ILOM 3.0 Sparc Servers

First let’s start with how to access ILOM:

1. if NetMgmt port configured, using ssh you can login to the ILOM

2.If you configure SerialMgmt Port, then when you connect to serial port, you will access ILOM

3. if you connect to console thorught netmgmt or serial mgmt ports and you connect Operating System. Use #. (Hash symbol with . (dot)) which will take you to the ILOM.

From ILOM to go back to the Host Operating System then start the console service ->start /SP/console

-> start /SP/console  ==>ILOM CLI prompt
Are you sure you want to start /SP/console (y/n)? y

Serial console started.  To stop, type #.

bash-3.2#   –> OS prompt
Serial console stopped.

->  ==>ILOM CLI prompt

Notes on ILOM CLI follow hierarchial Architecture

ILOM Target types:

/SP – configuring ILOM service processor (SP)

/SYS – inventory/environmental and hardware management

/HOST – monitoring and managing host operating system.

Blade Platforms:

/CMM – Blade platform this replace SP, used to configure ILOM Chassis Monitoring Module

/CH – Blade platform this replace /SYS and provides inventory, environmentals and hardware management

ILOM CLI commands:


ILOM CLI Syntax:

command [options] [target] [properties

ex.,: set /SP/services/https port=80 servicestate=enabled

User Management ILOM CLI:

Roles in CLI: Admin|Operator (a), User Management (u), Console (c), Reset and Host control (r) and Read Only (o)

1. Add a local user

create /SP/users/user1 password=password  role=a|u|c|r|o|s

2.  Delete a local user

delete /SP/users/user1

 3. Change a local user’s properties

set /SP/users/user1  role=operator

 4. Display information about all local users

show -display [targets|properties|all ] -level all /SP/users

 5. Display information aboutLDAP settings

show /SP/clients/ldap

6. Change LDAP settings

set /SP/clients/ldap binddn=proxyuser bindpw=proxyuserpassword defaultrole=a|u|c|r|o|s address=ipaddress

 Set ILOM clock to sync with NTP server

set /SP/clients/ntp/server/1 address=ntpIPAddress

To configure IP on NetMgmt port set values to the /SP/network properties

        commitpending = (Cannot show property)
        dhcp_server_ip = (none)
        ipaddress = (none)
        ipdiscovery = (none)
        ipgateway = (none)
        ipnetmask = (none)
        macaddress = xx:xxx:xx:xx:xx:xx
        managementport = /SYS/MB/SP/NETMGMT
        outofbandmacaddress = xx:xx:xx:xx:xx:xx
        pendingipaddress = (none) –>IPV4 address
        pendingipdiscovery = (none)
        pendingipgateway = (none)  –> Gateway
        pendingipnetmask = (none) –> Netmask
        pendingmanagementport = /SYS/MB/SP/NETMGMT
        sidebandmacaddress = xx:xx:xx:xx:xx:xx
        state = disabled

you can configure above values using set command

set /SP/network pendingipaddress=

set /SP/network pendingipnetmask=

set /SP/network pendingipgateway=

Configuring SNMP and email alert:

set /SP/alertmgmt/rules/1…15 type=snmtrap snmp_version=3 comunity_or_username=username destination=ipaddress level=down|critical|major|minor

set /SP/alertmgmt/rules/1…15 type=email level=down|critical|major|minor

To enable web access to ILOM, can http

set /SP/services/http port=80 secureredirect=enabled|disabled servicestate=enabled|disabled

set /SP/services/https port=xxx servicestate=enabled|disabled

HOST system commands (*warning: if your host is up and running, HOST commands can cause outage)

To start the host system ->start /SYS

To stop the host system -> stop /SYS

Force shutdown (required when host hung)->stop -f /SYS

Reset the host system  (required when host hung) ->reset /SYS

start a sessions to connect to host console -> /SP/console

stop the console session -> /SP/console

Filtering output options:

Users with admin roles -> show /SP/users -level all role==”a*”

SNMP trap alerts ->show /SP/alertmgmt -level all type==”snmptrap”

List services which are disabled -> show /SP/services -level all servicestate==disabled

List memory moduels with some part number -> show /SYS -level all type==”DIMM” fru_part_number==07014642

list all hard disks -> show /SYS -level all type==”Hard Disk”

How to backup the ILOM configuration

cd /SP/config

set passphrase=passphrase

set dump_uri=transfer_method://username:password@ipaddress_or_hostname/directorypath/filename

set dump_uri=scp://adminuser:userpswd@x.x.x.x/Backup/Lab9/SP-backup.config

How to Restore the ILOM configuration

Note: you have to login ILOM with user which has Admin,User Management, Console, Reset, Host control and Read only (a,u,c,r,o) roles.

cd /SP/config

set passphrase=passphrase

set load_uri=transfer_method://username:password@ipaddress_or_hostname/directorypath/filename

How to update ILOM Firmware

Pre requisite: Shutdown the host running on the hardware whose ILOM firmware you are upgrading

1.Login to ILOM CLI with user which has Admin role

2. ->version

3. Download the zip file packge and copy to TFTP server that is accessible from network

4.load -source <supported_protocol>://<server ip>/<path_to_firmware_image/<>

Do you want to preserve the configuration (y/n)?y

Once firmware loades it automaticall reboots to complete the firmware update

ILOM CLI is based on DMTF CLP (Distributed Management Task Force specification Server Management Command-Line Specification, Version 11.0a.8 Draft


LDOM reference

Network interface mapping on Sparc T4-1

I have sparc T4-1 with onboard quad port and two PCIe quad port network cards installed on slot 0(zero) and slot 1(one)

Slot 0(zero) PCI-E network card:

Slot 0- Port0 – mapped to nxge0

Slot 0- Port1 – mapped to nxge1

Slot 0- Port2 – mapped to nxge2

Slot 0- Port3 – mapped to nxge3

Slot 1 (one) PCI-E network card:

Slot 1- Port0 – mapped to nxge4

Slot 1- Port1 – mapped to nxge5

Slot 1- Port2 – mapped to nxge6

Slot 1- Port3 – mapped to nxge7

Onboard quad port card:

Onboard – Port0 – mapped to igb0

Onboard- Port1 – mapped to igb1

Onboard- Port2 – mapped to igb2

Onboard- Port3 – mapped to igb3

Click on igb  and nxge for more details

igb network card:  Intel 82575 1Gb PCI Express NIC Driver

nxge:  Sun 10/1 Gigabit Ethernet network driver


Reset Root password in Solaris 10

{0} ok boot -F failsafe
Boot device: /pci@400/pci@1/pci@0/pci@4/scsi@0/disk@wx000cx00xxxxxfdx,0:a  File and args: -F failsafe
SunOS Release 5.10 Version Generic_147440-01 64-bit
Copyright (c) 1983, 2011, Oracle and/or its affiliates. All rights reserved.
Configuring devices.
Searching for installed OS instances…
ROOT/zfsroot was found on root.
Do you wish to have it mounted read-write on /a? [y,n,?] y
mounting root on /a

An out of sync boot archive was detected on root.
The boot archive is a cache of files used during boot and
should be kept in sync to ensure proper system operation.

Do you wish to automatically update this boot archive? [y,n,?] y
Updating boot archive on root.
The boot archive on root was updated successfully.

# cd /a
# cp etc/shadow etc/shadow.21dec2012
# vi etc/shadow
# init 6

All about OBP in Sparc Servers

Frequently used commands in OBP:

#1 ok setenv auto-boot? false

to verify use “ok printenv auto-boot?

When you need trouble shoot solaris server at OK prompt, you have to disable the auto boot feature

#2 ok banner
Sun Ultra 5/10 UPA/PCI (UltraSPARC-IIi 333MHz), No Keyboard
OpenBoot 3.15, 128 MB memory installed, Serial #number.
Ethernet address number, Host ID: number.

You can find OBP version, Server model, Serial number, Host ID and Ether net mac address from Banner command

Note: Mac address displayed is Port 0 (zero) of on board network card. For Example I have quad port onboard NIC card and two Quad Port PCI-e Cards. Out of total 12 mac address, one displayed here is from onboard zero port. This clarity will help whe you are troubleshooting “ok boot net – install” trouble shoot errors.

#3 ok setenv local-mac-address? true

When you configure IPMP you have to set local-mac-address? to True, then only each NIC card use it’s Mac address which is very important for IPMP.

#4 set device alias and enable nvram

ok nvalias <alias> <device-path>

ok nvunalias <alias> <device-path>


{0} ok nvalias bootdisk /pci@400/pci@1/pci@0/pci@4/scsi@0/disk@w5xxxc500xxxxxxfd5,0:a

{0} ok setenv use-nvramrc? true

{0} ok setenv boot-device bootdisk

These two are required to set alis names to the disk and network devices. As we have many disks in system, this will help to set alias as bootdisk and mirrordisk to identify the boot disk and mirror disk  from OK promt among many disk devices.

Note: After using nvunalias command if you refer devalias command it will still show the alias details, when you run reset-all, then it will not show them.

You can do this from OS using eeprom

eeprom nvramrc=”devalias bootdisk /pci@400/pci@1/pci@0/pci@4/scsi@0/disk@wx000cx00xxxxxfd5,0:a devalias mirrordisk /pci@400/pci@2/pci@0/pci@4/scsi@0/disk@wx000cx00xxxxxxxx,0:a

eeprom use-nvramrc?=true

#5 Verify network interface connectivity and check MAC address of the NIC ports

{2} ok watch-net-all


/pci@1f,700000/network@1: link down


/pci@1d,700000/pci@2/pci@4/network@2: 100 Mbps half duplex link up

Watch ethernet packets

‘.’ is a good packet and ‘X’ is a bad packet

Press any key to stop

using network device alias

ok> cd /net1

ok> .properties

Using Network device physical path

or cd /pci@1d,700000/pci@2/pci@4/network@2

ok> .properties

 #6 ok show-devs

will list all the devices

#7 ok setenv diag-switch? true

ok setenv diag-level max (available diag levels are: net/max/min/menus)

Other test options available at OK prompt are
probe-scsi (use show-devs for PCI devices)

probe-scsi-all (use show-devs for PCI devices)
test net (tests primary network controller)

test-all (tests all devices)

watch-net and watch-net-all (for all interface)

#8 boot options

ok boot  (boots with default device mentioned in “boot-device”)

ok boot -s (boot to single user mode for maintenance)

ok boot net – install (used to boot through jumpstart boot servers for building OS through jumpstart)

ok boot net:speed=100,duplex=full,dhcp – install (Jumpstart boot through dhcp with preferred network settings instead of rarp , this removes the limitation of both boot servers and client in the same LAN)

ok boot -a (interactive boot, used to supply alternate boot files like /etc/system if default one is corrupted)

ok boot -r (reconfigure reboot, new device added to the sytem, this will create device files in OS)

ok boot disk2 kernel/sparcv9/unix -asv ( Boot single user, interactive, 64-bit and from disk device disk2. I never used this)

ok boot -F failsafe (I beleive it’s only for solaris 10 and above with SMF implementation this maintenance mode option available and saved Sys Admins from searching for boot CD or troubleshooting jumpstart to boot through net to go to maintenance mode for resetting root password or doing fsck on boot file systems)

boot -v or boot -m verbose (to see more messages on boot)

ok boot -m milestone=none (This command instructs the svc.startd daemon to temporarily disable all services and start sulogin on the console)

Reference web links about OBP: