Manuals / Cisco Systems / Computer Equipment / Network Card

Cisco Systems 57712, UCSCPCIEBTG manual Properties Value, Role

Models: 57712 UCSCPCIEBTG

1 288

Download 288 pages 20.54 Kb

Page 83

Managing User Accounts

Configuring the Active Directory Server

attribute ID of 1.3.6.1.4.1.9.287247.1. For more information about altering the Active Directory schema, see the article at http://technet.microsoft.com/en-us/library/bb727064.aspx.

The following steps are to be performed on the Active Directory server.

Note This example creates a custom attribute named CiscoAVPair, but you can also use an existing LDAP attribute that is mapped to the CIMC user roles and locales.

Procedure

Step 1 Ensure that the Active Directory schema snap-in is installed.

Step 2 Using the Active Directory schema snap-in, add a new attribute with the following properties:

Properties	Value
Common Name	CiscoAVPair
LDAP Display Name	CiscoAVPair
Unique X500 Object ID	1.3.6.1.4.1.9.287247.1
Description	CiscoAVPair
Syntax	Case Sensitive String

Step 3 Add the CiscoAVPair attribute to the user class using the Active Directory snap-in:

a)Expand the Classes node in the left pane and type U to select the user class.

b)Click the Attributes tab and click Add.

c)Type C to select the CiscoAVPair attribute.

d)Click OK.

Step 4 Add the following user role values to the CiscoAVPair attribute, for the users that you want to have access to CIMC:

Role	CiscoAVPair Attribute Value
admin	shell:roles="admin"
user	shell:roles="user"
read-only	shell:roles="read-only"

Note For more information about adding values to attributes, see the article at http://technet.microsoft.com/ en-us/library/bb727064.aspx.

Cisco UCS C-Series Servers Integrated Management Controller CLI Configuration Guide, Release 1.5

OL-28893-01

67

Image 83

Cisco Systems 57712, UCSCPCIEBTG manual Properties Value, Role

Contents

First Published March 04 Americas HeadquartersPage N T E N T S Viewing Server Properties Viewing Server Sensors Managing User Accounts Creating a vNIC Configuring Communication Services Configuring Platform Event Filters Bios Parameters by Server Model This preface includes the following sections PrefaceAudience ConventionsIndicates a comment line Default responses to system prompts are in square bracketsString String will include the quotation marksNew and Changed Information for this Release Feature Description Where DocumentedFeature Description Documentation Roadmaps Related Cisco UCS DocumentationSystem UCS Documentation Roadmap Bundle Other Documentation ResourcesThis chapter includes the following sections OverviewOverview of the Server Software Management Interfaces Cisco Integrated Management ControllerCimc Firmware Server OSCimc CLI Command ModesOverview Command Modes Command to Access Mode Prompt Mode NameCommand to Access Mode Prompt Scope trap-destinations command Scope role-group command fromScope power-cap command from Scope sensor command fromCommand Output Formats Complete a CommandCommand History Committing, Discarding, and Viewing Pending CommandsOnline Help for the CLI OL-28893-01 KVM Console Installing the Server OSOS Installation Methods You can use the KVM console to install an OS on the server PXE Installation ServersInstalling an OS Using a PXE Installation Server Toggling the Locator LED Command or Action Purpose StepEnters chassis command mode Managing the ServerServer /chassis/hdd # set locateHDD Managing the Server Boot OrderServer Boot Order Toggling the Locator LED for a Hard DriveServer# scope bios Configuring the Server Boot OrderDetail Resetting the ServerViewing the Actual Server Boot Order Server /bios # show actual-boot-orderServer# scope chassis Server# scope chassis Enters chassis modeServer /chassis # power shutdown Shutting Down the ServerPowering Off the Server Managing Server PowerPowering On the Server Server# scope chassis Enters chassis command mode Power Cycling the ServerCommand or Action Purpose Name Description Configuring Power PoliciesViewing the Power Statistics Non-Compliance Action Power Capping PolicyConfiguring the Power Cap Policy Enabled yes no Server# scope power-capEnters the power cap command mode Server /power-cap # setDelay-value delay Configuring the Power Restore PolicyPower-off power-on Restore-last-stateAction Description Managing the Flexible Flash ControllerCisco Flexible Flash Dual Card Management in the Cisco Flexible Flash ControllerScenario Behavior Configuring the Flexible Flash Controller Properties# set raid-primary-member slot1 # set read-error-count-threshold# set write-error-count-threshold # set virtual-drives-enabled listNone SCU HV HUU Booting from the Flexible FlashServer /bios # set boot-override Permissible index value is FlexFlash-0 Resetting the Flexible Flash ControllerServer /chassis/flexflash # commit Default configurationSecondary slot Configuring Bios SettingsViewing Bios Status Bios Version Version string of the running BiosAttempt to use Configuring Main Bios SettingsBoot Order For each Bios setting, see one the following topicsServer /bios/main # set POSTErrorPause Enabled Configuring Advanced Bios SettingsOn, you are prompted to choose whether to reboot now Configure the Bios settings Server /bios/advanced #Server-management Configuring Server Management Bios SettingsCommand or Action Configure the Bios settingsServer /bios # bios-setup-default Restoring Bios DefaultsRestoring Bios Manufacturing Custom Defaults Server # scope bios Server /bios # restore-mfg-defaults Server /bios # restore-mfg-defaultsDefault values OL-28893-01 Displays server properties Viewing Server PropertiesViewing Server Properties Server# show chassis detailDisplays Cimc properties Viewing Cimc PropertiesViewing CPU Properties Server# show cimc detailThis example displays Dimm summary information Viewing Memory PropertiesShow psu detail Viewing Power Supply PropertiesViewing Storage Properties Viewing Storage Adapter PropertiesServer /chassis # show storageadapter Error-counters detailHw-config detail Settings detailFlash controllers Viewing the Flexible Flash Controller PropertiesServer /chassis # show flexflash detail Optional Displays the available Cisco FlexibleViewing Physical Drive Properties Virtual-drive drive-number Viewing Virtual Drive PropertiesVirtual-drive drive-number detail Virtual-drive-count detailServer # scope chassis Viewing Nvidia GPU Card InformationSlot number of the GPU card Server# scope cimc Viewing PCI Adapter PropertiesViewing Network Related Properties Viewing LOM PropertiesServer# scope cimc Network OL-28893-01 Show psu-redundancy Viewing Power Supply SensorsViewing Server Sensors Server# scope sensorServer /sensor # show psu-redundancy Viewing Temperature SensorsServer /sensor # show temperature detail Viewing Fan SensorsPurpose Step This example displays temperature sensor statisticsViewing Voltage Sensors Status column Procedure Command or Action Purpose StepViewing Current Sensors Viewing Storage SensorsCurrent LED color, if any LED Status columnOL-28893-01 KVM Console Managing Remote PresenceManaging the Virtual KVM Server# scope kvm Server /kvm # set enabled yesEnabling the Virtual KVM Disabling the Virtual KVMServer /kvm # set max-sessions Configuring the Virtual KVMSet encrypted yes Set local-video yesServer# scope vmedia Configuring Virtual MediaSet enabled yes Remote-file-path mount options Configuring Network Mounted vMedia MappingCommand or Action Server # scope vmedia Volume-name remote-shareServer # scope vmedia Enters the virtual media command modeViewing Network Mount vMedia Mapping Properties Removing Network Mounted vMedia MappingSerial Over LAN Managing Serial over LANYes no Configuring Serial Over LANEnters SoL command mode Server# scope solServer# connect host Server console port. You can enter this command in anyCommand mode Launching Serial Over LANOL-28893-01 Managing User Accounts Configuring Local UsersActive Directory Configuring Active DirectoryConfiguring the Active Directory Server Role Properties ValueServer# scope ldap Configuring Active Directory in CimcServer /ldap *# set dc1 Server /ldap *# set gc1 Configuring Active Directory Groups in CimcServer# scope ldap Scope role-group Admin user readonlySet group-auth Terminating a User Session Viewing User SessionsTerminate Server NICs Configuring Network-Related SettingsServer NIC Configuration NIC ModeSharedlom Sharedlom10g shipping ciscocard Configuring Server NICsServer /cimc/network # set mode dedicated NIC RedundancyActive-standby Configuring Common PropertiesRedundancy none Active-activeConfiguring IPv4 Specifies the IP address of the secondary DNS Configuring the Server VlanOptional Displays the IPv4 network settings You must be logged in as admin to configure the server VlanSet vlan-priority Connecting to a Port ProfileSet vlan-enabled Supported adapter cards such as the Cisco UCS VIC1225 Port profile must be defined on the switch toDisplays the network settings Management interface, the virtual Ethernet, and the VIF onNetwork Security Network Security ConfigurationConfiguring Network Security Yes Network Time Protocol ConfigurationConfiguring Network Time Protocol Settings Server # scope cimc10.120.35.46 Server /cimc/network/ntp* # commit Commits the transaction10.120.33.44 10.120.34.45Overview of the Cisco UCS C-Series Network Adapters Managing Network AdaptersCisco UCS VIC1225 Virtual Interface Card Cisco UCS P81E Virtual Interface CardIndex detail Configuring Network Adapter PropertiesViewing Network Adapter Properties Managing vHBAs Fip-mode disable enableNiv-mode disable enable Configure-vmfex port-countAll vHBAs Viewing vHBA PropertiesHost-fc-if fc0 fc1 name detail Modifying vHBA Properties # set fcp-error-recovery disable Enable Error-detect-timeout msecResource-allocation-timeout msec Error-recoveryInterrupt-mode intx msi msix Enters the interrupt command modeSet flogi-timeout msec InterruptServer Enters the Fibre Channel port login command modeSet plogi-timeout msec Port-p-logiHost-fc-if name Creating a vHBAServer /chassis/adapter # commit Deleting a vHBASet channel-number number Server /chassis/adapter # deleteShow boot VHBA Boot TableViewing the Boot Table Creating a Boot Table EntryServer /chassis # scope adapter Deleting a Boot Table EntryCreate-boot-entry wwpn lun-id Locate the number of the entry to be deleted Delete boot entryTake effect upon the next server reset VHBA Persistent BindingPerbi Set persistent-lun-binding enableEnabling Persistent Binding Disabling Persistent Binding# rebuild Set persistent-lun-binding disableRebuilding Persistent Binding Scope perbiHost-eth-if eth0 eth1 name detail Managing vNICsGuidelines for Managing vNICs Viewing vNIC PropertiesUplink 0 Modifying vNIC PropertiesHost-eth-if eth0 eth1 name Channel-number number Trust-host-cos disable enableVlan-mode access trunk Uplink-failover disable enableSet coalescing-time usec Uplink-failback-timeout secondsScope interrupt Set interrupt-count countScope trans-queue Set tcp-segment-offload disable# set rq-count count # set rq-ring-size sizeSet rss disable enable Set tcp-rx-checksum-offload disableSet tcp-tx-checksum-offload disable Set tcp-large-receive-offload disableCreating a vNIC Set rss-hash-tcp-ipv6 disableSet rss-hash-ipv6-ex disable enable Set rss-hash-tcp-ipv6-ex disableHost-eth-if name Deleting a vNICThis example deletes a vNIC on adapter Configuring iSCSI Boot CapabilityReboot You can configure a maximum of 2 iSCSI vNICs for each hostEth0 eth1 name Iscsi-boot indexDhcp-net-settings enabled Dhcp-iscsi-settings enabledVirtual Machine Fabric Extender Delete iscsi-bootManaging VM FEX Viewing VM FEX Properties Name VM FEX SettingsGeneral Properties Settings Name Description Ethernet Interrupt Settings Name Description Completion Queue Settings Name Description Receive Side Scaling Settings Name TCP Offload Settings Name DescriptionCreate virtual-drive Managing Storage AdaptersCreate Virtual Drive from Unused Physical Drives Storageadapter slotAppropriate information at each prompt Create Virtual Drive from an Existing Drive GroupCarve-virtual-drive Write policy for the new virtual drive. Enter500 MB Clearing Foreign ConfigurationServer /chassis # scope storageadapter # delete-virtual-drive Clear-foreign-configDeleting a Virtual Drive # get-operation-status Cancel-initializationInitializing a Virtual Drive Start-initializationServer /chassis/storageadapter # scope Set as Boot DriveSet-boot-drive Modifying Attributes of a Virtual DriveYou are prompted to choose a virtual drive for Making a Dedicated Hot SpareModify-attributes PolicyMake-global-hot-spare Making a Global Hot SparePreparing a Drive for Removal Server /chassis/storageadapter/physical-drive ## remove-hot-spare Removing a Drive from Hot Spare PoolsPrepare-for-removal Undo-prepare-for-removal Enabling Auto Learn Cycles for the Battery Backup UnitEnable-auto-learn Undo Preparing a Drive for RemovalYou must be logged in as an admin to use this command Disabling Auto Learn Cycles for the Battery Backup UnitStarting a Learn Cycle for a Battery Backup Unit Disable-auto-learn# locator-led on off Toggling the Locator LED for a Physical DriveStart-learn-cycle Physical-driveViewing Storage Controller Logs Backing Up and Restoring the Adapter ConfigurationExporting the Adapter Configuration This example exports the configuration of adapter Importing the Adapter ConfigurationPCI slot number specified by the index Restoring Adapter DefaultsReboot the server to apply the imported configuration Adapter-reset-defaults indexOr two specified adapters or, if no adapter is specified Installing Adapter FirmwareManaging Adapter Firmware Adapter FirmwareServer /chassis # activate-adapter-fw Resetting the AdapterActivating Adapter Firmware Host Server/chassis # adapter-reset indexResetting the adapter also resets This example resets the adapter in PCI slotServer /http # set http-redirect yes Configuring Communication ServicesConfiguring Http Server# scope httpSet ssh-port number Configuring SSHSet timeout seconds Server# scope sshServer# scope xmlapi Configuring XML APIXML API for Cimc Enabling XML APIIpmi Over LAN Configuring IpmiConfiguring Ipmi over LAN Set enabledServer# scope snmp Configuring SnmpConfiguring Snmp Properties Encryption-key keyServer /snmp # set sys-location Setcommunity-accessCommunity-str community Settrap-community-strType trap inform Configuring Snmp Trap SettingsTrap-destinations number Version 1 2Specified user number Configuring SNMPv3 UsersSending a Test Snmp Trap Message To send a test messageMD5 SHA V3security-name security-nameV3security-level noauthnopriv Authnopriv authpriv142 Generating a Certificate Signing Request Managing CertificatesManaging the Server Certificate Signing request CSR Enters the certificate command modeServer# scope certificate Server /certificate # generate-csrManaging Certificates Creating a Self-Signed Certificate Creating a Self-Signed CertificateEcho nsCertType = server openssl.conf Openssl genrsa -out CAkeyfilenameExample Openssl req -new -x509 -days numdaysNew server certificate Uploading a Server CertificateServer /certificate # upload Begin Certificate This example uploads a new certificate to the serverPlatform Event Filters Configuring Platform Event FiltersServer# scope fault Platform-event-enabled yesDisabling Platform Event Alerts Configuring Platform Event FiltersPlatform-event-enabled no Platform Event Filter None reboot power-cyclePower-off Enabled yes Configuring Platform Event Trap SettingsServer /fault # scope pef-destinations Test Trap Interpreting Platform Event TrapsPlatform Event Trap Descriptions Event Number Note Platform Event Description154 155 Event Number Note156 Overview of Firmware Cimc Firmware ManagementClick Accept License Agreement Obtaining Firmware from CiscoCenter box, click Unified Computing and Servers Click the Unified Computing System UCS Server Firmware linkLog in to the as a user with admin privileges Installing Cimc Firmware from a Remote ServerActivating Installed Cimc Firmware Inactive image Server /cimc/firmware # activate 1Is specified, the server activates the currently Current FW Version field Installing Bios Firmware from a Remote Server163 Server # scope bios164 Viewing Logs Viewing the Faults and Logs SummaryScope fault Show fault-entriesViewing the Cimc Log Cimc LogServer /cimc/log # clear Configuring the Cimc Log ThresholdClearing the Cimc Log Server /cimc # scope logRemote-syslog-severity level Sending the Cimc Log to a Remote ServerLocal-syslog-severity Server-ip ip-address Error Informational DebugCritical Server# scope sel System Event LogViewing the System Event Log Server# scope sel Enters the system event log command modeClearing the System Event Log 172 Remote-ip ip-address Server UtilitiesExporting Technical Support Data Server /cimc # scope tech-supportRemote-username name Remote-password passwordRemote-protocol protocol Provide the generated report file to Cisco TAC Rebooting the CimcClearing the Bios Cmos Server# scope bios Enters the bios command modeRecover Recovering from a Corrupted BiosScope bios Power cycle or reset the server Resetting the Cimc to Factory DefaultsThis example shows how to recover from a corrupted Bios Server /cimc # scope import-export Exporting and Importing the Cimc ConfigurationExporting and Importing the Cimc Configuration Exporting the Cimc ConfigurationServer /cimc/import-export # Importing a Cimc ConfigurationServer# scope cimc Enters the Cimc command mode Generating Non maskable Interrupts to the Host 181 182 TPM Support Bios Parameters by Server ModelMain Bios Parameters for C22 and C24 Servers C22 and C24 ServersExecute Disable Advanced Bios Parameters for C22 and C24 ServersProcessor Configuration Parameters Name Number of Enabled CoresIntel VT-d ATS Support Intel VTIntel VT-d Intel VT-d Coherency SupportAdjacent Cache Line Prefetcher CPU PerformanceHardware Prefetcher DCU IP Prefetcher Direct Cache Access SupportDCU Streamer Prefetch Power Technology Frequency Floor Override Processor Power State C6Processor Power State C1 Enhanced Intel Turbo Boost TechnologyEnergy Performance State CoordinationDram Clock Throttling Memory Configuration Parameters Name DescriptionSelect Memory RAS Rank Interleaving Low Voltage DDR ModeDram Refresh rate Channel InterleavingAltitude Patrol ScrubDemand Scrub Onboard Storage Parameters Name QPI Configuration Parameters Name DescriptionUSB Configuration Parameters Name Description USB Port Internal All USB DevicesUSB Port Rear USB Port FrontVGA Priority PCI Configuration Parameters Name DescriptionMmio Above 4GB Aspm SupportBits per second Console RedirectionTerminal Type Putty KeyPad Flow ControlPCIe Slot n OptionROM All Onboard LOM PortsLOM Port n OptionROM All PCIe Slots OptionROMPCIe Slot n Link Speed Server Management Bios Parameters for C22 and C24 ServersFRB-2 Timer OS Watchdog TimerOS Watchdog Timer Policy OS Watchdog Timer TimeoutBoot Order Rules C220 and C240 Servers Main Bios Parameters for C220 and C240 ServersAdvanced Bios Parameters for C220 and C240 Servers 204 Enabled -The processor uses VT-d ATS as required Disabled -The processor does not support ATS206 207 Power consumption but may reduce system performance 209 210 211 212 213 214 4GB or greater address space USB Port SD CardMemory Mapped I/O Above 4GB Offboard -Priority is given to the Pcie Graphics adapter Enables console redirection on COM port 0 during PostEnables console redirection on COM port 1 during Post Allows you to change the action of the PuTTY function keys Introduced by a hidden terminal problem. This can be oneNone -No flow control is used 218 If it hangs during POST. This can be one of the following Server Management Bios Parameters for C220 and C240 ServersPCIe Mezzanine OptionROM Watchdog timer expires 5 minutes after the OS System removes that device type from the boot order C260 Servers Main Bios Parameters for C260 ServersAdvanced Bios Parameters for C260 Servers Processor Configuration Parameters Name DescriptionWhich allows multithreaded software applications to execute Enhanced Intel Speedstep TechnologyWhether the processor uses Enhanced Intel SpeedStep Intel Hyper-Threading TechnologyIntel VT-d Interrupt Remapping Intel Virtualization TechnologyIntel VT for Directed IO Processor C3 Report Direct Cache AccessCPU C State Processor C6 ReportPackage C State Limit Numa Optimized Mirroring Sparing ModeMirroring Mode SparingPatrol Scrub Interval Serial Port Configuration Parameters Name DescriptionSerial a Enable USB Configuration Parameters NameOnboard Gbit LOM Onboard NIC n ROMPCIe OptionROMs PCIe Slot n ROMIOH Resource Allocation Onboard 10Gbit LOMSriov Assert NMI on Perr Server Management Bios Parameters for C260 ServersAssert NMI on Serr Baud Rate OS Boot Watchdog Timer TimeoutLegacy OS Redirection OS Boot Watchdog PolicyOS Boot Watchdog Timer C420 Servers Main Bios Parameters for C420 ServersAdvanced Bios Parameters for C420 Servers 236 237 238 239 240 241 242 243 244 245 Enabled -Enables the SD card drives Not detected by the Bios and operating system247 Can be one of the following Allows you to change the action of the PuTTY function keys 250 Server Management Bios Parameters for C420 Servers 252 C460 Servers Main Bios Parameters for C460 ServersAdvanced Bios Parameters for C460 Servers 254 255 Intel VT-d PassThrough DMA 257 258 259 260 261 262 Server Management Bios Parameters for C460 Servers 264 265 266 D E Installing from remote server 159 obtaining from Cisco LDAP, See Active Directory local users DedicatedIN-4 Yaml IN-6