test

Sun N1 System Manager 1.1 Installation and Configuration Guide

ProcedureTo Configure the Sun N1 System Manager System

Before You Begin

The N1 System Manager software must be successfully installed as described in Installing Sun N1 System Manager Software.

Steps

  1. Log in as root to the N1 System Manager management server.

  2. Type /usr/bin/n1smconfig to start the configuration process.

    The current system configuration appears, and lists the network interfaces. You are then asked to enter the interface for the Provisioning Network.

  3. Specify the port for the provisioning network interface.

    The available interfaces are listed in the prompt. Type the interface name that is to be used for the provisioning interface, for example eth1, hme0, bge1, and so on depending on the machine architecture and installed OS.

    You are asked whether you want to specify a range of IP addresses for the DHCP server to use.

  4. Choose whether to configure the DHCP server address range.

    If you choose to configure the DHCP IP address range, the range of IP addresses you provide will be allocated to the provisionable server for loading operating systems and updates over the provisioning network, and for runtime monitoring of the provisionable server operating environment.

    If you choose not to configure the DHCP IP address range, then you must specify static addressing when using the N1 System Manager load operation.

    Note –

    The management server does not provide DHCP services for the data network. If you plan to dynamically configure IP services on the data network, you must provide an external DHCP server for the data network. You must not have another DHCP server on the same provisioning network.

    • Type y if you want to specify a range of IP addresses for the DHCP server to use.

      Caution – Caution –

      If the management port address is on the same subnet as the provisioning subnet, ensure that the management server IP addresses do not match any of the addresses in the specified range. This rule ensures that the DHCP server does not assign a duplicate IP address to a client that does not resolve using the DHCP client clause.

      You are prompted to type the starting DHCP IP address. Type the starting IP address for the DHCP server to use.

      You are prompted to type the ending IP address. Type the ending IP address for the DHCP server to use.

    • Type n if you do not want to specify a range of IP addresses

    The existing DNS settings IP addresses and domain search list appears. You are asked whether you want to configure the name servers and the search list entry.

  5. Choose whether to configure the name servers.

    • Type y if you want to configure the name servers and domain search list. You are prompted for the name server addresses. Go to Step 6.

    • Type n if you accept the displayed name servers and domain search list. You are asked whether you want to configure the SMTP server for event notification. Go to Step 8.

  6. Configure the name servers.

    Type the IP addresses of the name servers, separated by a single space. For example:


    129.111.111.11 129.111.111.22

    You are prompted to enter the search suffix list.

  7. Specify the search domains.

    Type the names of the domains that are to be used for DNS search separated by a single space. For example:


    location-one.company.com location-two.company.com location-three.company.com

    You are asked whether you want to configure the SMTP server for event notification.

  8. Choose whether to configure SMTP for event notification.

    • Type y if you want to configure the SMTP server. You are prompted for the name of the SMTP server, or the IP address of the SMTP server. Go to Step 9.

    • Type n if you do not want to configure the SMTP server. You are asked whether you want to modify logging configuration. Go to Step 10.

  9. Specify the SMTP server name or IP address.

    Type either the fully qualified SMTP server name, or the IP address for the SMTP server. For example:


    smtp.mycompany.com

    or


    129.111.222.33

    You are asked whether you want to modify logging configuration.

  10. Modify logging configuration

    • Type y if you want to configure logging. Information about logging configuration appears. Go to Step 11.

    • Type n if you do not want to configure logging. The configuration process displays the proposed changes to the system configuration. Go to Step 13

  11. Configure logging.

    Press Return to accept the default of “ALL” or type the specifications as directed. You are prompted to enter the topic.severity value.

  12. Specify the topic severity value.

    Take one of the following actions:

    • Press Return to accept the default value of 0

    • Type a different severity value (0 through 7) as follows:

      • 0 = unknown

      • 1 = other

      • 2 = information

      • 3 = warning

      • 4 = minor

      • 5 = major

      • 6 = critical

      • 7 = fatal

    • Type q to quit without specifying a severity value. Logging configuration is not performed.

    You are asked whether you want to modify job time-out configuration.

  13. Choose whether to modify job time-out configuration.

    Some OS distributions are very large, and might take longer than the default time when provisioning a server. If you plan to provision large OS distributions, increase the time-out values.

    • Type y if you want to modify job time-out configuration.

      A description of job time-out values appears. Type the new time-out values when prompted.

    • Type n if you do not want to modify job time-out configuration.

    You are asked whether to enable N1 System Manager (N1SM) startup at each boot.

  14. Choose whether to start the N1 System Manager system at each boot.

    • Type y to start the N1 System Manager system each time the system boots.

    • Type n if you want to start the N1 System Manager system manually after the management server has been rebooted. You are notified that you can start the N1 System Manager manually.

      To start the N1 System Manager after configuration has successfully completed, type the command /etc/init.d/n1sminit start.

    You are asked whether you want to enable auto-login to the ILOM Web GUI on provisionable servers which offer the auto-login feature.

  15. Choose whether to enable the provisionable server ILOM GUI auto-login feature.

    The Sun FireTM X4100 and Sun Fire X4200 servers provide a Web GUI for performing various system administration tasks such as connecting remote devices and performing system monitoring. If you enable the ILOM GUI auto-login feature, then the menu item Open Web Console will appear in the Actions menu on the Server Details page of the N1 System Manager browser interface. For further information, see To Open the Sun ILOM Web GUI for a Sun Fire X4000 Series Server in Sun N1 System Manager 1.1 Online Help.

    Caution – Caution –

    Enabling the Web Console (Sun ILOM Web GUI) autologin feature for Sun Fire X4100 and X4200 servers exposes the server's service processor credentials to users who can view the web page source for the login page.

    • Type y to enable the auto-login feature.

    • Type n if you do not want to enable the auto-login feature.

    If you are configuring a Linux-based management server, the configuration process displays the proposed system settings. You are asked whether you want to apply the settings. Go to Step 17.

    If you are configuring a Solaris-based management server, you are then asked whether you want to enable the SSHv1 protocol so that you can access the provisionable server's serial console.

  16. Choose whether to enable the SSHv1 protocol.

    SSHv1 is required to enable provisionable server remote serial console access from a Solaris-based N1 System Manager browser interface. For more information, see To Open the Serial Console for a Server in Sun N1 System Manager 1.1 Online Help.

    Caution – Caution –

    The following SSHv1 security issues should be considered:

    • The applet used for the serial console access from the browser interface does not provide a certificate-based authentication of the applet. The applet uses SSHv1 only for communication back to the management server, and requires that SSHv1 is enabled for themanagement server. Users concerned about this issue can use the serial console feature from the command line through the connect command.

    • SSH fingerprints used during connections from the management server to the provisioning network interfaces on the provisionable servers are automatically acknowledged by the N1 System Manager software, which may make the provisionable servers vulnerable to man-in-the middle attacks.

    • Type y to enable SSHv1.

    • Type n if you do not want to enable SSHv1.

    The configuration process displays the proposed changes to the system settings. You are asked whether you want to apply the settings.

  17. Review the proposed settings.

    • Type y to apply the settings.

      You are prompted to press Enter to start the N1 System Manager.

    • Type n if the settings are not correct.

      You are notified that you must reconfigure and apply settings for the N1 System Manager to work properly. The configuration process then exits to the system prompt. To configure the N1 System Manager, run the n1smconfig command again.

Next Steps

Prepare the N1 System Manager system for production as described in the next section.