Sun and Oracle LOM (lights out management) - ALOM, ILOM or XSCF.
Telnet or SSH to management
interface (if configured), otherwise establish a serial connection (RJ45) to
the server ("tip hardwire", laptop...). More details on serial
connections can be found here. You will also need to know the
administrative account and password.
The following set of commands will configure the
service console for remote access, then power-on the server for console access,
ALOM
setdate
setsc if_network true
setsc if_connection "telnet or
ssh"
setsc netsc_dhcp false
setsc netsc_ipaddr ip_address
setsc netsc_ipnetmask netmask
setsc netsc_ipgateway gw_address
setsc netsc_commit < or resetsc >
useradd newuser
userpassword newuser
userperm newuser cuar
poweron
console -f
#.
ILOM
Be sure to connect the Net Mgt cable (state=enabled) first, then use the serial connection, Eg. server serial port to laptop via USB RS232 DB9 adapter, provides COM port for Putty).
set /SP/clock datetime=MMDDhhmmYYYY timezone=AEST
set /SP/services/http servicestate=enabled
set /SP/services/http servicestate=enabled
set /SP hostname=newhost
set /SP/network pendingipdiscovery=static
set /SP/network pendingipdiscovery=static
set /SP/network pendingipaddress=192.168.1.10
set /SP/network pendingipnetmask=255.255.255.0
set /SP/network pendingipgateway=192.168.1.1
set /SP/network commitpending=true
show /SP/network
set /SP/network pendingipnetmask=255.255.255.0
set /SP/network pendingipgateway=192.168.1.1
set /SP/network commitpending=true
show /SP/network
create /SP/users/newuser
set /SP/users/newuser password=password
role=cuar
set /HOST send_break_action=break
set /HOST send_break_action=break
start /SYS
start -force
/SP/console
#.
Additional actions commonly used, refer manual,
reset /SP
To update the ILOM firmware, stop zones and services, go into the extracted directory, review the existing revision, then apply the new,
./sysfwdownload -g
./sysfwdownload -u *Firmware*.pkg
./sysfwdownload -u *Firmware*.pkg
System will reboot.
XSCF
Turned
the key from service to locked and back as directed, gotta do it quick to
avoid
the timeout, then you get the XSCF prompt. Here we do a bit more than just
enable remote access,
adduser newuser
password newuser
setprivileges newuser
useradm auditadm platadm
showuser -l
showtimezone -c
tz
settimezone -c settz
-a
settimezone -c settz
-s Australia/Brisbane
showdate
setdate -s
092516002009.00
Fri Sep 25 16:00:00
2009
showssh
setssh -c enable
shownetwork -a
setnetwork
xscf#0-lan#0 -m 255.255.255.0 192.168.10.10
sethostname xscf#0
newhost
sethostname -d ourdomain.com.au
showhostname -a
showroute -a
setroute -c add -n
0.0.0.0 -g 192.168.10.1 xscf#0-lan#0
shownameserver
setnameserver 192.168.10.98
192.168.10.99
setntp 192.168.10.1
setntp 192.168.10.1
applynetwork
rebootxscf -y
showssh
shownetwork -a
showroute -a
nslookup newhost
ping 192.168.10.1
showsmtp
setsmtp -s
mailserver=mailhost.ourdomain.com.au -s port=25 -s replyaddress=me@ourdomain.com.au
showemailreport
setemailreport
showlogs power
poweron -d 0
console -d 0
Connect to DomainID
0?[y|n] :y
ok
#.
exit
OK we allowed SSH access. To add a public key,
Paste the key, press ctrl-d to finish.
To allow HTTPS access,
sethttps -c genserverkey
sethttps -c selfsign AU Queensland Brisbane MyCoy IT MyCoy me@mycoy.com
sethttps -c enable
rebootxscf
Login at https://your-server-oob, and proceed to update XCP if required. Use the Utilities and Firmware Update dialogs to upload the firmware (the .tar.gz file), and then Update.
Alternately, use SSH access to apply the update,
version -c xcp -v
getflashimage -l
flashupdate -c check -m xcp -s 1123
flashupdate -c update -m xcp -s 1123
showssh -c pubkey -u fred
setssh -c addpubkey -u fred
To allow HTTPS access,
sethttps -c genserverkey
sethttps -c selfsign AU Queensland Brisbane MyCoy IT MyCoy me@mycoy.com
sethttps -c enable
rebootxscf
Login at https://your-server-oob, and proceed to update XCP if required. Use the Utilities and Firmware Update dialogs to upload the firmware (the .tar.gz file), and then Update.
Alternately, use SSH access to apply the update,
version -c xcp -v
getflashimage -l
flashupdate -c check -m xcp -s 1123
flashupdate -c update -m xcp -s 1123
To upload the firmware update via USB
getflashimage -l file://media/usb_msd/IKXCP1121.tar.gz
Decommissioning
To wipe
the internal drives, and reset the service console to defaults. Shutdown
Solaris (init 0 at the console), example here is for ALOM and two internal
disks. Note, you could also write a file per disk and background each operation, and finish much quicker,
boot cdrom -s
echo | format
echo "disk
0\nanalyze\npurge\nquit" > /tmp/wipe.txt
echo "disk
1\nanalyze\npurge\nquit\nquit\n" >> /tmp/wipe.txt
format -f /tmp/wipe.txt
init 0
#.
setdefaults –a
resetsc
For ILOM, something like this,
set /SP reset_to_defaults=factory
stop /SYS
reset /SP
No comments:
Post a Comment