- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- ProLiant Servers (ML,DL,SL)
- >
- Re: Monitor user - no admin priveleges
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-26-2017 11:21 AM
тАО06-26-2017 11:21 AM
Hello all! I'm trying to figure out how to create a monitor user that JUST has access to sensor data. We use Sensu and Sensu uses ipmitool. The platform are brand new DL160 Gen9's, running iLO version 2.50. The only way I can view Sensor data is by giving a user Admin privileges, which we don't want to give to Sensu (or anything that's going to monitor). I've gone through each of the User Permissions and get "Error: Unable to establish IPMI v2 / RMCP+ session" with anything else BUT all permissions checked and the "IPMI/DCMI Privilege based on above settings:" ways administrator.
Is there any way to get sensors listed (whether through "sdr list" or "sensor list" when using ipmitool) without giving a user administrator privileges?
Thanks in advance!
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-27-2017 01:05 AM
тАО06-27-2017 01:05 AM
SolutionHi
does the access method *have* to use "ipmitool"? If not, why not use SNMP or the hprest api to fetch the information you need? Certainly with the latter, you can create a "monitor" user account (on the ILO) that has only the login privilege (this is what I do for similar purposes).
Good Luck!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-28-2017 12:14 PM
тАО06-28-2017 12:14 PM
Re: Monitor user - no admin priveleges
I was hoping that wasn't the answer :) But will accept it anyway. The way we are tooled right now is using ipmitool to query this data as we use this method with other vendors on our network. Thank you for the reply!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-29-2017 12:26 PM
тАО06-29-2017 12:26 PM
Re: Monitor user - no admin priveleges
Using a DL20 Gen9 I created an iLO test user with no special privileges.
[linuxuser@tux25 ~]$ ipmitool -I lanplus -H 192.168.2.112 -U tester -P password -L user sdr UID | 0x01 | ok Sys Health LED | no reading | ns 01-Inlet Ambient | 23 degrees C | ok 02-CPU 1 | 40 degrees C | ok 03-P1 DIMM 1-4 | 26 degrees C | ok 04-HD Max | 35 degrees C | ok 05-Chipset | 39 degrees C | ok 06-VR P1 | 27 degrees C | ok 07-PS 1 Internal | disabled | ns 08-PS 2 Internal | disabled | ns 09-VR 5V Zone | 32 degrees C | ok 10-Storage Batt | disabled | ns 11-PCI 1 | disabled | ns 12-PCI 2 | 67 degrees C | ok 13-LOM Card | disabled | ns 14-LOM | disabled | ns 15-PCI 1 Zone | 36 degrees C | ok 16-PCI 2 Zone | 44 degrees C | ok 17-I/O Zone | disabled | ns 18-CPU Exhaust | 33 degrees C | ok Fan 1 | 6.27 percent | ok Fan 1 DutyCycle | 6.27 percent | ok Fan 1 Presence | 0x10 | ok Fan 2 | 6.27 percent | ok Fan 2 DutyCycle | 6.27 percent | ok Fan 2 Presence | 0x10 | ok Fan 3 | 6.27 percent | ok Fan 3 DutyCycle | 6.27 percent | ok Fan 3 Presence | 0x10 | ok Power Supply 1 | 0x00 | ok PS 1 Presence | 0x00 | ok Power Meter | 0 Watts | ok PwrMeter Output | 0 Watts | ok Megacell Status | disabled | ns Memory Status | 0 error | ok C3 P1I Bay 2 | 0x01 | ok
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-30-2017 01:07 AM
тАО06-30-2017 01:07 AM
Re: Monitor user - no admin priveleges
Very useful test, Jimmy!
An actual demonstration beats a mountain of opinions, IMHO.
Richard.