1. Overview
The IPMI (Intelligent Platform Management Interface) is an open-standard hardware management interface that allows you communicate with BMC (Baseboard Management Controller) of the platform hardware.
BMC, a dedicated micro-controller, manages the interface between system-management software and platform hardware. BMC performs operations such as remote power on or power off, or makes the console accessible. BMC also monitors the hardware resources such as sensors and can send alert messages over the LAN indicating a potential failure of the system.
IPMI is a way to manage the platform hardware by interacting with the hardware directly rather than with the operating system. The advantages of using IPMI are that it allows an out-of-band platform hardware management and the operating system is not burdened with the operational overheads by sending system status data.
1.1. Supported Platforms
Not all features are necessarily supported on each hardware platform. Refer to the Platform Guide for the features and the sub-features that are or are not supported by each platform.
2. IPMI Configuration
2.1. Configuration Syntax and Commands
The following sections describe the IPMI configuration syntax and commands.
2.1.1. IPMI Interface Configuration
This configuration allows you to communicate with the BMC on the platform hardware.
Syntax:
set system platform-management ipmi interface <interface-id> <attribute> <value>
| Attribute | Description |
|---|---|
interface <interface-id> |
IPMI channel ID. For UfiSpace switches, the LAN interface ID is 1. |
type <lan> |
type of network |
mode <dhcp|static> |
Manually set the static IPv4 address or configure DHCP to receive dynamic IPv4 address. |
address-family ipv4 prefix4 <prefix4> |
IPv4 prefix |
address-family ipv4 gateway-address <gateway-address> |
IPv4 address for gateway |
Example: IPMI Interface Configuration
{
"ietf-restconf:data": {
"rtbrick-config:system": {
"platform-management": {
"ipmi": {
"interface": [
{
"id": 1,
"type": "lan",
"mode": "static",
"address-family": {
"ipv4": {
"prefix4": "10.1.1.0/24",
"gateway-address": "10.1.1.1"
}
}
}
]
}
}
}
}
}
2.1.2. IPMI User Configuration
This configuration allows you to change the password of one of the 10 users, including the admin user.
Syntax:
set system platform-management ipmi user <user-id> <options>
| Attribute | Description |
|---|---|
user <user-id> |
User ID. The |
password-plain-text <password-plain-text> |
Plain text password |
password-encrypted-text <password-encrypted-text> |
Encrypted password |
Example: IPMI User Configuration
{
"ietf-restconf:data": {
"rtbrick-config:system": {
"platform-management": {
"ipmi": {
"user": [
{
"id": 2,
"password-encrypted-text": "$21e4946e31b406de98b3077aef03ed5a7"
}
]
}
}
}
}
}
3. IPMI Operational Commands
3.1. IPMI Validation Commands
The IPMI validation commands provide you the IPMI configuration, channel, and user information. Configure the server that connects to the hardware platform. Use the IPMI tool to verify the remote accessibility by the running the following commands on the Linux shell.
Verification of remote access can be performed using the following command:
ipmitool -I lanplus -H <ip address> -U admin -P admin lan print 1
Example for remote access verification
supervisor@srv10-tst:~$ ipmitool -I lanplus -H 10.200.134.100 -U admin -P admin lan print 1
Set in Progress : Set Complete
Auth Type Support :
Auth Type Enable : Callback : MD5
: User : MD5
: Operator : MD5
: Admin : MD5
: OEM : MD5
IP Address Source : Static Address
IP Address : 10.200.134.100
Subnet Mask : 255.255.255.128
MAC Address : e8:c5:7a:8f:78:0d
SNMP Community String : AMI
IP Header : TTL=0x40 Flags=0x40 Precedence=0x00 TOS=0x10
BMC ARP Control : ARP Responses Enabled, Gratuitous ARP Disabled
Gratituous ARP Intrvl : 0.0 seconds
Default Gateway IP : 10.200.134.1
Default Gateway MAC : 00:00:5e:00:01:01
Backup Gateway IP : 0.0.0.0
Backup Gateway MAC : 00:00:00:00:00:00
802.1q VLAN ID : Disabled
802.1q VLAN Priority : 0
RMCP+ Cipher Suites : 0,1,2,3,6,7,8,11,12,15,16,17
Cipher Suite Priv Max : caaaaaaaaaaaXXX
: X=Cipher Suite Unused
: c=CALLBACK
: u=USER
: o=OPERATOR
: a=ADMIN
: O=OEM
Bad Password Threshold : 0
Invalid password disable: no
Attempt Count Reset Int.: 0
User Lockout Interval : 0
Use the following command to verify the channel information:
sudo ipmitool channel info 1
Example for channel information
supervisor@onl>ufi06.q2c.u25.r4.nbg.rtbrick.net:~ $ sudo ipmitool channel info 1
Channel 0x1 info:
Channel Medium Type : 802.3 LAN
Channel Protocol Type : IPMB-1.0
Session Support : multi-session
Active Session Count : 0
Protocol Vendor ID : 7154
Volatile(active) Settings
Alerting : enabled
Per-message Auth : disabled
User Level Auth : enabled
Access Mode : always available
Non-Volatile Settings
Alerting : enabled
Per-message Auth : disabled
User Level Auth : enabled
Access Mode : always available
Use the following command to verify a specific channel information:
sudo ipmitool lan print 1
Example for specific channel information
supervisor@onl>ufi06.q2c.u25.r4.nbg.rtbrick.net:~ $ sudo ipmitool lan print 1
Set in Progress : Set Complete
Auth Type Support :
Auth Type Enable : Callback : MD5
: User : MD5
: Operator : MD5
: Admin : MD5
: OEM : MD5
IP Address Source : Static Address
IP Address : 10.200.134.100
Subnet Mask : 255.255.255.128
MAC Address : e8:c5:7a:8f:78:0d
SNMP Community String : AMI
IP Header : TTL=0x40 Flags=0x40 Precedence=0x00 TOS=0x10
BMC ARP Control : ARP Responses Enabled, Gratuitous ARP Disabled
Gratituous ARP Intrvl : 0.0 seconds
Default Gateway IP : 10.200.134.1
Default Gateway MAC : 00:00:5e:00:01:01
Backup Gateway IP : 0.0.0.0
Backup Gateway MAC : 00:00:00:00:00:00
802.1q VLAN ID : Disabled
802.1q VLAN Priority : 0
RMCP+ Cipher Suites : 0,1,2,3,6,7,8,11,12,15,16,17
Cipher Suite Priv Max : caaaaaaaaaaaXXX
: X=Cipher Suite Unused
: c=CALLBACK
: u=USER
: o=OPERATOR
: a=ADMIN
: O=OEM
Bad Password Threshold : 0
Invalid password disable: no
Attempt Count Reset Int.: 0
User Lockout Interval : 0
Use the following command to verify the user for a channel:
sudo ipmitool user list 1
Example for user per channel
supervisor@onl>ufi06.q2c.u25.r4.nbg.rtbrick.net:~ $ sudo ipmitool user list 1 ID Name Callin Link Auth IPMI Msg Channel Priv Limit 1 false false true ADMINISTRATOR 2 admin false false true ADMINISTRATOR 3 true false false NO ACCESS 4 true false false NO ACCESS 5 true false false NO ACCESS 6 true false false NO ACCESS 7 true false false NO ACCESS 8 true false false NO ACCESS 9 true false false NO ACCESS 10 true false false NO ACCESS
©Copyright 2023 RtBrick, Inc. All rights reserved. The information contained herein is subject to change without notice. The trademarks, logos and service marks ("Marks") displayed in this documentation are the property of RtBrick in the United States and other countries. Use of the Marks are subject to RtBrickās Term of Use Policy, available at https://www.rtbrick.com/privacy. Use of marks belonging to other parties is for informational purposes only.