IPMI / iDRAC configuration

Configure out-of-band management (IPMI/iDRAC) for Vectra appliances.

IP Address Assignment (DHCP / Static)

All IPMI/iDRAC interfaces on any Vectra physical appliance default to DHCP. If you want to use a static assignment, you must explicitly set that at the CLI of the appliance.

Methods of accessing the console are described in this article

Default usernames and passwords for the CLI and IPMI / iDRAC are available in this article

Checking IPMI Configuration:

Command:
show ipmi_interface

Example Output:
Gateway: 10.2.0.1
Ip: 10.2.2.32
Mac: d0:94:66:48:0a:ad
Mode: static
Netmask: 255.255.0.0

Setting IPMI Address Configuration:

To set the IPMI / iDRAC interface the command syntax and an example are shown below:

Syntax Example:
set ipmi_interface -h
Usage: set ipmi_interface [OPTIONS] [dhcp|static] [IP_ADDRESS] [SUBNET_MASK] [GATEWAY_ADDRESS]

Set the ipmi interface config

Options:
-h, --help Show this message and exit.

Command Example (Static Addressing):
set ipmi_interface static 10.2.2.34 255.255.248.0 10.2.0.1
IPMI Interface Change: success

Command Example (DHCP):
set ipmi_interace dhcp
IPMI Interface Change: Success

To set the IPMI / iDRAC passwords, use the command below:

Setting IPMI password:
set ipmi_password

Setting the iDRAC Manual DNS Hostname Entry

In version 7.4, as part of the upgrade process, Vectra appliances that use an iDRAC for IPMI functionality have been given a new method to set the iDRAC hostname manually. This is required due some changes to how iDRAC validates user login when a customer accessing the iDRAC via hostname. iDRAC firmware was updated to address CVE-2022-24422. Additional information is available on Dell's website at DSA-2022-068. An important detail about the requirement for a manual DNS entry in the iDRAC configuration is available in iDRAC9 Version 5.10.00.00 Release Notes p.16 under Security .

Essentially, if you access the iDRAC interface via hostname, you must have a manual DNS entry set within the iDRAC configuration on the appliance. This DNS entry must be the Fully Qualified Domain Name (FQDN) and not just the DNS short name that may be valid in your organization's DNS.

Accessing the iDRAC interface via IP address does not require that a manual DNS entry be set in the iDRAC configuration.

To view and set the iDRAC DNS hostname manually, Vectra has provided new commands that are available when logged into the appliance as the "vectra" user. These commands will only appear under "show commands" output and function on appliances that include an iDRAC for their IPMI functionality.

Command Example (Viewing IPMI manual DNS Entry): vscli > show ipmi_manual_dns_entry Manual DNS Entry: [customer_dns_hostname]**.customer.**com

Command Example (Setting IPMI manual DNS Entry): vscli > set ipmi_manual_dns_entry [customer_dns_hostname]**.customer.**com IPMI Manual DNS Entry Change: success

Customer SSL/TLS Certificates

iDRAC

You can login on the iDRAC UI with the "vectra" user, and go to ""iDRAC Settings - Web Server - SSL/TLS Custom Certificate" then upload the certificate.

IPMI

For appliances which has IPMI interface instead iDRAC, please contact Vectra support, who can assist with this provisioning. https://support.vectra.ai/s/contactsupport

PreviousChanging Sensor CLI password NextMonitoring appliance health

Last updated 1 day ago

Was this helpful?

Good evening

hashtagIP Address Assignment (DHCP / Static)

hashtagChecking IPMI Configuration:

hashtagSetting IPMI Address Configuration:

hashtagSetting the iDRAC Manual DNS Hostname Entry

hashtagCustomer SSL/TLS Certificates

hashtagiDRAC

hashtagIPMI