Dell OpenManage Server Administrator Version 8.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2016 Dell Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws.
Contents 1 Introduction.....................................................................................................................6 Installation.......................................................................................................................................................................... 6 Updating individual system components.............................................................................................................................
The Server Administrator home page...............................................................................................................................26 Server Administrator user interface differences across modular and non-modular systems.......................................28 Global Navigation Bar.................................................................................................................................................28 System Tree........................................
7 Setting Alert Actions..................................................................................................... 63 Setting Alert Actions For Systems Running Supported Red Hat Enterprise Linux And SUSE Linux Enterprise Server Operating Systems...........................................................................................................................................................63 Setting Alert Actions In Microsoft Windows Server Server 2008......................................
1 Introduction Server Administrator provides a comprehensive, one-to-one systems management solution in two ways: from an integrated, web browser-based graphical user interface (GUI) and from a command line interface (CLI) through the operating system. Server Administrator enables system administrators to manage systems locally and remotely on a network. It enables system administrators to focus on managing their entire network by providing comprehensive one-to-one systems management.
NOTE: For more information about the Storage Management Service, see the Server Administrator Storage Management User's Guide at dell.com/openmanagemanuals. Instrumentation Service The Instrumentation Service provides rapid access to detailed fault and performance information gathered by industry-standard systems management agents and allows remote administration of monitored systems, including shutdown, startup, and security.
– Broadcom 25GbE 2P 57404S Adapter – Broadcom 10GbE 2P 57402S Adapter – Broadcom 10GbE Base-T 2P 57406 Adapter – Mellanox 25GBE 2P ConnectX-4 LX Adapter – Mellanox ConnectX-4 LX DP 25Gb SFP rNDC – Intel 82599 DP 10G Mezzanine Adapter (Supported only on Dell PowerEdge C6320) NOTE: For the list of supported operating systems and Dell servers, see the Dell Systems Software Support Matrix in the required version of OpenManage Software at dell.com/openmanagemanuals.
Operating system SNMP CIM Citrix XenServer 6.5 Available in the net-snmp package from the operating system installation media Unavailable Server Administrator Home Page The Server Administrator home page provides easy-to-set up and easy-to-use Web browser-based system management tasks from the managed system or from a remote host through a LAN, dial-up service, or wireless network.
• The Dell OpenManage Server Update Utility User's Guide provides information about obtaining and using the Server Update Utility (SUU) to update your Dell systems or to view the updates available for any systems listed in the Repository. • The Dell Management Console User’s Guide provides information about installing, configuring, and using Dell Management Console.
Go to Dell.com/contactdell.
2 Setup And Administration Server Administrator provides security through role- based access control (RBAC), authentication, and encryption for both the Web-based and command line interfaces. Role-Based Access Control RBAC manages security by determining the operations that can be executed by persons in particular roles. Each user is assigned one or more roles, and each role is assigned one or more privileges that are permitted to users in that role.
Instrumentation User, Power User, Administrator, Elevated Power User, Administrator, Elevated Administrator Administrator Remote Access User, Power User, Administrator, Elevated Administrator, Elevated Administrator Administrator Storage Management User, Power User, Administrator, Elevated Administrator, Elevated Administrator Administrator Authentication The Server Administrator authentication scheme ensures that the correct access types are assigned to the correct user privileges.
CAUTION: Disable guest accounts for supported Windows operating systems to protect access to your critical system components. Consider renaming the guest accounts so that remote scripts cannot enable the accounts using the default guest account names. NOTE: For instructions on assigning user privileges for each supported operating system, see your operating system documentation. NOTE: To add users to OpenManage software, add new users to the operating system.
Creating Users With Power User Privileges 1. Run the following command from the command line:useradd -d -g NOTE: Set root as the primary group. 2. Type passwd and press . 3. When prompted, enter a password for the new user. NOTE: Assign a password to every user account that can access Server Administrator to protect access to your critical system components. The new user can now log in to Server Administrator with Power User group privileges.
• Do not use the loop back address for , for example: localhost or 127.0.0.1. • After the connection services are restarted and the changes do not take effect for the omarolemap file, see the command log for the errors. • When the omarolemap file is copied from one machine to another machine, file permissions and the entries of the file needs to be rechecked. • Prefix the Group Name with +.
NOTE: For IT Assistant to retrieve management information from a system running Server Administrator, the community name used by IT Assistant must match a community name on the system running Server Administrator. For IT Assistant to modify information or perform actions on a system running Server Administrator, the community name used by IT Assistant must match a community name that allows Set operations on the system running Server Administrator.
Configuring Your System To Send SNMP Traps To A Management Station Server Administrator generates SNMP traps in response to changes in the status of sensors and other monitored parameters. You must configure one or more trap destinations on the system running Server Administrator for SNMP traps to be sent to a management station. 1. Open the Computer Management window. 2. Expand the Computer Management icon in the window, if necessary. 3. Expand the Services and Applications icon and click Services.
peer. Because that object identifier must be configured with the SNMP agent, Server Administrator adds the following line to the SNMP agent configuration file, /etc/snmp/snmpd.conf, during installation if it does not exist: smuxpeer .1.3.6.1.4.1.674.10892.1 Changing The SNMP Community Name Configuring the SNMP community name determines which systems are able to manage your system through SNMP.
NOTE: For security reasons, it is advisable to restrict SNMP access to specific remote hosts if possible. To enable SNMP access from a specific remote host to a system running Server Administrator, edit the SNMP agent configuration file, /etc/snmp/snmpd.conf, and perform the following steps: 1. Find the line that reads: rocommunity public 127.0.0.1. 2. Edit or copy this line, replacing 127.0.0.1 with the remote host IP address. When edited, the new line should read: rocommunity public IP_address.
where is the hostname or IP address of the ESXi system, is a user on the ESXi system, is the SNMP community name and is the hostname or IP address of the management station. NOTE: The extension .pl is not required on Linux. NOTE: If you do not specify a user name and password, you are prompted. The SNMP trap configuration takes effect immediately without restarting any services.
Firewall Configuration To open the SNMP port on SUSE Linux Enterprise Server: 1. Configure SuSEfirewall2 by running the following command on a console: a.# yast2 firewall 2. Use the arrow keys to navigate to Allowed Services. 3. Press to open the Additional Allowed Ports dialog box. 4. Press to move the cursor to the TCP Ports text box. 5. Type snmp in the text box. 6. Press to go to the next screen. 7. Press to accept and apply the changes.
3 Using Server Administrator To start a Server Administrator session, double-click the Server Administrator icon on your desktop. The Server Administrator Log in screen is displayed. The default port for Server Administrator is 1311. You can change the port, if required. For instructions on setting up your system preferences, see Dell Systems Management Server Administration Connection Service and Security Setup. NOTE: Servers running on XenServer 6.
NOTE: If you have provided the system name or FQDN, the Server Administrator Web Server host converts the system name or FQDN to the IP address of the managed system. You can also connect by providing the port number of the managed system in the following format: Hostname:Port number, or IP address:Port number. If you are connecting to a Citrix XenServer, Server Administrator Web Server automatically selects the default port (5986) or you can specify an alternative port. 3.
Using The Active Directory Login You should select Active Directory Login to log in using the Dell Extended Schema Solution in Active Directory. This solution enables you to provide access to Server Administrator; allowing you to add/control Server Administrator users and privileges to existing users in your Active Directory software. For more information, see "Using Microsoft Active Directory" in the Server Administrator Installation Guide at dell.com/openmanagemanuals.
The Internet Options window is displayed. 2. Under Select a zone to view or change security settings, click Trusted Sites, and then click Sites. 3. In the Add this website to the zone field, paste the Web address used to access the remote managed system. 4. Click Add . 5. Copy the Web address used to access the remote managed system from the browser’s address bar and paste it onto the Add this Web Site to the Zone field. 6. Under Security level for this zone, click Custom level. 7.
The following table lists the GUI field names and the applicable system, when Server Administrator is installed on the system. Table 7.
or more focused actions. The information displayed in the data area of the action window can range from system logs to status indicators to system probe gauges. Underlined items in the data area of the action window indicate a further level of functionality. Clicking an underlined item creates a data area in the action window that contains a greater level of detail.
• Click Preferences to open the Preferences home page. See Using the Preferences Home Page. • Click Support to connect to the Dell Support website. • Click About to display Server Administrator version and copyright information. • Click Log Out to end the current Server Administrator program session. System Tree The system tree appears on the left side of the Server Administrator home page and lists the components of your system that are viewable.
Task Buttons Most windows opened from the Server Administrator home page contain at least five task buttons: Print, Export, Email, Help and Refresh. Other task buttons are included on specific Server Administrator windows. The Log window, for example, also contain Save As and Clear Log task buttons. • Clicking Print ( • Clicking Export ( ) generates a text file that lists the values for each data field on the open window. The export file is saved to a location you specify.
for all windows you can view, based on the software and hardware groups that Server Administrator discovers on your system and your user privilege level. Using The Preferences Home Page The left-hand pane of the Preferences home page (where the system tree is displayed on the Server Administrator home page) displays all available configuration options in the system tree window.
NOTE: By default all the options are selected. The OS logging filter feature is available when the OS logging filter component is installed. • Select Enable to log all unmonitored ESM sensor events. By enabling this feature, Server Administrator generates SNMP traps, OS Logs and Alerts for all unmonitored sensors.
NOTE: Changing the port number to an invalid or in-use port number may prevent other applications or browsers from accessing Server Administrator on the managed system. For a list of default ports, see the Server Administrator Installation Guide available at dell.com/openmanagemanuals. • The IP Address to Bind to field specifies the IP addresses for the managed system that Server Administrator binds to when starting a session. Select All to bind to all IP addresses applicable for your system.
– System JRE — Enables use of the JRE installed on the system. Select the required version from the drop-down list. NOTE: Server Administrator does not recommend the upgrade to major versions of Java Runtime Environment (JRE), it is limited to the security patch and minor JRE versions. For more details, see the release notes of Server Administrator (packaged with Server Administrator application) or at dell.com/openmanagemanuals. 4.
• Allow the two systems to establish an encrypted connection The encryption process provides a high level of data protection. Server Administrator uses the most secure form of encryption generally available for Internet browsers in North America. Server Administrator Web server has a Dell self-signed unique SSL digital certificate by default. You can replace the default SSL certificate with a certificate signed by a well-known Certificate Authority (CA).
The CLI allows a user with a very well-defined task in mind to rapidly retrieve information about the system. Using CLI commands, for example, administrators can write batch programs or scripts to execute at specific times. When these programs execute, they can capture reports on components of interest, such as fan RPMs. With additional scripting, the CLI can be used to capture data during periods of high system usage to compare with the same measurements at times of low system usage.
4 Server Administrator services Server Administrator Instrumentation Service monitors the health of a system and provides rapid access to detailed fault and performance information gathered by industry-standard systems management agents. The reporting and viewing features allow retrieval of the overall health status for each chassis that includes your system. At the subsystem level, you can view information about the voltages, temperatures, fan rpm, and memory function at key points in the system.
categorized by component type. When you expand the main object — Modular Enclosure — System/Server Module — the major categories of system components that may appear are, Main System Chassis/Main System, Software, and Storage. If Storage Management Service is installed, depending on the controller and storage attached to the system, the Storage tree object expands to display various objects.
System/Server module properties The System/Server Module object contains three main system component groups: Main System Chassis/Main System, Software, and Storage. The Server Administrator home page defaults to the System object of the system tree view. Most administrative functions can be managed from the System/Server Module object action window.
• Shut down the DSM SA Connection Service (web server). NOTE: Server Administrator is still available through the command line interface (CLI) when the DSM SA Connection Service is shut down. The CLI functions do not require the DSM SA Connection Service to be running. Logs Subtabs: Hardware | Alert | Command Under the Logs tab, you can: • View the Embedded System Management (ESM) log or the System Event Log (SEL) for a list of all events related to your system's hardware components.
Session management Subtabs: Session Under the Session Management tab, you can: • View session information for current users that have logged in to Server Administrator. • Terminate user sessions. NOTE: Only users with Administrator privileges can view the Session Management page and terminate sessions of logged-in users. Main System Chassis/Main System Click the Main System Chassis/Main System object to manage your system's essential hardware and software components.
Main system chassis/Main system properties The system/server module may contain one main system chassis or several chassis. The main system chassis/main system contains the essential components of a system. The Main System Chassis/Main System object action window includes the following: Properties Subtabs: Health | Information | System Components (FRU) | Front Panel Under the Properties tab, you can: • View the health or status of hardware components and sensors.
Subtab: Batteries Under the Properties tab, you can view the current readings and status of your system’s batteries. Alert Management Subtabs: Alert Actions | SNMP Traps Under the Alert Management tab, you can: • View current alert actions settings. • Configure the alerts that you want to take effect in case of a battery warning or critical/failure event. BIOS Click the BIOS object to manage key features of your system's BIOS.
System BIOS Settings page, when you click the Memory Settings link, the features pertaining to the system memory appear. You can view or modify the settings by navigating to the respective categories. You can set a BIOS Setup password, on the System Security page. If you have set the setup password, enter the password to enable and modify the BIOS settings. Else, the BIOS settings appear in a read-only mode. Restart the system after setting the password.
Hardware performance Click the Hardware Performance object to view the status and cause for the system’s performance degradation. The Hardware Performance object action window can have the following tab, depending on the user's group privileges: Properties. Properties Subtab: Information Under the Properties tab, you can view the details of system’s performance degradation. The following table lists the possible values for status and cause of a probe: Table 10.
Under the Properties tab, you can view the memory redundancy status, memory array attributes, total capacity of the memory arrays, details of memory arrays, memory device details, and memory device status. The memory device details provide the details of a memory device on a connector such as the status, device name, size, type, speed, rank, and failures. A rank is a row of dynamic random access memory (DRAM) devices including 64 bits of data per Dual Inline Memory Module (DIMM).
Ports Click the Ports object to manage your system's external ports. Server Administrator monitors the status of each external port present in your system. NOTE: CMC USB ports attached with blade servers are not enumerated by Server Administrator. The Ports object action window can have the following tab, depending on the user's group privileges: Properties. Subtab: Information Properties Under the Properties tab, you can view information about your system's internal and external ports.
Power Supplies Click the Power Supplies object to manage your system’s power supplies. Server Administrator monitors power supply status, including redundancy, to ensure that each power supply present in your system is functioning properly. The Power Supplies object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.
Remote Access Click the Remote Access object to manage the Baseboard Management Controller (BMC) or Integrated Dell Remote Access Controller (iDRAC) features and Remote Access Controller features. Selecting Remote Access tab allows you to manage the BMC/iDRAC features such as, general information on the BMC/iDRAC.
Under the Properties tab, you can view information about the Removable Flash Media and Internal SD Modules. This includes details about the Connector Name, its state, and storage size. Alert Management Subtabs: Alert Actions | SNMP Traps Under the Alert Management tab, you can: • View current alert actions settings and set the alert actions that you want to be performed when the removable flash media probe returns a warning or failure value.
Voltages Click the Voltages object to manage voltage levels in your system. Server Administrator monitors voltages across critical components in various chassis locations in the monitored system. The Voltages object action window can have the following tabs, depending on the user's group privileges: Properties and Alert Management.
In the case of Storage Management Service, the Storage object action window has the following tab, depending on the user's group privileges: Properties. Properties Subtab: Health Under the Properties tab, you can view the health or status of attached storage components and sensors such as array subsystems and operating system disks.
5 Working with remote access controller The Dell systems baseboard management controller (BMC)/Integrated Dell Remote Access Controller (iDRAC) monitors the system for critical events by communicating with various sensors on the system board and sends alerts and log events when certain parameters exceed their preset thresholds. The BMC/iDRAC supports the industry-standard Intelligent Platform Management Interface (IPMI) specification, enabling you to configure, monitor, and recover systems remotely.
For more information on the systems support for remote access devices, see the Dell Systems Software Support Matrix available at dell.com/openmanagemanuals. Server Administrator allows remote, in-band access to event logs, power control, and sensor status information and provides the ability to configure the BMC/iDRAC.
• IP Gateway IPv6 Address • IP Address Source • IPv6 Address 1 • Default Gateway • IPv6 Address 2 • Link Local Address • DNS Address Source • Preferred DNS Server • Alternate DNS Server NOTE: You can view IPv4 and IPv6 address details only if you enable the IPv4 and IPv6 address properties under Additional Configuration in the Remote Access tab. Configuring The Remote Access Device To Use A LAN Connection To configure the remote access device for communication over a LAN connection: 1.
5. • Subnet Mask • Gateway Address • Channel Privilege Level Limit • New Encryption Key Configure the following optional VLAN configuration details: NOTE: VLAN configuration is not applicable for systems with iDRAC. 6. 7.
• Line Editing • Delete Control • Echo Control • Handshaking Control • New Line Sequence 8. • Input New Line Sequence Click Apply Changes. 9. Click Back To Serial Port Configuration Window to go to back to the Serial Port Configuration window. Configuring The Remote Access Device To Use A Serial Over LAN Connection To configure the BMC/iDRAC for communication over a serial over LAN (SOL) connection: 1.
The Remote Access User Configuration window allows you to configure a specific BMC/iDRAC user. 4. 5. Specify the following general information: • Select Enable User to enable the user. • Enter the name for the user in the User Name field. • Select the Change Password check box. • Enter a new password in the New Password field. • Re-enter the new password in the Confirm New Password field. Specify the following user privileges: • Select the maximum LAN user privilege level limit. 6.
Turns off the electrical power to the system. • Power Cycle System Turns the electrical power to the system off, pauses, turns the power on, and reboots the system. Power cycling is useful when you want to reinitialize system components such as hard drives. • Power Reduction Throttles the CPU. CAUTION: If you select a Platform Event shutdown action other than None or Power Reduction, your system shuts down forcefully when the specified event occurs.
6 Server Administrator logs Server Administrator allows you to view and manage hardware, alert, and command logs. All users can access logs and print reports from either the Server Administrator home page or from its command line interface. Users must be logged in with Administrator privileges to clear logs or must be logged in with Administrator or Power User privileges to email logs to their designated service contact.
• Command Log Hardware log On Dell’s 11th generation PowerEdge systems, use the hardware log to look for potential problems with your system's hardware components. The hardware log status indicator changes to critical status ( ) when the log file reaches 100 percent capacity. There are two available hardware logs, depending on your system: the Embedded System Management (ESM) log and the System Event Log (SEL).
• The event ID • The date and time that the event was captured • The category of the event • A description of the event NOTE: The log history may be required for future troubleshooting and diagnostic purposes. Therefore, it is recommended that you save the log files. NOTE: OMSA may send duplicate SNMP traps or log duplicate events in the Alert Log page or in the operating system log file.
7 Setting Alert Actions Setting Alert Actions For Systems Running Supported Red Hat Enterprise Linux And SUSE Linux Enterprise Server Operating Systems When you set alert actions for an event, you can specify the action to display an alert on the server. To perform this action, Server Administrator sends a message to /dev/console. If the Server Administrator system is running an X Window System, the messsage is not displayed.
where d:\example\example1.vbs is the full path to the script file. Do not set a path to an interactive application (an application that has a graphical user interface or which requires user input) in the absolute path to the application field. The interactive application may not work as expected on some operating systems. NOTE: You must specify the full path for both the cmd.exe and script files.
Event Description Battery Probe Failure The battery has failed. Discrete Voltage Probe Failure The voltage is too low for proper operation. Temperature Probe Warning The temperature is approaching excessively high or low limits. Temperature Probe Failure The temperature is either too high or too low for proper operation. Chassis Intrusion Detected The system chassis has been opened. Redundancy (PS or Fan) Degraded Redundancy for the fans and/or power supplies has been reduced.
8 Troubleshooting Connection Service Failure On Red Hat Enterprise Linux, when SELinux is set to enforced mode, the Dell Systems Management Server Administrator (SM SA) Connection service fails to start. Perform one of the following steps and start this service: • Set SELinux to Disabled mode or to Permissivemode. • Change the SELinux allow_execstack property to ON state. Run the following command: setsebool allow_execstack on • Change the security context for the SM SA connection service.
To force a reinstall: 1. Check the version of Server Administrator that was previously installed. 2. Download the installation package for that version from support.dell.com. 3. Locate SysMgmt.msi in the srvadmin\windows\SystemsManagement directory. 4. Type the following command at the command prompt to force a reinstall msiexec /i SysMgmt.msi REINSTALL=ALL REINSTALLMODE=vamus 5. Select Custom Setup and choose all the features that were originally installed.
Service Name Description (hosted under dataeng service) (This service runs on the managed system.) performance information GUI/CLI without these and allows remote services running. administration of monitored systems, including shutdown, startup, and security. SM SA Event Manager (Windows) Linux: dsm_sa_eventmgrd (hosted under dataeng service) (This service runs on the managed system.
9 Frequently Asked Questions This section lists the frequently asked questions about Server Administrator. NOTE: The following questions are not specific to this release of Server Administrator. 1. Why does ESXi 5.x host rebooting functionality fail from Server Administrator? This issue is due to VMware stand-alone license (SAL) key. For more information, see the knowledge base article at kb.vmware.com/kb/kb1026060. 2.
For servers (systems running Windows Server operating systems), the system may be configured with either or both of SNMP and CIM for discovery by ITA. Inventory requires CIM. Software updates, as in Linux, are not related to discovery and polling and the protocols used.
• esxcli system snmp set --communities public • esxcli network firewall ruleset set --ruleset-id snmp --allowed-all true • esxcli network firewall ruleset set --ruleset-id snmp --enabled true • esxcli system snmp set -t @162/public • esxcli system snmp set --enable true 71
