Changes between Initial Version and Version 1 of GENIRacksHome/OpenGENIRacks/AcceptanceTestStatusApr2014/OG-ADM-2


Ignore:
Timestamp:
05/23/14 11:33:24 (10 years ago)
Author:
lnevers@bbn.com
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • GENIRacksHome/OpenGENIRacks/AcceptanceTestStatusApr2014/OG-ADM-2

    v1 v1  
     1= GR-ADM-2: Rack Administrator Access Test =
     2
     3This page captures status for the test case GR-ADM-2. For additional information see the [wiki:GENIRacksHome/GRAMRacks/AcceptanceTestStatusApr2014 Acceptance Test Status - April 2014] page overall status, or the [wiki:GENIRacksHome/AcceptanceTests/GRAMAcceptanceTestsPlan GRAM Acceptance Test Plan] for details about the planned evaluation.
     4
     5
     6|| '''Step''' || '''State'''                                  ||''' Notes '''   || '''Tickets'''  ||
     7|| Step 1     ||[[span(Pass, style=background-color: green )]]||                ||              ||
     8|| Step 2     ||[[span(Pass, style=background-color: green )]]||                ||              ||
     9|| Step 3     ||[[span(Pass: most criteria, style=background-color: #98FB98)]] ||Remote access to iDRAC ||65      ||
     10               
     11
     12[[BR]]
     13|| '''State Legend'''                                   || '''Description'''                                                    ||
     14||[[span(Pass, style=background-color: green )]]        || Test completed and met all criteria                                  ||
     15||[[span(Pass: most criteria, style=background-color: #98FB98)]]|| Test completed and met most criteria. Exceptions documented  ||
     16||[[span(Fail, style=background-color: red)]]           || Test completed and failed to meet criteria.                          ||
     17||[[span(Complete, style=background-color: yellow)]]    || Test completed but will require re-execution due to expected changes ||
     18||[[span(Blocked, style=background-color: orange)]]     || Blocked by ticketed issue(s).                                        ||
     19||[[span(In Progress, style=background-color: #63B8FF)]]|| Currently under test.                                                ||
     20||[[span(Not Planned)]]                                 || This area is not part of initial evaluation                          ||
     21
     22= Test Plan Steps =
     23
     24== Step 1: For each type of rack infrastructure node verify features ==
     25
     26For each type of rack infrastructure node, including VM server hosts and any VMs running infrastructure support services, use a site administrator account to test:
     27        * Login to the node using public-key SSH.
     28        * Verify that you cannot login to the node using password-based SSH, nor via any unencrypted login protocol.
     29        * When logged in, run a command via sudo to verify root privileges.
     30
     31=== Control Node ===
     32
     33Requested Administrative account and provided SSH Public keys. Once the account was created, logged in to verify sudo access on Control Node:
     34{{{
     35LNM:~$ ssh lnevers@130.127.88.98 
     36Welcome to Ubuntu 12.04.4 LTS (GNU/Linux 3.5.0-46-generic x86_64)
     37
     38 * Documentation:  https://help.ubuntu.com/
     39
     40  System information as of Tue Apr 22 12:30:41 EDT 2014
     41
     42  System load:  0.01               Users logged in:      0
     43  Usage of /:   2.4% of 297.06GB   IP address for dat:   10.10.5.100
     44  Memory usage: 1%                 IP address for mgt:   10.10.6.100
     45  Swap usage:   0%                 IP address for ctl:   10.10.8.100
     46  Processes:    297                IP address for br-ex: 130.127.88.98
     47
     48  Graph this data and manage this system at:
     49    https://landscape.canonical.com/
     50
     5176 packages can be updated.
     5228 updates are security updates.
     53
     54Last login: Tue Apr 22 12:30:04 2014 from 128.89.73.116
     55lnevers@clemson-clemson-control-1:~$
     56lnevers@clemson-clemson-control-1:~$ sudo whoami
     57root
     58lnevers@clemson-clemson-control-1:~$
     59
     60}}}
     61
     62=== Compute Nodes ===
     63From control node connected to compute resource servers clemson-clemson-compute-1 and clemson-clemson-compute-2 and verified root access:
     64{{{
     65lnevers@clemson-clemson-control-1:~$ for i in  10.10.8.101 10.10.8.102; do ssh -t $i "hostname; sudo whoami; uname -a "; done
     66clemson-clemson-compute-1
     67[sudo] password for lnevers:
     68root
     69Linux clemson-clemson-compute-1 3.5.0-46-generic #70~precise1-Ubuntu SMP Thu Jan 9 23:55:12 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
     70Connection to 10.10.8.101 closed.
     71clemson-clemson-compute-2
     72[sudo] password for lnevers:
     73root
     74Linux clemson-clemson-compute-2 3.5.0-46-generic #70~precise1-Ubuntu SMP Thu Jan 9 23:55:12 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
     75Connection to 10.10.8.102 closed.
     76lnevers@clemson-clemson-control-1:~$
     77}}}
     78
     79
     80== Step 2: For each rack infrastructure device verify features ==
     81
     82For each rack infrastructure device  (switches, remote PDUs if any), use a site administrator account to test:
     83        * Login via SSH.
     84        * Login via a serial console (if the device has one).
     85        * Verify that you cannot login to the device via an unencrypted login protocol.
     86        * Use the "enable" command or equivalent to verify privileged access.
     87
     88
     89From Control Node connected to Force10 !OpenFlow Switch which is 10.10.8.200:
     90{{{
     91lnevers@clemson-clemson-control-1:~$ ssh 10.10.8.200
     92lnevers@10.10.8.200's password:
     93FTOS>ena
     94Password:
     95FTOS#
     96FTOS#show version
     97Dell Force10 Real Time Operating System Software
     98Dell Force10 Operating System Version: 2.0
     99Dell Force10 Application Software Version: 9.1(0.0)
     100Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved.
     101Build Time: Tue Feb 26 20:02:06 2013
     102Build Path: /sites/sjc/work/build/toolSpaces/tools03/E9-1-0/SW/SRC
     103FTOS uptime is 6 week(s), 5 day(s), 1 hour(s), 15 minute(s)
     104
     105System image file is "system://B"
     106
     107System Type: S4810
     108Control Processor: Freescale QorIQ P2020 with 2147483648 bytes of memory.
     109
     110128M bytes of boot flash memory.
     111
     112  1 52-port GE/TE/FG (SE)
     113 48 Ten GigabitEthernet/IEEE 802.3 interface(s)
     114  4 Forty GigabitEthernet/IEEE 802.3 interface(s)
     115FTOS#
     116
     117FTOS#show running-config
     118Current Configuration ...
     119! Version 9.1(0.0)
     120! Last configuration change at Wed Apr 23 08:48:58 2014 by bparker
     121! Startup-config last updated at Wed Apr 23 08:49:43 2014 by bparker
     122!
     123boot system stack-unit 0 primary system: B:
     124boot system stack-unit 0 secondary system: A:
     125boot system stack-unit 0 default system: B:
     126boot system gateway 10.10.8.1
     127!
     128redundancy auto-synchronize full
     129redundancy disable-auto-reboot stack-unit
     130!
     131redundancy disable-auto-reboot stack-unit 0
     132redundancy disable-auto-reboot stack-unit 1
     133redundancy disable-auto-reboot stack-unit 2
     134redundancy disable-auto-reboot stack-unit 3
     135redundancy disable-auto-reboot stack-unit 4
     136redundancy disable-auto-reboot stack-unit 5
     137redundancy disable-auto-reboot stack-unit 6
     138redundancy disable-auto-reboot stack-unit 7
     139redundancy disable-auto-reboot stack-unit 8
     140redundancy disable-auto-reboot stack-unit 9
     141redundancy disable-auto-reboot stack-unit 10
     142redundancy disable-auto-reboot stack-unit 11
     143!
     144hardware watchdog
     145!
     146logging coredump stack-unit all
     147!
     148hostname FTOS
     149!
     150cam-acl l2acl 2 ipv4acl 0 ipv6acl 0 ipv4qos 2 l2qos 1 l2pt 0 ipmacacl 0 vman-qos 0 ecfmacl 0 openflow 8 fcoeacl 0 iscsioptacl 0
     151!
     152cam-acl-vlan vlanopenflow 1 vlaniscsi 1
     153!
     154
     155<<User information omitted>>
     156
     157stack-unit 0 provision S4810
     158!       
     159interface TenGigabitEthernet 0/0
     160 no ip address
     161 portmode hybrid
     162 switchport
     163 flowcontrol rx on tx off
     164 no shutdown
     165!
     166interface TenGigabitEthernet 0/1
     167 no ip address
     168 portmode hybrid
     169 switchport
     170 flowcontrol rx on tx off
     171 no shutdown
     172!
     173interface TenGigabitEthernet 0/2
     174 no ip address
     175 portmode hybrid
     176 switchport
     177 flowcontrol rx on tx off
     178 no shutdown
     179!
     180interface TenGigabitEthernet 0/3
     181 no ip address
     182 portmode hybrid
     183 switchport
     184 flowcontrol rx on tx off
     185 no shutdown
     186!
     187interface TenGigabitEthernet 0/4
     188 no ip address
     189 portmode hybrid
     190 switchport
     191 flowcontrol rx on tx off
     192 no shutdown
     193!
     194interface TenGigabitEthernet 0/5
     195 no ip address
     196 portmode hybrid
     197 switchport
     198 flowcontrol rx on tx off
     199 no shutdown
     200!
     201interface TenGigabitEthernet 0/6
     202 no ip address
     203 flowcontrol rx on tx off
     204 no shutdown
     205!
     206interface TenGigabitEthernet 0/7
     207 no ip address
     208 flowcontrol rx on tx off
     209 no shutdown
     210!
     211interface TenGigabitEthernet 0/8
     212 no ip address
     213 flowcontrol rx on tx off
     214 no shutdown
     215!
     216interface TenGigabitEthernet 0/9
     217 no ip address
     218 flowcontrol rx on tx off
     219 no shutdown
     220!
     221
     222<<<LOTS of Interface information not captured!>>>
     223
     224interface ManagementEthernet 0/0
     225 ip address 10.10.8.200/24
     226 no shutdown
     227!
     228
     229interface Vlan 1
     230!untagged TenGigabitEthernet 0/0-5,12-13
     231!
     232interface Vlan 100 of-instance 2
     233 no ip address
     234 tagged TenGigabitEthernet 0/12-13
     235 no shutdown
     236!       
     237interface Vlan 845
     238 no ip address
     239 tagged TenGigabitEthernet 0/47
     240 no shutdown
     241!
     242interface Vlan 1000 of-instance 1
     243 no ip address
     244 tagged TenGigabitEthernet 0/0-2
     245 no shutdown
     246!
     247interface Vlan 1001 of-instance 1
     248 no ip address
     249 tagged TenGigabitEthernet 0/0-2
     250 no shutdown
     251!
     252interface Vlan 1002 of-instance 1
     253 no ip address
     254 tagged TenGigabitEthernet 0/0-2
     255 no shutdown
     256!
     257interface Vlan 1003 of-instance 1
     258 no ip address
     259 tagged TenGigabitEthernet 0/0-2
     260 no shutdown
     261!
     262interface Vlan 1004 of-instance 1
     263 no ip address
     264 tagged TenGigabitEthernet 0/0-2
     265 no shutdown
     266!
     267interface Vlan 1005 of-instance 1
     268 no ip address
     269 tagged TenGigabitEthernet 0/0-2
     270 no shutdown
     271!
     272interface Vlan 1006 of-instance 1
     273 no ip address
     274 tagged TenGigabitEthernet 0/0-2
     275 no shutdown
     276
     277<<VLAN 1007 through 2098 not captured here...>>>
     278interface Vlan 2099 of-instance 1
     279 no ip address
     280 tagged TenGigabitEthernet 0/0-3
     281 no shutdown
     282!
     283interface Vlan 2100 of-instance 1
     284 no ip address
     285 tagged TenGigabitEthernet 0/0-3
     286 no shutdown
     287!
     288interface Vlan 3000 of-instance 1
     289 no ip address
     290 tagged TenGigabitEthernet 0/0-4
     291 no shutdown
     292!
     293interface Vlan 3001 of-instance 1
     294 no ip address
     295 tagged TenGigabitEthernet 0/0-4
     296 no shutdown
     297!       
     298interface Vlan 3002 of-instance 1
     299 no ip address
     300 tagged TenGigabitEthernet 0/0-4
     301 no shutdown
     302!
     303interface Vlan 3003 of-instance 1
     304 no ip address
     305 tagged TenGigabitEthernet 0/0-4
     306 no shutdown
     307!
     308interface Vlan 3004 of-instance 1
     309 no ip address
     310 tagged TenGigabitEthernet 0/0-4
     311 no shutdown
     312!
     313interface Vlan 3005 of-instance 1
     314 no ip address
     315 tagged TenGigabitEthernet 0/0-4
     316 no shutdown
     317!
     318interface Vlan 3006 of-instance 1
     319 no ip address
     320 tagged TenGigabitEthernet 0/0-5
     321 no shutdown
     322!
     323interface Vlan 3007 of-instance 1
     324 no ip address
     325 tagged TenGigabitEthernet 0/0-4
     326 no shutdown
     327!
     328interface Vlan 3008 of-instance 1
     329 no ip address
     330 tagged TenGigabitEthernet 0/0-4
     331 no shutdown
     332!
     333interface Vlan 3009 of-instance 1
     334 no ip address
     335 tagged TenGigabitEthernet 0/0-4
     336 no shutdown
     337!
     338interface Vlan 3010 of-instance 1
     339 no ip address
     340 tagged TenGigabitEthernet 0/0-3
     341 no shutdown
     342!
     343interface Vlan 3011 of-instance 1
     344 no ip address
     345 tagged TenGigabitEthernet 0/0-3
     346 no shutdown
     347!
     348interface Vlan 3012 of-instance 1
     349 no ip address
     350 tagged TenGigabitEthernet 0/0-3
     351 no shutdown
     352!
     353interface Vlan 3013 of-instance 1
     354 no ip address
     355 tagged TenGigabitEthernet 0/0-3
     356 no shutdown
     357!
     358interface Vlan 3014 of-instance 1
     359 no ip address
     360 tagged TenGigabitEthernet 0/0-3
     361 no shutdown
     362!
     363interface Vlan 3015 of-instance 1
     364 no ip address
     365 tagged TenGigabitEthernet 0/0-3
     366 no shutdown
     367!
     368interface Vlan 3016 of-instance 1
     369 no ip address
     370 tagged TenGigabitEthernet 0/0-3
     371 no shutdown
     372!
     373interface Vlan 3017 of-instance 1
     374 no ip address
     375 tagged TenGigabitEthernet 0/0-3
     376 no shutdown
     377!
     378interface Vlan 3018 of-instance 1
     379 no ip address
     380 tagged TenGigabitEthernet 0/0-3
     381 no shutdown
     382!
     383interface Vlan 3019 of-instance 1
     384 no ip address
     385 tagged TenGigabitEthernet 0/0-3
     386 no shutdown
     387!
     388interface Vlan 3020 of-instance 1
     389 no ip address
     390 tagged TenGigabitEthernet 0/0-3
     391 no shutdown
     392!
     393openflow of-instance 1
     394 controller 1 10.10.8.100  tcp
     395 flow-map l2 enable
     396 flow-map l3 enable
     397 interface-type vlan
     398 multiple-fwd-table enable
     399 no shutdown
     400!
     401openflow of-instance 2
     402 controller 1 130.127.39.171  tcp
     403 flow-map l2 enable
     404 flow-map l3 enable
     405 interface-type vlan
     406 multiple-fwd-table enable
     407 shutdown
     408!
     409snmp-server community public ro
     410!
     411ip ssh rsa-authentication enable
     412ip ssh server enable
     413!
     414protocol lldp
     415!
     416line console 0
     417line vty 0
     418line vty 1
     419line vty 2
     420line vty 3
     421line vty 4
     422line vty 5
     423line vty 6
     424line vty 7
     425line vty 8
     426line vty 9
     427!
     428http-server http
     429!
     430reload-type normal-reload
     431!
     432end
     433FTOS#show vlan
     434
     435Codes: * - Default VLAN, G - GVRP VLANs, R - Remote Port Mirroring VLANs, P - Primary, C - Community, I - Isolated
     436       O - Openflow
     437Q: U - Untagged, T - Tagged
     438   x - Dot1x untagged, X - Dot1x tagged
     439   o - OpenFlow untagged, O - OpenFlow tagged
     440   G - GVRP tagged, M - Vlan-stack, H - VSN tagged
     441   i - Internal untagged, I - Internal tagged, v - VLT untagged, V - VLT tagged
     442
     443    NUM    Status    Description                     Q Ports
     444*   1      Active                                    U Te 0/0-5,12-13
     445O   100    Inactive                                  T Te 0/12-13
     446    845    Inactive                                  T Te 0/47
     447O   1000   Active                                    T Te 0/0-2
     448O   1001   Active                                    T Te 0/0-2
     449O   1002   Active                                    T Te 0/0-2
     450<....Information Removed>>>
     451O   3000   Active                                    T Te 0/0-4
     452O   3001   Active                                    T Te 0/0-4
     453O   3002   Active                                    T Te 0/0-4
     454O   3003   Active                                    T Te 0/0-4
     455O   3004   Active                                    T Te 0/0-4
     456O   3005   Active                                    T Te 0/0-4
     457O   3006   Active                                    T Te 0/0-5
     458O   3007   Active                                    T Te 0/0-4
     459O   3008   Active                                    T Te 0/0-4
     460O   3009   Active                                    T Te 0/0-4
     461O   3010   Active                                    T Te 0/0-3
     462O   3011   Active                                    T Te 0/0-3
     463O   3012   Active                                    T Te 0/0-3
     464O   3013   Active                                    T Te 0/0-3
     465O   3014   Active                                    T Te 0/0-3
     466O   3015   Active                                    T Te 0/0-3
     467O   3016   Active                                    T Te 0/0-3
     468O   3017   Active                                    T Te 0/0-3
     469O   3018   Active                                    T Te 0/0-3
     470O   3019   Active                                    T Te 0/0-3
     471O   3020   Active                                    T Te 0/0-3
     472FTOS#               
     473FTOS#show vlan id 3001
     474
     475Codes: * - Default VLAN, G - GVRP VLANs, R - Remote Port Mirroring VLANs, P - Primary, C - Community, I - Isolated
     476       O - Openflow
     477Q: U - Untagged, T - Tagged
     478   x - Dot1x untagged, X - Dot1x tagged
     479   o - OpenFlow untagged, O - OpenFlow tagged
     480   G - GVRP tagged, M - Vlan-stack, H - VSN tagged
     481   i - Internal untagged, I - Internal tagged, v - VLT untagged, V - VLT tagged
     482
     483    NUM    Status    Description                     Q Ports
     484O   3001   Active                                    T Te 0/0-4
     485FTOS#
     486FTOS#exit
     487Connection to 10.10.8.200 closed.
     488lnevers@clemson-clemson-control-1:~$ exit
     489logout
     490Connection to 130.127.88.98 closed.
     491LNM:~$
     492
     493}}}
     494
     495From Control Node connected to !PowerConnect 7048 switch which is 10.10.8.201:
     496{{{
     497lnevers@clemson-clemson-control-1:~$ ssh 10.10.8.201
     498lnevers@10.10.8.201's password:
     499
     500PCT7048>ena
     501Password:***************
     502
     503PCT7048#show version
     504
     505Image Descriptions
     506
     507 image1 : default image
     508 image2 :
     509
     510
     511 Images currently available on Flash
     512
     513unit  image1       image2       current-active     next-active
     514----- ------------ ------------ ----------------- -----------------
     515
     5161     4.2.0.4      5.0.1.3      image2             image2
     517
     518PCT7048#
     519PCT7048#show vlan
     520
     521VLAN   Name                             Ports          Type
     522-----  ---------------                  -------------  --------------
     5231      default                          Po1-128,       Default
     524                                        Gi1/0/4-12,
     525                                        Gi1/0/16-24,
     526                                        Gi1/0/28-36,
     527                                        Gi1/0/40,
     528                                        Gi1/0/42-47
     529100    Management                       Gi1/0/1-3      Static
     530200    Control                          Gi1/0/13-15,   Static
     531                                        Gi1/0/37-39,
     532                                        Gi1/0/41
     533300    External                                        Static
     534845    VLAN0845                         Gi1/0/48       Static
     535846    VLAN0846                         Gi1/0/48       Static
     536872    External                         Gi1/0/25-27,   Static
     537                                        Gi1/0/48
     5382500   VLAN2500                         Gi1/0/1-3      Static
     539
     540PCT7048#
     541PCT7048#show running-config
     542
     543!Current Configuration:
     544!System Description "PowerConnect 7048, 5.0.1.3, VxWorks 6.6"
     545!System Software Version 5.0.1.3
     546!System Operational Mode "Normal"
     547!
     548configure
     549vlan 100,200,300,845-846,872,2500
     550exit
     551vlan 100
     552name "Management"
     553exit
     554vlan 200
     555name "Control"
     556exit
     557vlan 300
     558name "External"
     559exit
     560vlan 872
     561name "External"
     562exit
     563hostname "PCT7048"
     564slot 1/0 5    ! PowerConnect 7048
     565--More-- or (q)uit
     566slot 1/1 9    ! CX4 Card
     567stack
     568member 1 5    ! PCT7048
     569exit
     570interface vlan 1
     571exit
     572interface vlan 200
     573ip address 10.10.8.201 255.255.255.0
     574exit
     575interface vlan 845
     576ip address 130.127.39.136 255.255.255.128
     577exit
     578interface vlan 872
     579exit
     580
     581<<User info not captured>>
     582ip ssh server
     583!
     584interface Gi1/0/1
     585--More-- or (q)uit
     586switchport mode trunk
     587switchport trunk allowed vlan 100,2500
     588exit
     589!
     590interface Gi1/0/2
     591switchport mode trunk
     592switchport trunk allowed vlan 100,2500
     593exit
     594!
     595interface Gi1/0/3
     596switchport mode trunk
     597switchport trunk allowed vlan 100,2500
     598exit
     599!
     600interface Gi1/0/13
     601switchport access vlan 200
     602exit
     603!
     604interface Gi1/0/14
     605switchport access vlan 200
     606exit
     607!
     608interface Gi1/0/15
     609--More-- or (q)uit
     610switchport access vlan 200
     611exit
     612!
     613interface Gi1/0/25
     614switchport access vlan 872
     615exit
     616!
     617interface Gi1/0/26
     618switchport access vlan 872
     619exit
     620!
     621interface Gi1/0/27
     622switchport access vlan 872
     623exit
     624!
     625interface Gi1/0/37
     626switchport access vlan 200
     627exit
     628!
     629interface Gi1/0/38
     630switchport access vlan 200
     631exit
     632!
     633interface Gi1/0/39
     634switchport access vlan 200
     635exit
     636!
     637interface Gi1/0/41
     638switchport access vlan 200
     639exit
     640!
     641interface Gi1/0/48
     642switchport mode trunk
     643switchport trunk allowed vlan 845-846,872
     644exit
     645
     646exit
     647
     648PCT7048#exit
     649
     650PCT7048>exitConnection to 10.10.8.201 closed.
     651lnevers@clemson-clemson-control-1:~$
     652
     653}}}
     654
     655Remote access is available via integrated Dell Remote Access Controller (iDRAC) Configuration, which allows Web access.
     656
     657
     658With the current network topology, this could be tested without a Windows System. Has been tried by others.
     659
     660
     661== Step 3. Verify GRAM remote console solution ==
     662
     663
     664Verify the GRAM remote console solution for rack hosts can be used to access the consoles all server hosts and experimental hosts:
     665        * Login via SSH or other encrypted protocol.
     666        * Verify that you cannot login via an unencrypted login protocol.
     667
     668Access to an integrated Dell Remote Access Controller (iDRAC) server is available via SSH from the controller node:
     669{{{
     670gram@bbn-cam-ctrl-1:~$
     671ssh -i ~/.ssh/id_dsa gram@10.10.8.10
     672/admin1-> racadm
     673
     674racadm>> serveraction <action >
     675
     676quit
     677exit
     678
     679}}}
     680
     681
     682Remote access is available via integrated Dell Remote Access Controller (iDRAC) Configuration, which allows Web access. With the current network topology, this could be tested without a Windows System. I has however been tried by others.
     683