2 MP You must have iLO configuration access right to use this feature Figure 6 25 Login Options Page NOTE The BL c Class tab is available only on HP Integrity server blades Table 6 23 lists the fields buttons and descriptions Table 6 23 Login Options Page Description Description Fields and Buttons Th...

Страница 116: ...eters page Figure 6 26 enables you to edit LDAP parameters You must have iLO configuration access right to use this feature NOTE The LDAP feature is only available if you have the iLO 2 MP Advanced Pack license Figure 6 26 Current LDAP Parameters Page NOTE The BL c Class tab is available only on HP Integrity server blades Table 6 24 lists the fields and descriptions 116 Using iLO 2 MP ...

Страница 117: ...ce is listed in the directory tree Example cn MP Server ou Management Devices o hp Distinguished Name User name contexts are used to locate an object in the tree structure of the directory server and applied to the login name entered to access the iLO 2 MP User Search Contexts 1 2 3 Submits the information Submit Cancels the action Cancel Network Settings The Network Settings tab enables you to ac...

Страница 118: ...r the iLO 2 MP IP network If DHCP is being used the subnet mask is automatically supplied Subnet Mask The IP address of the network gateway If DHCP is being used the gateway IP address is automatically supplied Gateway Address Auto Negotiate or 10 BaseT option Link State Submits the information Submit Cancels the action Cancel Domain Name Server The Domain Name Server DNS page Figure 6 28 enables ...

Страница 119: ...Use DHCP supplied domain name This represents the factory default DNS name of the subsystem for example hp com in ilo hp com You can enter a new DNS name Domain name Use the DHCP server supplied DNS server list Use DHCP supplied DNS servers Register its name with a DDNS server Register with Dynamic DNS Submits the DNS information Submit Cancels the action Cancel SNMP Settings The SNMP Settings pag...

Страница 120: ...ort on this iLO 2 MP SNMP NOTE Currently the SNMP alert feature is only supported on HP Integrity server blades Enter E to enable or D to disable all SNMP alerts Enter 1 2 3 4 to configure a destination IP address for SNMP alerts The default is blank unused SNMP Alerts Configure the community string to secure the access to the management information base MIB objects The default is public Community...

Страница 121: ...rver blades Table 6 28 lists the fields and descriptions Table 6 28 Onboard Administrator Page Description Description Field The IP address of the onboard administrator OA IP Address The MAC address of the onboard administrator OA MAC Address Click this button to launch the Onboard Administrator Sign In page Active OA Sign In Page This is used to logically group together enclosures in a rack The r...

Страница 122: ...u read the HP BladeSystem Onboard Administrator User Guide on the HP website at http h20000 www2 hp com bc docs support SupportManual c00705292 c00705292 pdf Reading this guide ensures that you will obtain an overall understanding of the HP BladeSystem OA and that you properly complete the initial setup to facilitate proper functioning of the OA The HP BladeSystem Onboard Administrator User Guide ...

Страница 123: ...entation is a prestandard release and is subject to change At this time SMASH SM CLP is not the primary text user interface TUI or the primary scripting interface for the iLO 2 MP The HP proprietary TUI is the primary text interface of the iLO 2 MP The entire text user interface of the iLO 2 MP available on telnet and SSH supports all MP functionality SMASH CLP does not support all iLO 2 MP featur...

Страница 124: ...interface To use the SM CLP follow these steps 1 Access the MP Main Menu 2 At the MP Main Menu enter SMCLP to access SM CLP The screen displays the SM CLP hpiLO prompt MP MAIN MENU CO Console VFP Virtual Front Panel CM Command Menu SMCLP Server Management Command Line Protocol CL Console Log SL Show Event Logs HE Main Help Menu X Exit Connection hqgstlv7 MP hqgstlv7 MP SMCLP HP SMASH SM CLP interf...

Страница 125: ...onfiguration modified values R Remote OS SESSION T Telnet Enabled H SSH Disabled W Web SSL Enabled I IPMI over LAN Enabled C Command Mode SM CLP Enter Parameter s to revise Y to confirm or Q to Quit y y Set Access Configuration has been updated MP CM Using the SM CLP Interface After initiating an SM CLP session the iLO CLP prompt appears Each time a command is run the CLP prompt appears as shown i...

Страница 126: ...ecution Command Verbs Command verbs select a management action for target The command verbs listed in Table 6 29 consist of several reserved words in the following categories Retrieve Information cd help show version Configure a target create delete load set Change target state exit reset start stop Table 6 29 lists the supported command verbs Table 6 29 Supported Command Verbs Action Command Chan...

Страница 127: ...n of the SM CLP implementation version The following verbs are available for execution from any target show help cd version exit Command Targets The command target address identifies the specific managed element or association to be affected by the command verb All SM CLP commands have a command target whether explicitly or implicitly identified For instance the target map1 telnetsvc1 can be ident...

Страница 128: ...wn n all Verb acts on the command target and all target MEs recursively contained in the command The following examples show command display option syntax Show information about default target and one level of contained MEs hpiLO show l 2 Show all contained MEs hpiLO show l all Show information about system1 and all contained MEs hpiLO show l all system1 Display Option The display option filters t...

Страница 129: ... and Character Sequences Description and Uses Name Character or Sequence Command line term separator Space Escape character the backquote character Use in front of reserved characters to instruct the command parser to use the reserved character without special meaning When the escape character is not followed by a reserved character it is treated as a normal character in the string that contains i...

Страница 130: ...Target SYSTEM1 system1 The system1 target represents the root of the system namespace Functions and information such as OS console system power status and control system LED status and so on related to the system are located under this target Table 6 32 shows system1 target properties Table 6 32 system1 Properties Access and Values Description Property Name Read only Values Enabled System power is...

Страница 131: ...l shutdown Powering On the System To power on the system apply the start command to the system1 target For example hpiLO start system1 status 0 status_tag COMMAND COMPLETED system1 has been powered on Map1 iLO 2 Target Target map1 The map1 target management access point represents the root of the iLO 2 MP namespace Functions and information related to iLO 2 MP are located under the map1 target Tab...

Страница 132: ...et map1 status 0 status_tab COMMAND COMPLETED iLO was issued a reset Text Console Services This section describes targets their properties and supported verbs necessary to implement the console services in SM CLP You can invoke the system console and the MP Main Menu from SM CLP Any text console service is represented by a dedicated to it textredirectsap target Target map1 textredirectsvc1 represe...

Страница 133: ...consoles1 textredirectsap1 This target represents the system text console currently launched through the iLO 2 MP s CO command Table 6 35 shows textredirectsap1 target properties Table 6 35 system1 consoles1 textredirectsap1 Properties Access and Values Description Property Name Read only Set to Enabled Shows if the test redirection is enabled EnabledState Read only Set to Esc Enter Esc at the sys...

Страница 134: ... SM CLP To exit the MP Main Menu interface and return to the SM CLP session enter SMCLP Firmware Revision Display and Upgrade This section describes how to view firmware revisions in the system Each installed firmware in the system known to MP MP FW BMC FW EFI FW System FW and so on is represented by a swid target map1 swinstallsvc1 represents iLO 2 MP s ability to install firmware map1 swinventor...

Страница 135: ...rty Name Read only Identifies what type of firmware this swid target represents TargetType Read only Represents firmware revision string for example F 01 40 VersionString Verbs cd Changes the current default target help Displays context sensitive help show Displays information load Moves an image to the iLO 2 MP The following is a possible list of swid s in the system map1 swinventory1 swid1 repre...

Страница 136: ...ware upgrades enhance the functionality of iLO 2 MP The MP firmware is packaged along with system BMC and FPGA PSOC firmware You can download and upgrade the firmware package from the HP website at http www hp com go bizsupport IMPORTANT When performing a firmware upgrade that contains system programmable hardware you must properly shut down any OS that is running before starting the firmware upgr...

Страница 137: ...net commands Enable Telnet Service start map1 telnetsvc1 Disable Telnet Service stop map1 telnetsvc1 SSH This section describes targets their properties and supported verbs necessary to enable or disable SSH access to the iLO 2 MP Target map1 sshsvc1 The sshsvc1 target represents the SSH service provided by map1 Table 6 40 shows sshsvc1 target properties Table 6 40 sshsvc1 Properties Access and Va...

Страница 138: ...bled iLO 2 MP network speed is set to 10 mb s AutoSense Read only The iLO 2 MP MAC address is formatted as twelve hexadecimal digits 10203040506 with each pair representing one of the six octets of the MAC address Represents iLO 2 MP MAC address PermanentAddress Verbs cd Changes the current default target help Displays context sensitive help show Displays information set Sets a property to a speci...

Страница 139: ...icate the configuration method that resulted in the configuration being assigned to this ipendpt AddressOrigin Verbs cd Changes the current default target help Displays context sensitive help show Displays information set Sets a property to a specific value Target map1 dhcpendpt1 The dhcpendpt1 target represents the iLO 2 MP DHCP client Table 6 44 shows dhcpendpt1 target properties Table 6 44 dhcp...

Страница 140: ...properties Table 6 46 gateway1 Properties Access and Values Description Property Name Read write The value of the property must be expressed in dotted decimal notation Represents the IP address of the gateway server AccessInfo Read only Set to default gateway Represents access context description of this access point AccessContext Target map1 dnsserver1 map1 dnsserver2 map1 dnsserver3 The dnsserve...

Страница 141: ...No do not register with DDNS server Indicates whether iLO 2 MP registers with the DDNS server RegisterThisConnections Address Read write iLO 2 MP host name RequestedHostName Verbs cd Changes the current default target help Displays context sensitive help show Displays information set Sets a property to a specific value SM CLP Network Command Examples The following examples list specific network co...

Страница 142: ...er IPs map1 settings1 dnssettings1 set DNSServerAddressess 192 0 2 1 192 0 2 4 Set Tertiary DNS Server IP map1 settings1 dnssettings1 set DNSServerAddressess 192 0 2 6 vMedia NOTE vMedia command verbs are only available on server blade systems This section provides information on SM CLP vMedia targets properties and supported verbs It also lists examples of SM CLP vMedia use cases Target map1 oemh...

Страница 143: ...ap1 group1 The group1 target represents a collection of user accounts on the iLO 2 MP Table 6 50 shows group1 target information Table 6 50 group1 Properties Access and Values Description Property Name Read only Set to collection of user accounts Textual description of this collection target Description Verbs cd Changes the current default target help Displays context sensitive help show Displays ...

Страница 144: ...ow map1 group1 account Create a new account map1 group1 hpiLO create account3 userid testuser userpassword testpass name Test User oemhp_privileges console power Delete an account map1 group1 hpiLO delete account1 Modify account properties map1 group1 accuont3 hpiLO set oemhp_privileges console name Console User LDAP Configuration This section describes targets their properties and supported verbs...

Страница 145: ...emhp_dirdn Read write Directory user search context 1 oemhp_usercntxt1 Read write Directory user search context 2 oemhp_usercntx2 Read write Directory user search context 3 oemhp_usercntxt3 Verbs cd Changes the current default target help Displays context sensitive help show Displays information set Sets a property to a specific value LDAP Configuration Examples Configure LDAP parameters This comm...

Страница 146: ...146 ...

Страница 147: ...instance clerical remote control of the host complete control and associate users or user groups with those roles When you change a single role the change applies to all users and the iLO 2 MP devices associated with that role Single point of administration You can use native administrative tools like Microsoft Management Console MMC and ConsoleOne to administer the iLO 2 MP users Immediacy A sing...

Страница 148: ...ed Remote Management page 173 2 Install a Download the HP Lights Out Directory Package containing the schema installer the management snap in installer and the migrations utilities from the HP website http www hp com servers lights out b Run the schema installer once to extend the schema See Schema Installer page 150 c Run the management snap in installer and install the appropriate snap in for yo...

Страница 149: ...r 2003 family The iLO 2 MP supports eDirectory 8 6 2 and 8 7 running on one of the following operating systems Windows 2000 family Windows Server 2003 family NetWare 5 x NetWare 6 x Red Hat Enterprise Linux AS 2 1 Red Hat Linux 7 3 Red Hat Linux 8 0 eDirectory Installation Prerequisites Directory services for the iLO 2 MP uses LDAP over SSL to communicate with the directory servers The iLO 2 MP so...

Страница 150: ...o all the supported directory services Additional files contain only product specific schema The schema installer requires the use of the NET Framework The schema installer includes three important screens Schema Preview Setup Results Schema Preview Screen This Schema Preview screen Figure 7 1 enables you to view proposed extensions to the schema This application reads the selected schema files pa...

Страница 151: ...try The schema extender can only change the registry if the administrator who is extending the schema has the appropriate rights Write access to the schema is automatically enabled on Windows Server 2003 The Directory Login section of the Setup screen enables you to enter your login name and password which may be required to complete the schema extension The Use SSL During Authentication option se...

Страница 152: ... hp com support files lights out us index html The following sections provide installation prerequisites preparation and a working example of directory services for Active Directory Active Directory Installation Prerequisites The following are prerequisites for installing Active Directory The Active Directory must have a digital certificate installed to enable the iLO 2 MP to connect securely over...

Страница 153: ...ervices for Active Directory To set up directory services for use with the iLO 2 MP follow these steps 1 Install Active Directory For more information see the resource kit Installing Active Directory in the Microsoft Windows 2000 Server 2 Install the Microsoft Admin Pack the ADMINPAK MSI file which is located in the i386 subdirectory of the Windows 2000 Server or Advanced Server CD For more inform...

Страница 154: ...is supported Windows XP Windows 2000 Windows 98 However some parts of the schema extension application require the NET Framework which you can download from the Microsoft website at http www microsoft com Installing and Initializing Snap Ins for Active Directory Follow these steps to install the snap ins and configure the directory service 1 To install the snap ins run the snap in installation app...

Страница 155: ...Example 1 Create an organizational unit to contain the iLO 2 devices managed by the domain In this example two organizational units are created Roles and MPs 2 Use the Active Directory Users and Computers snap ins provided by HP to create iLO 2 objects for several iLO 2 devices in the MP organizational unit a In the mpiso com domain right click the MPs organizational unit and select NewHPObject Di...

Страница 156: ...it 4 Right click the Roles organizational unit select New and select Object The Create New HP Management Object dialog box appears a In the Type field select Role b In the Name field enter an appropriate name In this example the role contains users trusted for remote server administration and is named remoteAdmins c Click OK d Repeat the process creating a role for remote server monitors named rem...

Страница 157: ... and groups within a role have rights assigned to the role on all of the iLO 2 devices managed by the role In this example the users in the remoteAdmins role are given full access to the iLO 2 functionality Select the appropriate rights and click Apply Figure 7 7 Lights Out Management Tab 7 Click OK 8 Using the same procedure in step 4 edit the properties of the remoteMonitors role add the lpmp de...

Страница 158: ...ervices Objects One of the keys to directory based management is proper virtualization of the managed devices in the directory service This virtualization enables the administrator to build relationships between a managed device and user or groups already contained within the directory service The iLO 2 user management requires the following basic objects in the directory service iLO 2 Role User E...

Страница 159: ... Members tab Figure 7 9 to manage the users within the role To add a user browse to the specific user you want to add and click Add To remove a user from the list of valid members highlight an existing user and click Remove Figure 7 9 Members Tab Directory Services for Active Directory 159 ...

Страница 160: ... members of the role click the Effective Hours button The Logon Hours screen appears Figure 7 11 To select the times available for login each day of the week in half hour increments use the Logon Hours screen You can change a single square by clicking it or you can change a section of squares by clicking and holding the mouse button dragging the cursor across the squares to be changed and releasin...

Страница 161: ...anges and DNS names To restrict an IP address follow these steps 1 From the Role Restrictions tab select IP MASK and click Add The New IP Mask Restriction dialog box appears Figure 7 12 Figure 7 12 New IP Mask Dialog Box 2 In the New IP Mask Restriction dialog box enter the information and click OK 3 To restrict access based on a DNS select DNS Name and click Add The New DNS Name Restriction dialo...

Страница 162: ... to the associated devices and execute Status or Read only commands view event logs and console logs check system status power status and so on but not execute any commands that would alter the state of the iLO 2 MP or the system Login This option enables users to access the system console the host OS RemoteConsole This option enables users to connect devices through the network such as CD DVD and...

Страница 163: ...ctory The following example demonstrates how to set up roles and HP devices in a company called samplecorp which consists of two regions region1 and region2 Assume that samplecorp has an enterprise directory arranged according to that in Figure 7 14 Figure 7 14 Roles and Devices Example Begin by creating organizational units in each region to contain the iLO 2 MP devices and roles specific to that...

Страница 164: ...ver in HP devices under region2 Creating Roles To create roles follow these steps 1 Use the ConsoleOne snap ins provided by HP to create HP role objects in the roles organizational units a From the region2 organizational unit right click the roles organizational unit Select New and select Object b Select hpqRole from the list of classes and click OK c Enter an appropriate name in the New hpqRole d...

Страница 165: ... and click Apply f To close the property sheet click Close 4 Using the same procedure as in step 3 edit the properties of the remoteMonitors role a Add the three iLO 2 MP devices within HP devices under region1 to the Managed Devices list on the Role Managed Devices subtab of the HP Management tab b Add users to the remoteMonitors role using the Members tab c Using the Lights Out Management Device...

Страница 166: ... his eDirectory password in the Password field to gain access Directory Services Objects for eDirectory Directory services objects enable virtualization of managed devices and the relationships between a managed device and a user or groups already contained within the directory service Adding Role Managed Devices Use the Role Managed Devices subtab under the HP Management tab Figure 7 17 to add HP...

Страница 167: ... the user name and click Delete Setting Role Restrictions The Role Restrictions subtab Figure 7 19 enables you to set login restrictions for a role Figure 7 19 Role Restrictions Subtab eDirectory These restrictions include the following Time Restrictions IP Network Address Restrictions IP Mask IP Range DNS Name Directory Services for eDirectory 167 ...

Страница 168: ...ole Restrictions subtab and click Add The Add New Restriction dialog box for the IP Mask option appears 2 In the Add New Restriction dialog box Figure 7 20 enter the information and click OK Figure 7 20 Add New Restriction Dialog Box 3 In the Role Restrictions subtab select DNS Name and click Add The DNS Name option enables you to restrict access based on a single DNS name or a subdomain entered i...

Страница 169: ...O 2 MP user accounts Administer Local User Accounts This option enables users to configure all iLO 2 MP settings as well as reboot the iLO 2 MP Administer Local Device Settings Installing Snap Ins and Extending Schema for eDirectory on a Linux Platform This section describes a method that does not require a Windows client to install snap ins and extend schema for eDirectory on a Linux platform Sch...

Страница 170: ...load schema extensions from the HP website at http h18013 www1 hp com products servers management directorysupp index html Select Software and Drivers and the operating system for the schema extension you want to install Extending Schema To obtain the hpdsse sh file follow these steps 1 Download the tar file to the Linux system where eDirectory is installed 2 Extract the tar file to obtain the hpd...

Страница 171: ...Server LDAP Port 636 D Distinguished Name DN cn mp o demo 1 User Search Context 1 o mp 2 User Search Context 2 o demo 3 User Search Context 3 o test Enter parameter s to change A to modify All or Q to Quit a For each parameter enter New value or CR to retain the current value or DEFAULT to set the default value or Q to Quit LDAP Directory Authentication E Enabled Current D Disabled default Enter n...

Страница 172: ...me field accepts all of the following Directory users LDAP Fully Distinguished Names Example CN John Smith CN Users DC HP DC COM or HP com The short form of the login name by itself does not identify which domain you are trying to access To identify the domain provide the domain name or use the LDAP Distinguished Name of your account Domain user name form Active Directory only Example HP jsmith us...

Страница 173: ... you are issuing certificates to objects within your organizational domain To verify that certificate services is installed select Start Programs Administrative Tools Certification Authority If Certificate Services is not installed an error message appears Configuring an Automatic Certificate Request To request that a certificate be issued to the server 1 Select Start Run and enter mmc 2 Click Add...

Страница 174: ... directly add the existing nested group directly to the role and assign the appropriate rights and restrictions Add new users to either the existing group or to the role Novell eDirectory does not allow nested groups In eDirectory any user who can read a role is considered a member of that role When adding an existing group organizational unit or organization to a role add the object as a read tru...

Страница 175: ...inistrators within an organization are placed into a hierarchy in which subordinate administrators must assign rights independently of ranking administrators In this case it is useful to have one role that represents the rights assigned by higher level administrators and to allow subordinate administrators to create and manage their own roles Restricting Roles Restrictions enable you to limit the ...

Страница 176: ... meets the restriction DNS Based Restrictions DNS based restrictions use the network naming service to examine the logical name of the client machine by looking up machine names assigned to the client IP addresses DNS restrictions require a functional name server If the name service fails or cannot be reached DNS restrictions cannot be matched and will fail DNS based restrictions can limit access ...

Страница 177: ...bility of the user to log in authenticate to the directory Typically time restrictions are enforced using the time on the directory server but if the directory server is located in a different time zones or a replica in a different time zone is accessed time zone information from the managed object can be used to adjust for relative time While directory server evaluates user time restrictions the ...

Страница 178: ...ns and Roles The most useful application of multiple roles includes restricting one or more roles so that rights do not apply in all situations Other roles provide different rights under different constraints Using multiple restrictions and roles enables you to create arbitrary complex rights relationships with a minimum number of roles For example an organization might have a security policy in w...

Страница 179: ...olicy However adding another role that grants the login right can inadvertently grant server reset privileges from outside the corporate subnet after hours A more manageable solution would be to restrict the reset role as well as the general use role Figure 7 27 Restricting the Reset Role Directory Services Schema LDAP A directory schema specifies the types of objects that a directory can have and...

Страница 180: ...1 4 1 232 1001 1 1 2 1 hpqPolicyDN 1 3 6 1 4 1 232 1001 1 1 2 2 hpqRoleMembership 1 3 6 1 4 1 232 1001 1 1 2 3 hpqTargetMembership 1 3 6 1 4 1 232 1001 1 1 2 4 hpqRoleIPRestrictionDefault 1 3 6 1 4 1 232 1001 1 1 2 5 hpqRoleIPRestrictions 1 3 6 1 4 1 232 1001 1 1 2 6 hpqRoleTimeRestriction Core Class Definitions Table 7 5 Table 7 6 and Table 7 7 define the HP management core classes hpqTarget Tabl...

Страница 181: ...gement Description Structural Class Type Top SuperClasses hpqPolicyDN 1 3 6 1 4 1 232 1001 1 1 2 1 Attributes None Remarks Core Attribute Definitions Table 7 8 through Table 7 13 define the HP management core class attributes hpqPolicyDN Table 7 8 hpqPolicyDN 1 3 6 1 4 1 232 1001 1 1 2 1 OID This attribute provides the Distinguished Name of the policy that controls the general configuration of thi...

Страница 182: ...e address matches and general access is denied and unsatisfied when the address matches and general access is allowed Values are an identifier byte followed by a type specific number of bytes specifying a network address For IP subnets the identifier is 0x01 followed by the IP network address in network order followed by the IP network subnet mask in network order For example the IP subnet 127 0 0...

Страница 183: ...2 MP Classes Assigned OID Class Name 1 3 6 1 4 1 232 1001 1 8 1 1 hpqLOMv100 iLO 2 MP Attributes Table 7 15 iLO 2 MP Attributes Assigned OID Class Name 1 3 6 1 4 1 232 1001 1 8 2 1 hpqLOMRightLogin 1 3 6 1 4 1 232 1001 1 8 2 2 hpqLOMRightRemoteConsole 1 3 6 1 4 1 232 1001 1 8 2 3 hpqLOMRightVirtualMedia 1 3 6 1 4 1 232 1001 1 8 2 4 hpqLOMRightServerReset 1 3 6 1 4 1 232 1001 1 8 2 5 hpqLOMRightLoc...

Страница 184: ...attribute is only used on role objects If this attribute is TRUE members of the role are granted the right Remarks hpqLOMRightRemoteConsole Table 7 19 hpqLOMRightRemoteConsole 1 3 6 1 4 1 232 1001 1 8 2 3 OID Virtual media right for HP iLO 2 MP products Description Boolean 1 3 6 1 4 1 1466 115 121 1 7 Syntax Single valued Options This attribute is only used on role objects If this attribute is TRU...

Страница 185: ... objects If this attribute is TRUE members of the role are granted the right Remarks hpqLOMRightConfigureSettings Table 7 22 hpqLOMRightConfigureSettings 1 3 6 1 4 1 232 1001 1 8 2 6 OID Configure devices settings right for HP iLO 2 MP products Description Boolean 1 3 6 1 4 1 1466 115 121 1 7 Syntax Single valued Options This attribute is only used on role objects If this attribute is TRUE members...

Страница 186: ...186 ...

Страница 187: ...f the operating system and testing of hardware when the system is powered on The BIOS is stored in read only memory ROM BMC Baseboard Management Controller A device used to manage chassis environmental configuration and service functions and receive event data from other parts of the system It receives data through sensor interfaces and interprets this data by using the sensor data record SDR for ...

Страница 188: ...iLO 2 MP and the server that controls basic functionality Also known as host console D DDNS Dynamic Domain Name System DDNS is how the iLO 2 MP automatically registers its name with the Domain Name System so that when iLO 2 receives its new IP address from DHCP users can connect to the new iLO 2 using the host name rather than the new IP address DHCP Dynamic Host Configuration Protocol A protocol ...

Страница 189: ...ammable logic components and programmable interconnects FTP File Transfer Protocol A basic Internet protocol based on Transmission Control Protocol Internet Protocol TCP IP that enables the retrieving and storing of files between systems on the Internet without regard for the operating systems or architectures of the systems involved in the file transfer G Gateway A computer or program that interc...

Страница 190: ...ystem to comprehend the environmental makeup of the system and to register with the system s IPMI subsystem to receive events IPMI is compatible with management software from heterogeneous vendors IPMI functionality includes inventory reporting system monitoring logging system recovery including local and remote system resets and power on and power off capabilities and alerting K Kernel The core o...

Страница 191: ...rators about problems within the enclosure through e mail SNMP or the Insight Display Options Used in the SMASH SM CLP Options control verb behavior Out of band System Management Server management capability that is enabled when the operating system network drivers or the server are not functioning properly P Port The location socket where Transmission Control Protocol Internet Protocol TCP IP con...

Страница 192: ...aller physical networks to simplify routing The subnet is the portion of an Internet Protocol IP address that identifies a block of host IDs Subnet Mask A bit mask used to select bits from an Internet address for subnet addressing The mask is 32 bits long and selects the network portion of the Internet address and one or more bits of the local portion Also called an address mask System Event Log S...

Страница 193: ... Tag UFiT A unique instance tag within the scope of the target instance s containment class A UFiT is created by adding an nonzero positive integer suffix to the target instance s UFcT User Friendly Tag UFT A short user friendly tag for a CIM class name or instance There are two types of UFTs UFcT and UFiT User Name A combination of letters and possibly numbers that identifies a user to the system...

Страница 194: ...194 ...

Страница 195: ...0 WHO 81 XD 82 command mode entering 61 switching to console mode 61 configuring access rights 20 connections simultaneous 21 console access 80 access right 20 determining configuration method 36 determining physical access method 36 log 61 mode switching from command mode 61 setup 33 setup checklist 34 setup flowchart 35 D DATE command 69 DC command 69 DDNS 53 72 default user name and password 46...

Страница 196: ...es 174 disk image files CD DVD 97 DMTF 123 192 DNS 54 command 70 configuring using the command menu 54 70 configuring using the web GUI 118 E eDirectory see directory services for eDirectory emulation device configuring 39 events 87 Expect scripting tool 64 F firmware 70 109 display current revisions 79 flow control timeout modifying 71 forward progress log viewing 62 FRUID information displaying ...

Страница 197: ... installing the Java runtime environment 170 schema extension 170 snap ins 170 verification 171 LM command 74 LOA card 26 LOC command 74 local serial port configuring 68 local user administration access right 20 locator LED 74 log in initial using default user name and password 40 log console 61 logging in to the iLO 2 MP 40 login timeout 78 LS command 74 M MAC address iLO 2 MP 37 management proce...

Страница 198: ...0 SUV cable 44 SL command 62 SM CLP 123 accessing 124 changing default to SM CLP 124 command options 128 command properties 127 command targets 127 display option 128 exiting 124 firmware revision display 134 invoke system console 133 LDAP configuration 144 level option 128 map1 target 131 network configuration 138 remote access configuration 136 syntax 126 system target 130 text console services ...

Страница 199: ...th 49 LAN access settings 113 LDAP parameters 116 licensing 110 local accounts 111 login options 115 network settings 117 Onboard Administrator 121 power reset 103 power meter readings 105 power regulator 107 remote console IRC 88 remote serial console 93 serial port parameters setting 114 server status general 84 server status identification 85 SNMP settings 119 system event log 86 system status ...

Результаты поиска

Содержание ntegrity iLO 2 MP

Отзывы:

Похожие инструкции для ntegrity iLO 2 MP

Бренды по названию

Популярные бренды

HP ntegrity iLO 2 MP, Руководство по эксплуатации

Результаты поиска

Содержание ntegrity iLO 2 MP

Отзывы:

Похожие инструкции для ntegrity iLO 2 MP

Бренды по названию

Популярные бренды