Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC7 with Lifecycle Controller Version 2.40.40.40

121

122

123

124

125

126

127

128

129

130

Table Of Contents

iDRAC 8/7 v2.40.40.40 User’s Guide
Overview
- Benefits of using iDRAC with Lifecycle Controller
- Key features
- New in this release
- How to use this user's guide
- Supported web browsers
- Managing licenses
- Licensed features in iDRAC7 and iDRAC8
- Interfaces and protocols to access iDRAC
- iDRAC port information
- Other documents you may need
- Social media reference
- Contacting Dell
- Accessing support content from the Dell EMC support site
Logging in to iDRAC
- Logging in to iDRAC as local user, Active Directory user, or LDAP user
- Logging in to iDRAC using a smart card
  - Logging in to iDRAC as a local user using a smart card
  - Logging in to iDRAC as an Active Directory user using a smart card
- Logging in to iDRAC using Single Sign-On
  - Logging in to iDRAC SSO using iDRAC web interface
  - Logging in to iDRAC SSO using CMC web interface
- Accessing iDRAC using remote RACADM
  - Validating CA certificate to use remote RACADM on Linux
- Accessing iDRAC using local RACADM
- Accessing iDRAC using firmware RACADM
- Accessing iDRAC using SMCLP
- Logging in to iDRAC using public key authentication
- Multiple iDRAC sessions
- Changing default login password
- Enabling or disabling default password warning message
  - Enabling or disabling default password warning message using web interface
  - Enabling or disabling warning message to change default login password using RACADM
- Invalid password credentials
Setting up managed system and management station
- Setting up iDRAC IP address
- Setting up management station
  - Accessing iDRAC remotely
- Setting up managed system
- Configuring supported web browsers
- Updating device firmware
- Viewing and managing staged updates
  - Viewing and managing staged updates using iDRAC web interface
  - Viewing and managing staged updates using RACADM
- Rolling back device firmware
- Backing up server profile
- Importing server profile
- Monitoring iDRAC using other Systems Management tools
Configuring iDRAC
- Viewing iDRAC information
  - Viewing iDRAC information using web interface
  - Viewing iDRAC information using RACADM
- Modifying network settings
- FIPS mode
  - Enabling FIPS Mode
    - Enabling FIPS mode using web interface
    - Enabling FIPS mode using RACADM
  - Disabling FIPS mode
- Configuring services
- Using VNC client to manage remote server
- Configuring front panel display
  - Configuring LCD setting
  - Configuring system ID LED setting
    - Configuring system ID LED setting using web interface
    - Configuring system ID LED setting using RACADM
- Configuring time zone and NTP
  - Configuring time zone and NTP using iDRAC web interface
  - Configuring time zone and NTP using RACADM
- Setting first boot device
- Enabling or disabling OS to iDRAC Pass-through
- Obtaining certificates
- Configuring multiple iDRACs using RACADM
  - Creating an iDRAC configuration file
- Disabling access to modify iDRAC configuration settings on host system
Viewing iDRAC and managed system information
- Viewing managed system health and properties
- Viewing system inventory
- Viewing sensor information
- Monitoring performance index of CPU, memory, and I/O modules
  - Monitoring performance index for of CPU, memory, and I/O modules using web interface
  - Monitoring performance index for of CPU, memory, and I/O modules using RACADM
- Checking the system for fresh air compliance
- Viewing historical temperature data
- Viewing network interfaces available on host OS
  - Viewing network interfaces available on host OS using web interface
  - Viewing network interfaces available on host OS using RACADM
- Viewing FlexAddress mezzanine card fabric connections
- Viewing or terminating iDRAC sessions
  - Terminating iDRAC sessions using web interface
  - Terminating iDRAC sessions using RACADM
Setting up iDRAC communication
- Communicating with iDRAC through serial connection using DB9 cable
- Switching between RAC serial and serial console while using DB9 cable
  - Switching from serial console to RAC serial
  - Switching from RAC serial to serial console
- Communicating with iDRAC using IPMI SOL
- Communicating with iDRAC using IPMI over LAN
- Enabling or disabling remote RACADM
  - Enabling or disabling remote RACADM using web interface
  - Enabling or disabling remote RACADM using RACADM
- Disabling local RACADM
- Enabling IPMI on managed system
- Configuring Linux for serial console during boot
  - Enabling login to the virtual console after boot
- Supported SSH cryptography schemes
  - Using public key authentication for SSH
Configuring user accounts and privileges
- Recommended characters in user names and passwords
- Configuring local users
  - Configuring local users using iDRAC web interface
  - Configuring local users using RACADM
    - Adding iDRAC user using RACADM
    - Enabling iDRAC user with permissions
- Configuring Active Directory users
- Configuring generic LDAP users
Configuring iDRAC for Single Sign-On or smart card login
- Prerequisites for Active Directory Single Sign-On or smart card login
- Configuring iDRAC SSO login for Active Directory users
  - Configuring iDRAC SSO login for Active Directory users using web interface
  - Configuring iDRAC SSO login for Active Directory users using RACADM
- Configuring iDRAC smart card login for local users
  - Uploading smart card user certificate
    - Uploading smart card user certificate using web interface
    - Uploading smart card user certificate using RACADM
  - Uploading trusted CA certificate for smart card
    - Uploading trusted CA certificate for smart card using web interface
    - Uploading trusted CA certificate for smart card using RACADM
- Configuring iDRAC smart card login for Active Directory users
- Enabling or disabling smart card login
Configuring iDRAC to send alerts
- Enabling or disabling alerts
- Filtering alerts
  - Filtering alerts using iDRAC web interface
  - Filtering alerts using RACADM
- Setting event alerts
  - Setting event alerts using web interface
  - Setting event alerts using RACADM
- Setting alert recurrence event
  - Setting alert recurrence events using iDRAC web interface
  - Setting alert recurrence events using RACADM
- Setting event actions
  - Setting event actions using web interface
  - Setting event actions using RACADM
- Configuring email alert, SNMP trap, or IPMI trap settings
  - Configuring IP alert destinations
  - Configuring email alert settings
- Configuring WS Eventing
- Configuring Redfish Eventing
- Monitoring chassis events
  - Monitoring chassis events using the iDRAC web interface
  - Monitoring chassis events using RACADM
- Alerts message IDs
Managing logs
- Viewing System Event Log
- Viewing Lifecycle log
  - Viewing Lifecycle log using web interface
    - Filtering Lifecycle logs
    - Adding comments to Lifecycle logs
  - Viewing Lifecycle log using RACADM
- Exporting Lifecycle Controller logs
  - Exporting Lifecycle Controller logs using web interface
  - Exporting Lifecycle Controller logs using RACADM
- Adding work notes
- Configuring remote system logging
  - Configuring remote system logging using web interface
  - Configuring remote system logging using RACADM
Monitoring and managing power
- Monitoring power
  - Monitoring power using web interface
  - Monitoring power using RACADM
- Setting warning threshold for power consumption
  - Setting warning threshold for power consumption using web interface
- Executing power control operations
  - Executing power control operations using web interface
  - Executing power control operations using RACADM
- Power capping
  - Power capping in Blade servers
  - Viewing and configuring power cap policy
- Configuring power supply options
- Enabling or disabling power button
Inventorying, monitoring, and configuring network devices
- Inventorying and monitoring network devices
  - Monitoring network devices using web interface
  - Monitoring network devices using RACADM
- Inventorying and monitoring FC HBA devices
  - Monitoring FC HBA devices using web interface
  - Monitoring FC HBA devices using RACADM
- Dynamic configuration of virtual addresses, initiator, and storage target settings
Managing storage devices
- Understanding RAID concepts
- Supported controllers
- Supported enclosures
- Summary of supported features for storage devices
- Inventorying and monitoring storage devices
- Viewing storage device topology
- Managing physical disks
  - Assigning or unassigning physical disk as global hot spare
    - Assigning or unassigning global hot spare using web interface
    - Assigning or unassigning global hot spare using RACADM
  - Converting a physical disk to RAID or non-RAID mode
    - Converting physical disks to RAID capable or non-RAID mode using the iDRAC web interface
    - Converting physical disks to RAID capable or non-RAID mode using RACADM
- Managing virtual disks
- Managing controllers
- Managing PCIe SSDs
- Managing enclosures or backplanes
- Choosing operation mode to apply settings
  - Choosing operation mode using web interface
  - Choosing operation mode using RACADM
- Viewing and applying pending operations
  - Viewing, applying, or deleting pending operations using web interface
  - Viewing and applying pending operations using RACADM
- Storage devices — apply operation scenarios
- Blinking or unblinking component LEDs
  - Blinking or unblinking component LEDs using web interface
  - Blinking or unblinking component LEDs using RACADM
Configuring and using virtual console
- Supported screen resolutions and refresh rates
- Configuring virtual console
  - Configuring virtual console using web interface
  - Configuring virtual console using RACADM
- Previewing virtual console
- Launching virtual console
- Using virtual console viewer
Managing virtual media
- Supported drives and devices
- Configuring virtual media
- Accessing virtual media
- Setting boot order through BIOS
- Enabling boot once for virtual media
Installing and using VMCLI utility
- Installing VMCLI
- Running VMCLI utility
- VMCLI syntax
  - VMCLI commands to access virtual media
  - VMCLI operating system shell options
Managing vFlash SD card
- Configuring vFlash SD card
- Managing vFlash partitions
Using SMCLP
- System management capabilities using SMCLP
- Running SMCLP commands
- iDRAC SMCLP syntax
- Navigating the map address space
- Using show verb
- Usage examples
Using iDRAC Service Module
- Installing iDRAC Service Module
- Supported operating systems for iDRAC Service Module
- iDRAC Service Module monitoring features
- Using iDRAC Service Module from iDRAC web interface
- Using iDRAC Service Module from RACADM
- Using iDRAC Service Module on Windows Nano OS
Using USB port for server management
- Accessing iDRAC interface over direct USB connection
- Configuring iDRAC using server configuration profile on USB device
  - Configuring USB management port settings
  - Importing server configuration profile from USB device
Using iDRAC Quick Sync
- Configuring iDRAC Quick Sync
- Using mobile device to view iDRAC information
Deploying operating systems
- Deploying operating system using remote file share
- Deploying operating system using virtual media
  - Installing operating system from multiple disks
- Deploying embedded operating system on SD card
  - Enabling SD module and redundancy in BIOS
    - About IDSDM
Troubleshooting managed system using iDRAC
- Using diagnostic console
  - Scheduling remote automated diagnostics
  - Scheduling remote automated diagnostics using RACADM
- Viewing post codes
- Viewing boot and crash capture videos
  - Configuring video capture settings
- Viewing logs
- Viewing last system crash screen
- Viewing front panel status
  - Viewing system front panel LCD status
  - Viewing system front panel LED status
- Hardware trouble indicators
- Viewing system health
- Generating SupportAssist Collection
  - Generating SupportAssist Collection automatically
    - Generating SupportAssist Collection automatically using iDRAC web interface
  - Generating SupportAssist Collection manually
    - Generating SupportAssist Collection manually using iDRAC web interface
    - Generating SupportAssist Collection manually using RACADM
- Checking server status screen for error messages
- Restarting iDRAC
  - Resetting iDRAC using iDRAC web interface
  - Resetting iDRAC using RACADM
- Erasing system and user data
- Resetting iDRAC to factory default settings
  - Resetting iDRAC to factory default settings using iDRAC web interface
  - Resetting iDRAC to factory default settings using iDRAC settings utility
Frequently asked questions
- System Event Log
- Network security
- Active Directory
- Single Sign-On
- Smart card login
- Virtual console
- Virtual media
- vFlash SD card
- SNMP authentication
- Storage devices
- iDRAC Service Module
- RACADM
- Miscellaneous
Use case scenarios
- Troubleshooting an inaccessible managed system
- Obtaining system information and assess system health
- Setting up alerts and configuring email alerts
- Viewing and exporting Lifecycle log and System Event Log
- Interfaces to update iDRAC firmware
- Performing graceful shutdown
- Creating new administrator user account
- Launching server's remote console and mounting a USB drive
- Installing bare metal OS using attached virtual media and remote file share
- Managing rack density
- Installing new electronic license
- Applying I/O Identity configuration settings for multiple network cards in single host system reboot

tty1

tty2

tty3

tty4

tty5

tty6

tty7

tty8

tty9

tty10

tty11

ttyS1

Supported SSH cryptography schemes

To communicate with iDRAC using SSH protocol, it supports multiple cryptography schemes listed in the following table.

Table 15. SSH cryptography schemes

Scheme Type Algorithms

Asymmetric Cryptography

Public key

ssh-rsa

ecdsa-sha2-nistp256

Symmetric Cryptography

Key Exchange

curve25519-sha256@libssh.org

ecdh-sha2-nistp256

ecdh-sha2-nistp384

ecdh-sha2-nistp521

diffie-hellman-group-exchange-sha256

diffie-hellman-group14-sha1

Encryption

chacha20-poly1305@openssh.com

aes128-ctr

aes192-ctr

aes256-ctr

aes128-gcm@openssh.com

aes256-gcm@openssh.com

MAC

hmac-sha1

hmac-ripemd160

umac-64@openssh.com

Compression None

NOTE: If you enable OpenSSH 7.0 or later, DSA public key support is disabled. To ensure better security for iDRAC, Dell

recommends not enabling DSA public key support.

Using public key authentication for SSH

iDRAC supports the Public Key Authentication (PKA) over SSH. This is a licensed feature. When the PKA over SSH is set up

and used correctly, you must enter the user name while logging into iDRAC. This is useful for setting up automated scripts that

Setting up iDRAC communication

121