Properties Value, Role | Cisco Systems 57712, UCSCPCIEBTG specs

Managing User Accounts

Configuring the Active Directory Server

attribute ID of 1.3.6.1.4.1.9.287247.1. For more information about altering the Active Directory schema, see the article at http://technet.microsoft.com/en-us/library/bb727064.aspx.

The following steps are to be performed on the Active Directory server.

Note This example creates a custom attribute named CiscoAVPair, but you can also use an existing LDAP attribute that is mapped to the CIMC user roles and locales.

Procedure

Step 1 Ensure that the Active Directory schema snap-in is installed.

Step 2 Using the Active Directory schema snap-in, add a new attribute with the following properties:

Properties	Value
Common Name	CiscoAVPair
LDAP Display Name	CiscoAVPair
Unique X500 Object ID	1.3.6.1.4.1.9.287247.1
Description	CiscoAVPair
Syntax	Case Sensitive String

Step 3 Add the CiscoAVPair attribute to the user class using the Active Directory snap-in:

a)Expand the Classes node in the left pane and type U to select the user class.

b)Click the Attributes tab and click Add.

c)Type C to select the CiscoAVPair attribute.

d)Click OK.

Step 4 Add the following user role values to the CiscoAVPair attribute, for the users that you want to have access to CIMC:

Role	CiscoAVPair Attribute Value
admin	shell:roles="admin"
user	shell:roles="user"
read-only	shell:roles="read-only"

Note For more information about adding values to attributes, see the article at http://technet.microsoft.com/ en-us/library/bb727064.aspx.

Cisco UCS C-Series Servers Integrated Management Controller CLI Configuration Guide, Release 1.5

OL-28893-01

67

Image 83

Cisco Systems 57712, UCSCPCIEBTG manual Properties Value, Role

Contents

First Published March 04 Americas HeadquartersPage N T E N T S Viewing Server Properties Viewing Server Sensors Managing User Accounts Creating a vNIC Configuring Communication Services Configuring Platform Event Filters Bios Parameters by Server Model This preface includes the following sections PrefaceAudience Conventions Indicates a comment line Default responses to system prompts are in square bracketsString String will include the quotation marks New and Changed Information for this Release Feature Description Where Documented Feature Description Documentation Roadmaps Related Cisco UCS Documentation System UCS Documentation Roadmap Bundle Other Documentation Resources This chapter includes the following sections OverviewOverview of the Server Software Management Interfaces Cisco Integrated Management ControllerCimc Firmware Server OS Cimc CLI Command Modes Overview Command Modes Command to Access Mode Prompt Mode Name Command to Access Mode Prompt Scope trap-destinations command Scope role-group command fromScope power-cap command from Scope sensor command from Command Output Formats Complete a CommandCommand History Committing, Discarding, and Viewing Pending Commands Online Help for the CLI OL-28893-01 KVM Console Installing the Server OSOS Installation Methods You can use the KVM console to install an OS on the server PXE Installation ServersInstalling an OS Using a PXE Installation Server Toggling the Locator LED Command or Action Purpose StepEnters chassis command mode Managing the Server Server /chassis/hdd # set locateHDD Managing the Server Boot OrderServer Boot Order Toggling the Locator LED for a Hard Drive Server# scope bios Configuring the Server Boot Order Detail Resetting the ServerViewing the Actual Server Boot Order Server /bios # show actual-boot-order Server# scope chassis Server# scope chassis Enters chassis modeServer /chassis # power shutdown Shutting Down the Server Powering Off the Server Managing Server PowerPowering On the Server Server# scope chassis Enters chassis command mode Power Cycling the ServerCommand or Action Purpose Name Description Configuring Power PoliciesViewing the Power Statistics Non-Compliance Action Power Capping PolicyConfiguring the Power Cap Policy Enabled yes no Server# scope power-capEnters the power cap command mode Server /power-cap # set Delay-value delay Configuring the Power Restore PolicyPower-off power-on Restore-last-state Action Description Managing the Flexible Flash ControllerCisco Flexible Flash Dual Card Management in the Cisco Flexible Flash Controller Scenario Behavior Configuring the Flexible Flash Controller Properties # set raid-primary-member slot1 # set read-error-count-threshold# set write-error-count-threshold # set virtual-drives-enabled list None SCU HV HUU Booting from the Flexible FlashServer /bios # set boot-override Permissible index value is FlexFlash-0 Resetting the Flexible Flash Controller Server /chassis/flexflash # commit Default configuration Secondary slot Configuring Bios SettingsViewing Bios Status Bios Version Version string of the running Bios Attempt to use Configuring Main Bios SettingsBoot Order For each Bios setting, see one the following topics Server /bios/main # set POSTErrorPause Enabled Configuring Advanced Bios SettingsOn, you are prompted to choose whether to reboot now Configure the Bios settings Server /bios/advanced # Server-management Configuring Server Management Bios SettingsCommand or Action Configure the Bios settings Server /bios # bios-setup-default Restoring Bios DefaultsRestoring Bios Manufacturing Custom Defaults Server # scope bios Server /bios # restore-mfg-defaults Server /bios # restore-mfg-defaultsDefault values OL-28893-01 Displays server properties Viewing Server PropertiesViewing Server Properties Server# show chassis detail Displays Cimc properties Viewing Cimc PropertiesViewing CPU Properties Server# show cimc detail This example displays Dimm summary information Viewing Memory Properties Show psu detail Viewing Power Supply PropertiesViewing Storage Properties Viewing Storage Adapter Properties Server /chassis # show storageadapter Error-counters detailHw-config detail Settings detail Flash controllers Viewing the Flexible Flash Controller PropertiesServer /chassis # show flexflash detail Optional Displays the available Cisco Flexible Viewing Physical Drive Properties Virtual-drive drive-number Viewing Virtual Drive PropertiesVirtual-drive drive-number detail Virtual-drive-count detail Server # scope chassis Viewing Nvidia GPU Card InformationSlot number of the GPU card Server# scope cimc Viewing PCI Adapter PropertiesViewing Network Related Properties Viewing LOM Properties Server# scope cimc Network OL-28893-01 Show psu-redundancy Viewing Power Supply SensorsViewing Server Sensors Server# scope sensor Server /sensor # show psu-redundancy Viewing Temperature SensorsServer /sensor # show temperature detail Viewing Fan Sensors Purpose Step This example displays temperature sensor statisticsViewing Voltage Sensors Status column Procedure Command or Action Purpose StepViewing Current Sensors Viewing Storage Sensors Current LED color, if any LED Status column OL-28893-01 KVM Console Managing Remote PresenceManaging the Virtual KVM Server# scope kvm Server /kvm # set enabled yesEnabling the Virtual KVM Disabling the Virtual KVM Server /kvm # set max-sessions Configuring the Virtual KVMSet encrypted yes Set local-video yes Server# scope vmedia Configuring Virtual MediaSet enabled yes Remote-file-path mount options Configuring Network Mounted vMedia MappingCommand or Action Server # scope vmedia Volume-name remote-share Server # scope vmedia Enters the virtual media command modeViewing Network Mount vMedia Mapping Properties Removing Network Mounted vMedia Mapping Serial Over LAN Managing Serial over LAN Yes no Configuring Serial Over LANEnters SoL command mode Server# scope sol Server# connect host Server console port. You can enter this command in anyCommand mode Launching Serial Over LAN OL-28893-01 Managing User Accounts Configuring Local Users Active Directory Configuring Active DirectoryConfiguring the Active Directory Server Role Properties Value Server# scope ldap Configuring Active Directory in Cimc Server /ldap *# set dc1 Server /ldap *# set gc1 Configuring Active Directory Groups in CimcServer# scope ldap Scope role-group Admin user readonlySet group-auth Terminating a User Session Viewing User Sessions Terminate Server NICs Configuring Network-Related SettingsServer NIC Configuration NIC Mode Sharedlom Sharedlom10g shipping ciscocard Configuring Server NICsServer /cimc/network # set mode dedicated NIC Redundancy Active-standby Configuring Common PropertiesRedundancy none Active-active Configuring IPv4 Specifies the IP address of the secondary DNS Configuring the Server VlanOptional Displays the IPv4 network settings You must be logged in as admin to configure the server Vlan Set vlan-priority Connecting to a Port ProfileSet vlan-enabled Supported adapter cards such as the Cisco UCS VIC1225 Port profile must be defined on the switch toDisplays the network settings Management interface, the virtual Ethernet, and the VIF on Network Security Network Security ConfigurationConfiguring Network Security Yes Network Time Protocol ConfigurationConfiguring Network Time Protocol Settings Server # scope cimc 10.120.35.46 Server /cimc/network/ntp* # commit Commits the transaction10.120.33.44 10.120.34.45 Overview of the Cisco UCS C-Series Network Adapters Managing Network Adapters Cisco UCS VIC1225 Virtual Interface Card Cisco UCS P81E Virtual Interface Card Index detail Configuring Network Adapter PropertiesViewing Network Adapter Properties Managing vHBAs Fip-mode disable enableNiv-mode disable enable Configure-vmfex port-count All vHBAs Viewing vHBA PropertiesHost-fc-if fc0 fc1 name detail Modifying vHBA Properties # set fcp-error-recovery disable Enable Error-detect-timeout msecResource-allocation-timeout msec Error-recovery Interrupt-mode intx msi msix Enters the interrupt command modeSet flogi-timeout msec Interrupt Server Enters the Fibre Channel port login command modeSet plogi-timeout msec Port-p-logi Host-fc-if name Creating a vHBA Server /chassis/adapter # commit Deleting a vHBASet channel-number number Server /chassis/adapter # delete Show boot VHBA Boot TableViewing the Boot Table Creating a Boot Table Entry Server /chassis # scope adapter Deleting a Boot Table EntryCreate-boot-entry wwpn lun-id Locate the number of the entry to be deleted Delete boot entryTake effect upon the next server reset VHBA Persistent Binding Perbi Set persistent-lun-binding enableEnabling Persistent Binding Disabling Persistent Binding # rebuild Set persistent-lun-binding disableRebuilding Persistent Binding Scope perbi Host-eth-if eth0 eth1 name detail Managing vNICsGuidelines for Managing vNICs Viewing vNIC Properties Uplink 0 Modifying vNIC PropertiesHost-eth-if eth0 eth1 name Channel-number number Trust-host-cos disable enableVlan-mode access trunk Uplink-failover disable enable Set coalescing-time usec Uplink-failback-timeout secondsScope interrupt Set interrupt-count count Scope trans-queue Set tcp-segment-offload disable# set rq-count count # set rq-ring-size size Set rss disable enable Set tcp-rx-checksum-offload disableSet tcp-tx-checksum-offload disable Set tcp-large-receive-offload disable Creating a vNIC Set rss-hash-tcp-ipv6 disableSet rss-hash-ipv6-ex disable enable Set rss-hash-tcp-ipv6-ex disable Host-eth-if name Deleting a vNIC This example deletes a vNIC on adapter Configuring iSCSI Boot CapabilityReboot You can configure a maximum of 2 iSCSI vNICs for each host Eth0 eth1 name Iscsi-boot indexDhcp-net-settings enabled Dhcp-iscsi-settings enabled Virtual Machine Fabric Extender Delete iscsi-bootManaging VM FEX Viewing VM FEX Properties Name VM FEX SettingsGeneral Properties Settings Name Description Ethernet Interrupt Settings Name Description Completion Queue Settings Name Description Receive Side Scaling Settings Name TCP Offload Settings Name Description Create virtual-drive Managing Storage AdaptersCreate Virtual Drive from Unused Physical Drives Storageadapter slot Appropriate information at each prompt Create Virtual Drive from an Existing Drive GroupCarve-virtual-drive Write policy for the new virtual drive. Enter 500 MB Clearing Foreign ConfigurationServer /chassis # scope storageadapter # delete-virtual-drive Clear-foreign-configDeleting a Virtual Drive # get-operation-status Cancel-initializationInitializing a Virtual Drive Start-initialization Server /chassis/storageadapter # scope Set as Boot DriveSet-boot-drive Modifying Attributes of a Virtual Drive You are prompted to choose a virtual drive for Making a Dedicated Hot SpareModify-attributes Policy Make-global-hot-spare Making a Global Hot SparePreparing a Drive for Removal Server /chassis/storageadapter/physical-drive # # remove-hot-spare Removing a Drive from Hot Spare PoolsPrepare-for-removal Undo-prepare-for-removal Enabling Auto Learn Cycles for the Battery Backup UnitEnable-auto-learn Undo Preparing a Drive for Removal You must be logged in as an admin to use this command Disabling Auto Learn Cycles for the Battery Backup UnitStarting a Learn Cycle for a Battery Backup Unit Disable-auto-learn # locator-led on off Toggling the Locator LED for a Physical DriveStart-learn-cycle Physical-drive Viewing Storage Controller Logs Backing Up and Restoring the Adapter ConfigurationExporting the Adapter Configuration This example exports the configuration of adapter Importing the Adapter Configuration PCI slot number specified by the index Restoring Adapter DefaultsReboot the server to apply the imported configuration Adapter-reset-defaults index Or two specified adapters or, if no adapter is specified Installing Adapter FirmwareManaging Adapter Firmware Adapter Firmware Server /chassis # activate-adapter-fw Resetting the AdapterActivating Adapter Firmware Host Server/chassis # adapter-reset indexResetting the adapter also resets This example resets the adapter in PCI slot Server /http # set http-redirect yes Configuring Communication ServicesConfiguring Http Server# scope http Set ssh-port number Configuring SSHSet timeout seconds Server# scope ssh Server# scope xmlapi Configuring XML APIXML API for Cimc Enabling XML API Ipmi Over LAN Configuring IpmiConfiguring Ipmi over LAN Set enabled Server# scope snmp Configuring SnmpConfiguring Snmp Properties Encryption-key key Server /snmp # set sys-location Setcommunity-accessCommunity-str community Settrap-community-str Type trap inform Configuring Snmp Trap SettingsTrap-destinations number Version 1 2 Specified user number Configuring SNMPv3 UsersSending a Test Snmp Trap Message To send a test message MD5 SHA V3security-name security-nameV3security-level noauthnopriv Authnopriv authpriv 142 Generating a Certificate Signing Request Managing CertificatesManaging the Server Certificate Signing request CSR Enters the certificate command modeServer# scope certificate Server /certificate # generate-csr Managing Certificates Creating a Self-Signed Certificate Creating a Self-Signed Certificate Echo nsCertType = server openssl.conf Openssl genrsa -out CAkeyfilenameExample Openssl req -new -x509 -days numdays New server certificate Uploading a Server CertificateServer /certificate # upload Begin Certificate This example uploads a new certificate to the server Platform Event Filters Configuring Platform Event FiltersServer# scope fault Platform-event-enabled yes Disabling Platform Event Alerts Configuring Platform Event FiltersPlatform-event-enabled no Platform Event Filter None reboot power-cyclePower-off Enabled yes Configuring Platform Event Trap SettingsServer /fault # scope pef-destinations Test Trap Interpreting Platform Event TrapsPlatform Event Trap Descriptions Event Number Note Platform Event Description 154 155 Event Number Note 156 Overview of Firmware Cimc Firmware Management Click Accept License Agreement Obtaining Firmware from CiscoCenter box, click Unified Computing and Servers Click the Unified Computing System UCS Server Firmware link Log in to the as a user with admin privileges Installing Cimc Firmware from a Remote Server Activating Installed Cimc Firmware Inactive image Server /cimc/firmware # activate 1Is specified, the server activates the currently Current FW Version field Installing Bios Firmware from a Remote Server 163 Server # scope bios 164 Viewing Logs Viewing the Faults and Logs SummaryScope fault Show fault-entries Viewing the Cimc Log Cimc Log Server /cimc/log # clear Configuring the Cimc Log ThresholdClearing the Cimc Log Server /cimc # scope log Remote-syslog-severity level Sending the Cimc Log to a Remote ServerLocal-syslog-severity Server-ip ip-address Error Informational DebugCritical Server# scope sel System Event LogViewing the System Event Log Server# scope sel Enters the system event log command modeClearing the System Event Log 172 Remote-ip ip-address Server UtilitiesExporting Technical Support Data Server /cimc # scope tech-support Remote-username name Remote-password passwordRemote-protocol protocol Provide the generated report file to Cisco TAC Rebooting the CimcClearing the Bios Cmos Server# scope bios Enters the bios command mode Recover Recovering from a Corrupted BiosScope bios Power cycle or reset the server Resetting the Cimc to Factory DefaultsThis example shows how to recover from a corrupted Bios Server /cimc # scope import-export Exporting and Importing the Cimc ConfigurationExporting and Importing the Cimc Configuration Exporting the Cimc Configuration Server /cimc/import-export # Importing a Cimc ConfigurationServer# scope cimc Enters the Cimc command mode Generating Non maskable Interrupts to the Host 181 182 TPM Support Bios Parameters by Server ModelMain Bios Parameters for C22 and C24 Servers C22 and C24 Servers Execute Disable Advanced Bios Parameters for C22 and C24 ServersProcessor Configuration Parameters Name Number of Enabled Cores Intel VT-d ATS Support Intel VTIntel VT-d Intel VT-d Coherency Support Adjacent Cache Line Prefetcher CPU PerformanceHardware Prefetcher DCU IP Prefetcher Direct Cache Access SupportDCU Streamer Prefetch Power Technology Frequency Floor Override Processor Power State C6Processor Power State C1 Enhanced Intel Turbo Boost Technology Energy Performance State Coordination Dram Clock Throttling Memory Configuration Parameters Name DescriptionSelect Memory RAS Rank Interleaving Low Voltage DDR ModeDram Refresh rate Channel Interleaving Altitude Patrol ScrubDemand Scrub Onboard Storage Parameters Name QPI Configuration Parameters Name DescriptionUSB Configuration Parameters Name Description USB Port Internal All USB DevicesUSB Port Rear USB Port Front VGA Priority PCI Configuration Parameters Name DescriptionMmio Above 4GB Aspm Support Bits per second Console RedirectionTerminal Type Putty KeyPad Flow Control PCIe Slot n OptionROM All Onboard LOM PortsLOM Port n OptionROM All PCIe Slots OptionROM PCIe Slot n Link Speed Server Management Bios Parameters for C22 and C24 ServersFRB-2 Timer OS Watchdog Timer OS Watchdog Timer Policy OS Watchdog Timer Timeout Boot Order Rules C220 and C240 Servers Main Bios Parameters for C220 and C240 ServersAdvanced Bios Parameters for C220 and C240 Servers 204 Enabled -The processor uses VT-d ATS as required Disabled -The processor does not support ATS 206 207 Power consumption but may reduce system performance 209 210 211 212 213 214 4GB or greater address space USB Port SD CardMemory Mapped I/O Above 4GB Offboard -Priority is given to the Pcie Graphics adapter Enables console redirection on COM port 0 during PostEnables console redirection on COM port 1 during Post Allows you to change the action of the PuTTY function keys Introduced by a hidden terminal problem. This can be oneNone -No flow control is used 218 If it hangs during POST. This can be one of the following Server Management Bios Parameters for C220 and C240 ServersPCIe Mezzanine OptionROM Watchdog timer expires 5 minutes after the OS System removes that device type from the boot order C260 Servers Main Bios Parameters for C260 ServersAdvanced Bios Parameters for C260 Servers Processor Configuration Parameters Name Description Which allows multithreaded software applications to execute Enhanced Intel Speedstep TechnologyWhether the processor uses Enhanced Intel SpeedStep Intel Hyper-Threading Technology Intel VT-d Interrupt Remapping Intel Virtualization TechnologyIntel VT for Directed IO Processor C3 Report Direct Cache Access CPU C State Processor C6 ReportPackage C State Limit Numa Optimized Mirroring Sparing ModeMirroring Mode Sparing Patrol Scrub Interval Serial Port Configuration Parameters Name DescriptionSerial a Enable USB Configuration Parameters Name Onboard Gbit LOM Onboard NIC n ROMPCIe OptionROMs PCIe Slot n ROM IOH Resource Allocation Onboard 10Gbit LOMSriov Assert NMI on Perr Server Management Bios Parameters for C260 ServersAssert NMI on Serr Baud Rate OS Boot Watchdog Timer Timeout Legacy OS Redirection OS Boot Watchdog PolicyOS Boot Watchdog Timer C420 Servers Main Bios Parameters for C420 ServersAdvanced Bios Parameters for C420 Servers 236 237 238 239 240 241 242 243 244 245 Enabled -Enables the SD card drives Not detected by the Bios and operating system 247 Can be one of the following Allows you to change the action of the PuTTY function keys 250 Server Management Bios Parameters for C420 Servers 252 C460 Servers Main Bios Parameters for C460 ServersAdvanced Bios Parameters for C460 Servers 254 255 Intel VT-d PassThrough DMA 257 258 259 260 261 262 Server Management Bios Parameters for C460 Servers 264 265 266 D E Installing from remote server 159 obtaining from Cisco LDAP, See Active Directory local users Dedicated IN-4 Yaml IN-6