Ports availability for the managed BMC, CMM, and SMM targets
If managed targets (such as compute node/rack server BMC, CMM, or SMM) are behind a firewall and if users intend to manage those devices with OneCLI that is outside of that firewall, all ports should be involved with communications between OneCLI and the baseboard management controller in each managed device are open.
| Managed target | OneCLI case or cmd | Ports and protocols |
|---|---|---|
| IMM2 | Most of OneCLI cases | IPMI with 623 CIM over HTTPS with 5989 |
| XCC | Most of OneCLI cases | IPMI with 623 CIM over HTTPS with 5989 Rest over HTTPS with 443 |
| XCC | Raid config | SSH with 22 |
| BMC on ThinkServer | Raid config | Rest over HTTPS with 443 |
| XCC | Platform update/secure erase | Port forwarding of 6990 |
| BMC on ThinkSystem SR635/SR655 | ffdc/config/update | IPMI with 623 Rest over HTTPS with 443 |
| SMM | All SMM cases | IPMI with 623 |
| CMM | All CMM cases | CIM over HTTPS with 5989 |
Note
Some management ports can be customized. If users customized the value of a management port instead of using the default port, and did not specify the customized port in the command-line interface, OneCLI will try the default port first, which definitely fails. In this case, OneCLI will report an error and use the default port of another service to acquire the customized port value. This process needs some time and might cause delay.
Give documentation feedback