Skip to content

Tenantos: Version 1.0.31 has been released

Tenantos version 1.0.31 includes various highlights, such as NoVNC support for IPMI web logins, IPMI user management, improved IP management, Cisco NX support, and more.

Full release notes are available on this page.

In the following section, we will describe how existing installations can activate the IPMI web login feature.

IPMI Web Login with NoVNC

To maintain the current state of existing Tenantos installations, the console mode for IPMI connections has been set to Only standard (e.g. Java) to avoid unexpected changes. Additionally, the "Open IPMI Page" permission has been activated by default only for the admin role.

To use IPMI Web Logins, two steps are required:

  1. Set the "Console Mode" in IPMI connections to either Web IPMI + standard (e.g. Java) or Only Web IPMI.
  2. If roles other than administrators should also be able to open IPMI, the "Open IPMI Page" permission must be activated in those roles.

A CLI tool is available to change this setting on all servers for the first step.

Bulk Changing the Console Mode

Log in as root on the Tenantos server and execute the following command:

app ipmi:setConsoleMode web+standard # Enables both Java and Web IPMI

This sets all IPMI connections to Web IPMI + standard (e.g. Java). To revert the change, execute:

app ipmi:setConsoleMode standard

To activate only Web IPMI, execute:

app ipmi:setConsoleMode web

IPMI User Account Privilege

When a user accesses the IPMI console, a new IPMI account is created in the background if one does not exist for that user. By default, the privilege level for dynamically created IPMI accounts is set to "OPERATOR". This can be configured on a per-connection basis as well.

To change the privilege level for all IPMI connections, a CLI tool is available. Execute the following command to set the privilege level to "USER":

app ipmi:setConsoleUserPrivilege 2

The value "2" means "USER". Other possible values are:

  • 1 = "CALLBACK"
  • 2 = "USER"
  • 3 = "OPERATOR"
  • 4 = "ADMINISTRATOR"

Note: For Tenantos administrators, no dynamic IPMI account is created. Instead, the account specified in the IPMI connection is used. This can be deactivated in the system settings if necessary, so that a dynamic account is created according to the specified privilege level.

Updating the Permissions

If you want to allow roles other than administrators to open the IPMI page, you must activate the "Open IPMI Page" permission for the respective roles:

  1. Open Tenantos and click the "Permissions" menu entry in the sidebar.
  2. Select the role, search for "Open IPMI Page", and activate the permission.
  3. Click the "Update" button to save the changes.