MERGEPOINT® SP MANAGER Installer/User Guide
European Union Notification WARNING: This is a class A product. In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures. USA Notification WARNING: Changes or modifications to this unit not expressly approved by the party responsible for compliance could void the user’s authority to operate the equipment.
MergePoint® SP Manager Installer/User Guide Avocent, the Avocent logo, The Power of Being There, DSView and MergePoint are registered trademarks of Avocent Corporation or its affiliates in the U.S. and other countries. All other marks are the property of their respective owners. © 2010 Avocent Corporation.
Instructions This symbol is intended to alert the user to the presence of important operating and maintenance (servicing) instructions in the literature accompanying the appliance. Dangerous Voltage This symbol is intended to alert the user to the presence of uninsulated dangerous voltage within the product’s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons. Power On This symbol indicates the principal on/off switch is in the on position.
iii TA B LE OF C ON TE N TS Product Overview Features and Benefits 1 1 Supported SPs 2 MergePoint SP5x00 Manager Configuration 3 LEDs on the MergePoint SP5x00 manager 4 MergePoint SP5x24/SP5x40 Manager Configuration 5 Safety Precautions 6 Rack mount safety considerations 8 Cabling installation, maintenance and safety tips 8 Installation and Setup Configuring Power for the MergePoint SP manager 11 11 Connecting to the Network 13 Configuring the MergePoint SP Manager Basic Settings 13
iv MergePoint® SP Manager Installer/User Guide BMC log 29 Managing MergePoint SP Manager User Accounts 29 DHCP on the MergePoint SP Manager 32 Service Processor Licenses 33 Automatically Manage SPs 34 Discovering and Adding SPs (Admin Users Only) 34 Manually Adding a Single SP 36 Adding blade chassis and blades 37 Managed and Unmanaged SP Lists (Admin users only) 38 Managing SP Groups (Admin users only) 40 Managing SP Profiles (Admin users only) 41 Managing Default Users (Admin users
Table of Contents Schedules Schedule a task (Admin users only) SNMP Access v 62 62 63 Configuring SNMP on the MergePoint SP manager 64 Configuring SNMP on the service processor 66 SP Operations 68 Viewing SP information 69 Synchronizing blades for a blade chassis 69 Changing the SoL port number 69 Changing the access account of an SP 70 Changing SP parameters 70 Accessing system information 71 Recovering provisioning 71 Changing LAN parameters 72 Host table 72 Static routes 73
vi MergePoint® SP Manager Installer/User Guide Telnet Sessions 82 SSH Sessions 83 Choosing DirectCommand Sessions or Native IP Connections 83 DirectCommand Sessions 86 Native IP Connections 89 Native IP operations using the web interface 90 Native IP operations using SSH Commands 92 Configuring External Authentication Services Configuring a Kerberos Authentication Server 95 96 Configuring an LDAP Authentication Server 97 Configuring an NIS Authentication Server 98 Configuring a RADIUS
Table of Contents vii Shutting down the MergePoint SP Manager 112 Configuring Groups for Use with Authentication Servers 112 Configuring group authorization for LDAP authentication 113 Configuring group authorizations on an AD server 113 Defining groups on an LDAP server running OpenLDAP 115 Configuring group authorization for RADIUS authentication 116 Configuring group authorization for TACACS+ authentication 118 Using the CLI Utility CLI Utility Overview 121 121 Execution Modes 121 Com
viii MergePoint® SP Manager Installer/User Guide shell 135 revert 136 version 136 Summary of How to Configure the Top Level Parameters Using SMASH Command Line Protocol SMASH CLP Overview 136 149 150 SMASH CLP implementation 150 Supported profiles 151 Terms 152 General command syntax 153 Targets 154 Starting a SMASH CLP session 155 Using Commands 156 Viewing targets, properties and commands for a target 156 Setting properties on a target 156 Associations 157 MergePoint SP appli
Table of Contents ix Appendix D: Access Privileges 200 Appendix E: Configuring the BIOS Settings for SoL 204 Appendix F: Configuring a Virtual Serial Port 205 Appendix G: Profile Configuration 206 Appendix H: Glossary and Acronyms 218 License Information 221
x MergePoint® SP Manager Installer/User Guide
1 1 Product Overview The MergePoint service processor (SP) manager is a secure, centralized enterprise management solution for target devices equipped with IPMI, HP®, Dell®, IBM®, Sun® and Fujitsu Technology Solutions (FTS) service processors (SPs). You can remotely perform server management tasks, including power control and console access, on managed target devices. The MergePoint SP manager provides a standardized interface independent of the management protocols used to manage each SP.
2 MergePoint® SP Manager Installer/User Guide The MergePoint SP manager allows enterprise-class authentication, authorization and auditing (AAA) security and encryption, and extends this functionality to all servers. Other standard features include data logging, event detection and notification, SNMP proxy, graphing and alarm events for sensors and shared access to management ports.
Chapter 1: Product Overview MergePoint SP5x00 Manager Configuration Figure 1.1: MergePoint SP5x00 Manager Configuration Table 1.
4 MergePoint® SP Manager Installer/User Guide Number Description Number Description 4 CAT 5 Cables 9 5 MergePoint SP5x00 Manager Terminal or Workstation (for Configuration) LEDs on the MergePoint SP5x00 manager On the front of the MergePoint SP5x00 manager, the LAN LED provides information about the LAN activity; the LED blinks to indicate activity. The power LED is green if the MergePoint SP5x00 manager is turned on.
Chapter 1: Product Overview MergePoint SP5x24/SP5x40 Manager Configuration Figure 1.
6 MergePoint® SP Manager Installer/User Guide Table 1.
Chapter 1: Product Overview 7 • Choose a location that avoids excessive heat, direct sunlight, dust or chemical exposure, all of which can cause the product to fail. For example, do not place an Avocent product near a radiator or heat register, which can cause overheating. • Connect products that have dual power supplies to two separate power sources, for example, one commercial circuit and one uninterruptible power supply (UPS).
8 MergePoint® SP Manager Installer/User Guide • Place the equipment so that at least 50% of the equipment is inside the table or desk’s leg support area to avoid tipping of the table or desk. Rack mount safety considerations • Elevated Ambient Temperature: If installed in a closed rack assembly, the operating temperature of the rack environment may be greater than room ambient. Use care not to exceed the rated maximum ambient temperature of the switch.
Chapter 1: Product Overview 9 • Always test every installed segment with a cable tester. “Toning” alone is not an acceptable test. • Always install jacks so as to prevent dust and other contaminants from settling on the contacts. The contacts of the jack should face up on the flush mounted plates, or left/right/down on surface mount boxes. • Always leave extra slack on the cables, neatly coiled in the ceiling or nearest concealed location.
10 MergePoint® SP Manager Installer/User Guide
11 2 Installation and Setup Configuring Power for the MergePoint SP manager The MergePoint SP manager is supplied with single or dual AC or DC power supplies. To configure AC power: 1. Make sure that the power switch on the MergePoint SP manager is turned off. 2. Plug the power cable into the MergePoint SP manager and into a power source. 3. Turn on the MergePoint SP manager.
12 MergePoint® SP Manager Installer/User Guide Figure 2.1: DC Power Connection Terminal Block Table 2.1: DC Power Connection Details Number Description 1 RTN (Return) 2 GND (Ground) 3 -48VDC 1. Make sure that the power switch on the appliance is turned off. 2. Make sure that DC power cables are not connected to a power source. 3. Remove the protective cover from the DC power block by sliding it to the left or right. 4. Loosen all three DC power connection terminal screws. 5.
Chapter 2: Installation and Setup 9. 13 If your MergePoint SP manager has dual-input DC terminals, repeat steps 3 - 8 for the second terminal. 10. Connect the DC power cables to the DC power source and turn on the DC power source. 11. Turn on the MergePoint SP manager. Connecting to the Network To connect the MergePoint SP manager and service processors to the network: 1. Rack mount or place the MergePoint SP manager at the top of your server rack. 2.
14 MergePoint® SP Manager Installer/User Guide 2. Start a session with the port settings of serial speed as 9600 bps, data length as 8 data bits, parity as none, stop bits as 1, flow control as none and emulation as ANSI. Once a connection is established, a prompt appears. 3. Enter the username and password. The preset values is admin for both the username and password. 4. For the MergePoint SP5x00 manager: a. Type 2 (Network Config). b.
Chapter 2: Installation and Setup i. 15 Exit from the CLI utility: cli> quit NOTE: To restore default configuration parameters, type restorefactory. NOTE: For more information on configuring IP address, see Summary of How to Configure the Top Level Parameters on page 136. Activating the MergePoint SP5x00 Manager License You must register your MergePoint SP5x00 manager online at www.avocent.com to obtain a master license key.
16 MergePoint® SP Manager Installer/User Guide Adding the MergePoint SP Manager to a DSView 3 Software Installation If you will be using the MergePoint SP manager within a DSView 3 software installation, you may now use the DSView 3 software Add Appliance wizard to add the MergePoint SP manager and finish configuration. For detailed instructions, refer to the DSView 3 software installer/user guide.
Chapter 2: Installation and Setup 17 Table 2.
18 MergePoint® SP Manager Installer/User Guide 2. Click Load Config File. 3. In the Filename field, type the path to the file you wish to open or click Browse to locate the file. 4. Click Upload to import the data in the file to the wizard. The settings stored in the config appear on screen. Optionally, use this interface to modify any settings that need to be changed for this appliance. 5. Click Apply Current Config to configure the appliance.
Chapter 2: Installation and Setup 19 Table 2.3: Samples of the Config File for the MergePoint 24/40 Manager Sample code from config file ...... - ......
20 MergePoint® SP Manager Installer/User Guide NOTE: Connecting service processors to eth0 is not recommended because some services, like BMC provisioning or DHCP servers, only listen to eth1. Ethernet ports on the MergePoint SP5x24/SP5x40 manager The MergePoint SP5x24/SP5x40 manager has two public Ethernet ports (eth0 and eth1) and 24 or 40 Ethernet private ports.
Chapter 2: Installation and Setup 21 Bridge mode Bridge mode bridges the private Ethernet ports with the public Ethernet ports, allowing traffic to go through the MergePoint SP5x24/SP5x40 manager from a host on the external network to a service processor on the internal network and vice-versa, with no interference from the MergePoint SP manager itself. After Bridge mode is enabled, the bridged Ethernet interfaces are referred to as br0; the eth0, eth1 and priv0 are not accessible at the same time.
22 MergePoint® SP Manager Installer/User Guide For the Static method, select Static and enter the address, subnet mask, gateway in the fields provided. For IPv4 only, also enter the broadcast in the field provided. c. Click Apply. To enable VLAN for the MergePoint SP5x00 manager (Admin users only): 1. Click the Network tab. 2. Click a device link. Configure VLAN for the device: a. In the ID field, type the ID for the VLAN. b. In the Status drop-down menu, select Yes to enable VLAN. c.
Chapter 2: Installation and Setup 5. 6. 23 Configure the following fields for the Domain Name System (DNS) server: a. In the Primary server field, type the IP address of the primary server. b. In the Secondary server field, type the IP address of the secondary server. c. In the Domain name field, type the domain name. d. Click Apply. Click a device link. Configure IPv4 and/or IPv6 addresses by entering the following information in the respective areas. a.
24 MergePoint® SP Manager Installer/User Guide sysctl –n marvell.xxx NOTE: The xxx value is the switch port number. The output is the current speed of the switch port. The current speed may differ from the speed you set if you chose auto mode or negotiable mode for the speed value.
Chapter 2: Installation and Setup 25 To delete a private subnet: 1. Click Network - Private subnet. 2. Check the private subnet you want to delete and click Delete. Firewall/Packet Filtering Packet filtering on the MergePoint SP manager is controlled by chains and rules that are configured in iptables. By default, the MergePoint SP manager does not forward any traffic between private and public networks.
26 MergePoint® SP Manager Installer/User Guide To add a new packet filtering (firewall) rule: 1. Click Network - Firewall. 2. Click Add for the chain to which you wish to add a rule. 3. Configure one or more of the following filtering options, as desired. 4. a. In the Protocol drop-down menu, select a protocol. b. In the Source IP/mask field, type a source IP and subnet mask in the form: hostIPaddress or networkIPaddress/NN. c.
Chapter 2: Installation and Setup 27 The MergePoint SP manager provides a PXE (Preboot Execution Environment) based solution for provisioning the BMC and can be configured to automatically provision the IPMI BMC of a target device. The network interface card (NIC) on the BMC must support PXE to the NIC interface. If you have a dedicated IPMI NIC, your system may not support PXE to that device or port. There are two modes of provisioning available: dynamic and static.
28 MergePoint® SP Manager Installer/User Guide 4. 5. Check the VLAN Enable field if you need to use VLAN on BMC, and specify the following VLAN parameters: a. In the VLAN ID field, type the VLAN ID. b. In the VLAN Priority field, type the VLAN priority. Click Apply. NOTE: For the MergePoint SP5x00 manager, it is strongly recommended that the VLAN ID on the BMC and the MergePoint SP5x00 manager are the same; otherwise, the BMC cannot communicate with the MergePoint SP manager in the VLAN mode.
Chapter 2: Installation and Setup 29 BMC log Once BMC provisioning starts, an activity log is displayed in the Provisioning window listing all IP addresses which have been assigned to SPs. A status of Confirmed or Unconfirmed is displayed for each SP in the specified IP address range. A status of Confirmed in the State column indicates that the BMC provisioning for that SP is complete and the SP can now be managed by the MergePoint SP manager. To delete the provisioning log (Admin users only): 1.
30 MergePoint® SP Manager Installer/User Guide Reserved words (do not use as usernames) Reserved words are predefined words that have special meaning to the MergePoint SP manager. Do not use the following reserved words when configuring usernames. Table 2.
Chapter 2: Installation and Setup 31 4. To change the privileges assigned to the user, select the desired privilege from the Privilege drop-down menu: Admin, Operator, User or customized roles. 5. For Operator, User or customized role privilege users, select the SPs which can be managed by the user. For Admin privilege users, skip this step. 6. Click Apply. To delete an appliance user (Admin users only): 1. Click Users - Users. 2.
32 MergePoint® SP Manager Installer/User Guide To edit a user group (Admin users only): 1. Click Users - Groups. 2. Click the link of the group name you want to edit. 3. Edit the settings as needed and click Apply. To delete a user group (Admin users only): 1. Click Users - Groups. 2. Select the user group you want to delete and click Delete.
Chapter 2: Installation and Setup 3. 33 For dynamic DHCP, specify the Start and End IP range of addresses in the dynamic DHCP area. -orFor static DHCP, click Add in the Static IP area and specify the requested parameters. 4. Click Apply. NOTE: To modify a static IP address, click on the name of the IP address and follow the on-screen instructions. To delete a static IP address, select the check box next to the name and click Delete. To stop or start the DHCP service: 1. Click SP - DHCP. 2.
34 MergePoint® SP Manager Installer/User Guide To view the number of in use and free SP licenses: Click the SP tab. The Managed SP list displays how many service processors are currently managed by the appliance and the number of remaining free licenses. NOTE: An appliance license is also required to activate the MergePoint SP5x00 manager; see Activating the MergePoint SP5x00 Manager License on page 15.
Chapter 2: Installation and Setup 35 For most SPs, you can view the type of SPs from the SP Profile column in the Unmanaged SP list. In a few cases, the SP profiles cannot be recognized until the SPs are managed and verified. For more details, see Managed and Unmanaged SP Lists (Admin users only) on page 38. NOTE: To avoid MergePoint SP manager discover errors, ensure the following: - RSA II, IBM Blade Center, and Sun ALOM servers must have SSH interfaces enabled.
36 MergePoint® SP Manager Installer/User Guide If you enabled automatic management (see Automatically Manage SPs on page 34), then discovery results are displayed in the Managed SP list. Otherwise, discovery results are displayed in the Unmanaged SP list. See Managed and Unmanaged SP Lists (Admin users only) on page 38. Manually Adding a Single SP If you already know the IP address of an SP, you may add it manually.
Chapter 2: Installation and Setup 37 NOTE: The KG field only appears when you select IPMI from the SP Profile drop-down menu. A BMC key is required by IPMI 2.0 and RMCP+ (Remote Mail Checking Protocol). 7. (Optional) From the Cipher drop-down menu, select a value for the new SP. NOTE: The Cipher drop-down menu only appears when you select IPMI(HP), IPMI(IBM), IPMI(Dell), FTS iRMC or FTS iRMC S2 from the SP Profile drop-down menu. 8.
38 MergePoint® SP Manager Installer/User Guide If these conditions are not met, only the blade chassis is added and the blades are not available. If more licenses are needed, you can first acquire the additional licenses and then click Resync to add the blades under the blade chassis. Or, if an individual blade contains a supported service processor, you can add it to the MergePoint SP manager separately. In this case, the blade operates as an independent SP, not a subset of the blade chassis SP.
Chapter 2: Installation and Setup 39 a. To use the preset credentials configured by the manufacturer, select Use default username and password. - or To use a new username and password, select Do not use default username and password and enter the username and password in the corresponding fields. b. Select or deselect Data Buffering as desired. (To set SoL data buffering size, see Configuring the MergePoint SP Manager System Settings (Admin Users Only) on page 46).
40 MergePoint® SP Manager Installer/User Guide 2. Click the Properties tab. 3. In the top navigation bar, click Target. A window displaying SP information appears. 4. To add the SP to a group, click Copy To. From the Group drop-down menu, select a group. The SP is added to the new group and remains in the current group. -orTo move the SP to a new group, click Move To. From the Group drop-down menu, select a group. The SP is added to the new group and removed from the current group. 5. Click Apply.
Chapter 2: Installation and Setup 41 - or Click a group name from the explorer tree in the side navigation bar, click Configuration in the top navigation bar, then click Delete. To add a managed SP to an SP group: 1. Click the SP tab, then click SP in the top navigation bar. 2. In the Managed SP list, select the SP you wish to add to a group, then click Add SP to Group. 3. From the Group Name drop-down menu, select the group to which you wish to add the SP, then click Apply.
42 MergePoint® SP Manager Installer/User Guide The new template is added to lists of command templates and becomes available for using when configuring SPs. The following SP profiles do not need a template: • • IPMI SPs. • SPs being configured only for Native IP access. • SPs being configured only for DirectCommand access. DirectCommand Options: contains values to be used when DirectCommand is launched.
Chapter 2: Installation and Setup 43 To view the settings of the default SP profiles: 1. Click SP - SP Profiles. 2. Select the desired SP profile in the Default SP Profiles area. To delete user SP profiles: 1. Click SP - SP Profiles. 2. In the User SP Profiles list, select the SP profile you wish to delete and click Delete. To modify a user SP profile: 1. Click SP - SP Profiles. 2.
44 MergePoint® SP Manager Installer/User Guide Type Username Password DELL DRAC 5 root calvin DELL 10G root calvin HP IPMI admin admin HP iLo1 admin opensource HP iLo2 [no default] [no default] SUN iLom root changeme SUN Alom admin admin Fujitsu Siemens iRMC admin admin DELL DRAC MC root calvin DELL iDRAC SP root calvin DELL m1000e CMC root calvin HP BladeCenter Administrator admin SUN ELOM root Fujitsu Siemens iRMC S2 root changeme password NOTE: This feature is
Chapter 2: Installation and Setup 45 To edit a default user: 1. Click SP - Default SP User. 2. Click the username you want to modify. Managing user accounts on SPs The Users window lists all user accounts for the selected SP. MergePoint SP manager users with Admin privileges may change user account information on SPs. NOTE: This feature is available for SPs that have user management functions. Different types of devices have different user management systems.
46 MergePoint® SP Manager Installer/User Guide Click Remove User next to the user you wish to remove. NOTE: The line of the removed user will not disappear from the user list. Instead, it will become a user without a username that has Guest user privilege (no matter which user privilege it had before). Configuring the MergePoint SP Manager System Settings (Admin Users Only) To change the MergePoint SP manager alias: 1. Click System - Setting. 2.
Chapter 2: Installation and Setup 47 To set the Internet time server: 1. Click System - Advanced Setting. 2. In the Internet time server field, enter the Internet time server address. 3. (Optional) Click Update Now to immediately synchronize the MergePoint SP manager with the Internet time server. 4. (Optional) Select Automatically synchronize with an Internet time server to synchronize the MergePoint SP manager with the Internet time server every 36 hours. 5. Click Apply.
48 MergePoint® SP Manager Installer/User Guide 8. c. In the DST start fields, select the start dates of daylight saving time from the pop-up calendar. d. In the DST end fields, select the end dates of daylight saving time from the pop-up calendar. Click Apply. To enable or disable the Telnet or SSH protocol: 1. Click System - Setting. 2. Select or deselect Telnet or SSH to enable/disable the respective protocol. 3. Click Apply.
49 3 Operations The operations in this chapter are performed using the MergePoint SP manager web interface. For instructions on using the MergePoint SP manager with DSView 3 software, please see the DSView 3 Software Installer/User Guide. When the MergePoint SP manager is selected in the side navigation bar, a line of tabs and subtabs appears in the tab bar. They vary according to the user access level. For users without administrator access, only the SP, Users and Alerts tabs are available.
50 MergePoint® SP Manager Installer/User Guide or later, Mozilla 32-bit version 1.7.3 or later, or Mozilla 64-bit. To access the MergePoint SP manager web interface: 1. Open a web browser and enter the IP address of the MergePoint SP manager. 2. Enter your username and password and click Login. NOTE: When following any of the MergePoint SP manager configuration procedures in this document, start by clicking the name of the MergePoint SP manager in the side navigation bar. Click Apply to save changes.
Chapter 3: Operations 51 Table 3.1: MergePoint SP Manager Web Interface Descriptions Number 1 Window Area Top Navigation Bar 3 Use the top option bar to log out or access online help. If any alerts occur, a yellow icon is Option Bar displayed. The name of the logged in user appears on the left side of the top option bar. Side 2 Description Tab Bar Use the side navigation bar to select the appliance or SPs and access or edit corresponding information in the content area.
52 MergePoint® SP Manager Installer/User Guide 2. Click the System tab. 3. In the top navigation bar, click Power. The Power Information window appears and displays the current power status of the target device. 4. Following the instructions on the page, select the desired power action: Power On, Power Off, Graceful Shutdown, Power Reset, Power Cycle and Soft Reset. To monitor power for a Dell 10G SP: 1. In the side navigation bar, click an SP name. 2. Click the System tab. 3.
Chapter 3: Operations 6. 53 Click Apply. To perform a cold reset on an SP: 1. In the side navigation bar, click an SP name. 2. Click the System tab. 3. In the top navigation bar, click Advanced Tools. The Setting window appears. 4. Click Cold Reset to perform a cold reset on the selected SP. A message will appear to indicate the success status of the cold reset. To reboot the MergePoint SP manager: Click System – Setting - Apply Reboot.
54 MergePoint® SP Manager Installer/User Guide To turn LED indicators on or off for all SPs in a group: 1. Click SP - Group. 2. Select the group(s) you wish to modify and click the desired indicator state. - or Click a group name from the explorer tree in the side navigation bar, click Action in the top navigation bar, then click the desired indicator state. To set the time for all SPs in a group: 1. Click SP - Group. 2. Select the group(s) you wish to modify and click Set Time.
Chapter 3: Operations c. 55 Type up to four IP addresses in the Alert Destination IP Address fields. NOTE: To allow the MergePoint SP manager to receive alerts from the SP, one field should contain the IP address of the MergePoint SP manager. 4. Click Apply. To set a user and password for all SPs in a group: 1. Click SP - Group. 2. In the Group list, select the group(s) you wish to modify and click Set User and Password.
56 MergePoint® SP Manager Installer/User Guide To view SEL events: 1. In the side navigation bar, click an SP name. 2. Click the SEL tab. 3. In the top navigation bar, click SEL. The SEL window and a detailed SEL event list appears. To clear the SEL events: 1. In the side navigation bar, click an SP name. 2. Click the SEL tab. 3. In the top navigation bar, click SEL. The SEL window appears. 4. Click Clear All. All currently listed events are removed from the list.
Chapter 3: Operations 57 To view the accounting log (Admin users only): 1. Click the Accounting Log tab. 2. Click WEB to view operations performed through the MergePoint SP manager web interface. -orClick Mgpshell to view operations performed through the Mgpshell. Import/export data This function allows you to backup and restore the MergePoint SP manager by exporting the data to the client PC or a storage location on the network.
58 MergePoint® SP Manager Installer/User Guide 3. In the top navigation bar, click FRU Information. A detailed FRU information report appears. Using the Alerts Viewer The MergePoint SP manager logs user-defined alerts that occur on managed SPs in the Alert Viewer window. You may configure the MergePoint SP manager to send a notification by email, MSN, SNMP Forward or Yahoo! message when specific alerts occur.
Chapter 3: Operations 5. 59 g. In the YAHOO IM User field, type the YAHOO IM account used as the YAHOO IM message sender. h. In the YAHOO IM Password field, type the password for the YAHOO IM account. Click Apply. To create an alert action (Admin users only): 1. Click the Alerts tab. 2. In the top navigation bar, click Action. 3. Click Add. 4. In the Action Configuration area, specify the following information: a.
60 MergePoint® SP Manager Installer/User Guide 4. b. In the Period From and To fields, type the date range for the alerts you wish to be included in the query results. The default value of the To field is the current date. c. From the IP address drop-down menu, select either All or a specific IP address for the SPs you wish to be included in the query results. d.
Chapter 3: Operations 61 Message filtering levels Messages can be filtered according to their severity, based on any or all of the levels from the following list. • 0 - Emergency • 1 - Alert • 2 - Critical • 3 - Error • 4 - Warning • 5 - Notice • 6 - Info • 7 - Debug Configuring syslog messages To configure syslog message filtering: 1. Click System - Syslog. 2. Select the link of the filter name which you want to modify. 3. Click the checkboxes next to the desired severity levels. 4.
62 MergePoint® SP Manager Installer/User Guide NOTE: You can edit or delete syslog servers by selecting the corresponding destination and clicking Delete. Configuring PET alerts Users with Admin privileges may configure PET alerts separately for each SP. To configure PET alerts: 1. In the side navigation bar, click an SP name. 2. Click the Configuration tab. 3. In the top navigation bar, click Event Destination. The PET Setting window appears. 4.
Chapter 3: Operations 4. 63 e. From the Time menu(s), select the day, hour and minute for the task to occur. Options in the Time menus vary according to your selections. f. Choose Once, Daily, Weekly or Monthly, then specify the task schedule accordingly. Click Apply. To edit a scheduled task: 1. Click System - Schedules. 2. Click Edit next to the task you wish to edit and follow the on-screen instructions. To delete a scheduled task: 1. Click System - Schedules. 2.
64 MergePoint® SP Manager Installer/User Guide If SNMP is used as recommended, no public client is allowed unauthenticated access to either managed clients or to the MergePoint SP manager. For compatibility with other clients, unencrypted transfer of data is possible with SNMP v3 connections, but strongly discouraged. • User and group information for v3 connections must be different from the user and group names used for accessing the MergePoint SP manager.
Chapter 3: Operations 65 NOTE: You may edit or delete an existing view by clicking the view name link and following the on-screen instructions. To configure users with SNMP v3: 1. Click Network - SNMP. 2. In the Users area, click Add, then type a username. 3. Select an authentication method from the Auth method drop-down menu, then enter an optional authentication password. 4. Select an encryption method from the Encryption drop-down menu, then enter an optional encryption password. 5.
66 MergePoint® SP Manager Installer/User Guide 5. a. Select a user from User drop-down menu. See To configure users with SNMP v3: on page 65 for more information. b. For each security level, select a read view and write view under the Read view and Write view columns. If the list is empty, no view has been configured; see To configure views: on page 64. Click Apply.
Chapter 3: Operations 67 To configure SNMP access settings for an SP: Perform this procedure to configure how users on the public side authenticate themselves to the MergePoint SP manager. 1. In the side navigation bar, click an SP name. 2. Click the Configuration tab. 3. In the top navigation bar, click SNMP. The SNMP window appears. 4. In the Access settings area, click Add. 5. From the SNMP version drop-down menu, select a version. 6.
68 MergePoint® SP Manager Installer/User Guide In an SNMP request to a SP from a client server, the SNMP request is issued to the MergePoint SP manager public IP address. The request contains the unique community name as defined in the SPs access settings section (see To configure SNMP access settings for an SP: on page 67).
Chapter 3: Operations 69 • System: Use this tab to remotely perform system operations, including power, chassis and other advanced operations. • Configuration: Use this tab to remotely configure managed SPs, including changing LAN parameters, managing user accounts, configuring PET settings, configuring SoL, setting BMC time, performing provisioning recovery and setting up SNMP and Native IP. • SEL: Use this tab to view SP SEL information.
70 MergePoint® SP Manager Installer/User Guide 4. In the SoL Port field, type a SoL port number and click Apply. Changing the access account of an SP To change the access account of an SP: 1. Click the SP tab. The SP window appears. 2. In the Managed SP list, click the desired SP link. 3. In the Username and Password field, type the username and password you would like to use to access the SP. 4. Click Apply.
Chapter 3: Operations 71 NOTE: If Verify username and password is selected, the username and password are verified when adding an SP and the Serial over LAN (SoL) session starts automatically. If Verify username and password is deselected, the username and password are not verified when adding an SP and the SoL session is not started. For a verified SP, you may change the username and password in the corresponding fields for accessing other functions. 7.
72 MergePoint® SP Manager Installer/User Guide To recover provisioning for an SP: 1. In the side navigation bar, click an SP name. 2. Click the Configuration tab. 3. In the top navigation bar, click Recover. The Provisioning Recover window appears. 4. Click Provisioning Recover. NOTE: The Provisioning Recover button is only available after the provisioning on this SP is performed successfully and confirmed. Changing LAN parameters To change LAN parameters: 1.
Chapter 3: Operations 73 To edit an entry: 1. Select Network - Host Table. 2. Click the IP address link of the entry you would like to edit and follow the on-screen instructions. To delete an entry: 1. Select Network - Host Table. 2. Select the entry(s) you would like to delete and click Delete. Static routes Admin users can use the Static routes feature to manually add, edit or delete existing static routes. To add a static route: 1. Click Network - Static Routes. 2. Click Add. 3.
74 MergePoint® SP Manager Installer/User Guide Configuring SoL parameters The MergePoint SP manager allows you to define SoL parameters for certain types of SPs, including Enable/Disable Serial over LAN, baud rate and channel privilege limit level. To configure SoL parameters: 1. In the side navigation bar, click an SP name. 2. Click the Configuration tab. 3. In the top navigation bar, click Serial over LAN. The Serial over LAN Configuration window appears. 4.
Chapter 3: Operations 75 Remote Control You may connect to a Remote Desktop Protocol (RDP) or Virtual Network Computing (VNC) server remotely through the MergePoint SP manager. To connect to an RDP server: 1. In the side navigation bar, click an SP name. 2. Click the Remote Control tab. 3. In the top navigation bar, click RDP. The RDP window appears. 4. In the Server field, type the host operating system IP address (or hostname). 5. Click Connect. To connect to a VNC server: 1.
76 MergePoint® SP Manager Installer/User Guide 4. Click Start. NOTE: You must stop the debug manually; otherwise the debug process continues indefinitely. When the trace file size reaches to the maximum size (preset maximum is 1M), the trace file will be rewritten. To stop the network debug: 1. Click the Diagnostic tab. 2. In the top navigation bar, click Debug. 3. Click Stop. Once stopped, you may download the trace file. To download the trace file: 1. Click the Diagnostic tab. 2.
Chapter 3: Operations 77 To upgrade firmware on the MergePoint SP manager (Admin users only): 1. Click System - Upgrade. 2. In the Filename field, type the path to the firmware file or click Browse to locate the file. 3. Click Upgrade. NOTE: If the upgrade fails, you may use the serial port to restore the MergePoint SP manager to the previous firmware version. For more information see Configuring the MergePoint SP Manager Basic Settings on page 13.
78 MergePoint® SP Manager Installer/User Guide • The MergePoint SP manager must have a fixed IP address. Configuring boot characteristics The boot configuration feature allows the Admin user to configure the MergePoint SP5x24/SP5x40 manager boot characteristics, including the location of the MergePoint SP manager boot file, the watchdog timer state, the console speed and the speed of the Ethernet interfaces. To configure boot options (Admin users only): 1. Click System - Boot configuration. 2.
79 4 SP Sessions and Connections The MergePoint SP manager provides access to SPs through a variety of session types and connections. From an SoL (Serial over LAN), SP console, Telnet or SSH session, you can access the serial controller, access the console or perform management actions, respectively. Alternatively, DirectCommand sessions and Native IP sessions provide direct, transparent access to the native applications on the SP.
80 MergePoint® SP Manager Installer/User Guide • SoL (Serial over LAN) Session - SoL provides a mechanism that enables the serial controller of a managed SP to be redirected through a service processor session over IP. This enables remote console applications to provide access to text-based interfaces for BIOS, utilities, operating systems and management services while simultaneously providing access to service processor functions. See SoL Sessions on page 81.
Chapter 4: SP Sessions and Connections 81 To view the Active Sessions panel and disconnect sessions: 1. In the side navigation bar, click an SP name. 2. Click the System Sessions tab. 3. In the top navigation bar, click Sessions. 4. In the Active Sessions panel, select the session(s) you want to disconnect. 5. Click Delete. The corresponding session(s) window are closed. When all the connections to a session are deleted, the status of the corresponding session(s) is changed to Idle.
82 MergePoint® SP Manager Installer/User Guide 2. Click the System Sessions tab. 3. In the top navigation bar, click Sessions. 4. In the SoL Session panel, click SoL Session History to display all the commands entered in SoL mode and their output. NOTE: Dell DRAC/MC SPs and iDRAC blade SPs do not support SoL session history. NOTE: To save the SoL session history on the network file system, see NFS on page 74. To replay SoL: 1. In the side navigation bar, click an SP name. 2.
Chapter 4: SP Sessions and Connections 4. 83 In the Telnet Session panel, click Telnet Session to open the Telnet console window through a MindTerm client. After connecting to the Telnet session and logging into the SP with SP’s username and password, you can launch the management application from the service processor’s command line. SSH Sessions You can open an SSH session to the selected SP. To connect SSH session: 1. In the side navigation bar, click an SP name. 2. Click the System Sessions tab.
84 MergePoint® SP Manager Installer/User Guide • If you want an application like HP Systems Insight Manager (SIM) or IBM Director to connect to the native IP address of a service processor connected to the MergePoint SP5x24/SP5x40 manager, use Native IP. The Native IP feature allows access to the related programmatic interface and network protocols, where as DirectCommand only allows interaction with the configured TCP ports of a service processor through a mapped local loopback address (such as 127.x.x.
Chapter 4: SP Sessions and Connections 85 Figure 4.1: MergePoint SP5x24/SP5x40 SP Manager Native IP Configuration Table 4.
86 MergePoint® SP Manager Installer/User Guide Number Description 3 4 DirectCommand or Native IP connection to the service processor Connection to the MergePoint SP manager web interface Number Description 7 8 SP Native interface, application or command line on the SP DirectCommand Sessions DirectCommand sessions allows transparent access to a service processor through the MergePoint SP manager’s web interface.
Chapter 4: SP Sessions and Connections 87 interface, vKVM interface or vMedia interface. A DirectCommand Connected link appears on the top option bar on the upper-right side of the page, where you can access the DirectCommand connection list window. If the connection fails, the related diagnostic information and error message is shown. NOTE: The number of session links depends on the type of SP. For example, currently only iLO has the vMedia interface.
88 MergePoint® SP Manager Installer/User Guide 4. If DirectCommand is not already connected, click Connect in the DirectCommand Session panel. 5. Click Browser Session. -orFrom the Top Option bar, click Connected. The DirectCommand connection list window appears. Select the alias of the desired SP from the window, then click DirectCommand. To start a Browser session (Auto Login): 1. In the side navigation bar, click an SP name. 2. Click the System Sessions tab. 3.
Chapter 4: SP Sessions and Connections 89 NOTE: Some versions of the RSA II SP firmware can become unstable when two or more web or vKVM sessions are opened simultaneously. If you open these sessions directly from the RSA II SP without going through the MergePoint SP manager, the web browser displays a blank page. If you open the Browser or vKVM session from the MergePoint SP manager DirectCommand session panel, SP unavailable and Reset firmware messages are displayed. To start a vMedia session: 1.
90 MergePoint® SP Manager Installer/User Guide The Native IP configuration process includes these steps: • To allow any IP addresses on the network to create Native IP connections, administrators can enable Selective mode. Selective mode creates an open trust (0.0.0.0/0) that frees the connection pathway to trust any client to make a Native IP connection. -orTo limit which IP address can create Native IP connections, administrators can specify IP addresses in a Native IP trust.
Chapter 4: SP Sessions and Connections 91 To delete a Native IP trust: 1. In the side navigation bar, select the MergePoint SP manager. 2. Click Network - Native IP Trusts. 3. Select the Native IP you want to delete and click Delete. NOTE: When a trust is deleted, any related Native IP connections are disabled. To set up a permanent Native IP connection: 1. In the side navigation bar, select the MergePoint SP manager. 2. Click Network - Native IP Connects. 3. Click Add. 4.
92 MergePoint® SP Manager Installer/User Guide To add a route or set the appliance as a default gateway at the user’s workstation: NOTE: This procedure is provided for your convenience, but specific steps may vary depending on the host operating system. For more information, see the installer/user guide for the host operating system. Open the Internet Protocol (TCP/IP) Properties window and enter the MergePoint SP manager IP address in the default gateway field.
Chapter 4: SP Sessions and Connections 93 To add a Native IP trust: Run the command by entering the following: admin@MergePoint:~$ nativeipctl truston / dev For example, to allow direct connection from 172.X.X.X network segment to service processors: admin@MergePoint:~$ nativeipctl truston 172.0.0.0/255.0.0.0 dev eth0 For example, to allow direct connection from host 192.168.0.1 to service processors: admin@MergePoint:~$ nativeipctl truston 192.168.0.1/255.255.255.
94 MergePoint® SP Manager Installer/User Guide admin@MergePoint:~$ nativeipctl on type p client 12.34.56.78 172.26.25.
95 Configuring External Authentication Services 5 By selecting the Users – Authentication Services menu option, the administrative user can configure authentication services. These authentication methods use both local authentication and authentication servers in the order shown: Local/AuthType, AuthType/Local and then AuthType Down/Local. • The AuthType/Local and AuthType Down/Local authorization methods are referred to as authentication methods with local fallback options.
96 MergePoint® SP Manager Installer/User Guide Method Definition Use user/password configured on the AuthType authentication server. No logins AuthType allowed if the AuthType server is down or the AuthType authentication fails. AuthType Down/Local Use local authentication if the AuthType server is down. AuthType/Local Use local authentication if the AuthType authentication fails. Local/AuthType Use the AuthType authentication if local authentication fails.
Chapter 5: Configuring External Authentication Services b. 2. 97 Add an entry for appliance (if needed) and add an entry for the Kerberos server. Make sure that time zone and time and date settings are synchronized between the MergePoint SP manager and on the Kerberos server. NOTE: Kerberos authentication depends on time synchronization. Time and date synchronization is most easily achieved by setting both the MergePoint SP manager and the Kerberos server to use the same NTP server. a.
98 MergePoint® SP Manager Installer/User Guide 5. In the LDAP Base field, change the definition if the LDAP authentication server uses a different distinguished name for the search base than the one displayed. NOTE: The default distinguished name is dc, as in dc=value,dc=value. For example, if the distinguished name on the LDAP server is o, then replace dc in the base field with o, as in o=value,o=value. 6. From the Secure LDAP drop-down menu, select either Off, On and Start TLS. 7.
Chapter 5: Configuring External Authentication Services 99 2. In the top navigation bar, click Authentication Services. The Authentication Service Configuration window appears. 3. Select Radius from the Authentication Method drop-down menu. 4. In the First Authentication Server field, type the IP address of the first or only authentication server. 5. In the Second Authentication Server field, type the IP address of a second authentication server (if available) 6.
100 MergePoint® SP Manager Installer/User Guide Configuring a TACACS+ Authentication Server You need to configure a TACACS+ authentication server when the MergePoint SP manager is to use the TACACS+ authentication method or any of its variations (Local/TACACS+, TACACS+/Local or TACACS+ Down/Local). To configure a TACACS+ authentication server, you must prepare an account for admin or other admin user. To configure a TACACS+ authentication server: 1. Click the Users tab. 2.
Chapter 5: Configuring External Authentication Services 101 2. In the top navigation bar, click Authentication. The Authentication Configuration window appears. 3. Select the desired authentication method from the Authentication Method drop-down menu. 4. Click Apply.
102 MergePoint® SP Manager Installer/User Guide
103 6 Administration Tasks Not Performed in the Web Interface This section lists the configuration and maintenance tasks that are performed by an administrator (the root user, the admin user or a member of the admin group) on the Linux command line, using the CLI utility.
104 MergePoint® SP Manager Installer/User Guide 7. Enter the device’s port number to bring up the desired web application in the Dest. port field. 8. Enter the IP address of the device in the Dest. address field. 9. Click OK. The tunnel is created. Using SSH with the MergePoint SP Manager Both SSH v1 and SSH v2 services are supported on the MergePoint SP manager.
Chapter 6: Administration Tasks Not Performed in the Web Interface 105 User shell After logging in the MergePoint SP manager console via SSH command or SSH applications (such as PuTTY or Telnet) non-admin users see a menu like the one shown in the following example. Access Devices Change Password Logout Admin users can get to the same menu either by entering the rmenush command on the SSH command line or by entering /usr/bin/rmenush on the command line after login.
106 MergePoint® SP Manager Installer/User Guide MgpShell After logging in MergePoint SP manager console via SSH command or SSH applications as an admin user, typing mgpshell and pressing the Enter or Return key brings up a list of devices you are authorized to access, as shown in the following example. Select a device IBM Blade Center HP Blade System HP iLO/iLO2 Exit After a device is selected, a submenu lists the device management actions available to the user. See User shell on page 105 for details.
Chapter 6: Administration Tasks Not Performed in the Web Interface 107 The first part of the command will establish an SSH session to the MergePoint SP manager. The command is passed through to the service processor connected to the MergePoint SP manager. The MergePoint SP manager will validate and execute the command. For example, a command to open an SSH session to the MergePoint SP manager and execute power on command may look like this: ssh –t jsmith:MGP@172.30.19.122 poweron Table 6.
108 MergePoint® SP Manager Installer/User Guide Command Name Description ssh Starts an SSH session on the server. telnet Starts a Telnet session on the server. Telnet You can start or stop the Telnet service at any time. To start or stop Telnet service: 1. Log into the MergePoint SP manager console as root. 2. Edit the Telnet file using the following command: root@Mergepoint:~# vi /etc/xinetd.d/telnet 3. Set the value of "disable" to "yes" or “no” to disable or enable the Telnet service. 4.
Chapter 6: Administration Tasks Not Performed in the Web Interface 109 NOTE: If changing the default menu, the administrator must ensure that any added programs do not introduce security vulnerabilities. The administrator must know the following about the behavior of rmenush before configuring any changes to the menu: • If the called program exits with a return code indicating an error, rmenush prompts the user to press any key to continue.
110 MergePoint® SP Manager Installer/User Guide New_Menu_Option = command_pathname_and_options New_Submenu = newsubmenu 4. Add a definition for a submenu using the defined keyword by entering the following: [newsubmenu] Submenu_Option1 = command_pathname_and_options Submenu_Option2 = command_pathname_and_options 5. Save and quit the file.
Chapter 6: Administration Tasks Not Performed in the Web Interface 111 assigning the host route created in step 5 to the device eth0 and assigning an optional metric. cli> set network st_routes device eth0 metric OK -orTo assign the route to a gateway, enter set network st_routes gateway . The following screen example shows assigning the network route created in step 6 to the gateway 192.168.2.0.
112 MergePoint® SP Manager Installer/User Guide If you are logged into the console as the root user, enter the restoreconf command: root@MergePoint:~# restoreconf [path]/ NOTE: The path of the file must be the same path the saveconf command defined. Otherwise, the system attempts to get the file from the /storage directory.
Chapter 6: Administration Tasks Not Performed in the Web Interface 113 configures users as members of groups as described in this section, the users do not need to have accounts configured on the MergePoint SP manager. For example, user johnb is defined as a member of a group with admin privileges on a TACACS+ server, but does not have a user account on the MergePoint SP manager.
114 MergePoint® SP Manager Installer/User Guide 5. Click Console in the console window menu bar and select Add/Remove Snapin. The Add/Remove Snapin window appears. 6. Click Add. The Add Standalone Snapins window appears. 7. Select Active Directory Schema from the list of snapins and click Add. 8. Select ADSI Edit from the list of snapins and click Add. 9. Click Close, then click OK in the Add/Remove Snapin window.
Chapter 6: Administration Tasks Not Performed in the Web Interface 115 11. In the Edit Attribute field, enter the group name in the format group_name=;. If the username selected is an administrative user, enter admin as the group_name. 12. Click OK and close or save the windows. Defining groups on an LDAP server running OpenLDAP Perform the following procedures for configuring support for group authorizations when a server running OpenLDAP is used for LDAP authentication.
116 MergePoint® SP Manager Installer/User Guide b. Put all user information, including the group definition in a text file and use the text file with the f option on the command line to configure groups for users. Use the following syntax for configuring a group using the info attribute: info: group_name=; NOTE: To give a user administrative access to the MergePoint SP manager, create a group with the admin role and add the group name to the group_name definition.
Chapter 6: Administration Tasks Not Performed in the Web Interface 117 Callback-Number=305 Framed-Protocol = PPP, Framed-Filter-Id = ‘group_name=;’, Fall-Through = No NOTE: If the FrameFilterId already exists, append the group_name declaration to the string. Make sure a final semicolon (;) is at the end of the declaration, as shown in the example. 4. Save and quit the file. To configure a RADIUS authentication server on the MergePoint SP manager: 1. Log into the console as the root user. 2.
118 MergePoint® SP Manager Installer/User Guide # # server[:port] shared_secret timeout (s) # 127.0.0.1 secret 1 # otherserver othersecret 3 OUR.RADIUS.SERVER.IP:1645 OurSecret 1 3 5. Enter the IP address for the server. 6. (Optional) Define an alternate port. 7. Enter the secret (shared password). 8. (Optional) Enter a value to redefine the time-out. 9. (Optional) Enter a value to redefine the number of retries.
Chapter 6: Administration Tasks Not Performed in the Web Interface 119 NOTE: These additions can be made through a GUI. The example shows the configuration if a GUI is not available. ########################################################### # Group Definitions ########################################################### group = { service = raccess { group_name = ; } 2.
120 MergePoint® SP Manager Installer/User Guide • protocol: The default is lcp (line control protocol). Specify another parameter if required. • timeout: The time-out (in seconds) for a TACACS+ authentication query to be answered. • retries: Defines the number of times a TACACS+ server is tried before another is contacted. The first server authhost1 is tried for the specified number of times, before the second authhost2, if configured, is contacted and tried for the specified number of times.
121 7 Using the CLI Utility CLI Utility Overview An administrator (the root user, the admin user or a member of the admin group) can configure the MergePoint SP manager using the CLI utility. While in the CLI utility, an administrator can escape to the shell and when finished can return to the CLI utility.
122 MergePoint® SP Manager Installer/User Guide command line mode, make sure to use the -C option as part of the command line. See CLI Options on page 122. When invoked without commands, CLI enters interactive mode; see Interactive mode on page 122. When the CLI utility is invoked with the -f option or is invoked from a script, the commands are executed in batch mode from the specified file or script. See CLI Options on page 122.
Chapter 7: Using the CLI Utility 123 Option Description -c Used for running cli.conf from when cli.conf is not under the default path: /etc/cacpd. -p Used for running param.conf from when param.conf is not under the default path: /etc/cacpd. -m Used for running modules.conf from when modules.conf is not under the default path: /etc/cacpd. -h Help. Shows a brief summary of command line options. -q Quiet mode; don’t show the startup greeting.
124 MergePoint® SP Manager Installer/User Guide OK Entering a command in interactive mode Based on the branch mentioned at the beginning of this section, you could enter the set command with the following parameters in interactive mode to turn on Ethernet failover.
Chapter 7: Using the CLI Utility 125 /usr/bin/cli -C set network interface mode failover ... If you want to run multiple CLI commands from a script that is also running other Linux commands, you could add the multiple CLI commands as shown in the following example: #!/bin/bash ...
126 MergePoint® SP Manager Installer/User Guide bootconf iptables pxe sshd tcpdump Pressing Tab once after partially typing a parameter name automatically completes the parameter name, unless there is more than one parameter name beginning with the typed characters. If more than one parameter name begins with the typed characters, then Tab Tab displays them all. NOTE: The bootconf and cards commands are only for MergePoint SP5x24/SP5x40 manager.
Chapter 7: Using the CLI Utility 127 In contrast, the set command (as in: set network interface eth0 address ) is used to specify the IP address for the eth0 Ethernet interface. In that case, the set command is used because each interface has only one IP address. Adding certain parameters causes one or more related parameters to be added to the subtree. For example, when an IP address is added to the hosts list, empty hostname and alias parameters are also added.
128 MergePoint® SP Manager Installer/User Guide processor user, you must enter add spmanager user ; the user must then be configured after adding, using the set command. Table 7.2: Parameters that Work with the CLI add Command Parameter Parameter Level 1 Level 2 What It Configures (Syntax) Add a MAC address for IP. Synopsis: add adhpd mapping dhcpd mapping Example: add dhcpd mapping 00602e01d9a6 NOTE: No colon (:) is needed in the MAC address.
Chapter 7: Using the CLI Utility Parameter Parameter Level 1 Level 2 129 What It Configures (Syntax) Add a MAC address. Synopsis: add pxe mapping pxe mapping Example: add pxe mapping 00602e01d9a6 NOTE: No colon (:) is needed in the MAC address. See the set command for the following parameters: pxe mapping on page 142 and pxe setting on page 143. Add a user and fills in the subtree with default values and randomly generated passwords.
130 MergePoint® SP Manager Installer/User Guide Parameter Parameter Level 1 Level 2 What It Configures (Syntax) Add the name of syslog server to the default console or rootuser destinations defined for syslog messages. syslog destination Synopsis: add syslog destination Example: add syslog destination dest1 Two steps are required to add a server to the appliance: 1) Add a managed device to the appliance.
Chapter 7: Using the CLI Utility Parameter Parameter Level 1 Level 2 131 What It Configures (Syntax) Add the name of a server group. Synopsis: add spmanager server-groups servergroups Example: add spmanager server-groups MergePoint2. NOTE: To add a device into a server group, see the set command for the following parameter spmanager server on page 145. Add an appliance user role.
132 MergePoint® SP Manager Installer/User Guide network interface eth1> cd cli> commit The commit command saves changes in configuration files and creates a compressed copy of the configuration files in a backup directory. NOTE: If you make a change but do not commit it, the configuration files are not updated, and your changes will be lost after the next reboot. Synopsis commit delete The delete command deletes the last parameter in the command line.
Chapter 7: Using the CLI Utility 133 Examples cli> get network hostname anchovy cli> show network resolv domain avocent.com When get is entered with a partial parameter, all the subtrees display. In the output, if a value is assigned, the parameter preceding the value ends with a semicolon. cli> get network network interface failover: no network interface eth0 method: dhcp ... network hosts 127.0.0.1 name: MergePoint network hosts 127.0.0.
134 MergePoint® SP Manager Installer/User Guide 127.0.0.1 127.0.0.1 name 127.0.0.1 alias 192.168.160.10 192.168.160.10 name 192.168.160.10 alias quit | exit The quit command closes the CLI utility. (Ctrl+d also quits the CLI utility.) If changes have not been committed, the user is prompted to commit the changes or quit without committing. Synopsis quit Example cli> set network hostname frutabaga OK cli> quit You have made changes but haven't committed them yet.
Chapter 7: Using the CLI Utility 135 ERR No such file or directory cli> get network hosts 192.168.160.222 name fruitbat alias set The set command sets the value(s) of the last parameter. When multiple parameters are specified in one command, either all are set successfully or none of the values are changed. The set command is used to set an existing value, in contrast to add command which is used to add something to the parameter tree.
136 MergePoint® SP Manager Installer/User Guide revert The revert command discards any changes and reverts to previously committed state. Synopsis revert Examples cli> get network dingo cli> set network OK cli> get network kookaburra cli> revert OK cli> get network dingo hostname hostname kookaburra hostname hostname version The version command displays the current CLI version. Synopsis version Examples cli> version MergePoint CLI 2.
Chapter 7: Using the CLI Utility 137 Table 7.3: Setting Top Level CLI Parameters Parameter Command Avocent DS Authentication Protocol configuration. Synopsis: set adsap2 state authserver adsap2 Example: set adsap2 state trust-all authserver 2.2.2.2 NOTE: The state of “secure” means the server is being managed by the DSView 3 software, while the state of “trust-all” means the server is unmanaged by the DSView 3 software.
138 MergePoint® SP Manager Installer/User Guide Parameter Command Use the set command to configure boot configuration. Synopsis: set bootconf wdt mac ip bootfile serverip baudrate <1200|2400|4800|9600|19200|38400|57600|115200> fecmode1|fecmode2 bootconf BF_curr < 0| 1 |2> Example: set bootconf wdt yes mac 00:60:2e:01:d9:a6 ip 172.26.25.177 bootfile uImage.4.0.0.
Chapter 7: Using the CLI Utility Parameter 139 Command By default, a set of chains is defined with hidden rules. For NAT, the predefined chains are: PREROUTING, POSTROUTING, OUTPUT. For filter, the predefined chains are: INPUT, OUTPUT, FORWARD. For background information, see Firewall/Packet Filtering on page 25. Use the set command to configure a rule for a predefined chain after the add command is used to add a rule for that chain.
140 MergePoint® SP Manager Installer/User Guide Parameter Command After the add command is used to add a host to the hosts table, use the set command to configure the host’s IP address and optional alias. Synopsis: set network hosts name alias Example: set network hosts 192.168..100 host MergePoint5300 alias MP5300 network hosts NOTE: See the add network hosts command in The following table shows the parameters that can be added using the add command.
Chapter 7: Using the CLI Utility Parameter 141 Command Use the set command to configure one of the network interfaces with IPv6 for the MergePoint SP5x00 manager.
142 MergePoint® SP Manager Installer/User Guide Parameter Command Use the set command to specify a mode. Synopsis: set network interface mode normal|failover|bridge network interface mode Example: set network interface mode bridge NOTE: This parameter is only for the MergePoint SP5x24/SP5x40 manager. Use the set command to configure DNS domain and one or more DNS servers. network resolv Synopsis: set network resolv dns0|dns1 domain Example: set network resolv dns0 172.26.24.
Chapter 7: Using the CLI Utility Parameter 143 Command Use the set command to configure pxe settings. Synopsis: set pxe setting subnet netmask gateway sp_ user sp_pwd range_low range_high vlan_enable vlan_id vlan_priority Example: set pxe setting subnet 343 netmask 255.255.255.0 gateway 2.2.2.2 sp_ user usr1 sp_pwd dff range_low 1.1.1.1 range_high 1.1.1.
144 MergePoint® SP Manager Installer/User Guide Parameter Command After using the add snmpd command to add proxy, use the set snmpd command to configure the parameters. Synopsis: set snmpd proxy context version <1|2c|3> community|user oid sec_level authmethod snmpd proxy authpass privmethod privpass Example: set snmpd proxy 0 user user1 oid .1.1.1.1.1.
Chapter 7: Using the CLI Utility Parameter 145 Command After using the add command to configure a user group, use the set command to configure the parameters. Synopsis: set spmanager group user target spmanager group Example: set spmanager group g1 user user1 target 172.26.25.39 NOTE: See the add command for the following second level spmanager parameter: group on page 130.
146 MergePoint® SP Manager Installer/User Guide Parameter Command After using the add spmanager user command to configure a user, use the set user command to configure the user’s parameters: role and target. Synopsis: set spmanager user role target Example: set spmanager user user11 role operator target 172.26.25.179 spmanager user NOTE: The range of a role name is admin, operator, user and user defined role(s).
Chapter 7: Using the CLI Utility Parameter 147 Command Use the set syslog destination command parameters to configure a syslog destination (either the MergePoint SP manager console or rootuser or a syslog server name that has been added using the add syslog destination command).
148 MergePoint® SP Manager Installer/User Guide Parameter Command Use the set tcpdump command to define the IP packge filter parameters for the debug. Synopsis: set tcpdump source-ip source-port tcpdump source- destination-ip destination-port protocol ip|source- interface port|destinationip|destinationport|protocol|interface Example: set tcpdump source-ip 1.1.1.1 source-port 1500 destination-ip 1.1.1.
149 8 Using SMASH Command Line Protocol The command line management option described in this chapter is based on the System Management Architecture for Server Hardware (SMASH) Command Line Protocol (CLP) specification developed by the Distributed Management Task Force (DMTF). NOTE: The information in this chapter applies only to the MergePoint SP53xx manager. SMASH CLP is an alternative to the web interface or CLI.
150 MergePoint® SP Manager Installer/User Guide SMASH CLP Overview The SMASH CLP is an open standard defining a lightweight protocol for using the command line to perform out of band management of heterogeneous servers. The CLP is intended for accessing services provided by service processors for power management, monitoring of sensors and of system event logs (SEL) and controlling managed servers’ chassis and is suitable for scripting environments.
Chapter 8: Using SMASH Command Line Protocol 151 Table 8.
152 MergePoint® SP Manager Installer/User Guide • Chassis Manager Profile • Alarm Device Profile • Indicator LED Profile • DHCP Client Profile • DNS Client Profile • Simply Identity Management Profile • Role Based Authorization Profile • Software Inventory Profile • Software Update Profile • Indications Profile • Host LAN Network Port Profile • CPU Profile • System Memory Profile For a complete list of supported service processors, see the MergePoint SP manager release notes.
Chapter 8: Using SMASH Command Line Protocol 153 leaf nodes, and operations and attributes of each system are further displayed as nested leaf nodes under each corresponding system. Actions can be performed by entering the name of a specific target (for example, “system1”) or of a group of targets by using a wildcard (for example, “system*”). Some command verbs have implicit command targets (ICTs) defined as part of the verb.
154 MergePoint® SP Manager Installer/User Guide Variable Definition Specifies an ME to be affected by a verb. Every verb acts on one target. A target may be implicitly defined either as part of the verb as an IDT, by a CDT with or without an RTA or it may be explicitly defined on the command line as an ATA, as in /admin1/system1/textredirectsap1, which identifies the target textredirectsap1 ME in system1.
Chapter 8: Using SMASH Command Line Protocol Targets /admin1/map1/ipendpt1 /admin1/map1/nodemanagesvc1 /admin1/map1/oemavocent_ discoverysap1 /admin1/map1/sshsvc1 155 Description IP address of MergePoint SP manager. For an example procedure using this target, see MergePoint SP appliance commands on page 157. The servers on the side navigation bar. For an example procedure using this target, see To add a server to the side navigation bar: on page 160.
156 MergePoint® SP Manager Installer/User Guide 2. Enter the clp command. 3. The SMASH CLP command line is displayed and you can now enter any CLP command. Example root@MergePoint:~# clp Avocent SMASH-CLP Application (1.5.0.0) /admin-> exit CLP Session End root@MergePoint:~# _ • The root@MergePoint> line is the SSH prompt. clp is the commmand entered. • The /admin-> line is the CLP prompt. • The exit line is a CLP command to exit the CLP command line.
Chapter 8: Using SMASH Command Line Protocol 157 To set a property of a target: Enter the set command, followed by the target name, followed by the name of the property and the desired value, in the form: property=value. The following command line sets the output format of a CLP session to text on the MergePoint SP manager. -> set /admin1/map1/clpsvc1/clpendpt61 outputformat=text Associations MergePoint SP manager CLP supports associations.
158 MergePoint® SP Manager Installer/User Guide properties IPv4Address = 172.26.25.164 /admin1-> show /map1/ipendpt1 IPv6Address /map1/ipendpt1 properties IPv6Address = 2001:ac1a:11:3:230:48ff:fe85:edd4/64 Showing the ethernet port of MergePoint SP manager To display the ethernet port of MergePoint SP manager, use a target of /admin/map1/enetport1, followed by the port number.
Chapter 8: Using SMASH Command Line Protocol 159 This service locates servers that have supported service processors when the IP addresses for the SPs are within the defined IP address range. You can set two different ranges of IP addresses for automatic discovery through the targets oemavocent_startip and oemavocent_endip. Supported commands are: set properties, start and stop.
160 MergePoint® SP Manager Installer/User Guide Managing servers on the side navigation bar The /admin1/map1/nodemanagesvc1 target is for managing the servers on the side navigation bar of MergePoint SP manager. The /admin1/map1 target is associated with /admin1/map1/nodemanagesvc1 target. You can add a server and delete a server from the side navigation bar. Supported commands are: create and delete.
Chapter 8: Using SMASH Command Line Protocol 161 To manage a server group: 1. Create a server group on the MergePoint SP manager. /admin1/map1-> create hostgroup* name=group_aa /admin1/map1/hostgroup2 name=hostgroup_aa 2. Add a managed server to an existing server group. /admin1/map1-> cd hostgroup2 /admin1/map1/hostgroup2-> set member="+/admin1/system4" member=/admin1/system4 3. Remove a managed server from an existing server group. /admin1/map1/hostgroup2-> set member="-/admin1/system4" 4.
162 MergePoint® SP Manager Installer/User Guide Managing CLP sessions The /admin1/map1/clpsvc1/clpendpt[n] target is for managing sessions. You can set a variety of properties, such as "output format." Supported commands are set and show. To change a session’s output format: Enter the set command followed by the target and outputformat.
Chapter 8: Using SMASH Command Line Protocol 163 show subtargets NOTE: For swid1, iscurrent=true and isnext=true. /admin1/map1/swid2-> set isnext=true isnext=true /admin1/map1/swid2-> show /admin1/map1/swid2 properties InstanceID = Avct_MergePoint:swid2 isnext = true isinstalled = true IsEntity = true iscurrent = false verbs cd load set show subtargets NOTE: The values isnext=true and iscurrent=false on swid2 indicate that the roll back version of the firmware is set to swid2.
164 MergePoint® SP Manager Installer/User Guide You can begin managing servers after a server has been added under the Units tab in the web interface and a target exists in the map. Showing the properties of a managed server The /admin/system[n] target is the service processor on the managed server. You can view the service processor’s IP address, name and other properties. The /admin/system[n]/ memberofcollection target is the association of /admin/system[n].
Chapter 8: Using SMASH Command Line Protocol Managing power or rebooting a managed server Manage power or reboot a managed server by entering either stop, reset or start with the /admin1/system[n] target. To power off a managed server: Enter the stop command followed by the target name for the managed server. /admin1-> stop /system2 To reset a managed server: Enter the reset command followed by the target name for the managed server.
166 MergePoint® SP Manager Installer/User Guide show subtargets Checking fans on managed servers You can check fan data on managed servers using the show command with the /admin1/system[n]/fan[n] target. To check fan data on an managed server: Enter the show command followed by the /admin1/system[n]/fan[n] target. /admin1-> show /system3/fan1 /system3/fan1 properties CreationClassName = AVCT_Fan SystemName = 172.26.25.122 SystemCreationClassName = 172.26.25.
Chapter 8: Using SMASH Command Line Protocol 167 Filesystem type is ext2fs, partition type 0x83 kernel /vmlinuz-2.6.9-5.ELsmp ro root=LABEL=/ rhgb quiet [Linux-bzImage, setup=0x1400, size=0x15492c] initrd /initrd-2.6.9-5.ELsmp.img [Linux-initrd @ 0x37f7a000, 0x75d08 bytes] ATI9 Red Hat Enterprise Linux ES release 4 (Nahant) Kernel 2.6.9-5.ELsmp on an i686 localhost.localdomain login: stop Password: Login timed out after 60 seconds Red Hat Enterprise Linux ES release 4 (Nahant) Kernel 2.6.9-5.
168 MergePoint® SP Manager Installer/User Guide To manage system event logs on a managed server: 1. Enter the show command followed by the /admin1/system[n]/log1 target to show the records and properties of system event logs for system1. /admin1-> show /system3/log1 /admin1/system3/log1 properties MaxNumberOfRecords = 512 ElementName = IPMI SEL OperationalStatus = HealthState = 0 (Unknown) EnabledState = 2 (Enabled) RequestedState = 5 (No Change) InstanceID = 172.26.25.
Chapter 8: Using SMASH Command Line Protocol cd show delete subtargets 3. Delete all records by entering the delete command followed by the /admin1/system3/log1/record* target name. NOTE: Deletion of individual records is not supported.
170 MergePoint® SP Manager Installer/User Guide
171 9 Using WS-Management NOTE: The information in this chapter applies only to the MergePoint SP53xx manager. As an alternative to the web interface, CLI or CLP, the Web Services Management (WS-MAN) service can be used to remotely manage the MergePoint SP manager and connected service processors. WS-MAN commands for the MergePoint SP manager can be entered using a WS-MAN client such as Microsoft’s WinRM or the Openwsman CLI.
172 MergePoint® SP Manager Installer/User Guide Automatic Discovery Management AvctMP_DiscoveryService This class manages the process that controls discovery searches. It inherits from CIM_Service and also defines the following members. Properties oemavocent_discoveryinterval The period between automatic discovery searches, in seconds. Data type: String Access type: Read/Write Qualifiers: 5 to 65535 Methods Start Starts the discovery service.
Chapter 9: Using WS-Management 173 AvctMP_DiscoverySAP This class manages a discovery search for connected service processors on a specified IP address range. There are two instances of this class because the MergePoint SP manager supports two independent search ranges. The discovery search can be set to start automatically based on a time interval or started manually by the user. The class inherits from CIM_ServiceAccessPoint and also defines the following members.
174 MergePoint® SP Manager Installer/User Guide 3 Internal error Stop This function is used to stop discovery on the designated search range. Arguments: None Return Type: Integer Return Value: 0 Command OK 1 Service is not started 2 Service is already stopped 3 Internal error AvctMP_DiscoveryServiceAccessBySAP This class defines the association between the discovery service and its service access points.
Chapter 9: Using WS-Management 175 To start the automatic discovery service: Enter the following command: wsman invoke http://sblim.sf.
176 MergePoint® SP Manager Installer/User Guide wsman put http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ DiscoverySAP?SystemCreationClassName="AvctMP_ ComputerSystem",SystemName="MergePoint5300",CreationClassName="AvctMP_ DiscoverySAP",Name="OEM Avocent Discovery Service Access Point 1" -h -u -p -y basic -k oemavocent_startmode="manual" To start the discovery on search range #1: Enter the following command: wsman invoke http://sblim.sf.
Chapter 9: Using WS-Management 177 Methods RequestPowerStateChange Starts the discovery service. Arguments: ManagedElement PowerState The target to control. Should be the same as the value of “name” in AvctRT_ ComputerSystem Instance 2 Power on 5 Soft power cycle 6 Hard power off 8 Soft power off Return Type: Return Value: Integer 0 Command OK 2 Internal error AvctRT_PowerManagementCapabilities This class defines the supported capabilities of the power management service.
178 MergePoint® SP Manager Installer/User Guide To get a specific AvctRT_PowerManagementService instance: Enter the following command: wsman get http://sblim.sf.
Chapter 9: Using WS-Management 179 Telnet and SSH Session Management AvctMP_SSHProtocolService This class manages the process that controls SSH connections. It inherits from CIM_ ProtocolService. There is only one instance of this class on the appliance. AvctMP_TelnetProtocolService This class manages the process that controls Telnet connections. It inherits from CIM_ ProtocolService. There is only one instance of this class on the appliance.
180 MergePoint® SP Manager Installer/User Guide AvctMP_TelnetSettingData This class represents the data settings for the Telnet service. It inherits from CIM_ TelnetSettingData. AvctMP_SSHProvidesEndpoint This class represents the association between the SSH service and the endpoints it provides. It inherits from CIM_ProvidesEndpoint. AvctMP_TelnetProvidesEndpoint This class represents the association between the Telnet service and the endpoints it provides. It inherits from CIM_ProvidesEndpoint.
Chapter 9: Using WS-Management 181 Examples To list all active SSH connections: Enter the following command: wsman enumerate http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ SSHProtocolEndpoint -h -u -p -y basic To query a specific SSH connection: Enter the following command: wsman get http://sblim.sf.
182 MergePoint® SP Manager Installer/User Guide wsman enumerate http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ SSHSettingData -h -u -p -y basic To list all active Telnet connections: Enter the following command: wsman enumerate http://sblim.sf.
Chapter 9: Using WS-Management 183 wsman enumerate http://sblim.sf.net/wbem/wscim/1/cim-schema/2/Avct_ HostedService -h -u -p -y basic WinRM Examples This section provides examples of controlling the MergePoint SP manager using the Microsoft WinRM client. To view the current discovery search range settings: Enter the following command: winrm enumerate http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ DiscoverySAP -username:admin -password:admin r:192.168.
184 MergePoint® SP Manager Installer/User Guide EnabledState = 0 HealthState = null InstallDate = null Name = OEM Avocent Discovery Service Access Point2 OtherEnabledState = null RequestedState = 5 Status = true SystemCreationClassName = AvctMP_ComputerSystem SystemName = MergePoint5300 TimeOfLastStateChange = null oemavocent_endip = 192.168.96.70 oemavocent_startip = 192.168.96.
Chapter 9: Using WS-Management 185 oemavocent_startmode = 1(manual) To modify the search range #1: Set the search range to start a search from IP address 192.168.96.78 to 192.168.96.80 with automatic start mode by entering the following command: winrm set "http://sblim.sf.
186 MergePoint® SP Manager Installer/User Guide Openwsman CLI Examples This section provides examples of XML responses generated by running WS-MAN commands. To view the current discovery search range settings: Enter the following command: wsman enumerate http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ DiscoverySAP -h 192.168.96.210 -u admin -p admin -y basic -o -m 40 The following response is returned: PAGE 199Chapter 9: Using WS-Management 187 OEM Avocent Discovery Serice Access Point1 5 false AvctMP_ ComputerSystem MergePoint5300 192.168.96.80 192.168.96.
188 MergePoint® SP Manager Installer/User Guide 2(automatic) To query discovery search range #1: Enter the following command: wsman get http://sblim.sf.
Chapter 9: Using WS-Management 189 map_discovery_sap 2 0 OEM Avocent Discovery Serice Access Point1 5 false AvctMP_ ComputerSystem MergePoint5300
190 MergePoint® SP Manager Installer/User Guide http://schemas.xmlsoap.
Chapter 9: Using WS-Management 191 xmlns:n1="http://sblim.sf.net/wbem/wscim/1/cim-schema/2/AvctMP_ DiscoverySAP"> http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous http://sblim.sf.
192 MergePoint® SP Manager Installer/User Guide
193 APPENDICES Appendix A: Technical Support Our Technical Support staff is ready to assist you with any installation or operational issues you encounter with your Avocent product. If an issue should develop, follow the steps below for the fastest possible service. To resolve an issue: 1. Check the pertinent section of this manual to see if the issue can be resolved by following the procedures outlined. 2. Visit www.avocent.
194 MergePoint® SP Manager Installer/User Guide Appendix B: Technical Specifications Table B.1: MergePoint SP5x00 Manager Technical Specifications Network Connection Number 2 Type Ethernet, 10BaseT, 100BaseT, GigE Connector RJ-45 Serial Port Number 1 Type RS-232 serial Connector DB9 male Mechanical H xWxD 4.3 x 42.7 x 35.6 cm (1.7 x 16.8 x 14 in), 1 U form factor Weight 5.
Appendices 195 USA (UL, FCC), Canada (cUL), Germany (TUV), Safety and EMC Approvals and Markings European Union (CE), Japan (VCCI), Russia (GOST) and Korea (MIC) Safety certifications and EMC certifications for this product are obtained under one or more of the following designations: CMN (Certification Model Number), MPN (Manufacturer’s Part Number) or Sales Level Model designation.
196 MergePoint® SP Manager Installer/User Guide Universal AC: single or dual 100240 VAC, 50/60Hz, 1.4 Power A max Dual DC: 36 to 75 VDC, 5 A max Safety and EMC Approvals and Markings CSA, FCC, C-tick, Japan (VCCI), European Union (CE) Safety certifications and EMC certifications for this product are obtained under one or more of the following designations: CMN (Certification Model Number), MPN (Manufacturer’s Part Number) or Sales Level Model designation.
Appendices 197 Appendix C: Troubleshooting Port mapping fails when using DirectCommand This section describes some considerations that may apply if port mapping fails when a user attempts DirectCommand access to an SP. If DirectCommand is invoked by an unprivileged user (such as a regular user on a UNIX-based system), DirectCommand may not be able to open privileged TCP ports (numbered below 1024).
198 MergePoint® SP Manager Installer/User Guide Restarting the MergePoint SP5x24/5x40 manager If necessary, you can use the following commands to restart the MergePoint SP5x24/5x40 manager. To restart the MergePoint SP5x24/5x40 manager: 1. Log into the console port as root 2. Type the password of the root user. The default password Sydney. 3. Type reboot to restart the appliance. -orType restorefactory to set the appliance with default configuration parameters and reboot the appliance.
Appendices 199 and eth1 can remain as is. The DHCP range must be set up to use addresses between 192.168.0.130 and above. Or, if you want to use the entire range of 192.168.0.x, complete the following steps. • Ensure eth0 and eth1 have an address outside of the 192.168.0.x range (typically eth0 will have an address outside of this range). See Private Subnets on the MergePoint SP5x24/SP5x40 Manager on page 24.
200 MergePoint® SP Manager Installer/User Guide Appendix D: Access Privileges This appendix shows the access privileges that are required when the listed actions are performed either by appliance users or SP users. To set privileges for a MergePoint SP manager user, see Managing MergePoint SP Manager User Accounts on page 29. To set privileges for a SP user, see Managing user accounts on SPs on page 45. Appliance users actions NOTE: Admin users can perform all actions on appliances and SPs.
Appendices • To view SP firmware information • To view SP FRU information • To view target device power status • To view chassis status • To view LAN configuration • To view SP user information (except password) • To view the event alert destination (PET) setting • To view the SoL configuration • To view the current SP time • To view SEL records • To view sensors information • To view SoL summary • To execute SoL • To view SoL history • To execute SoL relay • To view SEL reco
202 MergePoint® SP Manager Installer/User Guide • To set the event destination (PET) setting for a group • To use the CLP commands (set SP properties, start systemX and stop systemX) The following SP user actions can be performed by all users: • To view SP system name • To change alias for an SP • To copy/move an SP to a device group • To remove an SP • To view SP firmware information • To view SP FRU information • To view target device power status • To power a target device up/down •
Appendices 203 • To set VNC for an SP • To use the CLP command: cd, reset, set Map 1 properties, show, start map, stop map1, stop systemX, version, help, oemavocent_setdefault, oemavocent_show and exit
204 MergePoint® SP Manager Installer/User Guide Appendix E: Configuring the BIOS Settings for SoL SoL enables the console output of a managed system to be redirected over an IPMI session over IP. This allows remote users to have text-based access to the BIOS, utilities, operating systems such as Command Line interfaces and Linux console and management services such as Microsoft's serial-based EMS. At the same time, SoL provides access to IPMI platform management functions. To set the BIOS: 1.
Appendices 205 Appendix F: Configuring a Virtual Serial Port The MergePoint SP manager has the ability to access SPs with iLO through the Virtual Serial port. To use this feature, you must enable the Virtual Serial port on both the BIOS Serial Console and EMS Console. When the Virtual Serial port is enabled, it provides remote access through the iLO management controller to the BIOS Serial Console. To configure BIOS Serial Console: 1.
206 MergePoint® SP Manager Installer/User Guide Appendix G: Profile Configuration The MergePoint SP manager uses profiles for handling communications with SPs. Profiles are introduced in Managing SP Profiles (Admin users only) on page 41. Administrator-modifiable parameters that are defined for each profile are Family and Command Template, either or both of which can be modified to enable communications with SPs that do not work out of the box.
Appendices NOTE: Administrators need to create new Expect scripts for new families by using talk_custom1.exp, talk_ custom2.exp, or talk_custom3.exp for the filenames in the /etc/libexec/mergepoint directory. To create a custom family (Expect script): 1. Log into the MergePoint SP manager console as admin. 2. Go to the /etc/libexec/mergepoint directory. 3. A user can create a new script talk_customN.exp or copy an existing talk_.exp and name the new file in the format: talk_customN.exp.
208 MergePoint® SP Manager Installer/User Guide Family Name Expect Script Name elom talk_elom.exp hp_blade_system talk_hp_blade_system.exp hp_ipmi talk_hp_ipmi.exp idrac_m600 talk_idrac_m600.exp idrac_m605 talk_idrac_m605.exp idrac_m610 talk_idrac_m610.exp idrac_m710 talk._idrac_m710.exp idrac_m805 talk_idrac_m805.exp ilo talk_ilo.exp ilo2 talk_ilo2.exp ilom talk_ilom.exp m1000e_cmc talk_m1000e_cmc.exp rsa_II talk_rsa_II.exp rsa_II_withoutsol talk_rsa_II_withoutsol.
Appendices 209 ip, user, passwd, spprofilename These four arguments separately represent the IP address, username, password or profile name of the device on the MergePoint SP manager. action The action specifies the action for the script to take. The actions are listed below. Not all device types implement all of the listed actions. For example, the iLO type does not have a sensors reading feature, so the sensors action is not supported for iLO type servers.
210 MergePoint® SP Manager Installer/User Guide Exit Code Definition 1 Unexpected output from service processor/device, or another error in an protocol (such as time-out) 3 Failed to connect with service processor 4 Host identification failed (only for connection through SSH) 5 User verification failed 6 Command template not found 7 Some necessary information not found in command template 10 Invalid argument 11 Action not supported Creating a profile Profiles are introduced in Managing SP
Appendices 211 3. If you can run power commands on the SP, test the rest of the management commands that are supported on the device type. If they work, you are done. 4. If you cannot run one or more of the supported commands on the SP, attempt to connect to the console. NOTE: Even if the power management commands do not work on a new SP, you can usually establish a connection to the service processor’s console. 5. If you cannot access the console, perform the following steps: a.
212 MergePoint® SP Manager Installer/User Guide NOTE: You must specify the escape sequence used by the device’s console. It is captured by the MergePoint SP manager and it is used to log the user out of the SP console whenever the user logs out of the device console, preventing unauthorized access to the SP console. 5. Save and quit the file. 6. Enter the saveconf command. 7. Log out from the console. 8. Log in to the web interface as an administrative user and select Target - Profile. 9.
Appendices Table G.5: Default Command Templates Template SP Profiles alom.default Sun ALOMs blade_center.default IBM BladeCenter devconsole.default SPs that support access to their consoles drac_mc.default Dell DRAC MC drac3.default DRAC III drac.default DRAC IV drac5.default DRAC V elom.default ELOM hp_blade_system.default HP BladeCenter hp_ipmi.default HP IPMI idrac_m600.default Dell iDRAC M600 blade idrac_m605.default Dell iDRAC M605 blade idrac_m610.
214 MergePoint® SP Manager Installer/User Guide NOTE: You cannot change templates whose name ends with the .default suffix. sptemplate warns about this restriction if you try to edit or rename these templates, and it requests confirmation before allowing you to create a new template with a .default suffix through the New, Rename or Copy functions.
Appendices 215 idrac_m610.default idrac_m710.default idrac_m805.default ilom.default hp_blade_system.default hp_ipmi.default m1000e_cmc.default rsa.default rsa_withoutsol.default ilo.default ilom.default alom.default devconsole.
216 MergePoint® SP Manager Installer/User Guide to access the MergePoint SP manager. If another authentication method is specified for the SP, use the appropriate username and password for the specified authentication method. The test command uses the same authentication and authorization processes that the MergePoint SP manager uses in its normal operation.
Appendices reset_cmd = reset sensors_cmd = { command = fans command = temps command = volts } sel_cmd = { command = readlog -f repeat = readlog until = [\n\r]*(There are no more entries in the event log.) } clearsel_cmd = clearlog devconsole_cmd = console 2 devconsole_esc = \033. ignore = { ignore = (There are no more entries in the event log.
218 MergePoint® SP Manager Installer/User Guide Appendix H: Glossary and Acronyms Blade chassis or BladeCenter A server architecture that houses multiple server modules (blades) in a single chassis. The selfstanding or rack mounted blade chassis provides the power supply, and each blade has its own CPU, memory and hard drive. The chassis may have its own service processor, while each blade it contains may also have its own service processor.
Appendices 219 IPMI Intelligent Platform Management Interface (IPMI) defines a set of common interfaces to computer hardware and firmware. System administrators may use IPMI to monitor system health and manage a system with an IPMI BMC. Target devices with IPMI BMCs are supported by the MergePoint SP manager. MOF Managed Object Format (MOF) is a data structure used by CIM to describe all managed SPs on the network.
220 MergePoint® SP Manager Installer/User Guide Telnet session A Telnet session is a type of SP session. Once the MergePoint SP manager is set up, a user may connect directly to an SP using Telnet and manage the SP using SMASH CLP commands. Unit Unit refers to the MergePoint SP manager. A device being managed by the appliance is referred to an SP or a target device. WBEM WBEM stands for Web Based Enterprise Management.
License Information 221 License Information This product includes various software programs that are copyrighted and released under the GNU General Public License (GPL), the GNU Lesser General Public License (LGPL), and other licenses that permit copying, modification, and redistribution of source code (such licenses referred to as Public Licenses), in particular the software program “mtd”.
222 MergePoint® SP Manager Installer/User Guide Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running the Program is not restricted, and the output from the Program is covered only if its contents constitute a work based on the Program (independent of having been made by running the Program). Whether that is true depends on what the Program does. 1.
License Information 7. 223 If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License.
For Technical Support: www.avocent.