Dell OpenManage Server Administrator Version 8.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Copyright © 2017 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries.
Contents 1 Introduction................................................................................................................................. 6 Installation...............................................................................................................................................................................6 Updating individual system components............................................................................................................................
System Tree................................................................................................................................................................... 26 Action Window............................................................................................................................................................... 27 Data Area.....................................................................................................................................................
8 Troubleshooting......................................................................................................................... 61 Login Failure Scenarios........................................................................................................................................................61 Fixing A Faulty Server Administrator Installation On Supported Windows Operating Systems................................ 61 Server Administrator services.......................................
1 Introduction Server Administrator provides a comprehensive, one-to-one systems management solution in two ways: from an integrated, web browserbased graphical user interface (GUI) and from a command line interface (CLI) through the operating system. Server Administrator enables system administrators to manage systems locally and remotely on a network. It enables system administrators to focus on managing their entire network by providing comprehensive one-to-one systems management.
NOTE: For more information about obtaining and using the Server Update Utility (SUU), to update your Dell Systems or to view the updates available for any systems listed in the Repository, see the Dell Server Update Utility User's Guide at dell.com/openmanagemanuals. Storage Management Service The Storage Management Service provides storage management information in an integrated graphical view.
Systems management standards availability Server Administrator supports the following systems management protocols: • • • HyperText Transfer Protocol Secure (HTTPS) Common Information Model (CIM) Simple Network Management Protocol (SNMP) If your system supports SNMP, install and enable the service on your operating system. If SNMP services are available on your operating system, the Server Administrator installation program installs the supporting agents for SNMP.
• • • • • • • • • • • • • • • • • • • • • The OpenManage SNMP Reference Guide documents the Simple Network Management Protocol (SNMP) management information base (MIB). The Dell OpenManage Server Administrator CIM Reference Guide documents the Common Information Model (CIM) provider, an extension of the standard management object format (MOF) file. The Messages Reference Guide lists the messages that are displayed in your Server Administrator home page Alert log or on your operating system’s event viewer.
• • Dell Client Command Suite • Connections Client Systems Management 4. To view a document, click the required product version. Using search engines: • Type the name and version of the document in the search box. Obtaining Technical Assistance If at any time you do not understand a procedure described in this guide or if your product does not perform as expected, help tools are available to assist you.
2 Setup And Administration Server Administrator provides security through role- based access control (RBAC), authentication, and encryption for both the Webbased and command line interfaces. Topics: • • • • Role-Based Access Control Authentication Encryption Assigning User Privileges Role-Based Access Control RBAC manages security by determining the operations that can be executed by persons in particular roles.
Remote Access User, Power User, Administrator, Elevated Administrator Administrator, Elevated Administrator Storage Management User, Power User, Administrator, Elevated Administrator Administrator, Elevated Administrator Authentication The Server Administrator authentication scheme ensures that the correct access types are assigned to the correct user privileges.
NOTE: For instructions on assigning user privileges for each supported operating system, see your operating system documentation. NOTE: To add users to OpenManage software, add new users to the operating system. You do not have to create new users from within the OpenManage software. Adding users to a domain on Windows operating systems NOTE: You must have Microsoft Active Directory installed on your system to perform the following procedures.
NOTE: Set root as the primary group. 2. Type passwd and press . 3. When prompted, enter a password for the new user. NOTE: Assign a password to every user account that can access Server Administrator to protect access to your critical system components. The new user can now log in to Server Administrator with Power User group privileges. Editing Server Administrator user privileges on Linux operating systems NOTE: You must be logged in as root or an equivalent user. 1.
• Server Administrator uses the default operating system user privileges, if: • • a user is degraded in the omarolemap file • there are duplicate entries of user names or user groups along with same You can also use Space as a delimiter for columns instead of [Tab]. Creating Server Administrator Users For VMware ESXi 5.X and ESXi 6.X To add a user to the Users table: 1. Log in to the host using the vSphere Client. 2. Click the Users & Groups tab and click Users. 3.
• • • Configuring the SNMP Agent On Systems Running Supported Red Hat Enterprise Linux Configuring the SNMP Agent On Systems Running Supported SUSE Linux Enterprise Server Configuring the SNMP Agent on Systems Running Supported VMware ESXi 5.X and ESXi 6.X Operating Systems Configuring the SNMP agent on systems running supported Windows operating systems Server Administrator uses the SNMP services provided by the Windows SNMP agent.
b) To add a trap destination for a trap community, select the community name from the Community Name drop-down box and click Add under the Trap Destinations box. The SNMP Service Configuration window appears. c) In the Host name, IP or IPX address box, type the trap destination, Add. The SNMP Service Properties window appears. 6. Click OK to save the changes.
3. Edit this line, replacing public with the new SNMP community name. When edited, the new line should read: com2sec publicsec default community_name or com2sec notConfigUser default community_name. 4. To enable SNMP configuration changes, restart the SNMP agent by typing: service snmpd restart. Configuring Your System To Send Traps To A Management Station Server Administrator generates SNMP traps in response to changes in the status of sensors and other monitored parameters.
Changing The SNMP Community Name Configuring the SNMP community name determines which management stations are able to manage your system through SNMP. The SNMP community name used by management applications must match the SNMP community name configured on the system running Server Administrator,, so the management applications can retrieve the management information from Server Administrator.
To open the SNMP port on Red Hat Enterprise Linux using one of the previously described methods: 1. At the Red Hat Enterprise Linux command prompt, type setup and press to start the Text Mode Setup Utility. NOTE: This command is available only if you have performed a default installation of the operating system. The Choose a Tool menu appears. 2. Select Firewall Configuration using the down arrow and press . The Firewall Configuration screen appears. 3.
3 Using Server Administrator To start a Server Administrator session, double-click the Server Administrator icon on your desktop. The Server Administrator Log in screen is displayed. The default port for Server Administrator is 1311. You can change the port, if required. For instructions on setting up your system preferences, see Dell Systems Management Server Administration Connection Service and Security Setup. NOTE: Servers running on XenServer 6.
NOTE: If you have provided the system name or FQDN, the Server Administrator Web Server host converts the system name or FQDN to the IP address of the managed system. You can also connect by providing the port number of the managed system in the following format: Hostname:Port number, or IP address:Port number. If you are connecting to a Citrix XenServer, Server Administrator Web Server automatically selects the default port (5986) or you can specify an alternative port. 3.
Using The Active Directory Login You should select Active Directory Login to log in using the Dell Extended Schema Solution in Active Directory. This solution enables you to provide access to Server Administrator; allowing you to add/control Server Administrator users and privileges to existing users in your Active Directory software. For more information, see "Using Microsoft Active Directory" in the Server Administrator Installation Guide at dell.com/openmanagemanuals.
7. Click OK to save the new settings. 8. Close the browser and log in to Server Administrator. Enabling Single Sign-On For Server Administrator On Internet Explorer To allow Single Sign-On for Server Administrator without prompts for user credentials: 1. In your Web browser, click Tools > Internet Options > Security 2. Under Select a zone to view or change security settings, click Trusted Sites, and then click Sites. 3.
System Non-modular system Main System Chassis Non-modular system The following figure shows a sample Server Administrator home page layout for a user logged in with administrator privileges on a nonmodular system. Figure 1. Sample Server Administrator home page — Non-Modular System The following figure shows a sample Server Administrator home page layout for a user logged in with administrator privileges on a modular system. Figure 2.
Server Administrator user interface differences across modular and non-modular systems The following table lists the availability of Server Administrator features across modular and non-modular systems. Table 8.
> System/Server Module, the major categories of system/server module components that may appear are Main System Chassis/ Main System, Software, and Storage. To expand a branch of the tree, click the plus sign ( expanded entry that cannot be expanded further. ) to the left of an object, or double-click the object. A minus sign ( ) indicates an Action Window When you click an item on the system tree, details about the component or object appear in the data area of the action window.
• • • Clicking Refresh ( ) reloads the system component status information in the action window data area. Clicking Save As saves an HTML file of the action window in a .zip file. Clicking Clear Log erases all events from the log displayed in the action window data area. • Clicking Help ( ) provides detailed information about the specific window or task button you are viewing. NOTE: The Export, E-mail, and Save As buttons are only visible for users logged in with Power User or Administrator privileges.
• The action window displays the available settings and preferences for the managed system or the Server Administrator Web Server. Managed system preferences When you log in to a remote system, the preferences home page defaults to the Node Configuration window under the Preferences tab. Click the Server Administrator object to enable or disable access to users with User or Power User privileges.
1. Click Preferences on the global navigation bar. The Preferences home page is displayed. 2. Click General Settings. 3. To add a preselected email recipient, type the email address of your designated service contact in the Mail To: field, and click Apply. NOTE: Click E-mail ( ) in any window to send an e-mail message with an attached HTML file of the window to the designated email address.
• • • NOTE: If an incorrect cipher value is set and the connection service fails to start, use the CLI command prompt or manually set the valid ciphers and restart the connection service. The SSL Protocols field allows you to set from the web server listed SSL protocols to establish an HTTPS connection. The possible values are: TLSv1 , TLSv1.1 , TLSv1.2 , (TLSv1, TLSv1.1) , (TLSv1.1, TLSv1.2) and (TLSv1, TLSv1.1, TLSv1.2). By default, the value of SSL protocol is set to (TLSv1, TLSv1.1, TLSv1.2).
NOTE: An error message is displayed if you either select an invalid PKCS file or when you type an incorrect password. SSL Server Certificates Server Administrator Web server is configured to use the industry-standard SSL security protocol to transfer encrypted data over a network. Built on an asymmetric encryption technology, SSL is widely accepted for providing authenticated and encrypted communication between clients and servers to prevent eavesdropping across a network.
Using The Server Administrator Command Line Interface The Server Administrator command line interface (CLI) allows users to perform essential systems management tasks from the operating system command prompt of a monitored system. The CLI allows a user with a very well-defined task in mind to rapidly retrieve information about the system. Using CLI commands, for example, administrators can write batch programs or scripts to execute at specific times.
4 Server Administrator services Server Administrator Instrumentation Service monitors the health of a system and provides rapid access to detailed fault and performance information gathered by industry-standard systems management agents. The reporting and viewing features allow retrieval of the overall health status for each chassis that includes your system. At the subsystem level, you can view information about the voltages, temperatures, fan rpm, and memory function at key points in the system.
If Storage Management Service is installed, depending on the controller and storage attached to the system, the Storage tree object expands to display various objects. For detailed information on the Storage Management Service component, see the Storage Management User's Guide at dell.com/ openmanagemanuals. Server Administrator Home Page System Tree Objects This section provides information about the objects in the System tree on the Server Administrator's home page.
following tabs, depending on the user's group privileges: Licensing, Properties, Shutdown, Logs, Alert Management, and Session Management Licensing Subtabs: Information | Licensing Under the Licensing sub tab, you can: • • Set preferences to use Integrated Dell Remote Access Controller (iDRAC) to import, export, delete, or replace the digital license of the hardware. View details of the device used.
when the log file reaches 80 percent capacity. On Dell PowerEdge 11G systems, the status indicator icon next to the log name • • changes to critical status ( ) when the log file reaches 100 percent capacity. NOTE: Enabling the feature Automatic Backup and Clear ESM Log Entries allows you to create an automatic backup of ESM Logs. This feature is available only on 10th generation and 11th generation of PowerEdge servers.
The available components are: • Batteries • BIOS • Fans • Firmware • Hardware Performance • Intrusion • Memory • Network • Ports • Power Management • Power Supplies • Processors • Remote Access • Removable Flash Media • Slots • Temperatures • Voltages NOTE: The Power Supplies option is not available on Dell PowerEdge 1900. Power Supply Monitoring and Power Monitoring features are available only for systems that have two or more redundant, hot-swappable power supplies installed.
Supply Monitoring and Power Monitoring features are available only for systems that have two or more redundant, hotswappable powers supplies installed. These features are unavailable for permanently installed, nonredundant power supplies that lack power management circuitry.
On Dell’s 12th generation PowerEdge and later systems, the configurable BIOS features are grouped as specific categories. The categories include Debug Menu, System Information, Memory Settings, Processor Settings, SATA Settings, Boot Settings, Boot Option Settings, One-Time Boot, Network Settings, Integrated Devices, Slot Disablement, Serial Communication, System Profile Settings, System Security, and Miscellaneous Settings.
Properties Subtab: Information Under the Properties tab, you can view the details of system’s performance degradation. The following table lists the possible values for status and cause of a probe: Table 10. Possible Values For Status And Cause Of A Probe Status Values Cause Values Degraded User Configuration Insufficient Power Capacity Unknown Reason Normal [N/A] Intrusion Click the Intrusion object to manage your system's chassis intrusion status.
• View the current SNMP trap alert thresholds and set the alert threshold levels for memory modules. The selected traps are triggered if the system generates a corresponding event at the selected severity level. Network Click the Network object to manage your system's NICs. Server Administrator monitors the status of each NIC present in your system to ensure continuous remote connection. Server Administrator reports FCoE and iSoE capabilities of the NICs.
The Statistics tab allows you to view and reset your system’s Power tracking statistics like energy consumption, system peak power, and system peak amperage. Management Subtabs: Budget | Profiles The Budget tab allows you to view the Power Inventory attributes like System Idle Power and System Maximum Potential Power in Watts and BTU/hr. You can also use the Power Budget option to Enable Power Cap and set the Power Cap for your system.
Subtabs: Alert Actions Under the Alert Management tab, you can view current alert actions settings and set the alert actions that you want to be performed in case a processor returns a warning or failure value. Remote Access Click the Remote Access object to manage the Baseboard Management Controller (BMC) or Integrated Dell Remote Access Controller (iDRAC) features and Remote Access Controller features.
• • View current alert actions settings and set the alert actions that you want to be performed when the removable flash media probe returns a warning or failure value. View current SNMP trap alert thresholds and set the alert threshold levels for removable flash media probes. The selected traps are triggered if the system generates a corresponding event at the selected severity level. Alert management is common for Internal SD modules and vFlash.
• • View the current alert actions settings and set the alert actions that you want to be performed in case a system voltage sensor returns a warning or failure value. View the current SNMP trap alert thresholds and set the alert threshold levels for voltage sensors. The selected traps are triggered if the system generates a corresponding event at the selected severity level.
User Under the User tab, you can set user preferences, such as the home page appearance and the default email address for the E-mail button. • • Web Server Subtabs: Properties | X.509 Certificate Under the Web Server tab, you can: • • • Set DSM SA Connection Service preferences. For instructions on configuring your server preferences, see Dell Systems Dell Systems Management Server Administration Connection Service and Security Setup.
5 Working with remote access controller The Dell systems baseboard management controller (BMC)/Integrated Dell Remote Access Controller (iDRAC) monitors the system for critical events by communicating with various sensors on the system board and sends alerts and log events when certain parameters exceed their preset thresholds. The BMC/iDRAC supports the industry-standard Intelligent Platform Management Interface (IPMI) specification, enabling you to configure, monitor, and recover systems remotely.
• • • • • Configuring The Remote Access Device To Use A Serial Over LAN Connection Configuring The Remote Access Device To Use A Serial Port Connection Additional Configuration For iDRAC Configuring Remote Access Device Users Setting Platform Event Filter Alerts You can view BMC/iDRAC or DRAC information based on which hardware is providing the remote access capabilities for the system.
Configuring The Remote Access Device To Use A LAN Connection To configure the remote access device for communication over a LAN connection: 1. Click the Modular Enclosure > System/Server Module > Main System Chassis/Main System > Remote Access object. 2. Click the Configuration tab. 3. Click LAN. The LAN Configuration window appears. NOTE: BMC/iDRAC management traffic does not function properly if the LAN on motherboard (LOM) is teamed with any network adapter add-in-cards. 4.
• • • • • • • IP Address Source IP Address Prefix Length Default Gateway DNS Address Source Preferred DNS Server Alternate DNS Server NOTE: You can configure the IPv4 and IPv6 address details only if you enable the IPv4 and IPv6 properties under Additional Configuration. 8. Click Apply Changes. Configuring The Remote Access Device To Use A Serial Port Connection To configure the BMC for communication over a serial port connection: 1.
• • • Enable Serial Over LAN Baud Rate Minimum Privilege Required 5. Click Apply Changes. 6. Click Advanced Settings to further configure BMC. 7. In the Serial Over LAN Configuration Advanced Settings window, you may configure the following information: • • Character Accumulate Interval Character Send Threshold 8. Click Apply Changes. 9. Click Go Back to Serial Over LAN Configuration to return to the Serial Over LAN Configuration window.
1. Click the System object. 2. Click the Alert Management tab. 3. Click Platform Events. The Platform Events window allows you to take individual action on specific platform events. You can select those events for which you want to take shutdown actions and generate alerts for selected actions. You can also send alerts to specific IP address destinations of your choice. NOTE: You must be logged in with Administrator privileges to configure the BMC PEF Alerts.
NOTE: The number of destinations that you can configure on a given system may vary. 3. Select the Enable Destination check box. 4. Click Destination Number to enter an individual IP address for that destination. This IP address is the IP address to which the platform event alert is sent. NOTE: On 12G systems with iDRAC7 specific versions, you can set Platform Event Destination as IPv4, IPv6, or FQDN. 5.
6 Server Administrator logs Server Administrator allows you to view and manage hardware, alert, and command logs. All users can access logs and print reports from either the Server Administrator home page or from its command line interface. Users must be logged in with Administrator privileges to clear logs or must be logged in with Administrator or Power User privileges to email logs to their designated service contact.
Hardware log On Dell’s 11th generation PowerEdge systems, use the hardware log to look for potential problems with your system's hardware components. The hardware log status indicator changes to critical status ( ) when the log file reaches 100 percent capacity. There are two available hardware logs, depending on your system: the Embedded System Management (ESM) log and the System Event Log (SEL).
NOTE: OMSA may send duplicate SNMP traps or log duplicate events in the Alert Log page or in the operating system log file. The duplicate traps and events are logged either when OMSA services are manually restarted or when the device sensor still indicates a non-normal state when OMSA services starts after an operating system reboot. For detailed information about alert messages, see the Server Administrator Messages Reference Guide at dell.com/ openmanagemanuals.
7 Setting Alert Actions Setting Alert Actions For Systems Running Supported Red Hat Enterprise Linux And SUSE Linux Enterprise Server Operating Systems When you set alert actions for an event, you can specify the action to display an alert on the server. To perform this action, Server Administrator sends a message to /dev/console. If the Server Administrator system is running an X Window System, the messsage is not displayed.
Setting Alert Action Execute Application In Windows Server 2008 For security reasons, Windows Server 2008 is configured to not allow interactive services. When a service is installed as an interactive service on Windows Server 2008, the operating system logs an error message to the Windows System log about the service being marked as an interactive service. When you use Server Administrator to configure Alert Actions for an event, you can specify the action to execute an application.
Event Description Processor Absent A processor has been removed. PS/VRM/D2D Warning The power supply, voltage regulator module, or DC to DC converter is pending a failure condition. PS/VRM/D2D Failure The power supply, voltage regulator module, or DC to DC converter has failed. Hardware log is full or emptied Either an empty or a full hardware log requires administrator attention.
8 Troubleshooting Connection Service Failure On Red Hat Enterprise Linux, when SELinux is set to enforced mode, the Dell Systems Management Server Administrator (SM SA) Connection service fails to start. Perform one of the following steps and start this service: • • Set SELinux to Disabled mode or to Permissivemode. Change the SELinux allow_execstack property to ON state. Run the following command: • setsebool allow_execstack on Change the security context for the SM SA connection service.
2. Download the installation package for that version from support.dell.com. 3. Locate SysMgmt.msi in the srvadmin\windows\SystemsManagement directory. 4. Type the following command at the command prompt to force a reinstall msiexec /i SysMgmt.msi REINSTALL=ALL REINSTALLMODE=vamus 5. Select Custom Setup and choose all the features that were originally installed. If you are not sure which features were installed, select all features and perform the installation.
Service Name Description Impact of Failure Recovery Mechanism Severity SM SA Event Manager (Windows) Linux: dsm_sa_eventmgrd (hosted under dataeng service) (This service runs on the managed system. Provides operating system and file event logging service for systems management and is also used by event log analyzers.
9 Frequently Asked Questions This section lists the frequently asked questions about Server Administrator. NOTE: The following questions are not specific to this release of Server Administrator. 1. Why does ESXi 5.x host rebooting functionality fail from Server Administrator? This issue is due to VMware stand-alone license (SAL) key. For more information, see the knowledge base article at kb.vmware.com/kb/kb1026060. 2.
As Server Administrator is not installed on Clients/Workstations, so CIM discovery is used when the target is running the OpenManage Client Instrumentation. For many other devices such as network printers, SNMP is the standard to communicate with (primarily discover) the device. Devices such as EMC storage have proprietary protocols. Some information about this environment can be gathered from looking at the ports used. 10. Are there any plans for SNMP v3 support? No, there are no plans for SNMP v3 support.
