Rack Server Policies
Rack server policies are a primary mechanism for defining configuration of various attributes on rack servers in Cisco UCS Director. These policies help ensure consistency and repeatability of configurations across rack servers. Defining and using a comprehensive set of policies enables greater consistency, control, predictability, and automation as similar configurations are applied across many rack servers.
The following workflow indicates how you can work with server policies in Cisco UCS Director:
-
Create a server policy such as BIOS policy or an NTP policy. You can create a policy in one of the following methods:
-
Create a new policy. For more information about the various policy types and creating a new policy, see Creating Server Policies.
-
Create a policy from the configuration existing on a server. For more information about creating a policy from the configuration existing on a server, see Creating a Policy from an Existing Configuration.
-
-
Apply the policy on a server. For more information about applying a policy, see Applying a Policy.
-
Perform any of the following optional tasks on the policy:
-
View the list of servers that are mapped to a specific policy. For more information on performing these tasks, see Common Tasks for Server Policies.
-
Edit a policy to modify values.
-
Delete a policy when it is no longer needed
-
Clone a policy to use similar values
-
Group multiple policies into a server profile. For more information about applying profiles, see Applying a Policy.
-
Creating Server Policies
Perform this procedure when you want to create a new server policy.
Procedure
Step 1 |
Choose . |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Step 3 |
Click Add. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Step 4 |
In the Add screen, choose a policy type from the drop-down list. For more information about creating a policy based on the policy type, select the policy type listed in the table below. The various properties required to configure these policies are available in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide. The respective sections in this guide are listed against each policy type.
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Step 5 |
Click Submit. |
What to do next
Apply the policy to a server. For more information about applying a policy, see Applying a Policy.
Creating a Policy from an Existing Configuration
You can choose to create a policy using a server that you have previously configured. By re-using the existing configuration on a server, you can reduce the time and effort involved in creating similar configurations.
Note |
When you create a policy from current configuration of a server, the password fields are not retrieved from the server. |
Perform the following procedure when you want to create a policy from current configuration of a server.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add (+).
- In the Add screen, choose a policy from the drop-down list and click Submit.
- In the General pane, complete the required fields, including the following:
- Click Next.
- In the Server Details pane, you can use the server details in the following two methods:
- Click Next.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add (+). |
||||||||||
Step 4 |
In the Add screen, choose a policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Server Details pane, you can use the server details in the following two methods: |
||||||||||
Step 8 |
Click Next. You will return to the Main pane for creating the policy. Continue with creating a policy using the prompts in the wizard. The fields for each policy vary depending on the policy you are creating in the system. |
||||||||||
Step 9 |
Click Submit. |
Common Tasks for Server Policies
Perform the following procedure when you want to edit, delete, clone, or view server mapping details of an existing policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Expand a policy folder and select a policy.
- To apply a policy to a server or server group, click Apply. For more information about applying a profile, see Applying a Policy.
- (Optional) Click View Apply Status to view the details of a selected policy such as the status of the policy you have applied, the server details to which you have applied the policy and so on. If the policy is not successfully applied for example, an error message is displayed in the Status Message column.
- (Optional) To modify a policy, click Properties and modify the required properties.
- (Optional) To clone a policy, click Clone to copy the details of a selected policy to a new policy.
- (Optional) To delete a policy, click Delete. In the Delete Policy screen, expand Select Policy(s) and check the policies you want to delete, and click Submit.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
Step 2 |
On the Rack Server page, click Hardware Policies. |
Step 3 |
Expand a policy folder and select a policy. |
Step 4 |
To apply a policy to a server or server group, click Apply. For more information about applying a profile, see Applying a Policy. |
Step 5 |
(Optional) Click View Apply Status to view the details of a selected policy such as the status of the policy you have applied, the server details to which you have applied the policy and so on. If the policy is not successfully applied for example, an error message is displayed in the Status Message column. |
Step 6 |
(Optional) To modify a policy, click Properties and modify the required properties. When you modify a policy name, ensure that you do not specify a name which already exists. |
Step 7 |
(Optional) To clone a policy, click Clone to copy the details of a selected policy to a new policy. |
Step 8 |
(Optional) To delete a policy, click Delete. In the Delete Policy screen, expand Select Policy(s) and check the policies you want to delete, and click Submit. You can delete one or more selected policies even if you have associated the policy with a server. If you try to delete a policy which is associated to a profile, an error occurs. |
Step 9 |
Click Submit. |
Creating a BIOS Policy
A BIOS policy automates the configuration of BIOS settings on servers. You can create one or more BIOS policies which contain a specific grouping of BIOS settings that match the needs of a server or a set of servers. If you do not specify a BIOS policy for a server, the BIOS settings will remain as they are, either a default set of values for a brand new bare metal server or a set of values which were configured using Cisco IMC. If a BIOS policy is specified, the values specified in the policy replace any previously configured values on the server.
For details about configuring the various BIOS properties, see section Configuring BIOS Settings in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a BIOS policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose BIOS Policy from the drop-down list and click Submit.
- In the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, select values for the main BIOS properties such as CDN Control, POST Error Pause, and TPM Support drop-down lists.
- Click Next.
- In the Advanced pane, choose the BIOS property values from the drop-down lists and click Next.
- In the Boot Options pane, choose the appropriate setting for the drop-down lists.
- In the Server Management pane, choose the server property values from the drop-down lists.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||
Step 3 |
Click Add. |
||||||||||||
Step 4 |
In the Add screen, choose BIOS Policy from the drop-down list and click Submit. |
||||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||||
Step 6 |
Click Next. |
||||||||||||
Step 7 |
In the Main pane, select values for the main BIOS properties such as CDN Control, POST Error Pause, and TPM Support drop-down lists. |
||||||||||||
Step 8 |
Click Next. |
||||||||||||
Step 9 |
In the Advanced pane, choose the BIOS property values from the drop-down lists and click Next. |
||||||||||||
Step 10 |
In the Boot Options pane, choose the appropriate setting for the drop-down lists. The Power ON Password Support drop-down list allows you to enable or disable power on password support. You can also choose the default platform setting. Enabling this option prevents you from making any changes to the server, including configuration changes and entering the BIOS setup. Prior to enabling this option, ensure that a BIOS password is set in the BIOS Configuration screen using the Cisco IMC user interface. |
||||||||||||
Step 11 |
In the Server Management pane, choose the server property values from the drop-down lists. |
||||||||||||
Step 12 |
Click Submit. |
Creating a Disk Group Policy
Using a Disk Group policy, you can select the physical disks used for virtual drives and also configure various attributes associated with a virtual drive.
A disk group policy defines how a disk group is created and configured. The policy specifies the RAID level to be used for the virtual drive. You can use a disk group policy to manage multiple disk groups. A single Disk Group policy can be associated with multiple virtual drives. If so, the virtual drives share the same Virtual Drive group space. Disk Group policies associated with different virtual drives in a RAID policy do not have any physical disk repeated across different Disk Group policies. For more information about RAID policy, see Creating a RAID Policy.
For details about configuring the various disk group properties, see section Managing Storage Adapters in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a Disk Group policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Disk Group Policy from the drop-down list and click Submit.
- In the Create Disk Group Policy screen, enter a name in the Policy Name field and click Next.
- In the Virtual Drive Configuration pane, choose the RAID level and click Next.
- In the Local Disk Configuration pane, click + to add an entry to reference a local disk configuration.
- In the Add Entry to Local Disk Configuration Reference pane, complete the required fields, including the following:
- Click Submit.
- In the Local Disk Configuration pane, select a local disk from the table and click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||
Step 3 |
Click Add. |
||||||
Step 4 |
In the Add screen, choose Disk Group Policy from the drop-down list and click Submit. |
||||||
Step 5 |
In the Create Disk Group Policy screen, enter a name in the Policy Name field and click Next. |
||||||
Step 6 |
In the Virtual Drive Configuration pane, choose the RAID level and click Next. |
||||||
Step 7 |
In the Local Disk Configuration pane, click + to add an entry to reference a local disk configuration. |
||||||
Step 8 |
In the Add Entry to Local Disk Configuration Reference pane, complete the required fields, including the following:
|
||||||
Step 9 |
Click Submit. |
||||||
Step 10 |
In the Local Disk Configuration pane, select a local disk from the table and click Submit.
|
FlexFlash Policy
A FlexFlash policy allows you to configure and enable the SD card.
For details about configuring the various properties, see section Managing the Flexible Flash Controller in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Note |
The minimum Cisco Integrated Management Controller firmware version for FlexFlash support is 2.0(2c). You cannot create a FlexFlash policy for Cisco UCS S3260 rack servers. |
Perform the following procedure to create a FlexFlash policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose FlexFlash Policy from the drop-down list and click Submit.
- Enter a name in the Policy Name field and click Next.
- In the Configure Cards pane, complete the required fields, including the following:
- If you selected Not Applicable as the firmware mode, complete the required fields, including the following:
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||||||||||||||||||||||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||||||||||||||||||||||||||||||
Step 3 |
Click Add. |
||||||||||||||||||||||||||||||||||||||||
Step 4 |
In the Add screen, choose FlexFlash Policy from the drop-down list and click Submit. |
||||||||||||||||||||||||||||||||||||||||
Step 5 |
Enter a name in the Policy Name field and click Next. You can also check the Create policy from current configuration of the server check box and click Next. This takes you to the Server Details pane. For information on performing tasks in this dialog box, refer Creating a Policy from an Existing Configuration. |
||||||||||||||||||||||||||||||||||||||||
Step 6 |
In the Configure Cards pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||||||||||||||||
Step 7 |
If you selected Not Applicable as the firmware mode, complete the required fields, including the following:
|
||||||||||||||||||||||||||||||||||||||||
Step 8 |
Click Submit. You can also select an existing FlexFlash policy from the Hardware Policies table and delete, edit, clone, apply or view the apply status by selecting the respective options in the user interface.
|
Creating an IPMI Over LAN Policy
Configure an IPMI over LAN policy when you want to manage Cisco IMC with IPMI messages.
For details about configuring the various properties, see section Configuring IPMI in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create an IPMI Over LAN policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose IPMI Over LAN Policy from the drop-down list and click Submit.
- In the Create IPMI Over LAN Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main page, complete the required fields, including the following:
- Click Next.
- In the Confirm page, click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose IPMI Over LAN Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create IPMI Over LAN Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main page, complete the required fields, including the following:
|
||||||||||
Step 8 |
Click Next. |
||||||||||
Step 9 |
In the Confirm page, click Submit. |
Creating an LDAP Policy
Cisco UCS Director supports the LDAP configuration settings on the servers using an LDAP policy. You can create one or more LDAP policies which contain a specific grouping of LDAP settings that match the needs of a server or a set of servers.
For details about configuring the various LDAP properties, see section Configuring LDAP Server in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a LDAP policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose LDAP Policy from the drop-down list and click Submit.
- In the Create LDAP Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, complete the required fields, including the following:
- Click Next.
- In the Configure LDAP Servers pane, complete the required fields, including the following:
- Click Next.
- In the Group Authorization pane, fill in the group authorization details and click + to add an LDAP group entry to the table.
- In the Add Entry to LDAP Groups screen, fill in the group details.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||||||||||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||||||||||||||||||
Step 3 |
Click Add. |
||||||||||||||||||||||||||||
Step 4 |
In the Add screen, choose LDAP Policy from the drop-down list and click Submit. |
||||||||||||||||||||||||||||
Step 5 |
In the Create LDAP Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||||
Step 6 |
Click Next. |
||||||||||||||||||||||||||||
Step 7 |
In the Main pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||||
Step 8 |
Click Next. |
||||||||||||||||||||||||||||
Step 9 |
In the Configure LDAP Servers pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||||
Step 10 |
Click Next. |
||||||||||||||||||||||||||||
Step 11 |
In the Group Authorization pane, fill in the group authorization details and click + to add an LDAP group entry to the table. |
||||||||||||||||||||||||||||
Step 12 |
In the Add Entry to LDAP Groups screen, fill in the group details. |
||||||||||||||||||||||||||||
Step 13 |
Click Submit.
|
Creating a Legacy Boot Order Policy
A Legacy Boot Order Policy automates the configuration of boot order settings of a rack server. You can create one or more Legacy Boot Order policies which contain a specific grouping of boot order settings that match the needs of a server or a set of servers. Using Cisco UCS Director, you can configure the order in which the rack server attempts to boot from available boot device types. You can also configure the precision boot order which allows linear ordering of the devices. For more information about precision boot order, see Creating a Precision Boot Order Policy.
For details about configuring the various server boot order properties, see section Server Boot Order in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a Legacy Boot Order policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Legacy Boot Order Policy from the drop-down list and click Submit.
- In the General pane, complete the required fields, including the following:
- In the Main pane, click + to create a device type entry to the table. and select the device type from the drop-down list. The table lists the devices you have added.
- In the Add Entry to Select Devices pane, choose a device type, and click Submit.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Legacy Boot Order Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
In the Main pane, click + to create a device type entry to the table. and select the device type from the drop-down list. The table lists the devices you have added. |
||||||||||
Step 7 |
In the Add Entry to Select Devices pane, choose a device type, and click Submit. You cannot add a device type multiple times. In the Device Type table, select an existing device and use the up and down arrow icons to re-order the entries. The order of entries in the table determines the boot order. |
||||||||||
Step 8 |
Click Submit.
|
Creating a Network Configuration Policy
With a Network Configuration policy, you can specify the following network settings on a server:
-
DNS Domain
-
DNS Server for IPv4 and IPv6
-
VLAN configuration
For details about configuring the various network configuration properties, see section Configuring Network-Related Settings in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a Network Configuration policy.
Procedure
Step 1 |
Choose . |
||||||||||||||||||||||||||||||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||||||||||||||||||||||||||||||
Step 3 |
Click Add. |
||||||||||||||||||||||||||||||||||||||||
Step 4 |
In the Add screen, choose Network Configuration Policy from the drop-down list and click Submit. |
||||||||||||||||||||||||||||||||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||||||||||||||||
Step 6 |
Click Next. |
||||||||||||||||||||||||||||||||||||||||
Step 7 |
In the Main pane, complete the following fields:
|
||||||||||||||||||||||||||||||||||||||||
Step 8 |
If you checked the Cisco UCS S3260 check box in the General pane, then you must complete the following steps:
|
||||||||||||||||||||||||||||||||||||||||
Step 9 |
In the Confirm pane, click Submit.
|
Creating a Network Security Policy
Cisco UCS Director uses IP blocking as network security. IP blocking prevents the connection between a server or a website and certain IP addresses or a range of addresses. IP blocking effectively bans undesired connections from those computers to a website, mail server, or other Internet servers. You can create one or more Network Security policies which contain a specific grouping of IP properties that match the needs of a server or a set of servers.
For details about configuring the various network security properties, see section Network Security Configuration in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a Network Security policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Network Security from the drop-down list and click Submit.
- In the General pane, complete the required fields, including the following:
- Click Next.
- In the IP Blocking pane, check the Enable IP Blocking checkbox to block the IP, and enter attributes to set IP Blocking properties.
- Click Next.
- In the IP Filtering pane, check the Enable IP Filtering checkbox to enter IP addresses or a range of IP addresses.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Network Security from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the IP Blocking pane, check the Enable IP Blocking checkbox to block the IP, and enter attributes to set IP Blocking properties. |
||||||||||
Step 8 |
Click Next. |
||||||||||
Step 9 |
In the IP Filtering pane, check the Enable IP Filtering checkbox to enter IP addresses or a range of IP addresses. |
||||||||||
Step 10 |
Click Submit. |
Creating an NTP Policy
With an NTP service, you can configure a server managed by Cisco UCS Director to synchronize the time with an NTP server. By default, the NTP server does not run in Cisco UCS Director. You must enable and configure the NTP service by specifying the IP/DNS address of at least one server or a maximum of four servers that function as NTP servers. When you enable the NTP service, Cisco UCS Director synchronizes the time on the managed server with the configured NTP server.
For details about configuring the various NTP properties, see section Configuring Network Time Protocol Settings in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a NTP policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose NTP Policy from the drop-down list and click Submit.
- In the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, complete the required fields, including the following:
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose NTP Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main pane, complete the required fields, including the following:
|
||||||||||
Step 8 |
Click Submit.
|
Creating a Password Expiration Policy
You can set a shelf life for a password, after which the password expires and is no longer valid for use. As an administrator, you can set this time in days. This configuration is common to all users. Users can set and derive the configuration as part of the user policy and create a password expiration policy.
For details about configuring the various properties, see section Configuring Password Expiry for Users in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Procedure
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Password Expiration Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the General page, enter a name for the policy and click Next. |
||||||||||
Step 6 |
In the Main page, complete the required fields, including the following:
|
||||||||||
Step 7 |
Click Submit.
|
Creating a Precision Boot Order Policy
For details about configuring the various boot order properties, see section Configuring the Precision Boot Order in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
You can create this policy for servers that are running Cisco IMC version 2.x and above. For servers that are running versions prior to 2.x, you must configure the Legacy Boot Order policy instead.
Perform the following procedure to create a Precision Boot Order policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Precision Boot Order Policy from the drop-down list and click Submit.
- In the Create Precision Boot Order Policy screen, in the General pane, complete the required fields, including the following:
- In the Main pane, complete the required fields, including the following:
- In the Add Entry to Select Devices screen, click Submit.
- Click Submit.
- Check Configure One Time Boot Device to set the device from which the server must boot once.
- Select the device from the One Time Boot Device drop-down list.
- Check Reboot On Update to reboot the selected server after the one time boot device has been updated in the server.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Precision Boot Order Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create Precision Boot Order Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
In the Main pane, complete the required fields, including the following:
|
||||||||||
Step 7 |
In the Add Entry to Select Devices screen, click Submit. The devices that you have added are listed in the table. Use the up and down arrow icons to re-order the entries. The order of entries in the table determines the boot order. |
||||||||||
Step 8 |
Click Submit. |
||||||||||
Step 9 |
Check Configure One Time Boot Device to set the device from which the server must boot once.
|
||||||||||
Step 10 |
Select the device from the One Time Boot Device drop-down list. |
||||||||||
Step 11 |
Check Reboot On Update to reboot the selected server after the one time boot device has been updated in the server. |
||||||||||
Step 12 |
Click Submit. |
Power Restore Policy
Create this policy when you want to modify the value for the Power Restore policy set on an E-series server without having to login to the Cisco IMC of that server.
Note |
You can create this policy only for E-series servers. You cannot create this policy for ENCS servers or C-series servers. |
Procedure
Step 1 |
Choose . |
Step 2 |
On the Rack Server page, click Hardware Policies. |
Step 3 |
Click Add. |
Step 4 |
On the Add screen, choose Power Restore Policy from the drop-down list and click Submit. |
Step 5 |
Enter a name in the Policy Name field. You can also check the Create policy from current configuration of the server check box and click Next. This takes you to the Server Details screen. See Creating a Policy from an Existing Configuration. |
Step 6 |
Choose a setting from the Power Restore Policy drop-down list. It can be one of the following options:
|
Step 7 |
Click Submit. |
What to do next
You must apply this policy. For more information, see Applying a Hardware Policy.
Creating a RAID Policy
You can use a RAID policy to create virtual drives on a server. You can also configure the storage capacity of a virtual drive. Each virtual drive in a RAID policy is associated with a disk group policy. Using a disk group policy you can select and configure the disks to be used for a particular virtual drive.
RAID policy is supported only on the following:
-
Storage controllers that support RAID configurations.
-
Cisco IMC firmware version 2.0(4c) and above.
-
Servers containing single storage controllers. On servers containing multiple storage controllers, the RAID policy will be applied only on the storage controller in the first slot.
For details about configuring the various properties, see section Managing Storage Adapters in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a RAID policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose RAID Policy from the drop-down list and click Submit.
- In the Create RAID Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, click + to add virtual drives that you want to configure on the server to the Virtual Drives list.
- In the Add Entry to Virtual Drives screen, complete the required fields, including the following:
- In the Add Entry to Virtual Drives screen, click Submit.
- Check Delete existing Virtual Drives to delete all existing virtual drives on the server.
- Check Configure Unused Disks to configure the remaining disks.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||||||||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||||||||||||||||
Step 3 |
Click Add. |
||||||||||||||||||||||||||
Step 4 |
In the Add screen, choose RAID Policy from the drop-down list and click Submit. |
||||||||||||||||||||||||||
Step 5 |
In the Create RAID Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||||||||||||||||||
Step 6 |
Click Next. |
||||||||||||||||||||||||||
Step 7 |
In the Main pane, click + to add virtual drives that you want to configure on the server to the Virtual Drives list. |
||||||||||||||||||||||||||
Step 8 |
In the Add Entry to Virtual Drives screen, complete the required fields, including the following:
|
||||||||||||||||||||||||||
Step 9 |
In the Add Entry to Virtual Drives screen, click Submit. |
||||||||||||||||||||||||||
Step 10 |
Check Delete existing Virtual Drives to delete all existing virtual drives on the server. |
||||||||||||||||||||||||||
Step 11 |
Check Configure Unused Disks to configure the remaining disks. This option is applicable only on storage controllers that support JBOD. The disks that are not used for virtual drives or hotspares are configured as JBOD. |
||||||||||||||||||||||||||
Step 12 |
Click Submit. |
Creating a Serial Over LAN Policy
Serial over LAN enables the input and output of the serial port of a managed system to be redirected over IP. Configure and use a serial over LAN on your server when you want to reach the host console with Cisco UCS Director. You can create one or more Serial over LAN policies which contain a specific grouping of Serial Over LAN attributes that match the needs of a server or a set of servers.
For details about configuring the various Serial Over LAN properties, see section Configuring Serial Over LAN in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a Serial Over LAN policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Serial Over LAN Policy from the drop-down list and click Submit.
- In the Create SoL Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, check the Enable SoL check box and select the CoM Port and Baud Rate values from the drop-down list or use the existing values.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Serial Over LAN Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create SoL Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main pane, check the Enable SoL check box and select the CoM Port and Baud Rate values from the drop-down list or use the existing values. |
||||||||||
Step 8 |
Click Submit. |
Creating an SNMP Policy
Cisco UCS Director supports configuration of the Simple Network Management Protocol (SNMP) settings and for sending fault and alert information by SNMP traps from the managed server.
For details about configuring the various SNMP properties, see section Configuring SNMP in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a SNMP policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose SNMP Policy from the drop-down list and click Submit.
- In the Create SNMP Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the SNMP Users pane, click + to add a SNMP user and fill in the user details. You can use the + icon to add up to 15 SNMP Users.
- Click Next.
- In the SNMP Traps pane, click + to add a SNMP trap and fill in the trap details. You can use the + icon to add up to 15 SNMP Traps.
- Click Next.
- In the SNMP Settings pane, configure the SNMP properties.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose SNMP Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create SNMP Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the SNMP Users pane, click + to add a SNMP user and fill in the user details. You can use the + icon to add up to 15 SNMP Users. Select an existing SNMP entry to edit or delete an entry from the table. |
||||||||||
Step 8 |
Click Next. |
||||||||||
Step 9 |
In the SNMP Traps pane, click + to add a SNMP trap and fill in the trap details. You can use the + icon to add up to 15 SNMP Traps. Select an existing SNMP entry to edit or delete an entry from the table. |
||||||||||
Step 10 |
Click Next. |
||||||||||
Step 11 |
In the SNMP Settings pane, configure the SNMP properties. |
||||||||||
Step 12 |
Click Submit.
|
Creating an SSH Policy
The SSH server enables an SSH client to make a secure, encrypted connection and the SSH client is an application running over the SSH protocol to provide device authentication and encryption. You can create one or more SSH policies which contain a specific grouping of SSH properties that match the needs of a server or a set of servers.
For details about configuring the various SSH properties, see section Configuring SSH in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create an SSH policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose SSH Policy from the drop-down list and click Submit.
- In the Create SSH Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, complete the required fields, including the following:
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose SSH Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create SSH Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main pane, complete the required fields, including the following:
|
||||||||||
Step 8 |
Click Submit. |
Creating a User Policy
A user policy automates the configuration of local user settings. You can create one or more user policies which contain a list of local users that need to be configured on a server or a group of servers.
For details about configuring the various properties, see section Configuring Local Users in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a User policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose User Policy from the drop-down list and click Submit.
- In the Create User Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, check Enforce Strong Password.
- Click + to add users that need to be configured on the server to the Users list.
- In the Add Entry to Users screen, complete the required fields, including the following:
- Click Submit.
- In the Main pane, check Add Password Expiration Policy, and you can either choose a password expiration policy that you have previously created, or you can create a new policy.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||||
Step 3 |
Click Add. |
||||||||||||
Step 4 |
In the Add screen, choose User Policy from the drop-down list and click Submit. |
||||||||||||
Step 5 |
In the Create User Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||||
Step 6 |
Click Next. |
||||||||||||
Step 7 |
In the Main pane, check Enforce Strong Password. Checking this check box implies that users selected for this policy must create a strong password. |
||||||||||||
Step 8 |
Click + to add users that need to be configured on the server to the Users list. You can also select an existing user from the Users table and click Edit or Delete icons to edit or delete a user. |
||||||||||||
Step 9 |
In the Add Entry to Users screen, complete the required fields, including the following:
|
||||||||||||
Step 10 |
Click Submit. |
||||||||||||
Step 11 |
In the Main pane, check Add Password Expiration Policy, and you can either choose a password expiration policy that you have previously created, or you can create a new policy. To use a password expiration policy, Cisco IMC version 3.0(1c) or later is required. |
||||||||||||
Step 12 |
Click Submit.
|
Creating a VIC Adapter Policy
For details about configuring the various properties, see section Viewing VIC Adapter Properties in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a VIC Adapter policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose VIC Adapter Policy from the drop-down list and click Submit.
- In the Create VIC Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main pane, click + to add a VIC adapter entry in the table.
- In the Add Entry to VIC Adapters screen, enter or select the adapter details.
- Click Submit.
- In the Main pane, click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose VIC Adapter Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create VIC Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main pane, click + to add a VIC adapter entry in the table. |
||||||||||
Step 8 |
In the Add Entry to VIC Adapters screen, enter or select the adapter details.
|
||||||||||
Step 9 |
Click Submit. |
||||||||||
Step 10 |
In the Main pane, click Submit. |
Creating a Virtual KVM Policy
The KVM console is an interface accessible from Cisco UCS Director that emulates a direct keyboard, video, and mouse (KVM) connection to the server. The KVM console allows you to connect to the server from a remote location. You can create one or more KVM policies which contain a specific grouping of virtual KVM properties that match the needs of a server or a set of servers.
For details about configuring the various KVM properties, see section Configuring the Virtual KVM in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform this procedure when you want to create a Virtual KVM policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Virtual KVM Policy from the drop-down list and click Submit.
- In the Create vKVM Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- Check Enable vKVM.
- In the Max Sessions drop-down list, choose a number to indicate the maximum number of KVM sessions.
- In the Remote Port field, specify the port number.
- Check the Enable Video Encryption check box.
- Check the Enable Local Server Video check box.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Virtual KVM Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create vKVM Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
Check Enable vKVM. |
||||||||||
Step 8 |
In the Max Sessions drop-down list, choose a number to indicate the maximum number of KVM sessions. |
||||||||||
Step 9 |
In the Remote Port field, specify the port number. |
||||||||||
Step 10 |
Check the Enable Video Encryption check box. |
||||||||||
Step 11 |
Check the Enable Local Server Video check box. |
||||||||||
Step 12 |
Click Submit. |
Creating a vMedia Policy
You can use Cisco UCS Director to install an OS on the server using the KVM console and VMedia. You can create one or more vMedia policies which contain vMedia mappings for different OS images that match the needs of a server or a set of servers. You can configure upto two vMedia mappings in Cisco UCS Director - one for ISO files (through CDD) and the other for IMG files (through HDD).
For details about configuring the various vMedia properties, see section Configuring Virtual Media in the Cisco UCS C-Series Servers Integrated Management Controller GUI Configuration Guide.
Perform the following procedure to create a VMedia policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose vMedia Policy from the drop-down list and click Submit.
- In the Create vMedia Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Main screen, complete the required fields, including the following:
- Click Next.
- Check Add CDD vMedia Mapping and complete the CDD mapping details.
- Click Next.
- Check Add HDD vMedia Mapping check box and complete the HDD mapping details.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose vMedia Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create vMedia Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Main screen, complete the required fields, including the following:
|
||||||||||
Step 8 |
Click Next. |
||||||||||
Step 9 |
Check Add CDD vMedia Mapping and complete the CDD mapping details. |
||||||||||
Step 10 |
Click Next. |
||||||||||
Step 11 |
Check Add HDD vMedia Mapping check box and complete the HDD mapping details. |
||||||||||
Step 12 |
Click Submit.
|
Creating a Zoning Policy
A Zoning policy is used to assign physical drives to server. The Cisco UCS C-Series rack-mount servers support dynamic storage of Serial Attached SCSI (SAS) drives in the Cisco Management Controller (CMC). This dynamic storage support is provided by the SAS fabric manager located in the CMC. Dynamic storage supports the following options:
-
Assigning physical disks to server 1 and server 2
-
Chassis Wide Hot Spare (supported only on RAID controllers)
-
Shared mode (supported only in HBAs)
-
Un-assigning physical disks
-
Viewing SAS expander properties
-
Assigning physical drives to servers
-
Moving physical drives as Chassis Wide Hot Spare
-
Un-assigning physical drives
For details about configuring the various disk group properties, see section Dynamic Storage in the Cisco UCS C-Series Integrated Management Controller GUI Configuration Guide for S3260 Servers.
Perform the following procedure to create a Zoning policy.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Add.
- In the Add screen, choose Zoning Policy from the drop-down list and click Submit.
- In the Create Zoning Policy screen, in the General pane, complete the required fields, including the following:
- Click Next.
- In the Zoning screen, click + to add local disks that you want to configure on the server.
- In the Add Entry to Local Disks screen, enter the Slot Number where the local disk is present.
- Select the local disk details such as the Ownership assigning the ownership of the local disk.
- Check Force when assigning disks owned by one server to another server.
- Click Submit.
- Check Modify Physical Drive Power Policy to set the policy.
- Select the power state from the Physical Drive Power State drop-down list.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
||||||||||
Step 2 |
On the Rack Server page, click Hardware Policies. |
||||||||||
Step 3 |
Click Add. |
||||||||||
Step 4 |
In the Add screen, choose Zoning Policy from the drop-down list and click Submit. |
||||||||||
Step 5 |
In the Create Zoning Policy screen, in the General pane, complete the required fields, including the following:
|
||||||||||
Step 6 |
Click Next. |
||||||||||
Step 7 |
In the Zoning screen, click + to add local disks that you want to configure on the server. |
||||||||||
Step 8 |
In the Add Entry to Local Disks screen, enter the Slot Number where the local disk is present. |
||||||||||
Step 9 |
Select the local disk details such as the Ownership assigning the ownership of the local disk. |
||||||||||
Step 10 |
Check Force when assigning disks owned by one server to another server. |
||||||||||
Step 11 |
Click Submit. |
||||||||||
Step 12 |
Check Modify Physical Drive Power Policy to set the policy. |
||||||||||
Step 13 |
Select the power state from the Physical Drive Power State drop-down list. |
||||||||||
Step 14 |
Click Submit. |
Applying a Policy
Perform this procedure when you want to apply an existing policy to a server.
Procedure
Step 1 |
Choose . |
Step 2 |
On the Rack Server page, click Hardware Policies. |
Step 3 |
Expand the folders, and select a policy you want to apply. |
Step 4 |
Click Apply from the options available at the top. |
Step 5 |
In the Apply Policy screen, choose the servers on which you want to apply this policy. |
Step 6 |
Check Schedule Later to apply the policy at a later time. You will have to select a schedule from the Schedule drop-down list, or create a new schedule. |
Step 7 |
Click Submit. The process of applying the policy to the specified set of servers is initiated. This process can take a few minutes depending on the policy type and network connectivity to servers to which the policy is being applied. |
What to do next
You can also perform the following policy-related tasks:
-
Click Clone to copy the details of a selected policy to a new policy.
-
Click View Apply Status to see the list of the servers that the policy is associated to.
-
Click Delete to delete policies from the system.
Deleting a Policy
You cannot delete a policy if it is mapped to a hardware profile.
SUMMARY STEPS
- Choose .
- On the Rack Server page, click Hardware Policies.
- Click Delete.
- In the Delete Policy screen, check the check boxes of the policies you want to delete.
- Click Submit.
DETAILED STEPS
Step 1 |
Choose . |
Step 2 |
On the Rack Server page, click Hardware Policies. |
Step 3 |
Click Delete. |
Step 4 |
In the Delete Policy screen, check the check boxes of the policies you want to delete. |
Step 5 |
Click Submit. |