1. Oracle Hardware Management Pack 2.4 Server CLI Tools User's Guide
  2. Using fwupdate to Update Firmware
  3. fwupdate Command Overview
  4. fwupdate and Service Processor Access
  5. Command Options for Accessing Oracle ILOM Over a Remote Network Connection

Command Options for Accessing Oracle ILOM Over a Remote Network Connection

The credential and certificate options listed in the following table are supported for fwupdate when accessing a service processor over a network connection. An example of usage follows the table.

Short Option Long Options Description

-H

--remote-hostname=sp_ip

The host name, Common Name, or IP address of the remote service processor as specified by sp_ip. This option must be used in combination with the -U option.

Note:

When accessing an SP over a remote Ethernet network connection, client-side SSL certificate validation is performed by default. For proper validation, you must use the Common Name stored in the client-side SSL certificate and the DNS server for the SP remote host name (e.g. -H ORACLESP-1000NML000). Otherwise, you will receive a "hostname validation failed" error.

-U

--remote-username=username

The user name with root access used to log in to the remote service processor as specified by username. This option must be used in combination with the -H option.

-t

--intfname=interface

Specifies the IPMI interface to use. No auto-detect is attempted. Supported interfaces that are compiled in are visible in the usage help output (socket interfaces in case -H option is used). See the -T description for more information.

This option was introduced in Oracle Hardware Management Pack 2.4.9.0.

-T

--remote-intfname-fallback=interface

Selects the least secured IPMI socket interface to use if more secure interfaces are not supported. The tool attempts the most secure interface first (orcltls). If the BMC does not support the interface, then attempt the next most secured socket interface until the specified interface. Supported socket interfaces that are compiled in are visible in the usage help output in the appropriate order. If lanplus or lan is specified, certificate checking is disabled when attempting the orcltls interface.

Note:

If the -T or -t option is not specified, then no auto-detect is enabled and only the orcltls interface is attempted including certificate checking.

This option was introduced in Oracle Hardware Management Pack 2.4.9.0.

n/a

--cert-dir=pathname

Location of trusted certificates as specified by pathname. Use this option if your client-side SSL certificate is in a different directory than the expected default system certificate directory.

This option was introduced in Oracle Hardware Management Pack 2.4.4.

n/a

--no-cert-check

Do not perform SSL certificate checking.

This option was introduced in Oracle Hardware Management Pack 2.4.4.

For example, where encryption is required for data transmitted over the network, use these command options to execute a command on a service processor over the network:

# fwupdate list controller --remote-hostname=sp_ip --remote-username=username --cert-dir=pathname

where sp_ip in this case is the Common Name for the target system's SP, username is the user name with login access rights to perform the operation, pathname is the path to the directory that contains your trusted certificate if it is not installed in the expected system certificate directory (see Obtaining SSL Certificates for TLS Access).

Once your certificate is validated and you are then prompted for the Oracle ILOM user password.

Note:

The Oracle ILOM user password required by the network connection can be piped in on stdin for scripting use.

Parent topic: fwupdate and Service Processor Access