.TH "ipmitool" "1" "" "Duncan Laurie" ""
.SH "NAME"
ipmitool \- utility for controlling IPMI\-enabled devices
.SH "SYNOPSIS"
ipmitool [\fB\-c\fR|\fB\-h\fR|\fB\-d \fIN\fP\fR|\fB\-v\fR|\fB\-V\fR]
\fB\-I\fR \fIopen\fP <\fIcommand\fP>

ipmitool [\fB\-c\fR|\fB\-h\fR|\fB\-v\fR|\fB\-V\fR]
\fB\-I\fR \fIlan\fP \fB\-H\fR <\fIhostname\fP>
         [\fB\-p\fR <\fIport\fP>]
         [\fB\-U\fR <\fIusername\fP>]
         [\fB\-A\fR <\fIauthtype\fP>]
         [\fB\-L\fR <\fIprivlvl\fP>]
         [\fB\-a\fR|\fB\-E\fR|\fB\-P\fR|\fB\-f\fR <\fIpassword\fP>]
         [\fB\-o\fR <\fIoemtype\fP>]
         [\fB\-O\fR <\fIsel oem\fP>]
         [\fB\-e\fR <\fIesc_char\fP>]
         <\fIcommand\fP>

ipmitool [\fB\-c\fR|\fB\-h\fR|\fB\-v\fR|\fB\-V\fR]
\fB\-I\fR \fIlanplus\fP \fB\-H\fR <\fIhostname\fP>
         [\fB\-p\fR <\fIport\fP>]
         [\fB\-U\fR <\fIusername\fP>]
         [\fB\-L\fR <\fIprivlvl\fP>]
         [\fB\-a\fR|\fB\-E\fR|\fB\-P\fR|\fB\-f\fR <\fIpassword\fP>]
         [\fB\-o\fR <\fIoemtype\fP>]
         [\fB\-O\fR <\fIsel oem\fP>]
         [\fB\-C\fR <\fIciphersuite\fP>]
         [\fB\-K\fR|\fB\-k\fR <\fIkg_key\fP>]
         [\fB\-y\fR <\fIhex_kg_key\fP>]
         [\fB\-e\fR <\fIesc_char\fP>]
         <\fIcommand\fP>
.SH "DESCRIPTION"
This program lets you manage Intelligent Platform Management Interface 
(IPMI) functions of either the local system, via a kernel device driver,
or a remote system, using IPMI V1.5 and IPMI v2.0. These functions include
printing FRU information, LAN configuration, sensor readings, and remote
chassis power control.

IPMI management of a local system interface requires a compatible IPMI
kernel driver to be installed and configured.  On Linux this driver is
called \fIOpenIPMI\fP and it is included in standard distributions.
On Solaris this driver is called \fIBMC\fP and is included in Solaris 10.
Management of a remote station requires the IPMI\-over\-LAN interface to be
enabled and configured.  Depending on the particular requirements of each
system it may be possible to enable the LAN interface using ipmitool over
the system interface.
.SH "OPTIONS"
.TP 
\fB\-a\fR
Prompt for the remote server password.
.TP 
\fB\-A\fR <\fIauthtype\fP>
Specify an authentication type to use during IPMIv1.5 \fIlan\fP
session activation.  Supported types are NONE, PASSWORD, MD2, MD5, or OEM.
.TP 
\fB\-c\fR
Present output in CSV (comma separated variable) format.  
This is not available with all commands.
.TP
\fB\-e\fR <\fIsol_escape_char\fP>
Use supplied character for SOL session escape character.  The default
is to use \fI~\fP but this can conflict with ssh sessions.
.TP
\fB\-k\fR <\fIkey\fP>
Use supplied Kg key for IPMIv2 authentication.  The default is not to
use any Kg key.
.TP
\fB\-y\fR <\fIhex key\fP>
Use supplied Kg key for IPMIv2 authentication. The key is expected in
hexadecimal format and can be used to specify keys with non-printable
characters. E.g. '-k PASSWORD' and '-y 50415353574F5244' are
equivalent.
The default is not to use any Kg key.
.TP 
\fB\-C\fR <\fIciphersuite\fP>
The remote server authentication, integrity, and encryption algorithms
to use for IPMIv2 \fIlanplus\fP connections.  See table 22\-19 in the
IPMIv2 specification.  The default is 3 which specifies RAKP\-HMAC\-SHA1 
authentication, HMAC\-SHA1\-96 integrity, and AES\-CBC\-128 encryption algorightms.
.TP 
\fB\-E\fR
The remote server password is specified by the environment
variable \fIIPMI_PASSWORD\fP.
.TP 
\fB\-f\fR <\fIpassword_file\fP>
Specifies a file containing the remote server password. If this
option is absent, or if password_file is empty, the password
will default to NULL.
.TP 
\fB\-h\fR
Get basic usage help from the command line.
.TP 
\fB\-H\fR <\fIaddress\fP>
Remote server address, can be IP address or hostname.  This 
option is required for \fIlan\fP and \fIlanplus\fP interfaces.
.TP 
\fB\-I\fR <\fIinterface\fP>
Selects IPMI interface to use.  Supported interfaces that are
compiled in are visible in the usage help output.
.TP 
\fB\-L\fR <\fIprivlvl\fP>
Force session privilege level.  Can be CALLBACK, USER,
OPERATOR, ADMINISTRATOR. Default is ADMINISTRATOR.
.TP 
\fB\-m\fR <\fIlocal_address\fP>
Set the local IPMB address.  The default is 0x20 and there
should be no need to change it for normal operation.
.TP 
\fB\-o\fR <\fIoemtype\fP>
Select OEM type to support.  This usually involves minor hacks
in place in the code to work around quirks in various BMCs from
various manufacturers.  Use \fI\-o list\fP to see a list of
current supported OEM types.
.TP 
\fB\-O\fR <\fIsel oem\fP>
Open selected file and read OEM SEL event descriptions to be used
during SEL listings.  See examples in contrib dir for file format.
.TP
\fB\-p\fR <\fIport\fP>
Remote server UDP port to connect to.  Default is 623.
.TP 
\fB\-P\fR <\fIpassword\fP>
Remote server password is specified on the command line.
If supported it will be obscured in the process list. 
\fBNote!\fR Specifying the password as a command line
option is not recommended.
.TP 
\fB\-S\fR <\fIsdr_cache_file\fP>
Use local file for remote SDR cache.  Using a local SDR cache
can drastically increase performance for commands that require
knowledge of the entire SDR to perform their function.  Local
SDR cache from a remote system can be created with the
\fIsdr dump\fP command.
.TP 
\fB\-t\fR <\fItarget_address\fP>
Bridge IPMI requests to the remote target address.
.TP 
\fB\-U\fR <\fIusername\fP>
Remote server username, default is NULL user.
.TP
\fB\-d \fIN\fP\fR
Use device number N to specify the /dev/ipmiN (or 
/dev/ipmi/N or /dev/ipmidev/N) device to use for in-band 
BMC communication.  Used to target a specific BMC on a 
multi-node, multi-BMC system through the ipmi device 
driver interface.  Default is 0.
.TP 
\fB\-v\fR
Increase verbose output level.  This option may be specified
multiple times to increase the level of debug output.  If given
three times you will get hexdumps of all incoming and
outgoing packets.
.TP 
\fB\-V\fR
Display version information.

.LP 
If no password method is specified then ipmitool will prompt the
user for a password. If no password is entered at the prompt,
the remote server password will default to NULL.
.SH "SECURITY"
There are several security issues be be considered before enabling the
IPMI LAN interface. A remote station has the ability to control a system's power 
state as well as being able to gather certain platform information. To reduce 
vulnerability it is strongly advised that the IPMI LAN interface only be 
enabled in 'trusted' environments where system security is not an issue or 
where there is a dedicated secure 'management network'.

Further it is strongly advised that you should not enable IPMI for
remote access without setting a password, and that that password should
not be the same as any other password on that system.

When an IPMI password is changed on a remote machine with the IPMIv1.5
\fIlan\fP interface the new password is sent across the network
as clear text.  This could be observed and then used to attack the remote
system.  It is thus recommended that IPMI password management only be done
over IPMIv2.0 \fIlanplus\fP interface or the system interface on the
local station.

For IPMI v1.5, the maximum password length is 16 characters.
Passwords longer than 16 characters will be truncated.

For IPMI v2.0, the maximum password length is 20 characters;
longer passwords are truncated.
.SH "COMMANDS"
.TP 
\fIhelp\fP
This can be used to get command\-line help  on  ipmitool
commands.  It may also be placed at the end of commands
to get option usage help.

ipmitool help
.br 
Commands:
        raw          Send a RAW IPMI request and print response
        i2c          Send an I2C Master Write-Read command and print response
        spd          Print SPD info from remote I2C device
        lan          Configure LAN Channels
        chassis      Get chassis status and set power state
        power        Shortcut to chassis power commands
        event        Send events to MC
        mc           Management Controller status and global enables
        sdr          Print Sensor Data Repository entries and readings
        sensor       Print detailed sensor information
        fru          Print built\-in FRU and scan for FRU locators
        sel          Print System Event Log (SEL)
        pef          Configure Platform Event Filtering (PEF)
        sol          Configure and connect IPMIv2.0 Serial\-over\-LAN
        tsol         Configure and connect Tyan IPMIv1.5 Serial\-over\-LAN
        isol         Configure and connect Intel IPMIv1.5 Serial\-over\-LAN
        user         Configure Management Controller users
        channel      Configure Management Controller channels
        session      Print session information
        sunoem       Manage Sun OEM Extensions
        kontronoem   Manage Kontron OEM Extensions
        picmg        Run a PICMG/ATA extended command
        firewall     Configure Firmware Firewall
        shell        Launch interactive IPMI shell
        exec         Run list of commands from file
        set          Set runtime variable for shell and exec
        echo         Used to echo lines to stdout in scripts
        ekanalyzer   run FRU-Ekeying analyzer using FRU files

ipmitool chassis help
.br 
Chassis Commands:  status, power, identify, policy, restart_cause, poh, bootdev, bootparam, selftest

ipmitool chassis power help
.br 
chassis power Commands: status, on, off, cycle, reset, diag, soft
.TP 
\fIbmc|mc\fP
.RS
.TP 
\fIreset\fP <\fBwarm\fR|\fBcold\fR>
.br 

Instructs the BMC to perform a warm or cold reset.
.TP 
\fIguid\fP

Display the Management Controller Globally Unique IDentifier.
.TP 
\fIinfo\fP
.br

Displays information about the BMC hardware, including device
revision, firmware revision, IPMI version supported, manufacturer ID,
and information on additional device support.
.TP 
\fIwatchdog\fP
.br 

These commands allow a user to view and change the current 
state of the watchdog timer.
.RS
.TP 
\fIget\fP
.br

Show current Watchdog Timer settings and countdown state.
.TP 
\fIreset\fP
.br

Reset the Watchdog Timer to its most recent state and restart the 
countdown timer.
.TP 
\fIoff\fP
.br

Turn off a currently running Watchdog countdown timer.
.RE
.TP 
\fIselftest\fP
.br 

Check on the basic health of the BMC by executing the Get Self Test
results command and report the results.
.TP 
\fIgetenables\fP
.br 

Displays a list of the currently enabled options for the BMC.
.br 
.TP 
\fIsetenables\fP <\fBoption\fR>=[\fIon\fP|\fIoff\fP]
.br 

Enables or disables the given \fIoption\fR.  This command is
only supported over the system interface according to the IPMI
specification.  Currently supported values for \fIoption\fR include:
.RS
.TP 
\fIrecv_msg_intr\fP
.br 

Receive Message Queue Interrupt
.TP 
\fIevent_msg_intr\fP
.br 

Event Message Buffer Full Interrupt
.TP 
\fIevent_msg\fP
.br 

Event Message Buffer
.TP 
\fIsystem_event_log\fP
.br 

System Event Logging
.TP 
\fIoem0\fP
.br 

OEM\-Defined option #0
.TP 
\fIoem1\fP
.br 

OEM\-Defined option #1
.TP 
\fIoem2\fP
.br 

OEM\-Defined option #2
.RE
.RE
.TP 
\fIchannel\fP
.RS
.TP 
\fIauthcap\fP <\fBchannel number\fR> <\fBmax priv\fR>

Displays information about the authentication capabilities of
the selected channel at the specified privilege level.
.RS
.TP 
Possible privilege levels are:
.br 
\fI1\fP   Callback level
.br 
\fI2\fP   User level
.br 
\fI3\fP   Operator level
.br 
\fI4\fP   Administrator level
.br 
\fI5\fP   OEM Proprietary level
.RE
.TP 
\fIinfo\fP [\fBchannel number\fR]

Displays  information  about  the selected  channel.  If no channel 
is given it will display information about the currently used channel.
.RS
.PP 
> ipmitool channel info
.br 
Channel 0xf info:
.br 
  Channel Medium Type   : System Interface
.br 
  Channel Protocol Type : KCS
.br 
  Session Support       : session\-less
.br 
  Active Session Count  : 0
.br 
  Protocol Vendor ID    : 7154
.RE
.TP 
\fIgetaccess\fP <\fBchannel number\fR> [<\fBuserid\fR>]
.br 

Configure the given userid as the default on the given channel number.  
When the given channel is subsequently used, the user is identified 
implicitly by the given userid.
.TP 
\fIsetaccess\fP <\fBchannel number\fR> <\fBuserid\fR> [<\fIcallin\fP=\fBon\fR|\fBoff\fR>]
[<\fIipmi\fP=\fBon\fR|\fBoff\fR>] [<\fIlink\fP=\fBon\fR|\fBoff\fR>] [<\fIprivilege\fP=\fBlevel\fR>]
.br 

Configure user access information on the given channel for the given userid.
.TP 
\fIgetciphers\fP <\fIipmi\fP|\fIsol\fP> [<\fBchannel\fR>]
.br 

Displays the list of cipher suites supported for the given
application (ipmi or sol) on the given channel.
.RE
.TP 
\fIchassis\fP
.RS
.TP 
\fIstatus\fP
.br 

Displays information regarding the high\-level
status of the system chassis and main power
subsystem.
.TP 
\fIpoh\fP
.br 

This command will return the Power\-On Hours counter.
.TP 
\fIidentify\fP <\fBinterval\fR>

Control the front panel identify  light.   Default interval
is 15 seconds.  Use 0 to turn off.  Use "force" to turn on 
indefinitely.
.TP 
\fIrestart_cause\fP
.br 

Query the chassis for the cause of the last system restart.
.TP 
\fIselftest\fP
.br 

Check on the basic health of the BMC by executing the Get Self Test
results command and report the results.
.TP 
\fIpolicy\fP
.br 

Set the chassis power policy in  the  event  power failure.
.RS
.TP 
\fIlist\fP
.br 

Return supported policies.
.TP 
\fIalways\-on\fP
.br 

Turn on when power is restored.
.TP 
\fIprevious\fP
.br 

Returned to  previous  state  when  power  is restored.
.TP 
\fIalways\-off\fP
.br 

Stay off after power is restored.
.RE
.TP 
\fIpower\fP
.br 

Performs a chassis control  command  to  view  and
change the power state.
.RS
.TP 
\fIstatus\fP
.br 

Show current chassis power status.
.TP 
\fIon\fP
.br 

Power up chassis.
.TP 
\fIoff\fP
.br 

Power down chassis into soft off (S4/S5 state).
\fBWARNING\fR: This command does not initiate a clean 
shutdown of the operating system prior to powering down the system.
.TP 
\fIcycle\fP
.br 

Provides a power off interval of at least 1 second.  No action
should occur if chassis power is in S4/S5 state, but it is
recommended to check power state first and only issue a power
cycle command if the  system  power is on or in lower sleep
state than S4/S5.
.TP 
\fIreset\fP
.br 

This command will perform a hard reset.
.TP 
\fIdiag\fP
.br 

Pulse a diagnostic interrupt (NMI) directly to the processor(s).
.TP 
\fIsoft\fP
.br 

Initiate a soft\-shutdown of OS via ACPI.  This can be done in a
number of ways, commonly by simulating an overtemperture or by
simulating a power button press.  It is necessary for there to
be Operating System support for ACPI and some sort of daemon
watching for events for this soft power to work.
.RE
.TP 
\fIbootdev\fP <\fBdevice\fR> [<\fIclear\-cmos\fP=\fByes\fR|\fBno\fR>] [<\fIoptions\fP=\fBhelp,...\fR>]
.br 

Request the system to boot from an alternate boot device on next reboot.
The \fIclear\-cmos\fP option, if supplied, will instruct the BIOS to
clear its CMOS on the next reboot.  Various options may be used to modify 
the boot device settings.  Run \fI"bootdev none options=help"\fP for a list of 
available boot device modifiers/options.  

.RS
.TP 
Currently supported values for <device> are:
.TP 
\fInone\fP
.br 

Do not change boot device
.TP 
\fIpxe\fP
.br 

Force PXE boot
.TP 
\fIdisk\fP
.br 

Force boot from BIOS default boot device
.TP 
\fIsafe\fP
.br 

Force boot from BIOS default boot device, request Safe Mode
.TP 
\fIdiag\fP
.br 

Force boot from diagnostic partition
.TP 
\fIcdrom\fP
.br 

Force boot from CD/DVD
.TP 
\fIbios\fP
.br 

Force boot into BIOS setup
.TP 
\fIfloppy\fP
.br 

Force boot from Floppy/primary removable media
.RE
.TP 
\fIbootparam\fP
.br 

Get or set various system boot option parameters.
.RS
.TP 
\fIget\fP <\fBparam #\fR>
.br 

Get boot parameter. Currently supported values for <\fBparam #\fR> are:

\fI0\fP - Set In Progress

\fI1\fP - Service Partition Selector

\fI2\fP - Service Partition Scan

\fI3\fP - BMC Boot Flag Valid Bit Clearing

\fI4\fP - Boot Info Acknowledge 

\fI5\fP - Boot Flags

\fI6\fP - Boot Initiator Info

\fI7\fP - Boot Initiator Mailbox
.br 

.TP 
\fIset\fP <\fBoption\fR> [\fBvalue ...\fR]
.br 

Set boot parameter.

.RS
.TP 
Currently supported values for \fB<option>\fR are:
.TP 
\fIforce_pxe\fP
.br 

Force PXE boot
.TP 
\fIforce_disk\fP
.br 

Force boot from default hard-drive
.TP 
\fIforce_safe\fP
.br 

Force boot from default hard-drive, request Safe Mode
.TP 
\fIforce_diag\fP
.br 

Force boot from diagnostic partition
.TP 
\fIforce_cdrom\fP
.br 

Force boot from CD/DVD 
.TP 
\fIforce_bios\fP
.br 

Force boot into BIOS setup

.RE
.RE
.RE
.TP
\fIekanalyzer\fP <\fBcommand\fR> <\fBxx=filename1\fR> <\fBxx=filename2\fR> [<\fBrc=filename3\fR>] \fB...\fR
.RS
.TP
.br
\fINOTE\fP : This command can support a maximum of 8 files per command line
.TP
.br
\fIfilename1\fP : binary file that stores FRU data of a Carrier or an AMC module
.TP
.br
\fIfilename2\fP : binary file that stores FRU data of an AMC module.
      These binary files can be generated from command:
      \fIipmitool fru read <id> <filename>\fP
.TP
.br
\fIfilename3\fP : configuration file used for configuring On-Carrier Device ID
or OEM GUID. This file is optional.
.TP
.br
\fIxx\fP : indicates the type of the file. It can take the following value:
.RS
.TP
.br
\fIoc\fP : On-Carrier device
.TP
.br
\fIa1\fP : AMC slot A1
.TP
.br
\fIa2\fP : AMC slot A2
.TP
.br
\fIa3\fP : AMC slot A3
.TP
.br
\fIa4\fP : AMC slot A4
.TP
.br
\fIb1\fP : AMC slot B1
.TP
.br
\fIb2\fP : AMC slot B2
.TP
.br
\fIb3\fP : AMC slot B3
.TP
.br
\fIb4\fP : AMC slot B4
.TP
.br
\fIsm\fP : Shelf Manager

.RE
.TP
.br
The available commands for ekanalyzer are:

.RE
.RS
.TP
\fIprint\fP [<\fBcarrier\fR | \fBpower\fR | \fBall\fR>]
.RS
.TP
\fIcarrier\fP (default) <\fBoc=filename1\fR> <\fBoc=filename2\fR> \fB...\fR
.br

Display point to point physical connectivity between carriers and AMC modules.
 Example:
   > ipmitool ekanalyzer print carrier oc=fru oc=carrierfru
   From Carrier file: fru
      Number of AMC bays supported by Carrier: 2 
      AMC slot B1 topology:
         Port 0 =====> On Carrier Device ID 0, Port 16
         Port 1 =====> On Carrier Device ID 0, Port 12
         Port 2 =====> AMC slot B2, Port 2
      AMC slot B2 topology:
         Port 0 =====> On Carrier Device ID 0, Port 3
         Port 2 =====> AMC slot B1, Port 2
   *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
   From Carrier file: carrierfru
      On Carrier Device ID 0 topology:
         Port 0 =====> AMC slot B1, Port 4
         Port 1 =====> AMC slot B1, Port 5
         Port 2 =====> AMC slot B2, Port 6
         Port 3 =====> AMC slot B2, Port 7
      AMC slot B1 topology:
         Port 0 =====> AMC slot B2, Port 0
      AMC slot B1 topology:
         Port 1 =====> AMC slot B2, Port 1
      Number of AMC bays supported by Carrier: 2

.TP
\fIpower\fP <\fBxx=filename1\fR> <\fBxx=filename2\fR> \fB...\fr
.br

Display power supply informations between carrier and AMC modules.
.TP
\fIall\fP <\fBxx=filename\fR> <\fBxx=filename\fR> \fB...\fr
.br

Display both physical connectivity and power supply of each carrier and AMC
modules.

.RE
.TP
\fIfrushow\fP <\fBxx=filename\fR>
.br
Convert a binary FRU file into human readable text format. Use -v option to get
more display information.

.RE
.RS
.TP
\fIsummary\fP [<\fBmatch\fR | \fBunmatch\fR | \fBall\fR>]
.RS
.TP
\fImatch\fP (default) <\fBxx=filename\fR> <\fBxx=filename\fR> \fB...\fR
.br
Display only matched results of Ekeying match between an On-Carrier device
and an AMC module or between 2 AMC modules. Example:
 > ipmitool ekanalyzer summary match oc=fru b1=amcB1 a2=amcA2
 On-Carrier Device vs AMC slot B1
  AMC slot B1 port 0 ==> On-Carrier Device 0 port 16
   Matching Result
   - From On-Carrier Device ID 0
    -Channel ID 11 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   - To AMC slot B1
    -Channel ID 0 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
  AMC slot B1 port 1 ==> On-Carrier Device 0 port 12
   Matching Result
   - From On-Carrier Device ID 0
    -Channel ID 6 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   - To AMC slot B1
    -Channel ID 1 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
 On-Carrier Device vs AMC slot A2
  AMC slot A2 port 0 ==> On-Carrier Device 0 port 3
   Matching Result
   - From On-Carrier Device ID 0
    -Channel ID 9 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   - To AMC slot A2
    -Channel ID 0 || Lane 0: enable
    -Link Type: AMC.2 Ethernet
    -Link Type extension: 1000BASE-BX (SerDES Gigabit) Ethernet link
    -Link Group ID: 0 || Link Asym. Match: exact match
   *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
 AMC slot B1 vs AMC slot A2
  AMC slot A2 port 2 ==> AMC slot B1 port 2
   Matching Result
   - From AMC slot B1
    -Channel ID 2 || Lane 0: enable
    -Link Type: AMC.3 Storage
    -Link Type extension: Serial Attached SCSI (SAS/SATA)
    -Link Group ID: 0 || Link Asym. Match: FC or SAS interface {exact match}
   - To AMC slot A2
    -Channel ID 2 || Lane 0: enable
    -Link Type: AMC.3 Storage
    -Link Type extension: Serial Attached SCSI (SAS/SATA)
    -Link Group ID: 0 || Link Asym. Match: FC or SAS interface {exact match}
 *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
.TP
\fIunmatch\fP <\fBxx=filename\fR> <\fBxx=filename\fR> \fB...\fr
.br

Display the unmatched results of Ekeying match between an On-Carrier device
and an AMC module or between 2 AMC modules
.TP
\fIall\fP <\fBxx=filename\fR> <\fBxx=filename\fR> \fB...\fr
.br

Display both matched result and unmatched results of Ekeying match between two
cards or two modules.
.RE
.RE
.TP 
\fIevent\fP
.RS
.TP 
<\fBpredefined event number\fR \fIN\fR>
.br 

Send a pre\-defined test event to the System Event Log.  The following
events are included as a means to test the functionality of the 
System Event Log component of the BMC (an entry will be added each 
time the event \fIN\fP command is executed).

Currently supported values for \fIN\fR are:
.br 
\fI1\fP	Temperature: Upper Critical: Going High
.br 
\fI2\fP	Voltage Threshold: Lower Critical: Going Low
.br 
\fI3\fP	Memory: Correctable ECC 
.br 

\fBNOTE\fR: These pre\-defined events will likely not produce
"accurate" SEL records for a particular system because they will
not be correctly tied to a valid sensor number, but they are
sufficient to verify correct operation of the SEL.

.TP 
\fIfile\fP <\fBfilename\fR>
.br 

Event log records specified in <\fBfilename\fP> will be added to
the System Event Log.

The format of each line in the file is as follows:

<{\fIEvM Revision\fP} {\fISensor Type\fP} {\fISensor Num\fP} {\fIEvent Dir/Type\fP} {\fIEvent Data 0\fP} {\fIEvent Data 1\fP} {\fIEvent Data 2\fP}>[\fI# COMMENT\fP]

e.g.:
0x4 0x2 0x60 0x1 0x52 0x0 0x0 # Voltage threshold: Lower Critical: Going Low
.br 

\fIEvM Revision\fP - 
The "Event Message Revision" is 0x04 for messages that comply with the IPMI 2.0 
Specification and 0x03 for messages that comply with the IPMI 1.0 Specification.

\fISensor Type\fP - 
Indicates the Event Type or Class.

\fISensor Num\fP - 
Represents the 'sensor' within the management controller that generated 
the Event Message.

\fIEvent Dir/Type\fP - 
This field is encoded with the event direction as the high bit 
(bit 7) and the event type as the low 7 bits.  Event direction is 
0 for an assertion event and 1 for a deassertion event. 

See the IPMI 2.0 specification for further details on the definitions for
each field.

.TP 
<\fBsensorid\fR> <\fBlist\fR>
.br 

Get a list of all the possible Sensor States and pre-defined Sensor State
Shortcuts available for a particular sensor.   \fBsensorid\fR is the character 
string representation of the sensor and must be enclosed in double quotes
if it includes white space.  Several different commands including 
\fIipmitool sensor list\fP may be used to obtain a list that includes 
the \fBsensorid\fR strings representing the sensors on a given system. 
.RS
.PP 
> ipmitool \-I open event "PS 2T Fan Fault" list
.br 
Finding sensor PS 2T Fan Fault... ok
.br 
Sensor States:
.br 
  State Deasserted
.br 
  State Asserted
.br 
Sensor State Shortcuts:
.br 
  present    absent
.br 
  assert     deassert
.br 
  limit      nolimit
.br 
  fail       nofail
.br 
  yes        no
.br 
  on         off
.br 
  up         down

.RE
.TP 
<\fBsensorid\fR> <\fBsensor state\fR> [<\fBdirection\fR>]

Generate a custom event based on existing sensor information.
The optional event \fBdirection can be either \fIassert\fP 
(the default) or \fIdeassert\fP.  

.RS
.PP 
> ipmitool event "PS 2T Fan Fault" "State Asserted"
.br 
Finding sensor PS 2T Fan Fault... ok
.br 
   0 | Pre-Init Time-stamp   | Fan PS 2T Fan Fault | State Asserted
.RE
.RS
.PP 
> ipmitool event "PS 2T Fan Fault" "State Deasserted"
.br 
Finding sensor PS 2T Fan Fault... ok
.br 
   0 | Pre-Init Time-stamp   | Fan PS 2T Fan Fault | State Desserted
.RE
.RS
.PP 
.RE
.RE
.TP 
\fIexec\fP <\fBfilename\fR>

.RS
Execute ipmitool commands from \fIfilename\fR.  Each line is a
complete command.  The syntax of the commands are defined by the
COMMANDS section in this manpage.  Each line may have an optional
comment at the end of the line, delimited with a `#' symbol.

e.g., a command file with two lines:

sdr list # get a list of sdr records
.br 
sel list # get a list of sel records
.RE
.TP 
\fIfru\fP
.RS
.TP 
\fIprint\fP
.br 

Read all Field  Replaceable  Unit (FRU) inventory data and extract 
such information as serial number, part number, asset tags, and 
short strings describing the chassis, board, or product.
.TP 
\fIread\fP <\fBfru id\fR> <\fBfru file\fR>
.br 

\fBfru id\fR is the digit ID of the FRU (see output of 'fru print').
\fBfru file\fR is the absolute pathname of a file in which to dump the
binary FRU data pertaining to the specified FRU entity.
.TP 
\fIwrite\fP <\fBfru id\fR> <\fBfru file\fR>
.br 

\fBfru id\fR is the digit ID of the FRU (see output of 'fru print').
\fBfru file\fR is the absolute pathname of a file from which to pull
the binary FRU data before uploading it to the specified FRU.
.TP 
\fIupgEkey\fP <\fBfru id\fR> <\fBfru file\fR>
.br 

Update a multirecord FRU location.
\fBfru id\fR is the digit ID of the FRU (see output of 'fru print').
\fBfru file\fR is the absolute pathname of a file from which to pull the
binary FRU data to upload into the specified multirecord FRU entity.

.TP 
\fIedit\fP <\fBfru id\fR> 
.br 

This command provides interactive editing of some supported records, namely
PICMG Carrier Activation Record.  \fBfru id\fR is the digit ID of the FRU 
(see output of 'fru print'); default is 0.

.TP 
\fIedit\fP <\fBfru id\fR> \fBfield\fR <\fBsection\fR> <\fBindex\fR> <\fBstring\fR>
.br 

This command may be used to set a field string to a new value.  It replaces 
the FRU data found at \fBindex\fR in the specified \fBsection\fR with the 
supplied \fBstring\fR.  

.RS
.TP
\fBfru id\fR is the digit ID of the FRU (see output of 'fru print').
.br

.TP
<\fBsection\fR> is a string which refers to FRU Inventory Information
Storage Areas and may be refer to:
.RS
.TP 
\fIc\fP FRU Inventory Chassis Info Area
.br
.TP
\fIb\fP FRU Inventory Board Info Area
.br
.TP
\fIp\fP FRU Inventory Product Info Area
.br
.RE

.TP
<\fBindex\fR> specifies the field number. Field numbering starts on the first 'english text' field type. For instance in the <\fBboard\fR> info area field '0' is <\fBBoard Manufacturer\fR> and field '2' is <\fBBoard Serial Number\fR>; see IPMI Platform Management FRU Information Storage Definition v1.0 R1.1 for field locations.
.br

.TP
<\fBstring\fR> must be the same length as the string being replaced and must be 8-bit ASCII (0xCx).
.br

.RE

.TP 
\fIedit\fP <\fBfru id\fR> \fBoem\fR \fBiana\fR <\fBrecord\fR> <\fBformat\fR> [<\fBargs\fR>]
.br 

This command edits the data found in the multirecord area. Support for
OEM specific records is limited. 
.RE
.TP 
\fIfirewall\fP
.br 

This command supports the Firmware Firewall capability.  It may be used to 
add or remove security-based restrictions on certain commands/command 
sub-functions  or to list the current firmware firewall restrictions set on 
any commands.  For each firmware firewall command listed below, parameters 
may be included to cause the command to be executed with increasing 
granularity on a specific LUN, for a specific NetFn, for a specific IPMI 
Command, and finally for a specific command's sub-function (see Appendix H in the 
IPMI 2.0 Specification for a listing of any sub-function numbers that may 
be associated with a particular command).

Parameter syntax and dependencies are as follows:

[<\fIchannel\fP \fBH\fR>] [<\fIlun\fP \fBL\fR> [ <\fInetfn\fP \fBN\fR> [<\fIcommand\fP \fBC\fR [<\fIsubfn\fP \fBS\fR>]]]] 

Note that if "netfn <\fBN\fR>" is specified, then "lun <\fBL\fR>" must also be 
specified;  if "command <\fBC\fR>" is specified, then "netfn <\fBN\fR>" (and
therefore "lun <\fBL\fR>") must also be specified, and so forth.

"channel <\fBH\fR>" is an optional and standalone parameter.  If not specified,
the requested operation will be performed on the current channel.  Note that
command support may vary from channel to channel. 

Firmware firewall commands:
.RS
.TP 
\fIinfo\fP [<\fBParms as described above\fR>]
.br 

List firmware firewall information for the specified LUN, NetFn, and 
Command (if supplied) on the current or specified channel.  Listed
information includes the support, configurable, and enabled bits for
the specified command or commands.

Some usage examples:
.RS
.TP 
\fIinfo\fP [<\fBchannel H\fR>] [<\fBlun L\fR>] 
.br 

This command will list firmware firewall information for all NetFns for the 
specified LUN on either the current or the specified channel.
.TP 
\fIinfo\fP [<\fBchannel H\fR>] [<\fBlun L\fR> [ <\fBnetfn N\fR> ] 
.br 

This command will print out all command information for a single LUN/NetFn pair.
.TP 
\fIinfo\fP [<\fBchannel H\fR>] [<\fBlun L\fR> [ <\fBnetfn N\fR> [<\fBcommand C\fR] ]] 
.br 

This prints out detailed, human-readable information showing the support, configurable,
and enabled bits for the specified command on the specified LUN/NetFn pair.  Information
will be printed about each of the command subfunctions.
.TP 
\fIinfo\fP [<\fBchannel H\fR>] [<\fBlun L\fR> [ <\fBnetfn N\fR> [<\fBcommand C\fR [<\fBsubfn S\fR>]]]] 
.br 

Print out information for a specific sub-function.
.RE
.TP 
\fIenable\fP [<\fBParms as described above\fR>]
.br 

This command is used to enable commands for a given NetFn/LUN combination on
the specified channel. 
.TP 
\fIdisable\fP [<\fBParms as described above\fR>] [\fBforce\fR]
.br 

This command is used to disable commands for a given NetFn/LUN combination on
the specified channel.   Great care should be taken if using the "force"
option so as not to disable the "Set Command Enables" command.
.TP 
\fIreset\fP [<\fBParms as described above\fR>]
.br 

This command may be used to reset the firmware firewall back to a state
where all commands and command sub-functions are enabled.

.RE

.TP 
\fIi2c\fP <\fBi2caddr\fR> <\fBread bytes\fR> [<\fBwrite data\fR>]
.br 

This command may be used to execute raw I2C commands with the Master
Write\-Read IPMI command.

.RE
.TP 
\fIisol\fP
.RS
.TP 
\fIinfo\fP
.br 

Retrieve information about the Intel IPMI v1.5 Serial\-Over\-LAN
configuration.
.TP 
\fIset\fP <\fBparameter\fR> <\fBvalue\fR>
.br 

Configure parameters for Intel IPMI v1.5 Serial\-over\-LAN.
.RS
.TP
Valid parameters and values are:
.br
.TP
\fIenabled\fP
true, false.
.TP
\fIprivilege\-level\fP
user, operator, admin, oem.
.TP
\fIbit\-rate\fP
9.6, 19.2, 38.4, 57.6, 115.2.
.RE
.TP
\fIactivate\fP
.br

Causes ipmitool to enter Intel IPMI v1.5 Serial Over LAN mode. An RMCP+
connection is made to the BMC, the terminal is set to raw mode, and user
input is sent to the serial console on the remote server. On exit, the
the SOL payload mode is deactivated and the terminal is reset to its
original settings.
.RS

Special escape sequences are provided to control the SOL session:
.RS
.TP
\fI~.\fP        Terminate connection
.TP
\fI~^Z\fP       Suspend ipmitool
.TP
\fI~^X\fP       Suspend ipmitool, but don't restore tty on restart
.TP
\fI~B\fP        Send break
.TP
\fI~~\fP        Send the escape character by typing it twice
.TP
\fI~?\fP        Print the supported escape sequences
.RE

Note that escapes are only recognized immediately after newline.
.RE

.RE
.TP 
\fIkontronoem\fP
.RS

OEM commands specific to Kontron devices.
.TP
\fIsetsn\fP
.br

Set FRU serial number.
.TP
\fIsetmfgdate\fP
.br

Set FRU manufacturing date.
.TP
\fInextboot\fP <\fBboot device\fR>
.br

Select the next boot order on the Kontron CP6012.
.RE
.TP 
\fIlan\fP
.RS

These commands will allow you to configure IPMI LAN channels
with network information so they can be used with the ipmitool
\fIlan\fP and \fIlanplus\fP interfaces.  \fINOTE\fR: To
determine on which channel the LAN interface is located, issue
the `channel info \fInumber\fR' command until you come across
a valid 802.3 LAN channel.  For example:

.br 
> ipmitool \-I open channel info 1
.br 
Channel 0x1 info:
.br 
  Channel Medium Type   : 802.3 LAN
  Channel Protocol Type : IPMB\-1.0
  Session Support       : session\-based
  Active Session Count  : 8
  Protocol Vendor ID    : 7154

.TP 
\fIprint\fP [<\fBchannel\fR>]
.br 

Print the  current  configuration  for  the  given channel.
The default will print information on the first found LAN channel.
.TP 
\fIset\fP <\fBchannel number\fR> <\fBcommand\fR> <\fBparameter\fR>
.br 

Set the given command and parameter on the specified channel.  Valid 
command/parameter options are:
.RS
.TP 
\fIipaddr\fP <\fBx.x.x.x\fR>
.br 

Set the IP address for this channel.
.TP 
\fInetmask\fP <\fBx.x.x.x\fR>
.br 

Set the netmask for this channel.
.TP 
\fImacaddr\fP <\fBxx:xx:xx:xx:xx:xx\fR>
.br 

Set the MAC address for this channel.
.TP 
\fIdefgw ipaddr\fP <\fBx.x.x.x\fR>
.br 

Set the default gateway IP address.
.TP 
\fIdefgw macaddr\fP <\fBxx:xx:xx:xx:xx:xx\fR>
.br 

Set the default gateway MAC address.
.TP 
\fIbakgw ipaddr\fP <\fBx.x.x.x\fR>
.br 

Set the backup gateway IP address.
.TP 
\fIbakgw macaddr\fP <\fBxx:xx:xx:xx:xx:xx\fR>
.br 

Set the backup gateway MAC address.
.TP 
\fIpassword\fP <\fBpass\fR>
.br 

Set the null user password.
.TP 
\fIsnmp\fP <\fBcommunity string\fR>
.br 

Set the SNMP community string.
.TP 
\fIuser\fP
.br 

Enable user access mode for userid 1 (issue the `user'
command to display information about userids for a given channel).
.TP 
\fIaccess\fP <\fBon|off\fR>
.br 

Set LAN channel access mode.
.TP 
\fIalert\fP <\fBon|off\fR>
.br 

Enable or disable PEF alerting for this channel.
.TP 
\fIipsrc\fP <\fBsource\fR>
.br 

Set the IP address source:
.br 
\fInone\fP	unspecified
.br 
\fIstatic\fP	manually configured static IP address
.br 
\fIdhcp\fP	address obtained by BMC running DHCP
.br 
\fIbios\fP	address loaded by BIOS or system software
.TP 
\fIarp respond\fP <\fBon\fR|\fBoff\fR>
.br 

Set BMC generated ARP responses.
.TP 
\fIarp generate\fP <\fBon\fR|\fBoff\fR>
.br 

Set BMC generated gratuitous ARPs.
.TP 
\fIarp interval\fP <\fBseconds\fR>
.br 

Set BMC generated gratuitous ARP interval.
.TP 
\fIvlan id\fP <\fBoff\fR|\fBid\fR>
.br 

Disable VLAN operation or enable VLAN and set the ID.
.br 
ID: value of the virtual lan identifier between 1 and 4094 inclusive.
.TP 
\fIvlan priority\fP <\fBpriority\fR>
.br 

Set the priority associated with VLAN frames.
.br 
ID: priority of the virtual lan frames between 0 and 7 inclusive.
.TP 
\fIauth\fP <\fBlevel\fR,\fB...\fR> <\fBtype\fR,\fB...\fR>
.br 

Set the valid  authtypes  for  a  given  auth level.
.br 
Levels: callback, user, operator, admin
.br 
Types: none, md2, md5, password, oem
.TP 
\fIcipher_privs\fP <\fBprivlist\fR>
.br 

Correlates cipher suite numbers with the maximum privilege
level that is allowed to use it.  In this way, cipher suites can restricted
to users with a given privilege level, so that, for example,
administrators are required to use a stronger cipher suite than
normal users.

The format of \fIprivlist\fR is as follows.  Each character represents
a privilege level and the character position identifies the cipher suite
number.  For example, the first character represents cipher suite 1
(cipher suite 0 is reserved), the second represents cipher suite 2, and
so on.  \fIprivlist\fR must be 15 characters in length.

Characters used in \fIprivlist\fR and their associated privilege levels are:

\fIX\fP	Cipher Suite Unused
.br 
\fIc\fP	CALLBACK
.br 
\fIu\fP	USER
.br 
\fIo\fP	OPERATOR
.br 
\fIa\fP	ADMIN
.br 
\fIO\fP	OEM
.br 

So, to set the maximum privilege for cipher suite 1 to USER and suite 2 to
ADMIN, issue the following command:

> ipmitool \-I \fIinterface\fR lan set \fIchannel\fR cipher_privs uaXXXXXXXXXXXXX

.RE
.TP
\fIalert\fP \fIprint\fP [<\fBchannel\fR>] [<\fBalert destination\fR>]
.br 

Print alert information for the specified channel and destination.  
The default will print all alerts for all alert destinations on the 
first found LAN channel.

.TP
\fIalert\fP \fIset\fP <\fBchannel number\fR> <\fBalert destination\fR> <\fBcommand\fR> <\fBparameter\fR>
.br 

Set an alert on the given LAN channel and destination.   Alert Destinations are
listed via the '\fIlan alert print\fP' command.  Valid command/parameter options are:
.RS
.TP 
\fIipaddr\fP <\fBx.x.x.x\fR>
.br 

Set alert IP address.
.TP 
\fImacaddr\fP <\fBxx:xx:xx:xx:xx:xx\fR>
.br 

Set alert MAC address.
.TP 
\fIgateway\fP <\fBdefault | backup\fR>
.br 

Set the channel gateway to use for alerts.
.TP 
\fIack\fP <\fBon | off\fR>
.br 

Set Alert Acknowledge on or off.
.TP 
\fItype\fP <\fBpet | oem1 | oem2\fR>
.br 

Set the destination type as PET or OEM.
.TP 
\fItime\fP <\fBseconds\fR>
.br 

Set ack timeout or unack retry interval.
.TP 
\fIretry\fP <\fBnumber\fR>
.br 

Set the number of alert retries.
.RE
.TP
\fIstats\fP \fIget\fP [<\fBchannel number\fR>]
.br 

Retrieve information about the IP connections on the specified channel.
The default will retrieve statistics on the first found LAN channel.
.TP
\fIstats\fP \fIclear\fP [<\fBchannel number\fR>]
.br 

Clear all IP/UDP/RMCP Statistics to 0 on the specified channel.
The default will clear statistics on the first found LAN channel.
.RE
.TP 
\fIpef\fP
.RS
.TP 
\fIinfo\fP
.br 

This command will query the BMC and print information about the PEF 
supported features.
.TP 
\fIstatus\fP
.br 

This command prints the current PEF status (the last SEL entry 
processed by the BMC, etc).
.TP 
\fIpolicy\fP
.br 

This command lists the PEF policy table entries.  Each policy 
entry describes an alert destination.  A policy set is a 
collection of table entries.  PEF alert actions reference policy sets.
.TP 
\fIlist\fP
.br 

This command lists the PEF table entries.  Each PEF entry 
relates a sensor event to an action.  When PEF is active, 
each platform event causes the BMC to scan this table for 
entries matching the event, and possible actions to be taken.
Actions are performed in priority order (higher criticality first).
.RE
.TP 
\fIpicmg\fP <\fBproperties\fR> 
.RS

Run a PICMG/ATA extended command. Get PICMG properties may be used to
obtain and print Extension major version information, PICMG identifier,
FRU Device ID and Max FRU Device ID.
.TP 
\fIaddrinfo\fP
.br 

Get address information.  This command may return information on the Hardware
address, IPMB-0 Address, FRU ID, Site/Entity ID, and Site/Entity Type.
.TP 
\fIfrucontrol\fP <\fBfru id\fR> <\fBoptions\fR>
.br 

Set various control options:
.RS
.TP 
\fI0x00\fP      - Cold Reset
.br 
.TP 
\fI0x01\fP      - Warm Reset
.br 
.TP 
\fI0x02\fP      - Graceful Reboot
.br 
.TP 
\fI0x03\fP      - Issue Diagnostic Interrupt
.br 
.TP 
\fI0x04\fP      - Quiesce [AMC only]
.br 
.TP 
\fI0x05-0xFF\fP - Cold Reset
.br 
.RE
.TP 
\fIactivate\fP <\fBfru id\fR>
.br 

Activate the specified FRU.
.TP 
\fIdeactivate\fP <\fBfru id\fR>
.br 

Deactivate the specified FRU.
.TP 
\fIpolicy\fP \fIget\fP <\fBfru id\fR>
.br 

Get FRU activation policy.
.TP 
\fIpolicy\fP \fIset\fP <\fBfru id\fR> <\fBlockmask\fR> <\fBlock\fR>
.br 

Set FRU activation policy.  \fBlockmask\fR is 1 or 0 to indicate action
on the deactivation or activation locked bit respectively.  \fBlock\fR is
1 or 0 to set/clear locked bit.
.TP 
\fIportstate\fP \fBset\fR|\fBgetall\fR|\fBgetgranted\fR|\fBgetdenied\fR <\fBparameters\fR> 
.br 

Get or set various port states.  See usage for parameter details.

.RE
.TP 
\fIpower\fP <\fBchassis power command\fR>
.br 

Shortcut to the \fIchassis power\fP commands.
See the \fIchassis power\fP commands for usage information.
.RE

.TP 
\fIraw\fP <\fBnetfn\fR> <\fBcmd\fR> [<\fBdata\fR>]
.br 

This will allow you to execute raw IPMI commands.   For
example to query the POH counter with a raw command:

> ipmitool \-v raw 0x0 0xf
.br 
RAW REQ (netfn=0x0 cmd=0xf data_len=0)
.br 
RAW RSP (5 bytes)
.br 
3c 72 0c 00 00
.TP 
\fIsdr\fP
.RS
.TP 
\fIget\fP <\fBid\fR> ... [<\fBid\fR>]
.br 

Prints information for sensor data records specified by sensor id.
.TP 
\fIinfo\fP
.br 

This command will query the BMC for Sensor Data Record (SDR) Repository information.
.TP 
\fItype\fP [<\fBsensor type\fP>]

This command will display all records from the SDR Repository of a specific type.
Run with type \fIlist\fP (or simply with no type) to see the list of available types.
For example to query for all Temperature sensors:

> ipmitool sdr type Temperature
.br 
Baseboard Temp   | 30h | ok  |  7.1 | 28 degrees C
.br 
FntPnl Amb Temp  | 32h | ok  | 12.1 | 24 degrees C
.br 
Processor1 Temp  | 98h | ok  |  3.1 | 57 degrees C
.br 
Processor2 Temp  | 99h | ok  |  3.2 | 53 degrees C

.TP 
\fIlist\fP | \fIelist\fP [<\fBall\fR|\fBfull\fR|\fBcompact\fR|\fBevent\fR|\fBmcloc\fR|\fBfru\fR|\fBgeneric\fR>]
.br 

This command will read the Sensor Data Records (SDR) and extract sensor
information of a given type,  then query each sensor and print its name,
reading, and status.  If invoked as \fIelist\fP then it will also print
sensor number, entity id and instance, and asserted discrete states.

The default output will only display \fIfull\fP and \fIcompact\fP sensor
types, to see all sensors use the \fIall\fP type with this command.
.RS
.TP 
Valid types are:
.RS
.TP 
\fIall\fP
.br 

All SDR records (Sensor and Locator) 
.TP 
\fIfull\fP
.br 

Full Sensor Record
.TP 
\fIcompact\fP
.br 

Compact Sensor Record
.TP 
\fIevent\fP
.br 

Event\-Only Sensor Record
.TP 
\fImcloc\fP
.br 

Management Controller Locator Record
.TP 
\fIfru\fP
.br 

FRU Locator Record
.TP 
\fIgeneric\fP
.br 

Generic SDR records
.RE
.RE
.TP 
\fIentity\fP <\fBid\fR>[.<\fBinstance\fR>]
.br 

Displays all sensors associated with an entity.  Get a list of
valid entity ids on the target system by issuing the \fIsdr elist\fP command.
A list of all entity ids can be found in the IPMI specifications.
.TP 
\fIdump\fP <\fBfile\fR>
.br 

Dumps raw SDR data to a file.  This data file can then be used as
a local SDR cache of the remote managed system with the \fI\-S <file>\fP
option on the ipmitool command line.  This can greatly improve performance
over system interface or remote LAN.
.TP 
\fIfill\fP \fIsensors\fP
.br 

Create the SDR Repository for the current configuration.  Will perform
a 'Clear SDR Repository' command so be careful.
.TP 
\fIfill\fP \fIfile\fP <\fBfilename\fR>
.br 

Fill the SDR Repository using records stored in a binary data file. Will perform
a 'Clear SDR Repository' command so be careful.
.RE
.TP 
\fIsel\fP
.br 

NOTE: System Event Log (SEL) entry\-times are displayed as 
`Pre\-Init Time\-stamp' if the SEL clock needs to be set.
Ensure that the SEL clock is accurate by invoking the
\fIsel time get\fP and
\fIsel time set <time string>\fP commands.
.RS
.TP 
\fIinfo\fP
.br 

This command will query the BMC for information
about the System Event Log (SEL) and its contents.
.TP 
\fIclear\fP
.br 

This command will clear the contents of the SEL.
It cannot be undone so be careful.
.TP 
\fIlist\fP | \fIelist\fP
.br 

When this command is invoked without arguments, the entire
contents of the System Event Log are displayed.  If invoked as
\fIelist\fP (extended list) it will also use the Sensor Data 
Record entries to display the sensor ID for the sensor that caused 
each event.  \fBNote\fR this can take a long time over the 
system interface.

.RS
.TP 
<\fBcount\fR> | \fIfirst\fP <\fBcount\fR>
.br 

Displays the first \fIcount\fR (least\-recent) entries in the SEL.
If \fIcount\fR is zero, all entries are displayed.
.TP 
\fIlast\fP <\fBcount\fR>
.br 

Displays the last \fIcount\fR (most\-recent) entries in the SEL.
If \fIcount\fR is zero, all entries are displayed.
.RE
.TP          
\fIdelete\fP <\fBSEL Record ID\fR> ... <\fBSEL Record ID\fR>
.br 

Delete one or more SEL event records.
.TP 
\fIadd\fP <\fBfilename ID\fR>
.br 

Read event entries from a file and add them to the SEL.  New SEL
entries area added onto the SEL after the last record in the SEL.
Record added is of type 2 and is automatically timestamped.
.TP 
\fIget\fP <\fBSEL Record ID\fR>
.br 

Print information on the specified SEL Record entry.
.TP 
\fIsave\fP <\fBfile\fR>

Save SEL records to a text file that can be fed back into the
\fIevent file\fP ipmitool command.  This can be useful for
testing Event generation by building an appropriate Platform
Event Message file based on existing events.  Please see the
available help for the 'event file ...' command for a description of
the format of this file.
.TP 
\fIwriteraw\fP <\fBfile\fR>

Save SEL records to a file in raw, binary format.  This file can
be fed back to the \fIsel readraw\fP ipmitool command for viewing.
.TP 
\fIreadraw\fP <\fBfile\fR>

Read and display SEL records from a binary file.  Such a file can
be created using the \fIsel writeraw\fP ipmitool command.
.TP          
\fItime\fP
.RS
.TP 
\fIget\fP
.br 
Displays the SEL clock's current time.
.TP 
\fIset\fP <\fBtime string\fR>
.br 

Sets the SEL clock.  Future SEL entries will use the time
set by this command.  <\fBtime string\fR> is of the
form "MM/DD/YYYY HH:MM:SS".  Note that hours are in 24\-hour
form.  It is recommended that the SEL be cleared before
setting the time.
.RE
.RE
.TP 
\fIsensor\fP
.RS
.TP 
\fIlist\fP
.br 

Lists sensors and thresholds in a wide table format.
.TP 
\fIget\fP <\fBid\fR> ... [<\fBid\fR>]
.br 

Prints information for sensors specified by name.
.TP 
\fIthresh\fP <\fBid\fR> <\fBthreshold\fR> <\fBsetting\fR>
.br 

This allows you to set a particular sensor threshold 
value.  The sensor is specified by name.
.RS
.TP 
Valid \fIthresholds\fP are:
.br 
\fIunr\fP	Upper Non\-Recoverable
.br 
\fIucr\fP	Upper Critical
.br 
\fIunc\fP	Upper Non\-Critical
.br 
\fIlnc\fP	Lower Non\-Critical
.br 
\fIlcr\fP	Lower Critical
.br 
\fIlnr\fP	Lower Non\-Recoverable
.RE
.TP 
\fIthresh\fP <\fBid\fR> \fIlower\fP <\fBlnr\fR> <\fBlcr\fR> <\fBlnc\fR>

This allows you to set all lower thresholds for a sensor at the same time.
The sensor is specified by name and the thresholds are listed in order of
Lower Non\-Recoverable, Lower Critical, and Lower Non\-Critical.
.TP 
\fIthresh\fP <\fBid\fR> \fIupper\fP <\fBunc\fR> <\fBucr\fR> <\fBunr\fR>

This allows you to set all upper thresholds for a sensor at the same time.
The sensor is specified by name and the thresholds are listed in order of
Upper Non\-Critical, Upper Critical, and Upper Non\-Recoverable.
.RE
.TP 
\fIsession\fP
.RS
.TP 
\fIinfo\fP <\fBactive\fR|\fBall\fR|\fBid 0xnnnnnnnn\fR|\fBhandle 0xnn\fR>
.br 

Get information about the specified session(s).  You may identify
sessions by their id, by their handle number, by their active status,
or by using the keyword `all' to specify all sessions.
.RE
.TP 
\fIshell\fP
.RS
This command will launch an interactive shell which you can use
to send multiple ipmitool commands to a BMC and see the responses.
This can be useful instead of running the full ipmitool command each
time.  Some commands will make use of a Sensor Data Record cache
and you will see marked improvement in speed if these commands
are able to reuse the same cache in a shell session.  LAN sessions
will send a periodic keepalive command to keep the IPMI session
from timing out.
.RE
.TP 
\fIsol\fP
.RS
.TP 
\fIinfo\fP [<\fBchannel number\fR>]
.br 

Retrieve information about the Serial\-Over\-LAN configuration on 
the specified channel.  If no channel is given, it will display 
SOL configuration data for the currently used channel.
.TP 
\fIpayload\fP <\fIenable\fP | \fIdisable\fP | \fIstatus\fP> <\fBchannel number\fR> <\fBuserid\fR>
.br 

Enable, disable or show status of SOL payload for the user on the specified channel. 
.TP 
\fIset\fP <\fBparameter\fR> <\fBvalue\fR> [<\fBchannel\fR>]
.br 

Configure parameters for Serial Over Lan.  If no channel is given,
it will display SOL configuration data for the currently used
channel.  Configuration parameter updates are automatically guarded
with the updates to the set\-in\-progress parameter.
.RS
.TP 
Valid parameters and values are:
.br 
.TP 
\fIset\-in\-progress\fP
set\-complete set\-in\-progress commit\-write
.TP 
\fIenabled\fP
true false
.TP 
\fIforce\-encryption\fP
true false
.TP 
\fIforce\-authentication\fP
true false
.TP 
\fIprivilege\-level\fP
user operator admin oem
.TP 
\fIcharacter\-accumulate\-level\fP
Decimal number given in 5 milliseconds increments
.TP 
\fIcharacter\-send\-threshold\fP
Decimal number
.TP 
\fIretry\-count\fP
Decimal number.  0 indicates no retries after packet is transmitted.
.TP 
\fIretry\-interval\fP
Decimal number in 10 millisend increments.  0 indicates 
that retries should be sent back to back.
.TP 
\fInon\-volatile\-bit\-rate\fP
serial, 19.2, 38.4, 57.6, 115.2.  Setting this value to 
serial indicates that the BMC should use the setting used 
by the IPMI over serial channel.
.TP 
\fIvolatile\-bit\-rate\fP
serial, 19.2, 38.4, 57.6, 115.2.  Setting this value to 
serial indiates that the BMC should use the setting used 
by the IPMI over serial channel.
.RE
.TP 
\fIactivate\fP [\fIusesolkeepalive\fP | \fInokeepalive\fP]
.br 

Causes ipmitool to enter Serial Over LAN
mode, and is only available when using the lanplus
interface.  An RMCP+ connection is made to the BMC,
the terminal is set to raw mode, and user input is
sent to the serial console on the remote server.
On exit,the the SOL payload mode is deactivated and
the terminal is reset to its original settings.
.RS

Special escape sequences are provided to control the SOL session:
.RS
.TP 
\fI~.\fP	Terminate connection
.TP 
\fI~^Z\fP	Suspend ipmitool
.TP 
\fI~^X\fP	Suspend ipmitool, but don't restore tty on restart
.TP 
\fI~B\fP	Send break
.TP 
\fI~~\fP	Send the escape character by typing it twice
.TP 
\fI~?\fP	Print the supported escape sequences
.RE

Note that escapes are only recognized immediately after newline.
.RE
.TP 
\fIdeactivate\fP
.br 

Deactivates Serial Over LAN mode on the BMC.
Exiting Serial Over LAN mode should automatically cause
this command to be sent to the BMC, but in the case of an
unintentional exit from SOL mode, this command may be
necessary to reset the state of the BMC.
.RE
.TP 
\fIspd\fP <\fBi2cbus\fR> <\fBi2caddr\fR> [<\fBchannel\fR>] [<\fmaxread\fR>]
.br 

This command may be used to read SPD (Serial Presence Detect) data using the 
I2C Master Write\-Read IPMI command.

.TP 
\fIsunoem\fP
.RS
.TP 
\fIled\fP
.RS

These commands provide a way to get and set the status of LEDs
on a Sun Microsystems server.  Use 'sdr list generic' to get a
list of devices that are controllable LEDs.  The \fIledtype\fP
parameter is optional and not necessary to provide on the command
line unless it is required by hardware.
.TP 
\fIget\fP <\fBsensorid\fR> [<\fBledtype\fR>]

Get status of a particular LED described by a Generic Device Locator
record in the SDR.  A sensorid of \fIall\fP will get the status
of all available LEDS.
.TP 
\fIset\fP <\fBsensorid\fR> <\fBledmode\fR> [<\fBledtype\fR>]

Set status of a particular LED described by a Generic Device Locator
record in the SDR.  A sensorid of \fIall\fP will set the status
of all available LEDS to the specified \fIledmode\fP and \fIledtype\fP.
.TP 
LED Mode is required for set operations:
.br 
\fIOFF\fP         Off
.br 
\fION\fP          Steady On
.br 
\fISTANDBY\fP     100ms on 2900ms off blink rate
.br 
\fISLOW\fP        1HZ blink rate
.br 
\fIFAST\fP        4HZ blink rate
.TP 
LED Type is optional:
.br 
\fIOK2RM\fP       Ok to Remove
.br 
\fISERVICE\fP     Service Required
.br 
\fIACT\fP         Activity
.br 
\fILOCATE\fP      Locate

.RE
.TP 
\fIfan\fP \fIspeed\fP <0-100>

Set system fan speed (PWM duty cycle).
.RS
.TP 
\fIsshkey\fP
.RS
.TP 
\fIset\fP <\fBuserid\fR> <\fBkeyfile\fR>

This command will allow you to specify an SSH key to use for a particular
user on the Service Processor.  This key will be used for CLI logins to
the SP and not for IPMI sessions.  View available users and their userids
with the 'user list' command.
.TP 
\fIdel\fP <\fBuserid\fR>

This command will delete the SSH key for a specified userid.
.RE
.RE
.RE

.TP
\fItsol\fP
.RS

This command allows Serial-over-LAN sessions to be established with Tyan
IPMIv1.5 SMDC such as the M3289 or M3290.  The default command run with
no arguments will establish default SOL session back to local IP address.
Optional arguments may be supplied in any order.

.TP
\fI<ipaddr>\fP
.br

Send receiver IP address to SMDC which it will use to send serial
traffic to.  By default this detects the local IP address and establishes
two-way session.  Format of ipaddr is XX.XX.XX.XX

.TP
\fIport=NUM\fP
.br

Configure UDP port to receive serial traffic on.  By default this is 6230.

.TP
\fIro|rw\fP
.br

Confiure SOL session as read-only or read-write.  Sessions are read-write
by default.

.RE

.TP 
\fIuser\fP
.RS
.TP 
\fIsummary\fP
.br 

Displays a summary of userid information, including maximum number of userids,
the number of enabled users, and the number of fixed names defined.
.TP 
\fIlist\fP
.br 

Displays a list of user information for all defined userids.
.TP 
\fIset\fP
.RS
.TP 
\fIname\fP <\fBuserid\fR> <\fBusername\fR>
.br 

Sets the username associated with the given userid.
.TP 
\fIpassword\fP <\fBuserid\fR> [<\fBpassword\fR>]
.br 

Sets the password for the given userid.  If no password is given,
the password is cleared (set to the NULL password).  Be careful when
removing passwords from administrator\-level accounts.
.RE
.TP 
\fIdisable\fP <\fBuserid\fR>
.br 

Disables access to the BMC by the given userid.
.TP 
\fIenable\fP <\fBuserid\fR>
.br 

Enables access to the BMC by the given userid.
.TP 
\fIpriv\fP <\fBuserid\fR> <\fBprivilege level\fR> [<\fBchannel number\fR>]
.br 

Set user privilege level on the specified channel.  If the channel is not 
specified, the current channel will be used.
.TP 
\fItest\fP <\fBuserid\fR> <\fB16\fR|\fB20\fR> [<\fBpassword\fR>]
.br 

Determine whether a password has been stored as 16 or 20 bytes.
.RE

.SH "OPEN INTERFACE"
The ipmitool \fIopen\fP interface utilizes the OpenIPMI
kernel device driver.  This driver is present in all modern
2.4 and all 2.6 kernels and it should be present in recent
Linux distribution kernels.  There are also IPMI driver
kernel patches for different kernel versions available from
the OpenIPMI homepage.

The required kernel modules is different for 2.4 and 2.6
kernels.  The following kernel modules must be loaded on
a 2.4\-based kernel in order for ipmitool to work:
.TP 
.B ipmi_msghandler
Incoming and outgoing message handler for IPMI interfaces.
.TP 
.B ipmi_kcs_drv
An IPMI Keyboard Controler Style (KCS) interface driver for the message handler.
.TP 
.B ipmi_devintf
Linux character device interface for the message handler.
.LP 
The following kernel modules must be loaded on
a 2.6\-based kernel in order for ipmitool to work:
.TP 
.B ipmi_msghandler
Incoming and outgoing message handler for IPMI interfaces.
.TP 
.B ipmi_si
An IPMI system interface driver for the message handler.
This module supports various IPMI system interfaces such
as KCS, BT, SMIC, and even SMBus in 2.6 kernels.
.TP 
.B ipmi_devintf
Linux character device interface for the message handler.
.LP 
Once the required modules are loaded there will be a dynamic
character device entry that must exist at \fB/dev/ipmi0\fR.
For systems that use devfs or udev this will appear at
\fB/dev/ipmi/0\fR.

To create the device node first determine what dynamic major
number it was assigned by the kernel by looking in
\fB/proc/devices\fR and checking for the \fIipmidev\fP
entry.  Usually if this is the first dynamic device it will
be major number \fB254\fR and the minor number for the first
system interface is \fB0\fR so you would create the device
entry with:

.I mknod /dev/ipmi0 c 254 0

ipmitool includes some sample initialization scripts that
can perform this task automatically at start\-up.

In order to have ipmitool use the OpenIPMI device interface
you can specifiy it on the command line:
.PP 
ipmitool \fB\-I\fR \fIopen\fP <\fIcommand\fP>
.SH "BMC INTERFACE"
The ipmitool bmc interface utilizes the \fIbmc\fP device driver as
provided by Solaris 10 and higher.  In order to force ipmitool to make
use of this interface you can specify it on the command line:
.PP 
ipmitool \fB\-I\fR \fIbmc\fP <\fIcommand\fP>

The following files are associated with the bmc driver:

.TP 
.B /platform/i86pc/kernel/drv/bmc
32\-bit \fBELF\fR kernel module for the bmc driver.
.TP 
.B /platform/i86pc/kernel/drv/amd64/bmc
64\-bit \fBELF\fR kernel module for the bmc driver.
.TP 
.B /dev/bmc
Character device node used to communicate with the bmc driver.
.SH "LIPMI INTERFACE"
The ipmitool \fIlipmi\fP interface uses the Solaris 9 IPMI kernel device driver.
It has been superceeded by the \fIbmc\fP interface on Solaris 10.  You can tell
ipmitool to use this interface by specifying it on the command line.

ipmitool \fB\-I\fR \fIlipmi\fP <\fIexpression\fP>
.SH "LAN INTERFACE"
The ipmitool \fIlan\fP interface communicates with the BMC
over an Ethernet LAN connection using UDP under IPv4.  UDP
datagrams are formatted to contain IPMI request/response 
messages with a IPMI session headers and RMCP headers.

IPMI\-over\-LAN uses version 1 of the Remote Management Control
Protocol (RMCP) to support pre\-OS and OS\-absent management.  
RMCP is a request\-response protocol delivered using UDP 
datagrams to port 623.

The LAN interface is an authenticatiod multi\-session connection;
messages delivered to the BMC can (and should) be authenticated
with a challenge/response protocol with either straight
password/key or MD5 message\-digest algorithm.  ipmitool will
attempt to connect with administrator privilege level as this
is required to perform chassis power functions.

You can tell ipmitool to use the lan interface with the
\fB\-I\fR \fIlan\fP option:

.PP 
ipmitool \fB\-I\fR \fIlan\fP \fB\-H\fR <\fIhostname\fP>
[\fB\-U\fR <\fIusername\fP>] [\fB\-P\fR <\fIpassword\fP>] <\fIcommand\fP>

A hostname must be given on the command line in order to use the 
lan interface with ipmitool.  The password field is optional;
if you do not provide a password on the command line, ipmitool
will attempt to connect without authentication.  If you specify a 
password it will use MD5 authentication if supported by the BMC
and straight password/key otherwise, unless overridden with a
command line option.
.SH "LANPLUS INTERFACE"
Like the \fIlan\fP interface, the \fIlanplus\fP interface
communicates with the BMC over an Ethernet LAN connection using 
UDP under IPv4.  The difference is that the \fIlanplus\fP
interface uses the RMCP+ protocol as described in the IPMI v2.0
specification.  RMCP+ allows for improved authentication and data 
integrity checks, as well as encryption and the ability to carry
multiple types of payloads.  Generic Serial Over LAN support 
requires RMCP+, so the ipmitool \fIsol activate\fP command
requires the use of the \fIlanplus\fP interface.

RMCP+ session establishment uses a symmetric challenge\-response
protocol called RAKP (\fBRemote Authenticated Key\-Exchange Protocol\fR)
which allows the negotiation of many options.  ipmitool does not
yet allow the user to specify the value of every option, defaulting
to the most obvious settings marked as required in the v2.0 
specification.  Authentication and integrity HMACS are produced with
SHA1, and encryption is performed with AES\-CBC\-128.  Role\-level logins
are not yet supported.

ipmitool must be linked with the \fIOpenSSL\fP library in order to
perform the encryption functions and support the \fIlanplus\fP
interface.  If the required packages are not found it will not be
compiled in and supported.

You can tell ipmitool to use the lanplus interface with the
\fB\-I\fR \fIlanplus\fP option:

.PP 
ipmitool \fB\-I\fR \fIlanplus\fP 
\fB\-H\fR <\fIhostname\fP>
[\fB\-U\fR <\fIusername\fP>]
[\fB\-P\fR <\fIpassword\fP>]
<\fIcommand\fP>

A hostname must be given on the command line in order to use the 
lan interface with ipmitool.  With the exception of the \fB\-A\fR and
\fB\-C\fR options the rest of the command line options are identical to
those available for the \fIlan\fP interface.

The \fB\-C\fR option allows you specify the authentication, integrity,
and encryption algorithms to use for for \fIlanplus\fP session based
on the cipher suite ID found in the IPMIv2.0 specification in table
22\-19.  The default cipher suite is \fI3\fP which specifies
RAKP\-HMAC\-SHA1 authentication, HMAC\-SHA1\-96 integrity, and AES\-CBC\-128
encryption algorightms.

.SH "FREE INTERFACE"
.LP
The ipmitool \fIfree\fP interface utilizes the FreeIPMI libfreeipmi
drivers.  
.LP
You can tell ipmitool to use the FreeIPMI interface with the -I option:
.PP
ipmitool \fB\-I\fR \fIfree\fP <\fIcommand\fP>


.SH "IMB INTERFACE"
.LP
The ipmitool \fIimb\fP interface supports the Intel IMB (Intel
Inter-module Bus) Interface through the /dev/imb device.  
.LP
You can tell ipmitool to use the IMB interface with the -I option:
.PP
ipmitool \fB\-I\fR \fIimb\fP <\fIcommand\fP>

.SH "EXAMPLES"
.TP 
\fIExample 1\fP: Listing remote sensors

> ipmitool \-I lan \-H 1.2.3.4 \-f passfile sdr list
.br 
Baseboard 1.25V  | 1.24 Volts        | ok
.br 
Baseboard 2.5V   | 2.49 Volts        | ok
.br 
Baseboard 3.3V   | 3.32 Volts        | ok
.TP 
\fIExample 2\fP: Displaying status of a remote sensor

> ipmitool \-I lan \-H 1.2.3.4 \-f passfile sensor get "Baseboard 1.25V"
.br 
Locating sensor record...
.br 
Sensor ID              : Baseboard 1.25V (0x10)
.br 
Sensor Type (Analog)   : Voltage
.br 
Sensor Reading         : 1.245 (+/\- 0.039) Volts
.br 
Status                 : ok
.br 
Lower Non\-Recoverable  : na
.br 
Lower Critical         : 1.078
.br 
Lower Non\-Critical     : 1.107
.br 
Upper Non\-Critical     : 1.382
.br 
Upper Critical         : 1.431
.br 
Upper Non\-Recoverable  : na 
.TP 
\fIExample 3\fP: Displaying the power status of a remote chassis

> ipmitool \-I lan \-H 1.2.3.4 \-f passfile chassis power status
.br 
Chassis Power is on
.TP 
\fIExample 4\fP: Controlling the power on a remote chassis

> ipmitool \-I lan \-H 1.2.3.4 \-f passfile chassis power on
.br 
Chassis Power Control: Up/On
	
.SH "AUTHOR"
Duncan Laurie <duncan@iceblink.org>
.SH "SEE ALSO"
.TP 
IPMItool Homepage
http://ipmitool.sourceforge.net
.TP 
Intelligent Platform Management Interface Specification
http://www.intel.com/design/servers/ipmi
.TP 
OpenIPMI Homepage
http://openipmi.sourceforge.net
.TP
FreeIPMI Homepage
http://www.gnu.org/software/freeipmi/