The RACADM command line interface (CLI) provides access to iDRAC6 management features on the managed server. RACADM provides access to most of the features on iDRAC6 Web interface. RACADM can be used in scripts to ease configuration of multiple servers, instead of using the Web interface, which, is more useful for interactive management.
The following interfaces are available for RACADM:
Local RACADM
Remote RACADM
Telnet/SSH RACADM
Local RACADM commands do not use network connections to access iDRAC6 from the managed server. This means that you can use local RACADM commands to configure the initial iDRAC6 networking. Remote RACADM is a client side utility, which can be executed from a management station through the out of band network interface. SSH/Telnet RACADM is used to refer to the RACADM command usage from a SSH or Telnet prompt.
This section provides the following information:
RACADM commands and supported RACADM interfaces
Using local RACADM from a command prompt
Remote RACADM
SSH/Telnet RACADM
Configuring iDRAC6 using the racadm command
Using the RACADM configuration file to configure multiple iDRAC6s
CAUTION: The latest iDRAC6 firmware supports only the latest RACADM version. You may encounter errors if you use an older version of RACADM to query iDRAC6 with the latest firmware. Install the RACADM version shipped with your latest Dell™ OpenManage™ DVD media.
RACADM Subcommands
Table 14-1 provides a description of each RACADMsubcommand that you can run in RACADM. For a detailed listing of RACADM subcommands including syntax and valid entries, see "RACADM Subcommand Overview."
Table 14-1. RACADM Subcommands
Command
Description
arp
Displays the contents of the ARP table. ARP table entries cannot be added or deleted.
clearasrscreen
Clears the last crash (ASR) screen.
coredump
Displays the last iDRAC6 core dump.
coredumpdelete
Deletes the core dump stored in iDRAC6.
clrraclog
Clears iDRAC6 log. After clearing, a single entry is made to indicate the user and time that the log was cleared.
clrsel
Clears the managed server's System Event Log entries.
config
Configures iDRAC6.
fwupdate
Updates iDRAC6 firmware.
getconfig
Displays the current iDRAC6 configuration properties.
getniccfg
Displays the current IP configuration for the controller.
getraclog
Displays iDRAC6 log.
getractime
Displays iDRAC6 time.
getsel
Displays SEL entries.
getssninfo
Displays information about active sessions.
getsvctag
Displays the service tag.
getsysinfo
Displays information about iDRAC6 and the managed server, including IP configuration, hardware model, firmware versions, and operating system information.
gettracelog
Displays iDRAC6 trace log. If used with -i, the command displays the number of entries in iDRAC6 trace log.
help
Lists iDRAC6 subcommands.
help<subcommand>
Lists usage statement for the specified subcommand.
ifconfig
Displays the contents of the network interface table.
krbkeytabupload
Uploads a Kerberos keytab file.
localconredirdisable
Performs local kVM disable from the local system.
netstat
Displays the routing table and the current connections.
ping
Verifies that the destination IP address is reachable from iDRAC6 with the current routing-table contents. A destination IP address is required. An ICMP echo packet is sent to the destination IP address based on the current routing-table contents.
ping6
Verifies that the destination IPv6 address is reachable from iDRAC6 with the current routing-table contents. A destination IPv6 address is required. An ICMP echo packet is sent to the destination IPv6 address based on the current routing-table contents.
racdump
Displays status and general iDRAC6 information.
racreset
Resets iDRAC6.
racresetcfg
Resets iDRAC6 to the default configuration.
remoteimage
Remote file share
serveraction
Performs power management operations on the managed server.
setniccfg
Sets the IP configuration for the controller.
sshpkauth
Enables you to upload up to 4 different SSH public keys, delete existing keys, and view the keys already in iDRAC6.
sslcertdownload
Downloads a CA certificate.
sslcertupload
Uploads a CA certificate or server certificate to iDRAC6.
sslcertview
Views a CA certificate or server certificate in iDRAC6.
sslcsrgen
Generates and downloads the SSL CSR.
testemail
Forces iDRAC6 to send an e-mail over iDRAC6 NIC.
testtrap
Forces iDRAC6 to send an SNMP alert over iDRAC6 NIC.
traceroute
Traces the network path of routers that packets take as they are forwarded from your system to a destination IPv4 address.
traceroute6
Traces the network path of routers that packets take as they are forwarded from your system to a destination IPv6 address.
version
Displays iDRAC6 version information.
vmdisconnect
Closes all open iDRAC6 virtual media connections from remote clients.
vmkey
Resets the VFlash partition to the default size of 256 MB and removes all data from the partition.
Supported RACADM Interfaces
Table 14-2 provides an overview of RACADM subcommands and their corresponding interface support.
Table 14-2. RACADM Subcommand Interface Support
Subcommand
Telnet/SSH
Local RACADM
Remote RACADM
arp
clearasrscreen
clrraclog
clrsel
config
coredump
coredumpdelete
fwupdate
getconfig
getniccfg
getraclog
getractime
getsel
getssninfo
getsvctag
getsysinfo
gettracelog
help
ifconfig
krbkeytabupload
localconredirdisable
netstat
ping
ping6
racdump
racreset
racresetcfg
remoteimage
serveraction
setniccfg
sshpkauth
sslcertdownload
sslcertupload
sslcertview
sslcsrgen
(can only generate, not download)
sslkeyupload
testemail
testtrap
traceroute
traceroute6
usercertupload
usercertview
version
vmdisconnect
vmkey
= Supported;
=Not supported
Using local RACADM Commands
You run RACADM commands locally (on the managed server) from a command prompt or shell prompt.
Log in to the managed server, start a command shell, and enter local RACADM commands in one of the following formats:
Without options, the RACADMcommanddisplays general use information. To display the RACADM subcommand list, enter:
racadm help
or
racadm getconfig -h
The subcommand list includes all RACADM commands that are supported by iDRAC6.
To get help for a subcommand, enter:
racadm help <subcommand>
The command displays the syntax and command-line options for the subcommand.
Using the RACADM Utility to Configure iDRAC6
This section describes how to use RACADM to perform various iDRAC6 configuration tasks.
Displaying Current iDRAC6 Settings
The RACADM getconfig subcommand retrieves current configuration settings from iDRAC6. The configuration values are organized into groups containing one or more objects, and the objects have values.
To display a list of all iDRAC6 groups, enter this command:
racadm getconfig -h
To display the objects and values for a particular group, enter this command:
racadm getconfig -g <group>
For example, to display a list of all cfgLanNetworking group object settings, enter the following command:
racadm getconfig -g cfgLanNetworking
Managing iDRAC6 Users with RACADM
NOTE: Use caution when using the racresetcfg command, as allconfiguration parameters are reset to the original defaults. Any previous changes are lost.
NOTE: If you are configuring a new iDRAC6 or if you ran the racadm racresetcfg command, the only current user is root with the password calvin.
NOTE: Users can be enabled and disabled over time. As a result, a user may have a different index number on each iDRAC6.
NOTE: Users and groups created for Active Directory environments must conform to the Active Directory naming convention.
You can configure up to 15 users in iDRAC6 property database. (A sixteenth user is reserved for the IPMI LAN user.) Before you manually enable an iDRAC6 user, verify if any current users exist.
To verify if a user exists, enter the following command at the command prompt:
racadm getconfig -u <username>
OR
enter the following command once for each index from 1 to 16:
racadm getconfig -g cfgUserAdmin -i <index>
NOTE: You can also enter racadm getconfig -f <filename> and view the generated <filename> file, which includes all users, as well as all other iDRAC6 configuration parameters.
Several parameters and object IDs are displayed with their current values. Two objects of interest are:
# cfgUserAdminIndex=nn
cfgUserAdminUserName=
If the cfgUserAdminUserName object has no value, that index number, which is indicated by the cfgUserAdminIndex object, is available for use. If a name appears after the =, that index is assigned to that user name.
NOTE: Users and groups created for Active Directory environments must conform to the Active Directory naming convention.
Adding an iDRAC6 User
To add a new user to iDRAC6, perform the following steps:
Set the user name.
Set the password.
Set the Login to iDRAC6 user privilege.
Enable the user.
Example
The following example describes how to add a new user named "John" with a "123456" password and login privileges to iDRAC6:
racadm config -g cfgUserAdmin -o cfgUserAdminUserName -i 2 john
To verify the new user, use one of the following commands:
racadm getconfig -u john
racadm getconfig –g cfgUserAdmin –i 2
Enabling an iDRAC6 User With Permissions
To grant a user a specific administrative (role-based) permissions, set the cfgUserAdminPrivilege property to a bitmask constructed from the values show in Table 14-3:
Table 14-3. Bit Masks for User Privileges
User Privilege
Privilege Bit Mask
Login to iDRAC6
0x00000001
Configure iDRAC6
0x00000002
Configure Users
0x00000004
Clear Logs
0x00000008
Execute Server Control Commands
0x00000010
Access Console Redirection
0x00000020
Access Virtual Media
0x00000040
Test Alerts
0x00000080
Execute Debug Commands
0x00000100
For example, to allow the user Configure iDRAC6, Configure Users, Clear Logs, and Access Console Redirection privileges, add the values 0x00000002, 0x00000004, 0x00000008, and 0x00000010 to construct the bitmap 0x0000002E. Then enter the following command to set the privilege:
Uploading, Viewing, and Deleting SSH Keys Using RACADM
Upload
The upload mode allows you to upload a keyfile or to copy the key text on the command line. You cannot upload and copy a key at the same time.
From local RACADM:
racadm sshpkauth -i <2 to 16> -k <1 to 4> -f <filename>
From telnet/ssh RACADM:
racadm sshpkauth -i <2 to 16> -k <1 to 4> -t
<key-text>
Example:
Upload a valid key to iDRAC6 User 2 in the first key space using a file:
$ racadm sshpkauth -i 2 -k 1 -f pkkey.key
PK SSH Authentication Key file successfully uploaded to the RAC.
CAUTION: The "file" option is not supported on telnet/ssh/serial RACADM.
View
The view mode allows the user to view a key specified by the user or all keys.
racadm sshpkauth -i <2 to 16> -v -k <1 to 4>
racadm sshpkauth -i <2 to 16> -v -k all
Delete
The delete mode allows the user to delete a key specified by the user or all keys.
racadm sshpkauth -i <2 to 16> -d -k <1 to 4>
racadm sshpkauth -i <2 to 16> -d -k all
CAUTION: The capability to upload, view, and/ or delete SSH keys is based on the "Configure Users" user privilege. This privilege allows user(s) to configure any other user's SSH key. Given the importance of SSH Keys, control the granting of this privilege very carefully.
See "sshpkauth" for information on the subcommand options.
Removing an iDRAC6 User
When using RACADM, users must be disabled manually and on an individual basis. Users cannot be deleted by using a configuration file.
The following example illustrates the command syntax that can be used to delete a RAC user:
A null string of double quote characters ("") instructs iDRAC6 to remove the user configuration at the specified index and reset the user configuration to the original factory defaults.
Testing E-mail Alerting
iDRAC6 e-mail alert feature allows users to receive e-mail alerts when a critical event occurs on the managed server. The following example shows how to test the e-mail alert feature to ensure that iDRAC6 can properly send e-mail alerts across the network.
racadm testemail -i 2
(-i 2 is for the index entry #2 in the e–mail alert table)
NOTE: Ensure that the SMTP and E-mail Alert settings are configured before testing the e-mail alert feature. See "Configuring E-Mail Alerts" for more information.
Testing iDRAC6 SNMP Trap Alert Feature
iDRAC6 SNMP trap alerting feature allows SNMP trap listener configurations to receive traps for system events that occur on the managed server.
The following example shows how a user can test the SNMP trap alert feature.
racadm testtrap -i 2
(-i 2 is for the index entry #2 in the e–mail alert table)
NOTE: Before you test iDRAC6 SNMP trap alerting feature, ensure that the SNMP and trap settings are configured correctly. See the testtrap and testemail subcommand descriptions to configure these settings. See "Configuring Platform Event Traps (PET)" for more information.
Configuring iDRAC6 Network Properties
To generate a list of available network properties, enter the following:
racadm getconfig -g cfgLanNetworking
To use DHCP to obtain an IP address, use the following command to write the object cfgNicUseDhcp and enable this feature:
The commands provide the same configuration functionality as iDRAC6 Configuration Utility when you are prompted to press <Ctrl><E>. For more information about configuring network properties with iDRAC6 Configuration Utility, see "iDRAC6 LAN."
The following is an example of how the command may be used to configure desired LAN network properties.
NOTE: If cfgNicEnable is set to 0, iDRAC6 LAN is disabled even if DHCP is enabled.
Configuring IPMI Over LAN
Configure IPMI over LAN by entering the following command:
racadm config -g cfgIpmiLan -o cfgIpmiLanEnable 1
NOTE: This setting determines the IPMI commands that can be executed from the IPMI over LAN interface. For more information, see the IPMI 2.0 specifications.
Update the IPMI channel privileges by entering the following
command:
where <key> is a 20-character encryption key in a valid hexadecimal format.
Configure IPMI Serial over LAN (SOL) using the following command:
racadm config -g cfgIpmiSol -o cfgIpmiSolEnable 1
NOTE: The IPMI SOL minimum privilege level determines the minimum privilege required to activate IPMI SOL. For more information, see the IPMI 2.0 specification.
Update the IPMI SOL minimum privilege level using the following
command:
You can configure the action you wish iDRAC6 to take for each platform alert. Table 14-4 lists the possible actions and the value to identify them in RACADM.
Table 14-4. Platform Event Action
Action
Value
No action
0
Power off
1
Reboot
2
Power Cycle
3
Configure PEF actions using the following command:
where <index> is the e-mail destination index and 0 disables the e-mail alert or 1 enables the alert. The e-mail destination index can be a value from 1 through 4.
For example, to enable e-mail with index 4, enter the following command:
where <index> is the e-mail destination index and <custom-message> is the custom message.
Test the configured e-mail alert, if desired, by entering the following
command:
racadm testemail -i <index>
where <index> is the e-mail destination index to test.
Configuring IP Filtering (IP Range)
IP address filtering (or IP Range Checking) allows iDRAC6 access only from clients or management workstations whose IP addresses are within a user-specified range. All other login requests are denied.
IP filtering compares the IP address of an incoming login to the IP address range that is specified in the following cfgRacTuning properties:
cfgRacTuneIpRangeAddr
cfgRacTuneIpRangeMask
The cfgRacTuneIpRangeMask property is applied to both the incoming IP address and to the cfgRacTuneIpRangeAddr properties. If the results are identical, the incoming login request is allowed to access iDRAC6. Logins from IP addresses outside this range receive an error.
The login proceeds if the following expression equals zero:
where& is the bitwise AND of the quantities and ^ is the bitwise exclusive-OR.
See "cfgRacTuning" for a complete list of cfgRacTuning properties.
Table 14-5. IP Address Filtering (IPRange) Properties
Property
Description
cfgRacTuneIpRangeEnable
Enables the IP range checking feature.
cfgRacTuneIpRangeAddr
Determines the acceptable IP address bit pattern, depending on the 1's in the subnet mask.
This property is bitwise anded with cfgRacTuneIpRangeMask to determine the upper portion of the allowed IP address. Any IP address that contains this bit pattern in its upper bits is allowed to log in. Logins from IP addresses that are outside this range fail. The default values in each property allow an address range from 192.168.1.0 to 192.168.1.255 to log in.
cfgRacTuneIpRangeMask
Defines the significant bit positions in the IP address. The mask should be in the form of a netmask, where the more significant bits are all 1's with a single transition to all zeros in the lower-order bits.
Following are examples using local RACADM to set up IP filtering.
To restrict logins to a small set of four adjacent IP addresses (for example,
192.168.0.212 through 192.168.0.215), select all but the lowest two bits in
the mask, as shown below:
The last byte of the range mask is set to 252, the decimal equivalent of 11111100b.
IP Filtering Guidelines
Use the following guidelines when enabling IP filtering:
Ensure that cfgRacTuneIpRangeMask is configured in the form of a netmask, where all most significant bits are 1's (which defines the subnet in the mask) with a transition to all 0's in the low-order bits.
Use the desired range's base address as the value of cfgRacTuneIpRangeAddr. The 32-bit binary value of this address should have zeros in all the low-order bits where there are zeros in the mask.
Configuring IP Blocking
IP blocking dynamically determines when excessive login failures occur from a particular IP address and blocks (or prevents) the address from logging in to iDRAC6 for a preselected time span.
The IP blocking features include:
The number of allowed login failures (cfgRacTuneIpBlkFailcount)
The time frame in seconds during which these failures must occur (cfgRacTuneIpBlkFailWindow)
The amount of time in seconds that the blocked IP address is prevented from establishing a session after the allowed number of failures is exceeded (cfgRacTuneIpBlkPenaltyTime)
As login failures accumulate from a specific IP address, they are registered by an internal counter. When the user logs in successfully, the failure history is cleared and the internal counter is reset.
NOTE: When login attempts are refused from the client IP address, some SSH clients may display the following message: ssh exchange identification: Connection closed by remote host.
Table 14-6. Log In Retry Restriction (IP Blocking) Properties
Property
Definition
cfgRacTuneIpBlkEnable
Enables the IP blocking feature.
When consecutive failures (cfgRacTuneIpBlkFailCount) from a single IP address are encountered within a specific amount of time (cfgRacTuneIpBlkFailWindow), all further attempts to establish a session from that address are rejected for a certain time span (cfgRacTuneIpBlkPenaltyTime).
cfgRacTuneIpBlkFailCount
Sets the number of login failures from an IP address before the login attempts are rejected.
cfgRacTuneIpBlkFailWindow
The time frame in seconds during which the failure attempts are counted. When the failures exceed this limit, they are dropped from the counter.
cfgRacTuneIpBlkPenaltyTime
Defines the time span in seconds that login attempts from an IP address with excessive failures are rejected.
Enabling IP Blocking
The following example prevents a client IP address from establishing a session for five minutes if that client has failed five login attempts in a one-minute period of time.
Remote RACADM is a client side utility, which can be executed from a management station through the out of band network interface. A remote capability option (-r) is provided that allows you to connect to the managed system and execute RACADM subcommands from a remote console or management station. To use the remote capability, you need a valid user name (-u option) and password (-p option), and iDRAC6 IP address. SSH/Telnet RACADM is used to refer to the RACADM command usage from a SSH or Telnet prompt.
The maximum number of simultaneous remote RACADM sessions is four. These sessions are independent and in addition to the Telnet and SSH sessions. iDRAC6 can simultaneously support four SSH sessions and four Telnet sessions, in addition to the four RACADM sessions.
NOTE: Configure the IP address on your iDRAC6 before using the RACADM remote capability.
NOTE: If the system from where you are accessing the remote system does not have an iDRAC6 certificate in its default certificate store, a message is displayed when you type a RACADM command.
Security Alert: Certificate is invalid - Name on Certificate is invalid or does not match site name
Continuing execution. Use -S option for racadm to stop the execution on certificate-related errors.
RACADM continues to execute the command. However, if you use the –S option, RACADM stops executing the command and displays the following message:
Security Alert: Certificate is invalid - Name on Certificate is invalid or does not match site name
Racadm not continuing execution of the command.
ERROR: Unable to connect to iDRAC6 at specified IP address
NOTE: When using the RACADM remote capability, you must have write permissions on the folders where you are using the RACADM subcommands involving file operations, for example:
racadm getconfig -f <file name>
or
racadm sslcertdownload -t <type> [-f <filename>]
Remote RACADM Usage
racadm -r <iDRAC6 IP Address> -u <username> -p <password><subcommand><subcommand options>
racadm -i -r <iDRAC6 IP Address> <subcommand> <subcommand options>
racadm -i -r <iDRAC6 IP Address>:<port> <subcommand> <subcommand options>
Remote RACADM Options
Table 14-7 lists the options for the remote RACADM command.
Table 14-7. RACADM Command Options
Option
Description
-r <racIpAddr>
-r <racIpAddr>:<port number>
Specifies the controller's remote IP address.
Use:<port number> if iDRAC6 port number is not the default port (443)
-i
Instructs RACADMto interactively query the user for user name and password.
-u <usrName>
Specifies the user name that is used to authenticate the command transaction. If the -u option is used, the -p option must be used, and the -i option (interactive) is not allowed.
-p <password>
Specifies the password used to authenticate the command transaction. If the -p option is used, the -i option is not allowed.
-S
Specifies that RACADM should check for invalid certificate errors. RACADM stops the execution of the command with an error message if it detects an invalid certificate.
Using an iDRAC6 Configuration File
An iDRAC6 configuration file is a text file that contains a representation of the values in iDRAC6 database. You can use the RACADM getconfig subcommand to generate a configuration file containing the current values from iDRAC6. You can then edit the file and use the RACADM config -f subcommand to load the file back into iDRAC6, or to copy the configuration to other iDRAC6s.
Creating an iDRAC6 Configuration File
The configuration file is a plain text file. You can use any valid file name; however, the .cfg file extension is the recommended convention.
The configuration file can be:
Created with a text editor
Obtained from iDRAC6 with the RACADM getconfig subcommand
Obtained from iDRAC6 with the RACADM getconfig subcommand and then edited
To obtain a configuration file with the RACADM getconfig command, enter the following command:
This command creates the file myconfig.cfg in the current directory.
Configuration File Syntax
NOTE: Edit the configuration file with a plain text editor, such as Notepad on Windows or vi on Linux. The racadm utility parses ASCII text only. Any formatting confuses the parser and may corrupt iDRAC6 database.
This section describes the format of the configuration file.
Lines that start with # are comments.
A comment must start in the first column of the line. A # character in any other column is treated as a normal # character.
Example:
#
# This is a comment
[cfgUserAdmin]
cfgUserAdminPrivilege=4
Group entries must be surrounded by [ and ] characters.
The starting [character denoting a group name must start in column one. This group name must be specified before any of the objects in that group. Objects that do not include an associated group name generate an error. The configuration data is organized into groups as defined in "iDRAC6 Enterprise Property Database Group and Object Definitions."
The following example displays a group name, object, and the object's property value.
Example:
[cfgLanNetworking] (group name)
cfgNicIpAddress=192.168.1.1 (object name)
Parameters are specified as object=value pairs with no white space between the object, =, and value.
White space that is included after the value is ignored. White space inside a value string remains unmodified. Any character to the right of the = is taken as is (for example, a second =, or a #, [, ], and so forth).
The parser ignores an index object entry.
You cannot specify which index is used. If the index already exists, it is either used or the new entry is created in the first available index for that group.
The racadm getconfig -f <filename> command places a comment in front of index objects, allowing you to see the included comments.
NOTE: You can create an indexed group manually using the following command: racadm config -g <groupName> -o <anchored-object> -i <index><unique-anchor-name>.
The line for an indexed group cannot be deleted from a configuration file.
You must remove an indexed object manually using the following command:
NOTE: A NULL string (identified by two "" characters) directs iDRAC6 to delete the index for the specified group.
To view the contents of an indexed group, use the following command:
racadm getconfig -g <groupName> -i <index>
For indexed groups the object anchor must be the first object after the [ ] pair. The following are examples of the current indexed groups:
[cfgUserAdmin]
cfgUserAdminUserName=<username>
If the parser encounters an indexed group, it is the value of the anchored object that differentiates the various indexes.
The parser reads in all of the indexes from iDRAC6 for that group. Any objects within that group are simple modifications when iDRAC6 is configured. If a modified object represents a new index, the index is created on iDRAC6 during configuration.
You cannot specify a desired index in a configuration file.
Indexes may be created and deleted, so over time the group may become fragmented with used and unused indexes. If an index is present, it is modified. If an index is not present, the first available index is used. This method allows flexibility when adding indexed entries where you do not need to make exact index matches between all the RACs being managed. New users are added to the first available index. A configuration file that parses and runs correctly on one iDRAC6 may not run correctly on another if all indexes are full and you must add a new user.
Modifying iDRAC6 IP Address in a Configuration File
When you modify iDRAC6 IP address in the configuration file, remove all unnecessary <variable>=<value> entries. Only the actual variable group's label with "[" and "]" remains, including the two <variable>=<value> entries pertaining to the IP address change.
For example:
#
# Object Group "cfgLanNetworking"
#
[cfgLanNetworking]
cfgNicIpAddress=10.35.10.110
cfgNicGateway=10.35.10.1
This file will be updated as follows:
#
# Object Group "cfgLanNetworking"
#
[cfgLanNetworking]
cfgNicIpAddress=10.35.9.143
# comment, the rest of this line is ignored
cfgNicGateway=10.35.9.1
Loading the Configuration File Into iDRAC6
The command racadm config -f <filename> parses the configuration file to verify that valid group and object names are present and that syntax rules are followed. If the file is error-free the command then updates iDRAC6 database with the contents of the file.
NOTE: To verify the syntax only and not update iDRAC6 database, add the -c option to the config subcommand.
Errors in the configuration file are flagged with the line number and a message that explains the problem. You must correct all errors before the configuration file can update iDRAC6.
NOTE: Use the racresetcfg subcommand to reset the database and iDRAC6 NIC settings to the original default settings and remove all users and user configurations. While the root user is available, other users' settings are also reset to the default settings.
Before you execute the racadm config -f <filename> command, you can run the racresetcfg subcommand to reset iDRAC6 to its default settings. Ensure that the configuration file you will load includes all desired objects, users, indexes, and other parameters.
To update iDRAC6 with the configuration file, execute the following command:
where <filename> is the name of a file to save iDRAC6 properties, such a myconfig.cfg.
The below example shows how you can use remote RACADM commands to configure multiple iDRAC6s. Create a batch file on the management station and call remote racadm commands from the batch file.
NOTE: Some configuration files contain unique iDRAC6 information (such as the static IP address) that must be modified before you export the file to other iDRAC6s.
Edit the configuration file you created in the previous step and remove or
comment-out any settings you do not want to replicate.
Copy the edited configuration file to a network drive where it is accessible
to each managed server whose iDRAC6 you want to configure.
For each iDRAC6 you want to configure:
Log in to the managed server and start a command prompt.
If you want to reconfigure iDRAC6 from the default settings, enter
the following command:
racadm racreset
Load the configuration file into iDRAC6 with the following
command:
(can only generate, not download)
= Supported; 
=Not supported