- Notes, cautions, and warnings
- Overview
- Benefits of using iDRAC with Lifecycle Controller
- Key features
- New in this release
- How to use this guide
- Supported web browsers
- iDRAC licenses
- Licensed features in iDRAC9
- Interfaces and protocols to access iDRAC
- iDRAC port information
- Other documents you may need
- Contacting Dell
- Accessing documents from Dell support site
- Logging in to iDRAC
- Logging in to iDRAC as local user, Active Directory user, or LDAP user
- Logging in to iDRAC as a local user using a smart card
- Logging in to iDRAC using Single Sign-On
- Accessing iDRAC using remote RACADM
- Accessing iDRAC using local RACADM
- Accessing iDRAC using firmware RACADM
- Viewing system health
- Logging in to iDRAC using public key authentication
- Multiple iDRAC sessions
- Accessing iDRAC using SMCLP
- Secure default password
- Changing the default login password
- Enabling or disabling default password warning message
- IP Blocking
- Enabling or disabling OS to iDRAC Pass-through using web interface
- Enabling or disabling alerts using RACADM
- Setting up managed system
- Setting up iDRAC IP address
- Modifying local administrator account settings
- Setting up managed system location
- Optimizing system performance and power consumption
- Setting up management station
- Configuring supported web browsers
- Configuring Internet Explorer
- Configuring Mozilla Firefox
- Configuring web browsers to use virtual console
- Viewing localized versions of web interface
- Updating device firmware
- Updating firmware using iDRAC web interface
- Scheduling automatic firmware updates
- Updating device firmware using RACADM
- Updating firmware using CMC web interface
- Updating firmware using DUP
- Updating firmware using remote RACADM
- Updating firmware using Lifecycle Controller Remote Services
- Updating CMC firmware from iDRAC
- Viewing and managing staged updates
- Rolling back device firmware
- Backing up server profile
- Importing server profile
- Monitoring iDRAC using other Systems Management tools
- Support Server Configuration Profile — Import and Export
- Secure Boot Configuration from BIOS Settings or F2
- BIOS recovery
- Configuring iDRAC
- Viewing iDRAC information
- Modifying network settings
- FIPS mode
- Configuring services
- Configuring TLS
- Using VNC client to manage remote server
- Configuring front panel display
- Configuring time zone and NTP
- Setting first boot device
- Enabling or disabling OS to iDRAC Pass-through
- Obtaining certificates
- Configuring multiple iDRACs using RACADM
- Disabling access to modify iDRAC configuration settings on host system
- Viewing iDRAC and managed system information
- Viewing managed system health and properties
- Viewing system inventory
- Viewing sensor information
- Monitoring performance index of CPU, memory, and input output modules
- Checking the system for Fresh Air compliance
- Viewing historical temperature data
- Viewing network interfaces available on host OS
- Viewing network interfaces available on host OS using RACADM
- Viewing FlexAddress mezzanine card fabric connections
- Viewing or terminating iDRAC sessions
- Setting up iDRAC communication
- Communicating with iDRAC through serial connection using DB9 cable
- Configuring BIOS for serial connection
- Enabling RAC serial connection
- Enabling IPMI serial connection basic and terminal modes
- Switching between RAC serial and serial console while using DB9 cable
- Communicating with iDRAC using IPMI SOL
- Communicating with iDRAC using IPMI over LAN
- Enabling or disabling remote RACADM
- Disabling local RACADM
- Enabling IPMI on managed system
- Configuring Linux for serial console during boot in RHEL 6
- Configuring serial terminal in RHEL 7
- Supported SSH cryptography schemes
- Communicating with iDRAC through serial connection using DB9 cable
- Configuring user accounts and privileges
- iDRAC user roles and privileges
- Recommended characters in user names and passwords
- Configuring local users
- Configuring Active Directory users
- Prerequisites for using Active Directory authentication for iDRAC
- Supported Active Directory authentication mechanisms
- Standard schema Active Directory overview
- Configuring Standard schema Active Directory
- Extended schema Active Directory overview
- Configuring Extended schema Active Directory
- Extending Active Directory schema
- Installing Dell extension to the Active Directory users and computers snap-in
- Adding iDRAC users and privileges to Active Directory
- Configuring Active Directory with Extended schema using iDRAC web interface
- Configuring Active Directory with Extended schema using RACADM
- Testing Active Directory settings
- Configuring generic LDAP users
- System Lockdown mode
- Configuring iDRAC for Single Sign-On or smart card login
- Prerequisites for Active Directory Single Sign-On or smart card login
- Configuring iDRAC SSO login for Active Directory users
- Configuring iDRAC smart card login for local users
- Configuring iDRAC smart card login for Active Directory users
- Enabling or disabling smart card login
- Configuring iDRAC to send alerts
- Enabling or disabling alerts
- Filtering alerts
- Setting event alerts
- Setting alert recurrence event
- Setting event actions
- Configuring email alert, SNMP trap, or IPMI trap settings
- Configuring WS Eventing
- Configuring Redfish Eventing
- Monitoring chassis events
- Alerts message IDs
- iDRAC 9 Group Manager
- Managing logs
- Monitoring and managing power
- Inventorying, monitoring, and configuring network devices
- Inventorying and monitoring network devices
- Inventorying and monitoring FC HBA devices
- Dynamic configuration of virtual addresses, initiator, and storage target settings
- Supported cards for IO Identity Optimization
- Supported NIC firmware versions for IO Identity Optimization
- Virtual or Flex Address and Persistence Policy behavior when iDRAC is set to Flex Address mode or Console mode
- System behavior for FlexAddress and IO Identity
- Enabling or disabling IO Identity Optimization
- Configuring persistence policy settings
- Managing storage devices
- Understanding RAID concepts
- Supported controllers
- Supported enclosures
- Summary of supported features for storage devices
- Inventorying and monitoring storage devices
- Viewing storage device topology
- Managing physical disks
- Managing virtual disks
- Managing controllers
- Configuring controller properties
- Importing or auto importing foreign configuration
- Clearing foreign configuration
- Resetting controller configuration
- Switching the controller mode
- 12 Gbps SAS HBA adapter operations
- Monitoring predictive failure analysis on drives
- Controller operations in non-RAID mode or HBA mode
- Running RAID configuration jobs on multiple storage controllers
- Manage Preserved cache
- Managing PCIe SSDs
- Managing enclosures or backplanes
- Choosing operation mode to apply settings
- Viewing and applying pending operations
- Storage devices — apply operation scenarios
- Blinking or unblinking component LEDs
- BIOS Settings
- Configuring and using virtual console
- Supported screen resolutions and refresh rates
- Configuring virtual console
- Previewing virtual console
- Launching virtual console
- Using virtual console viewer
- HTML5 based virtual console
- Synchronizing mouse pointers
- Passing all keystrokes through virtual console for Java or ActiveX plug-in
- Using iDRAC Service Module
- Using USB port for server management
- Using Quick Sync 2
- Managing virtual media
- Installing and using VMCLI utility
- Managing vFlash SD card
- Configuring vFlash SD card
- Managing vFlash partitions
- Using SMCLP
- Deploying operating systems
- Troubleshooting managed system using iDRAC
- Using diagnostic console
- Viewing post codes
- Viewing boot and crash capture videos
- Viewing logs
- Viewing last system crash screen
- Viewing System status
- Hardware trouble indicators
- Viewing system health
- Checking server status screen for error messages
- Restarting iDRAC
- Erasing system and user data
- Resetting iDRAC to factory default settings
- SupportAssist Integration in iDRAC
- Frequently asked questions
- Use case scenarios
- Troubleshooting an inaccessible managed system
- Obtaining system information and assess system health
- Setting up alerts and configuring email alerts
- Viewing and exporting System Event Log and Lifecycle Log
- Interfaces to update iDRAC firmware
- Performing graceful shutdown
- Creating new administrator user account
- Launching servers remote console and mounting a USB drive
- Installing bare metal OS using attached virtual media and remote file share
- Managing rack density
- Installing new electronic license
- Applying IO Identity configuration settings for multiple network cards in single host system reboot
Integrated Dell Remote Access Controller 9 Version 3.21.21.21 User's Guide
Key features
The key features of iDRAC include:
NOTE: Some of the features
are available only with iDRAC Enterprise license. For information
on the features available for a license, see iDRAC licenses.
Inventory and Monitoring
- View managed server health.
- Inventory and monitor network adapters and storage subsystem (PERC and direct attached storage) without any operating system agents.
- View and export system inventory.
- View sensor information such as temperature, voltage, and intrusion.
- Monitor CPU state, processor automatic throttling, and predictive failure.
- View memory information.
- Monitor and control power usage.
- Support for SNMPv3 gets and alerts.
- For blade servers: launch
Management Module web interface, view OpenManage Enterprise (OME) Modular information,
and WWN/MAC addresses. NOTE: CMC provides access to iDRAC through the M1000E Chassis LCD panel and local console connections. For more information, see Chassis Management Controller User's Guide available at www.dell.com/cmcmanuals.
- View network interfaces available on host operating systems.
- iDRAC9 provides improved monitoring and management functionality with Quick Sync 2. You need OpenManage Mobile app configured in your Android or iOS mobile device.
Deployment
- Manage vFlash SD card partitions.
- Configure front panel display settings.
- Manage iDRAC network settings.
- Configure and use virtual console and virtual media.
- Deploy operating systems using remote file share, virtual media, and VMCLI.
- Enable auto-discovery.
- Perform server configuration using the export or import XML or JSON profile feature through RACADM, WSMan and Redfish. For more information, see Lifecycle Controller Remote Services Quick Start Guide available at www.dell.com/idracmanuals.
- Configure persistence policy for virtual addresses, initiator, and storage targets.
- Remotely configure storage devices attached to the system at run-time.
- Perform the following
operations for storage devices:
- Physical disks: Assign or unassign physical disk as a global hot spare.
- Virtual disks:
- Create virtual disks.
- Edit virtual disks cache policies.
- Check virtual disk consistency.
- Initialize virtual disks.
- Encrypt virtual disks.
- Assign or unassign dedicated hot spare.
- Delete virtual disks.
- Controllers:
- Configure controller properties.
- Import or auto-import foreign configuration.
- Clear foreign configuration.
- Reset controller configuration.
- Create or change security keys.
- PCIe SSD devices:
- Inventory and remotely monitor the health of PCIe SSD devices in the server.
- Prepare the PCIe SSD to be removed.
- Securely erase the data.
- Set the backplane mode (unified or split mode).
- Blink or unblink component LEDs.
- Apply the device settings immediately, at next system reboot, at a scheduled time, or as a pending operation to be applied as a batch as part of the single job.
Update
- Manage iDRAC licenses.
- Update BIOS and device firmware for devices supported by Lifecycle Controller.
- Update or rollback iDRAC firmware and Lifecycle Controller firmware using a single firmware image.
- Manage staged updates.
- Back up and restore server profile.
- Access iDRAC interface over direct USB connection.
- Configure iDRAC using Server Configuration Profiles on USB device.
Maintenance and Troubleshooting
- Perform power-related operations and monitor power consumption.
- Optimize system performance and power consumption by modifying the thermal settings.
- No dependency on OpenManage Server Administrator for generation of alerts.
- Log event data: Lifecycle and RAC logs.
- Set email alerts, IPMI alerts, remote system logs, WS Eventing logs, Redfish event, and SNMP traps (v1, v2c, and v3) for events and improved email alert notification.
- Capture last system crash image.
- View boot and crash capture videos.
- Out-of-band monitor and alert the performance index of CPU, memory, and I/O modules.
- Configure warning threshold for inlet temperature and power consumption.
- Use iDRAC Service Module
to:
- View operating system information.
- Replicate Lifecycle Controller logs to operating system logs.
- Automatic system recovery options.
- Enable or disable status of Full Power Cycle for all System components except the PSU.
- Remotely hard-reset iDRAC
- Enable in-band iDRAC SNMP alerts
- Access iDRAC using host OS (experimental feature)
- Populate Windows Management Instrumentation (WMI) information.
- Integrate with SupportAssist collection. This is applicable only if iDRAC Service Module Version 2.0 or later is installed.
- Prepare to remove NVMe PCIe SSD.
- Generate SupportAssist
collection in the following ways:
- Automatic — Using iDRAC Service Module that automatically invokes the OS Collector tool.
Dell Best Practices regarding iDRAC
- iDRACs are intended to be on a separate management network; they are not designed nor intended to be placed on or connected to the internet. Doing so could expose the connected system to security and other risks for which Dell is not responsible.
- Along with locating iDRACs on a separate management subnet, users should isolate the management subnet/vLAN with technologies such as firewalls, and limit access to the subnet/vLAN to authorized server administrators.
Secure Connectivity
Securing access to critical network resources is a priority. iDRAC implements a range of security features that includes:
- Custom signing certificate for Secure Socket Layer (SSL) certificate.
- Signed firmware updates.
- User authentication through Microsoft Active Directory, generic Lightweight Directory Access Protocol (LDAP) Directory Service, or locally administered user IDs and passwords.
- Two-factor authentication using the Smart–Card logon feature. The two-factor authentication is based on the physical smart card and the smart card PIN.
- Single Sign-On and Public Key Authentication.
- Role-based authorization, to configure specific privileges for each user.
- SNMPv3 authentication for user accounts stored locally in the iDRAC. It is recommended to use this, but it is disabled by default.
- User ID and password configuration.
- Default login password modification.
- Set user passwords and BIOS passwords using one-way hash format for improved security.
- FIPS 140-2 Level 1 capability.
- Support for TLS 1.2, 1.1, and 1.0. To enhance security, default setting is TLS 1.1 and higher.
- SMCLP and web interfaces
that support 128 bit and 40-bit encryption (for countries where 128
bit is not acceptable), using the TLS 1.2 standard.NOTE: To ensure a secure connection, Dell recommends using TLS 1.1 and higher.
- Session time-out configuration (in seconds).
- Configurable IP ports
(for HTTP, HTTPS, SSH, Telnet, Virtual Console, and Virtual Media). NOTE: Telnet does not support SSL encryption and is disabled by default.
- Secure Shell (SSH) that uses an encrypted transport layer for higher security.
- Login failure limits per IP address, with login blocking from that IP address when the limit is exceeded.
- Limited IP address range for clients connecting to iDRAC.
- Dedicated Gigabit Ethernet adapter available on rack and tower servers (additional hardware may be required).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\