HPE Community
ProLiant Servers (ML,DL,SL)
1820481 Members
2369 Online
109624 Solutions
New Discussion

ipmitool lan connections

 
stevegszabo
Occasional Visitor

‎11-23-2010 01:51 PM

‎11-23-2010 01:51 PM

ipmitool lan connections

 

I would like to run a few commands via ipmitool on Proliant DL380 G3/6/8 hardware however it seems that the port is closed:

 

ipmitool -U someguy -H somebox  -P somepass user list
Error: Unable to establish LAN session
Get User Access command failed (channel 14, user 1)

 

 

 

nmap -sU somebox
PORT    STATE         SERVICE
161/udp open|filtered snmp


 

 

 

As you can see port 623/udp is closed. This port should be open to accept remote ipmi connections.

 

 

From the man pages:

 

       -p <port>
              Remote server UDP port to connect to.  Default is 623.

 

lan — communicates with the Service Processor over an Ethernet LAN connection using UDP under IPv4;
      UDP datagrams contains IPMI messages and Remote Management Control Protocol (RMCP) headers.

 

 

I'm able to connect to other boxes ( Sun hardware ) which seems to work:

 

 

ipmitool -U someguy -H sunbox -P somepass user list
ID  Name             Callin  Link Auth  IPMI Msg   Channel Priv Limit
1                    false   false      true       USER
2   root             false   false      true       ADMINISTRATOR
3   someguy           true    false      true       ADMINISTRATOR
12  default          true    false      true       NO ACCESS

 

 

 

 

nmap -sU sunbox
PORT    STATE         SERVICE
161/udp open|filtered snmp
623/udp open|filtered unknown

 

 

 

How do I enable remote ipmi connections on HP hardware???

 

Thanks

 

0 Kudos
Reply
2 REPLIES 2
stevegszabo
Occasional Visitor

‎11-30-2010 11:15 AM

‎11-30-2010 11:15 AM

Re: ipmitool lan connections

 

Updating the ilo firmware seems to open the port:

 

iLOM Firmware: 2.01   08/04/2010

 

#  nmap -sU lomaddress
161/udp open|filtered snmp
623/udp open|filtered unknown

 

I can remote commands:

 

$ ipmitool -I lanplus -U someguy -H lomaddress -P somepass user list 2
ID  Name             Callin  Link Auth  IPMI Msg   Channel Priv Limit
1   Administrator    true    false      false      ADMINISTRATOR
2   someguy          true    false      false      ADMINISTRATOR
Get User Access command failed (channel 2, user 4): Requested sensor, data, or record not found

 

However I can't use the 'user set password' command:

 


$ ipmitool -I lanplus -U someguy -H lomaddress -P somepass user set password 2 aaabbbccc
Set User Password command failed (user 3): Request data length invalid

 

0 Kudos
Reply
stevegszabo
Occasional Visitor

‎12-06-2010 08:01 AM

‎12-06-2010 08:01 AM

Re: ipmitool lan connections

I've spent some time with both hardware and software support staff with HP and our Linux vendor.

 

According to our Linux vendor the ipmitool is running correctly the issue must be with the hardware. The HP lom does not support changing lom passwords remotely. I have come to this conclusion on my own as HP hardware support has refused to provide any support as they do not use ipmitool.

 

ipmitool -I lanplus -U $USER -H $HOST -P $PASS user set password $LUID
Password for user X:
Password for user X:
Set User Password command failed (user X): Request data length invalid

 

Why do vendors claim to conform to the IPMI standard and not provide the complete subset of ipmi commands?

 

In the future if possible I will purchase hardware which supports these commands as clearly HP does not.

 

Good work HP

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.