Reset idrac password from the Operating System

Went to login to one of the Dell iDRACs today and our usual password did not work. So how to reset it remotely if you have root access to the server OS?

Use ipmitool or racadm, but racadm has to be licensed and setup from within iDRAC
So, ipmitool.

Install of ipmitool is subject for another post.

First find out what channels there are:

[root@dc1-prd-xensrv01 ~]# ipmitool channel
Channel Commands: authcap
getaccess [user id]
setaccess [callin=on|off] [ipmi=on|off] [link=on|off] [privilege=level]
info [channel number]
getciphers [channel]

setkg hex|plain [channel]

Possible privilege levels are:
1 Callback level
2 User level
3 Operator level
4 Administrator level
5 OEM Proprietary level
15 No access

List users:

[root@dc1-prd-xensrv01 ~]# ipmitool user list 2
ID Name Enabled Callin Link Auth IPMI Msg Channel Priv Limit
2 root true true true true ADMINISTRATOR

Reset the password for the root iDRAC user, using the userid and not the name:

ipmitool user set password 2 myshinynewpassword

And that’s it. Password reset.

Changing terminal text color

Our ecommerce platform, Hybris, really enjoys colorizing the logs. So whenever I read the logs, it changes the text color of my terminal. Contrary to popular belief, red on black is not very readable.

This command will set the text back to white (on black background):

tput setaf 7

More info can be found my typing ‘man terminfo’ and searching for ‘Color Handling’

Color #define Value RGB

black COLOR_BLACK 0 0, 0, 0
red COLOR_RED 1 max,0,0
green COLOR_GREEN 2 0,max,0
yellow COLOR_YELLOW 3 max,max,0
blue COLOR_BLUE 4 0,0,max
magenta COLOR_MAGENTA 5 max,0,max
cyan COLOR_CYAN 6 0,max,max
white COLOR_WHITE 7 max,max,max

Plus "+" in URL can cause redirection loop

The fix is to add nocanon to the proxy config.
For example:

ProxyPass / balancer://frontendcluster/ stickysession=ROUTEID nocanon
ProxyPassReverse / nocanon
ProxyPassReverse / nocanon

Normally, mod_proxy will canonicalise ProxyPassed URLs. But this may be incompatible with some backends, particularly those that make use of PATH_INFO. The optional nocanon keyword suppresses this, and passes the URL path “raw” to the backend. Note that may affect the security of your backend, as it removes the normal limited protection against URL-based attacks provided by the proxy.