Text only | Text with Images

Networking-Forums.com

Professional Discussions => Everything Else in the Data Center => Topic started by: icecream-guy on June 09, 2015, 11:10:28 AM

Title: OOB on the C classe cisco server
Post by: icecream-guy on June 09, 2015, 11:10:28 AM
so I have setup OOB access to the console port on a Cisco C220M3,  the other side of the connection is connected to a HWIC-16A. in a 3925, the line connections are standard.   So when I reboot my server, there are a number of function key options across the top of the screen while booting, seems that none of my function keys are working via OOB so I can't get into any. Press <F2> Setup, <F6> Boot Menu, <F7> Diagnostics, <F8> CIMC Config, <F12> Network Boot

is there a way to get the function keys working via the terminal server?  works just fine when consoled in locally.

Title: Re: OOB on the C classe cisco server
Post by: icecream-guy on June 09, 2015, 01:18:45 PM
maybe it something with my terminal program secureCRT where I can remap a key?
Title: Re: OOB on the C classe cisco server
Post by: icecream-guy on June 11, 2015, 08:32:22 AM
I'm getting bounce back from the customer,  doesn't want me to configure CIMC, "we haven't used it in three years. why do we need it now"......... under my breath,  (yeah, you haven't used it, because you haven't upgraded in three years)... :wall: :wall:
Title: Re: OOB on the C classe cisco server
Post by: deanwebb on June 11, 2015, 01:07:00 PM
A remap *should* work, but now your issue is managerial, not technical.
Title: Re: OOB on the C classe cisco server
Post by: icecream-guy on June 11, 2015, 02:22:52 PM
CIMC's lack of two factor authentication, even though AD and LDAP integration is supported, killed the project.
Title: Re: OOB on the C classe cisco server
Post by: NetworkGroover on June 11, 2015, 03:13:40 PM
Quote from: ristau5741 on June 11, 2015, 02:22:52 PM
CIMC's lack of two factor authentication, even though AD and LDAP integration is supported, killed the project.

The dreaded 2FA....
Title: Re: OOB on the C classe cisco server
Post by: wintermute000 on June 11, 2015, 07:02:00 PM
why the heck would you need two factor? Surely the OOB network should be secured (if necessary, with two factor there)? Or is this some military type spec
Title: Re: OOB on the C classe cisco server
Post by: NetworkGroover on June 11, 2015, 08:35:48 PM
Quote from: wintermute000 on June 11, 2015, 07:02:00 PM
why the heck would you need two factor? Surely the OOB network should be secured (if necessary, with two factor there)? Or is this some military type spec

Guessing DoD.
Title: Re: OOB on the C classe cisco server
Post by: icecream-guy on June 12, 2015, 07:18:49 AM
Quote from: wintermute000 on June 11, 2015, 07:02:00 PM
why the heck would you need two factor? Surely the OOB network should be secured (if necessary, with two factor there)? Or is this some military type spec

government mandate. :(

so if your server is running ACS on top of the server as the application, and if you could configure 2-factor on the CIMC to authenticate into the OOB CIMC management interface, surely you are not going to use the same ACS server as your authentication point...

Does ACS support two-factor authentication for administration of the ACS server, or must one use a local account.  Where would you point for your external authentication server?????  I suppose one would point to another HA pair of ACS servers that are a separate entity,  then on those one would configure an external authentication server that points back to the first set of ACS servers for two-factor authentication there.

Text only | Text with Images