Important: Using IPMI on a public LAN can be a major security liability because this interface can provide any user with credentials with direct hardware- and console-level access to your node. Follow security best practices when you implement IPMI access.
IN THIS ARTICLE
This article explains how to configure IPMI on the QC24 (Gen1) nodes.
For all other platforms, see IPMI Quick Reference Guide for Qumulo K-series, IPMI Quick Reference Guide for Qumulo C-Series, and IPMI Quick Reference Guide .
REQUIREMENTS
SSH access on the client-facing network, for example:
sudo -s
DETAILS
Qumulo node motherboards provide IPMI support which allow for off-band maintenance access even if the node is turned off when plugged into power.
- You can configure nodes to receive DHCP address assignments by default.
-
The IPMI access network can be completely separate from your client-facing network.
Notes:
- These credentials are unrelated to your Qumulo root or administrator password.
- You must use the following instructions with each node that will be part of your IPMI maintenance network.
IPMI Port Location
Verify IPMI LAN Configuration
To verify the IPMI LAN configuration, use the following command.
# ipmitool lan print
IPMI LAN Configuration with static IPs
# ipmitool lan set 1 ipsrc static #Set IPMI ethernet interface to static IP
# ipmitool lan set 1 ipaddr XXX.XXX.XXX.XXX #Set the IP address of the interface
# ipmitool lan set 1 netmask 255.XXX.XXX.XXX #Set the Subnet Mask for the interface
# ipmitool lan set 1 defgw ipaddr XXX.XXX.XXX.XXX #Set the IP address of the Default Gateway
# ipmitool lan set 1 arp respond on#(Optional) Enable BMC ARP responses
Note: If you perform all the steps in this article and you continue to have network configuration issues, run the above commands with the lan set 3
parameter.
IPMI User Operation Examples
To list the current users on a QC24 (Gen1) node, use the following command.
# ipmitool user list
ID Name Callin Link Auth IPMI Msg Channel Priv Limit
2 ADMIN true false false Unknown (0x00)
To change the default administrator password, use the following command.
# ipmitool user set password 2
Password for user 2:
Password for user 2:
To create a new user in slot 4, use the following command.
# ipmitool user set name 4 netadmin
# ipmitool user set password 4
Password for user 4:
Password for user 4:
To set access for a user on a QC24 (Gen1) node, use the following command.
# ipmitool channel setaccess 1 4 link=on ipmi=on callin=on privilege=4
# ipmitool user enable 4
To verify user level access on a QC24 (Gen1) node, use the following command.
# ipmitool channel getaccess 1
Maximum User IDs : 10
Enabled User IDs : 2
User ID : 1
User Name :
Fixed Name : Yes
Access Available : call-in / callback
Link Authentication : disabled
IPMI Messaging : disabled
Privilege Level : Unknown (0x00)
User ID : 2
User Name : ADMIN
Fixed Name : Yes
Access Available : callback
Link Authentication : disabled
IPMI Messaging : enabled
Privilege Level : ADMINISTRATOR
Connect to nodes via IPMI
When configuration is complete, you must access the IPMI interface using a Java-capable web browser and the IP addresses that you or your DHCP server assigned.
Troubleshooting
If you can't connect to the IPMI management console and your network configuration is correct, reset the BMC by using an SSH or KVM Console session to the node:
# ipmitool bmc reset cold
Note: There is a known Supermicro issue where IPMI might not be able to establish a link. To avoid this issue, ensure that the IPMI network cable is connected to your switch before you attach power cables to your node.
RESOLUTION
You can now configure and connect to your QC24 (Gen1) nodes by using IPMI.
ADDITIONAL RESOURCES
IPMI Quick Reference Guide for Qumulo K-Series
IPMI Quick Reference Guide for Qumulo C-Series
QQ CLI: Networks and IP Addresses
Like what you see? Share this article with your network!
Comments
0 comments