Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Enterprise-Modular

Table Of Contents

Dell EMC OpenManage Enterprise-Modular Edition for PowerEdge MX7000 Chassis User's Guide
Contents
Overview
- Key features
- New in this release
- Supported platforms
- Supported web browsers
- Other documents you may need
- Accessing documents from Dell support site
- Positioning OME-Modular with other Dell EMC applications
Updating firmware for PowerEdge MX solution
- MX7000 Solution Baselines
- Upgrading ethernet switch using DUP
OME-Modular licenses
- Importing licenses
- Viewing license details
Logging in to OME-Modular
- Logging in to OME–Modular as local, Active Directory, or LDAP user
  - Integrating directory services in OME-Modular
  - Adding Active Directory service
  - Adding LDAP service
  - Logging in to OME–Modular using the directory user credentials
  - Importing active directory and LDAP user groups
- Logging in to OME-Modular using OpenID Connect
  - Adding OpenID Connect Provider
  - Editing OpenID Connect Provider
  - Enabling OpenID Connect Provider
  - Disabling OpenID Connect Provider
  - Deleting OpenID Connect Provider
- OME-Modular home page
  - Search feature in OME-Modular
  - Viewing alerts
  - Viewing jobs and activities
  - Multi-chassis management dashboard
- Viewing device health
- Setting up chassis
- Initial configuration
- Configuring chassis settings
  - Configure chassis power
  - Configure chassis management network
  - Configure chassis network services
    - Configuring OME-Modular to use command line consoles
      - OME-Modular command line console features
      - OME-Modular command line commands
  - Configure local access
    - Chassis Direct
  - Configure chassis location
  - Configure Quick Deploy settings
- Managing chassis
  - Creating chassis filters
  - Viewing chassis overview
  - Wiring chassis
- Chassis groups
  - Prerequisites for creating a wired group
  - Creating chassis groups
  - Edit chassis groups
  - Delete groups
  - MCM dashboard
- Controlling chassis power
- Backing up chassis
- Restoring chassis
- Exporting chassis profiles
- Managing chassis failover
- Troubleshooting in chassis
- Blinking LEDs
- Interfaces to access OME-Modular
- Viewing chassis hardware
  - Chassis slot details
- Viewing chassis alerts
- Viewing chassis hardware logs
- Configuring OME–Modular
  - Viewing current configuration
  - Configuring users and user settings
  - Configuring login security settings
  - Configuring alerts
Managing compute sleds
- Viewing compute overview
- Configuring compute settings
  - Configuring compute network settings
    - Configuring compute management settings
- Replacing compute sleds
- Viewing compute hardware
- Viewing compute firmware
- Viewing compute hardware logs
- Viewing compute alerts
Managing Profiles
- Creating Profile
- Viewing Profile
- Editing Profile
  - Rename Profile
  - Edit Profile
- Assigning Profile
- Unassigning Profile
- Redeploying Profile
- Migrating Profile
- Deleting Profile
Managing storage
- Storage overview
- Viewing hardware details
- Assigning drives to a compute sled
- Assigning storage enclosure to a compute sled
- Replacing storage sleds
- Updating enclosure firmware
  - Updating the firmware using DUP
  - Updating the firmware using catalog-based compliance
- Downgrading storage enclosure firmware
- Managing SAS IOMs
Managing templates
- Viewing template details
- Creating templates
  - Importing templates
- Editing templates
- Cloning templates
- Exporting templates
- Deleting templates
- Editing template networks
- Deploying templates
  - Deploying templates from Template Details page
Managing identity pools
- Creating identity pools
- Viewing identity pools
- Editing identity pools
- Exporting identity pools
- Deleting identity pools
Ethernet IO Modules
- Viewing hardware details
- Configuring IOM settings
MX Scalable Fabric architecture
- Recommended physical topology
- Restrictions and guidelines
- Recommended connection order
SmartFabric Services
- Guidelines for operating in SmartFabric mode
- SmartFabric network topologies
- Switch to switch cabling
- Upstream network switch requirements
- NIC teaming restrictions
- OS10 CLI commands available in SmartFabric mode
- Fabrics Overview
- Viewing topology details
- Viewing Multicast VLANs
- VLANs for SmartFabric and FCoE
Managing networks
- SmartFabric VLAN management and automated QoS
- Defining networks
- Editing VLANs
- Exporting VLANs
- Importing VLANs
- Deleting VLANs
Managing Fibre Channel IOMs
Managing firmware
- Managing catalogs
  - Viewing catalogs
  - Adding catalogs
- Creating baselines
- Editing baselines
- Checking compliance
- Updating firmware
- Rolling back firmware
- Deleting firmware
Monitoring alerts and logs
- Alert log
- Alert policies
- Alert definitions
  - Filtering alert definitions
Monitoring audit logs
- Filtering audit logs
- Exporting audit logs
- Monitoring jobs
Use case scenarios
- Assigning backup to the MCM Lead
  - Creating chassis group with backup lead
  - Monitoring the MCM group
- Scenarios when backup lead can take over as lead chassis
  - Disaster recovery of lead chassis
  - Retiring lead chassis
Troubleshooting
- Storage
- Unable to access OME-Modular using Chassis Direct
- Troubleshooting lead chassis failure
Recommended slot configurations for IOMs
- Supported slot configurations for IOMs
Creating validated firmware solution baseline using Dell Repository Manager
Upgrading networking switch using different OS10 DUP versions
- Upgrading networking switch to 10.5.0.7 or 10.5.0.9 using DUP
- Prerequisites for upgrading from versions earlier than 10.5.0.5
- Prerequisites for upgrading from 10.5.0.5
Upgrading networking switch using CLI

The Import Directory window is displayed.

2. From the Directory Source drop-down, select the source from which you want to import the AD or LDAP.

3. Under Available Groups, you can search for directory groups.

In the Find a Group text box, enter the first few letters of the group name available in the tested directory. A list of all

groups names that begin with the text you entered, is displayed below under the GROUP NAME column.

4. Select a group and click >>.

The selected group is displayed under Groups to be Imported.

To remove groups, select the check box corresponding to the group you want to remove and click <<.

5. Click the check box corresponding to the group and from the Assign Group Role drop-down, select the role that you want

to assign to the group and click Assign.

The users in the group under the selected directory service are assigned to the selected user roles.

6. Repeat steps 3, 4, and 5, if required.

7. Click Import.

The directory groups are imported and displayed in the Users list. However, all users in those groups use their domain

username and credentials to log in to OME-Modular.

Logging in to OME-Modular using OpenID Connect

The OpenID Connect multifactor authentication feature allows the users who are registered with OpenID Connect (OIDC)

Provider, to access the OME-Modular web interface. For the registration, the OIDC configuration document is first queried

using a RESTful API URI. The information that is obtained from the query is used to log in to OME-Modular.

NOTE:

When you log in using OpenID Connect Provider credentials, the username is displayed in the

name@ProviderName@Sub format which may result in some extra characters with the username.

NOTE: Dell Technologies recommends that you use DNS name while configuring the OIDC server and DNS name in the

discovery URI, instead of IP address. Using DNS name helps avoid limitations in some OIDC servers where dynamic client

registration fails when a combination of IPv6 and initial access token is used.

Important notes

● You must have the SECURITY_SETUP privilege to add, modify, and delete OIDC Providers. You can add maximum of four

OIDC Providers on OME-Modular. The Add option is disabled if there are already four OIDC Providers added.

● When you perform add or join chassis group operation with OIDC providers that are configured in lead or member chassis,

ensure that the OIDC server is reachable from the chassis.

● If the OIDC server is not reachable, the registration status is displayed as failed even if the OIDC providers are successfully

propagated from lead to member when the user authentication option is enabled. For any operations related to OIDC

providers in the lead or member chassis, the communication between OIDC server and chassis must be successful.

● During the firmware upgrade process, OIDC registration may fail with which the token may expire. In this scenario, re-

● OIDC users who are registered with PingFederate may have to re-register with OIDC provider, as the following actions may

reset the Open ID client policy that is associated with the client to Default.

○ Firmware upgrade

○ Change in network configuration

○ Change in SSL certificate

● The re-registration process with OIDC provider might reset to the default policy that is configured in the PingFederate. To

avoid security concerns post any of the re-registration events, the administrator must reconfigure all the OpenManage

Enterprise Client IDs on the PingFederate site. Also, it is highly recommended that client IDs are created only for

administrator users with Ping federate until this issue is resolved.

NOTE:

When you downgrade the management module firmware from 1.30.10 to 1.30.00, the verified OpenID Connect user

details are not retained.

Following are the predefined roles that must be configured in the OIDC Provider for OIDC users to log in to OME-Modular:

Logging in to OME-Modular