KVM direct access allows the administrators that manage the blade and rack servers in your Cisco UCS Manager domain access the KVM for their servers directly using a web browser. This feature allows you to restrict access to the IP addresses of the fabric interconnects, while still allowing your administrators to access the KVM console for the servers they manage.
Only out-of-band IPv4 management interface addresses are supported for KVM direct access.
KVM direct access also supports custom applications from which users can navigate to a server management IP address without using the Cisco UCS Manager GUI interface or the KVM Launch Manager.
KVM direct access is supported by providing a management IP address assigned directly to the server or associated to the server with a service profile, to the server's administrator. The server administrator enters the IP address in a browser, and navigates to the Cisco UCS KVM Direct log in page. In the log in page, the user enters their user name and password, and chooses an authentication domain. When they launch Cisco UCS KVM Direct, the console for the server is displayed, the same way it would if they had accessed the server from the Cisco UCS Manager GUI.
KVM direct access employs self-signed certificates for authentication. When users access a server management IP address or service profile IP address for the first time, a dialog box will be displayed to alert them that they need to add a certificate exception to their browser's cache.
The default communications service that supports Cisco UCS KVM direct access is HTTPS. This cannot be disabled. When a user enters a management IP in a browser using HTTP as part of the address, they will be automatically redirected to the HTTPS service.
To accommodate KVM direct access, be sure that the CIMC Web Service communication service in Cisco UCS Manager is enabled.
The CIMC Web Service is enabled by default in Cisco UCS Manager.