Intelligent Platform Management Interface
需求:已知BMC帐号id2为root管理员帐号,添加id5bmc帐号
工具:ipmitool version 1.8.14
系统:CentOS release 6.6 (Final)
1,通过yum安装ipmitool安装源
[root@zxl]# yum install ipmitool 已加载插件:fastestmirror, security 设置安装进程 Loading mirror speeds from cached hostfile 解决依赖关系 --> 执行事务检查 ---> Package ipmitool.x86_64 0:1.8.11-20.el6 will be 升级 ---> Package ipmitool.x86_64 0:1.8.11-21.el6 will be an update --> 完成依赖关系计算 依赖关系解决 ============================================================================================================== 软件包 架构 版本 仓库 大小 ============================================================================================================== 正在升级: ipmitool x86_64 1.8.11-21.el6 updates 463 k 事务概要 ============================================================================================================== Upgrade 1 Package(s) 总下载量:463 k 确定吗?[y/N]:y
2,新建ip.csv文件,将BMC的IP(第一列)、ID 2的用户名(第二列)、ID2的密码(第三列)、ID5的用户名(第四列)、ID5的密码(第五列)
bmc_ip,bmc_user1,bmc_pass1,bmc_user2,bmc_pass2 10.27.11.86,admin,admin,bmc,calvin10.27.11.17,admin,admin,bmc,calvin10.27.11.68,admin,admin,bmc,calvin
3,新建bmc_adduser_id5_bmc.sh文件
#!/bin/bashVERSION=0.0.1MODIFY_DATE=20170824#判断当前bmc是否是活的function judgeActive(){ res=`ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD mc info` if [ $? -ne 0 ] then echo "ip:$IP_ADDR not available" return 1 fi echo "ip:$IP_ADDR is available" return 0}#获取user1用户的useridfunction judgeUserID(){ USER_ID=`ipmitool -H $IP_ADDR -U $USER_NAME -P $PASSWD -I lanplus user list | grep " $USER_NAME " | awk '{print $1}'` if [ $? -ne 0 ] then return 1 fi return 0}#判断user2是否是活的function checkNewUser(){ res=`ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME2 -P $PASSWD2 mc info` if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME2 $PASSWD2 not available" return 1 fi echo "ip:$IP_ADDR $USER_NAME2 $PASSWD2 is available" return 0}#输出帮助信息function printHelp(){ echo "Usage:./bmc_adduser_id5_bmc_v2_170825.sh -i ipFile ipFile is bmc machine info file include ip username and password all info output file dump.csv"}#给id5增加用户function changeuser(){ CHANNEL1=1 CHANNEL8=8 BMCID=5 #设置id5用户名 ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD user set name $BMCID $USER_NAME2 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD user set name not available" return 1 fi #设置id5密码 ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD user set password $BMCID $PASSWD2 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD user set password not available" return 1 fi #设置id5 channel1权限为administrator ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD user priv $BMCID 4 $CHANNEL1 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD user priv $CHANNEL1 not available" return 1 fi #设置id5 channel8权限为administrator ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD user priv $BMCID 4 $CHANNEL8 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD user priv $CHANNEL8 not available" return 1 fi #设置id5 channel1打开callin=on ipmi=true link=on privilege=4权限 ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD channel setaccess $CHANNEL1 $BMCID callin=on ipmi=true link=on privilege=4 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD channel setaccess $CHANNEL1 not available" return 1 fi #设置id5 channel8打开callin=on ipmi=true link=on privilege=4权限 ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD channel setaccess $CHANNEL8 $BMCID callin=on ipmi=true link=on privilege=4 if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD channel setaccess $CHANNEL8 not available" return 1 fi #设置channel1的sol ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD sol payload enable $CHANNEL1 $BMCID if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD sol payload enable $CHANNEL1 not available" return 1 fi #user2使能 ipmitool -I lanplus -H $IP_ADDR -U $USER_NAME -P $PASSWD user enable $BMCID if [ $? -ne 0 ] then echo "ip:$IP_ADDR $USER_NAME $PASSWD user enable not available" return 1 fi return 0}case $1 in -h|--help) printHelp exit 0 ;; esac#获取shell脚本参数while getopts ":i:" optdo case $opt in i) IP_FILE=$OPTARG echo "ip file is "$IP_FILE ;; *) echo "argument error" exit 1;; esacdone#判断参数是否合法if [ ${#IP_FILE} -eq 0 ]then echo "please assign ip file. detail info check -h" exit 0fiecho "IP,check_original_user,original_userID,change_user,check_new_user">dump.csvdeclare -i i=0#逐行读取文件for LINE in `cat $IP_FILE`;do{ let i++ if [ $i -eq 1 ] then continue fi #判断文件行的大小,若长度小于10则认为非法 if [ ${#LINE} -lt 10 ] then continue; fi #声明变量并赋值 IP_ADDR=`echo $LINE | awk -F, '{print $1}'` USER_NAME=`echo $LINE | awk -F, '{print $2}'` PASSWD=`echo $LINE | awk -F, '{print $3}'` USER_NAME2=`echo $LINE | awk -F, '{print $4}'` PASSWD2=`echo $LINE | awk -F, '{print $5}' | sed 's/\r//g'` #判断bmc是否是活的 judgeActive if [ $? -eq 1 ] then check_original_user="fail" echo "$IP_ADDR,$check_original_user,$original_userID,$change_user,$check_new_user">${IP_ADDR}.insdat continue else check_original_user="success" fi #判断userid judgeUserID if [ $? -eq 1 ] then original_userID="get error" echo "$IP_ADDR,$check_original_user,$original_userID,$change_user,$check_new_user">${IP_ADDR}.insdat continue fi original_userID="is $USER_ID" #添加用户 changeuser if [ $? -eq 1 ] then change_user="fail" echo "$IP_ADDR,$check_original_user,$original_userID,$change_user,$check_new_user">${IP_ADDR}.insdat continue else change_user="success" fi #检查新添加的用户 checkNewUser if [ $? -eq 1 ] then check_new_user="fail" echo "$IP_ADDR,$check_original_user,$original_userID,$change_user,$check_new_user">${IP_ADDR}.insdat continue else check_new_user="sucess" fi #输出日志到日志文件 echo "$IP_ADDR,$check_original_user,$original_userID,$change_user,$check_new_user">${IP_ADDR}.insdat echo "$IP_ADDR dump info over"}donewait#汇集日志信息allfile=`ls *.insdat`for file in $allfiledo cat $file >> dump.csvdone#删除单个的日志文件rm -r *.insdatecho "all dump info over"
4,执行./bmc_adduser_id5_bmc.sh -i ip.csv
ip:10.27.11.11 is available ip:10.27.11.12 is available ip:10.27.11.13 is available
5,执行完成后查看验证文件cat dump.csv
10.27.11.11,success,,success,fail10.27.11.12,success,,success,fail10.27.11.13,success,,success,fail