Dell Emc Openmanage Ansible Modules: Version 1.0.1 User'S Guide
Dell Emc Openmanage Ansible Modules: Version 1.0.1 User'S Guide
NOTE: A NOTE indicates important information that helps you make better use of your product.
CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem.
WARNING: A WARNING indicates a potential for property damage, personal injury, or death.
Version 1.0.1
All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries. Other trademarks may be trademarks of their respective
owners.
2018 - 04
Rev. A01
Contents
1 Overview........................................................................................................................................................5
Key Features....................................................................................................................................................................... 5
2 Getting Started..............................................................................................................................................6
How OpenManage Ansible Modules works.................................................................................................................... 6
Running your first Playbook.............................................................................................................................................. 6
3 Updating Firmware.........................................................................................................................................7
Viewing Firmware Inventory..............................................................................................................................................7
Installing Firmware............................................................................................................................................................. 8
6 Server Inventory.......................................................................................................................................... 32
Viewing the System Inventory........................................................................................................................................32
8 Troubleshooting........................................................................................................................................... 40
Contents 3
9 Accessing documents from the Dell EMC support site................................................................................. 41
4 Contents
1
Overview
Dell EMC OpenManage Ansible Modules allows Data Center and IT administrators to use RedHat Ansible to automate and orchestrate the
configuration, deployment, and update of Dell EMC PowerEdge Servers (12th generation of PowerEdge servers and later) by leveraging
the management automation capabilities in-built into the integrated Dell Remote Access Controller (iDRAC).
This user guide provides information about using Dell EMC OpenManage Ansible Modules version 1.0.1 and its different use cases.
Key Features
The key features in OpenManage Ansible Modules version 1.0.1 are:
• Export a server configuration profile (SCP) of Basic Input Output System (BIOS), Redundant Array of Independent Disks (RAID),
Network Interface Controller (NIC), and so on, to a local file path or a network share.
• Import an SCP from a local file path or a network share.
• Support for configuration of BIOS, integrated Dell Remote Access Controller (iDRAC), NIC, and RAID.
• Support for firmware update.
• Support for viewing firmware inventory details.
• Support for Windows, Linux, and ESXi operating system deployments.
• Support for configuring power controls, resetting iDRAC, viewing LC job status, deleting LC job, deleting LC job queue, exporting LC
logs, and configuring system lockdown mode.
• Retrieve the system inventory details.
Overview 5
2
Getting Started
How OpenManage Ansible Modules works
OpenManage Ansible modules uses the Server Configuration Profile (SCP) for most of the configuration management, deployment, and
update of PowerEdge Servers. An SCP contains all BIOS, iDRAC, LC, Network and Storage settings of a PowerEdge server. You can apply
them to multiple servers, enabling rapid, reliable, and reproducible configuration.
You can perform an SCP operation using any of the following methods:
Mount the remote network share (CIFS or NFS) locally on the Ansible control machine where you want to run the playbook or modules.
Local mount point should have read-write privileges in order for OpenManage Ansible modules to write an SCP file to remote network share
that will be imported by iDRAC.
NOTE: Refer to Linux man pages for mounting an NFS or CIFS network share on Ansible control machine.
With OpenManage Ansible Modules, you can construct a playbook with a set of modules resulting in a automation workflow for
configuration, deployments and updates of PowerEdge Servers.
6 Getting Started
3
Updating Firmware
You can maintain up-to-date firmware versions of Dell EMC server components to get better efficiency, security protection and enhanced
features. Create update sources to do the firmware update.
Topics:
Synopsis
You can view the firmware inventory of a server using this module. This module displays components of a server and the corresponding
firmware versions.
Options
Table 1. dellemc_get_firmware_inventory
• Components of a
server and their
firmware versions. https://github.com/dell/Dell-EMC-Ansible-
Firmware Inventory Success String
• List of dictionaries, Modules-for-iDRAC
one dictionary per
firmware.
Examples
-name: Get Installed Firmware Inventory
dellemc_get_firmware_inventory:
Updating Firmware 7
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
Installing Firmware
Command: dellemc_install_firmware
Synopsis
You can install the firmware from a repository on a network share (CIFS, NFS) to keep the system updated.
• Make sure the network share contains a valid repository of Dell Update Packages (DUPs) and a catalog file that consists the latest
DUPs.
• All applicable updates contained in the repository is applied to the system.
Options
Table 3. dellemc_install_firmware
8 Updating Firmware
Network share user
share_pwd Yes NA NA
password
Example
-name: Update firmware from a repository on a Network Share
dellemc_install_firmware:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_user: "xxxx"
share_pwd: "xxxxxxxx"
share_mnt: "/mnt/share"
reboot: "True"
job_wait: "True"
Updating Firmware 9
4
Configuring PowerEdge Servers
Integrated Dell Remote Access Controller (iDRAC) with LC provide the ability to generate a human-readable representation of server
configuration using Server Configuration Profile (SCP) feature. This file contains BIOS, iDRAC, LC, network, and RAID configuration
settings. You can modify this file as per your need and apply to other servers.
The SCP feature is used in the Ansible module to automate the configuration activity of PowerEdge servers and their components.
NOTE: OpenManage Ansible Modules version 1.0.1 supports iDRAC firmware version 2.50.50.50 and later.
Topics:
• Viewing LC Status
• Exporting Server Configuration Profile
• Importing Server Configuration Profile
• Configuring iDRAC
• Configuring BIOS
• Configuring RAID
• Configuring Collect System Inventory on Restart
• Configuring Syslog
Viewing LC Status
Module: dellemc_get_lcstatus
Synopsis
You can view the LC status on a PowerEdge server using this module. You need to check the readiness of the LC before carrying out any
configuration or update. This module returns the LC readiness as True or False and its status.
Options
Table 5. dellemc_get_lcstatus
Example
Synopsis
You can export Server Configuration Profile (SCP) with various components such as iDRAC, BIOS, NIC, RAID together or with one of
these components. You can export SCP from iDRAC to a local or a network shared location. For shared location, make sure that a network
share path is established.
Options
Table 7. dellemc_export_server_config_profile
• JSON
export_format No XML The output file format
• XML
• Default
The type of server configuration profile
export_use No Default • Clone
(SCP) to be exported
• Replace
Example
Synopsis
You can import the SCP which was previously exported for that same server, or group of servers. Importing SCP is useful in restoring the
configuration of the server to the state stored in the profile.
You can import SCP from a local or a remote share to iDRAC. For a remote share, make sure that a network share path and the file name
are available. If the import file Import.xml specifies some configuration changes that require a server restart (such as in iDRAC, BIOS, NIC,
or RAID configuration), you can use the shutdown_type parameter to specify whether a Graceful or a Forced shutdown of the server is
required.
Options
Table 9. dellemc_import_server_config_profile
Example
-name: Import Server Configuration Profile
dellemc_import_server_config_profile
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
Configuring iDRAC
Following are the modules responsible for configuring specific iDRAC attributes.
Options
• create
This value decides whether to create or
action No create • delete
delete or modify iDRAC user
• modify
• NoAccess
• Readonly
privilege_users No NA Privilege user access is configurable
• Operator
• Administrator
• Enabled
enable_users No NA Enabling or Disabling the new iDRAC user
• Disabled
• Enabled
solenable_users No NA Enabling or Disabling SOL for iDRAC user
• Disabled
• T_None
authenticationprotocol_u Configuring authentication protocol for
No NA • SHA
sers iDRAC user
• MD5
• T_None
Configuring privacy protocol for iDRAC
privacyprotocol_users No NA • DES
user
• AES
Example
-name: Configure the iDRAC users attributes
dellemc_configure_idrac_users:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_pwd: "xxxxxxxx"
share_user: "xxxx"
share_mnt: "/mnt/share"
action: "create"
user_name: "username"
user_password: "xxxxxxxx"
privilege_users: "Administrator"
ipmilanprivilege_users: "Administrator"
ipmiserialprivilege_users: "Administrator"
enable_users: "Enabled"
solenable_users: "Enabled"
Options
Example
-name: Configure the iDRAC timezone attributes
dellemc_configure_idrac_timezone:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
Options
Example
-name: Configure the iDRAC eventing attributes
dellemc_configure_idrac_eventing:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_pwd: "xxxxxxxx"
share_user: "xxxx"
share_mnt: "/mnt/share"
destination_number: "xxxx"
destination: "xxxx"
snmp_v3_username: "xxxx"
snmp_trap_state: "xxxx"
email_alert_state: "xxxx"
alert_number: "xxxx"
address: "xxxxxxxxxx"
custom_message: "xxxx"
enable_alerts: "xxxxxx"
authentication: "xxxxxx"
smtp_ip_address: "x.x.x.x"
smtp_port: "xxxx"
username: "xxxx"
password: "xxxxxxxx"
Options
• Auto_Negotiate
• T_128_Bit_or_higher Secure Socket Layer encryption for
ssl_encryption No NA
• T_168_Bit_or_higher webserver
• T_256_Bit_or_higher
• TLS_1_0_and_Higher
tls_protocol No NA • TLS_1_1_and_Higher Transport Layer Security for webserver
• TLS_1_2_Only
• All
snmp_protocol No NA Type of the SNMP protocol
• SNMPv3
Example
-name: Configure the iDRAC services attributes
dellemc_configure_idrac_services:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_pwd: "xxxxxxxx"
share_user: "xxxx"
share_mnt: "/mnt/share"
enable_web_server: "Enabled"
http_port: "80"
https_port: "443"
ssl_encryption: "Auto_Negotiate"
tls_protocol: "TLS_1_2_Only"
timeout: "1800"
snmp_enable: "Enabled"
snmp_protocol: "SNMPv3"
community_name: "test"
alert_port: "None"
discovery_port: "162"
trap_format: "None"
Options
• Enabled
register_idrac_on_dns No NA Registering Domain Name System for iDRAC
• Disabled
• Enabled
auto_config No NA Automatically creates the records for DNS
• Disabled
• Dedicated
• LOM1
Selecting Network Interface Controller types
nic_selection No NA • LOM2
for iDRAC
• LOM3
• LOM4
• ALL
• LOM1
• LOM2 Failover Network Interface Controller types for
failover_network No NA
• LOM3 iDRAC
• LOM4
• T_None
• T_10
Network speed for Network Interface
network_speed No NA • T_100
Controller types for iDRAC
• T_1000
Example
-name: Configure the iDRAC network attributes
dellemc_configure_idrac_network:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_pwd: "xxxxxxxx"
share_user: "xxxx"
share_mnt: "/mnt/share"
register_idrac_on_dns: "Enabled'
dns_idrac_name: "None"
auto_config: "None"
static_dns: "None"
setup_idrac_nic_vlan: "Enabled"
vlan_id: "0"
Configuring BIOS
Module: dellemc_configure_bios
Synopsis
This module hosts the BIOS configuration related tasks. The tasks are:
• Setup_boot_mode: Configures the boot mode to BIOS or Unified Extensible Firmware Interface (UEFI).
• Setup_onetime_boot_mode: Configures the one time boot mode setting such as Disabled, OneTimeBootSeq, OneTimeHddSeq,
OneTimeUefiBootSeq.
• Setup_NVMe_Mode: Configures the NVMe mode.
• Setup_Secure_boot_Mode: Configures how the BIOS uses the Secure Boot Policy Objects.
Options
NOTE: This
• NonRaid attribute is
nvme_mode No NA
• Raid specific to the
14th Generation of
PowerEdge
servers.
• Disabled
• OneTimeBootSeq
• OneTimeCustomBootSeqStr
Configures the one time
onetime_boot_mode No NA • OneTimeCustomHddSeqStr
boot mode setting
• OneTimeCustomUefiBootSeqStr
• OneTimeHddSeq
• OneTimeUefiBootSeq
Configuring RAID
Module: dellemc_configure_raid
Synopsis
This module hosts the RAID configuration related attributes.
Options
• RAID 0
• RAID 1
• RAID 5
raid_level No RAID 0 • RAID 6 Provide the required RAID level
• RAID 10
• RAID 50
• RAID 60
• Default
disk_cache_policy No Default • Enabled Disk Cache Policy
• Disabled
• WriteThrough
write_cache_policy No WriteThrough • WriteBack Write cache policy
• WriteBackForce
• NoReadAhead
read_cache_policy No NoReadAhead • ReadAhead Read cache policy
• Adaptive
• HDD
media_type No HDD Media type
• SSD
• SAS
bus_protocol No SATA Bus protocol
• SATA
Example
-name: Configure the RAID attributes
dellemc_configure_raid:
idrac_ip: "xx.xx.xx.xx"
Options
Example
-name: Set up iDRAC LC Attributes
dellemc_idrac_lc_attributes:
Configuring Syslog
Module: dellemc_setup_idrac_syslog
Synopsis
This module enables or disables syslog parameters for iDRAC.
Options
Example
-name: Configure iDRAC Syslog Parameters
dellemc_setup_idrac_syslog:
To automate the process of operating system deployment in an unattended manner using Ansible, the iDRAC's capability is utilized to
transfer the customized ISO to iDRAC for boot.
• Operating System image is injected with required Dell drivers, and unattended response file.
• iDRAC is enabled, configured, and reachable.
• RAID is configured.
This module facilitates the operating system deployment. You can run this module to boot the target system to a bootable ISO image on a
CIFS or NFS share. This module looks for the customized ISO in the configured share location and transfers the image to iDRAC to load it.
On the system reboot, the OS deployment begins.
Options
Example
-name: Boot to Network ISO
dellemc_boot_to_network_iso:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_user: "xxxx"
share_pwd: "xxxxxxxx"
iso_image: "uninterrupted_os_installation_image.iso"
Synopsis
System inventory provides basic as well as component level detailed inventory information. You can run this module when you want to
verify the asset, configured state, inventory, and health-related information for the system and its component.
Options
Example
-name: Get System Inventory
dellemc_get_system_inventory:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
32 Server Inventory
7
Server Administration Tasks
This section describes the tasks that you can run using OpenManage Ansible Modules version 1.0.1
NOTE: OpenManage Ansible Modules version 1.0.1 supports iDRAC firmware version 2.50.50.50 and later.
Topics:
Synopsis
This module configures the power control options on a PowerEdge server. You can run this module:
Options
• On
• ForceOff
change_power Yes NA Desired power state
• GracefulRestart
• GracefulShutdown
Example
-name: Change Power State
dellemc_change_power_state:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
change_power: "xxxxxxx"
You can reset the iDRAC to its default factory settings using this module. This module deletes your current iDRAC configuration and resets
it to the default settings.
Options
Example
-name: Reset iDRAC
dellemc_idrac_reset:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
idrac_port: "xxx"
Synopsis
You can view the iDRAC or LC job status using this module. To view information about a job status, a job id is required. Once a job is
initiated, the system stages the job request information and sends a job id back to the system. You can query the progress and status of
the job by using the job id.
Options
Example
-name: Get LC Job Status
dellemc_get_lc_job_status
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
job_id: "JID_1234567890"
Exporting LC Logs
Module: dellemc_export_lc_logs
Synopsis
LC logs provide records of past activities on a managed system. These log files are useful for the server administrators since they provide
detailed information about recommended actions and some other technical information that is useful for troubleshooting purposes.
The various types of information available in LC logs are alerts-related, configuration changes on the system hardware components,
firmware changes due to an upgrade or downgrade, replaced parts, temperature warnings, detailed timestamps of when the activity has
started, severity of the activity, and so on.
Options
Example
-name: Export Lifecycle Controller Logs
dellemc_export_lc_logs:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
idrac_port: "xxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_user: "xxxx"
share_pwd: "xxxxxxxx"
job_wait: "True"
Deleting LC Job
Module: dellemc_delete_lc_job
Synopsis
This module deletes an LC job for a given valid JOB ID from the job queue.
Options
Examples
-name: Delete LC Job
dellemc_delete_lc_job:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "root"
idrac_pwd: "xxxxx"
idrac_port: "123"
job_id: "JID_XXXXXXXX"
Synopsis
You can delete all the jobs in the LC job queue using this module. All the jobs in the job queue are terminated when you delete a job queue.
Options
Example
-name: Delete LC Job Queue
dellemc_delete_lc_job_queue:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxx"
idrac_port: "xxx"
This module is responsible for enabling or disabling the lockdown mode of a system. When System Lockdown Mode is enabled, the
system’s configuration is locked and system cannot be configured or updated until the lockdown mode is disabled.
Options
Whether to Enable or
lockdown_mode Yes NA • Enabled Disable system lockdown
mode
Example
-name: Configure System Lockdown Mode
dellemc_system_lockdown_mode:
idrac_ip: "xx.xx.xx.xx"
idrac_user: "xxxx"
idrac_pwd: "xxxxxxxx"
share_name: "\\\\xx.xx.xx.xx\\share"
share_user: "xxxx"
share_pwd: "xxxxxxxx"
share_mnt: "/mnt/share"
lockdown_mode: "xxxxxxx"
— To ensure that the new timezone values are applied to the servers, export an SCP.
— Upgrade to a latest Dell EMC recommended firmware version (iDRAC firmware version 3.15.15.15 and later) before performing the
configuration changes.
• While creating new iDRAC users, the provided values are not getting applied completely on 14G servers.
— In case the user is not created with all the required user settings, change the user setting with action option modify in the
dellemc_configure_idrac_users module.
• Firmware install is failing on server with iDRAC firmware 3.00.00.00 and with Linux NFS share.
— To perform firmware update, use DUPs from a share other than Linux NFS share.
40 Troubleshooting
9
Accessing documents from the Dell EMC support
site
You can access the required documents using the following links:
– Type the name and version of the document in the search box.