000038856 - How to change forgotten RSA NetWitness iDRAC password?

Document created by RSA Customer Support Employee on May 20, 2020Last modified by RSA Customer Support Employee on Nov 24, 2020
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000038856
Applies ToRSA Product Set: RSA NetWitness Platform
RSA Version/Condition: 10.6.x, 11.x
Platform: CentOS
Platform (Other): Dell PowerEdge appliance
IssueUnable to login to iDRAC.
The iDRAC root password was changed and is no longer known.
How to change a forgotten NetWitness iDRAC password?
Resolution

Below are a few options that can be used to change the iDRAC root password.
 



1. Changing the iDRAC root password from the commandline using ipmitool.


ssh login to the appliance with the iDRAC login issue.

Show a list of all iDRAC user accounts.

ipmitool user list 1

For example:

ipmitool user list 1
ID  Name             Callin  Link Auth  IPMI Msg   Channel Priv Limit
1                    true    false      false      NO ACCESS
2   root             true    true       true       ADMINISTRATOR
3                    true    false      false      NO ACCESS
:
etc.


In the above example output ID 2 is the root login, so use the following command to change the password of ID 2,

ipmitool user set password 2

You will be prompted to enter the new password.

For example:

ipmitool user set password 2
Password for user 2:

 

2. Changing the iDRAC root password from the commandline using racadm.



The Dell racadm program, is not installed by default on NetWitness appliances, however the racadm program is installed by following the below RSA Knowledgebase article.

Reference: How to Determine Add On Components for RSA NetWitness Platform Servers Using TSR Reports
Follow KB instructions to install the commandline packages in the rsa_hw_report_v4.tar file.

Once the radadm program is installed then change the iDRAC root password with the following syntax.

racadm set idrac.users.2.password {New Password}

Or

racadm config -g cfguseradmin -i 2 -o cfgUserAdminPassword {New Password}
 

3. Change the iDRAC root password on-site from the appliance console.



While on-site at the appliance console.
Boot the appliance and enter the iDRAC configuration utility using Ctrl+E during Power-on Self-test (POST).
Go to User Authentication, to change the iDRAC root password.

Or

Boot the appliance into System Setup using [F2] key.
User-added image

In System Setup click on iDRAC Settings > User Configuration, to change the login password.
User-added image
User-added image
 
NotesIf setting the iDRAC root password using the above actions all fail then try reset the iDRAC card with one of the options below.
Then try setting the password with the above steps again.
 

1. iDRAC reset using racadm



racadm racreset for a soft reset (no saved settings are changed)

Or

racadm racresetcfg for a hard reset (IP and Account settings are reset back to factory default, so full config needs to be re-entered).

Resetting the iDRAC does not affect the server, it only reboots the iDRAC card. Allow about 5 minutes for the iDRAC card reset to complete.
 

2. iDRAC reset on-site using the "i" button


On the front of the NetWitness appliance under the front cover panel, there is a small "i" labeled button.

Press and hold the "i" button for at least 30 seconds. Stop pressing the button when the cooling fans start spinning at full speed, which indicates the iDRAC card reset has started.

Reference: How to reset the internal Dell Remote Access Controller (iDRAC) on a PowerEdge server?

Attachments

    Outcomes