How To
Summary
The system password provides an added layer of security to the system by restricting access to certain functions and actions while in the Petitboot bootloader of the HMC.
Those restrictions can prevent a user from being able to reinstall the HMC or make configuration changes in Petitboot if the system password is set, and it is not known. This document explains the options and steps available to remove the system password.
Objective
Provide the user with the options and steps to remove the Petitboot system password, when the current password is not known.
Environment
This document applies to the 7063-CR1 Hardware Management Console (HMC.)
Steps
What is the Petitboot system password?
The Petitboot boot loader on the 7063-CR1, provides an option to configure a system password.
When enabled, the system password is required for tasks that effect changes on the configuration, such as:
- Manually selecting the boot device - This prevents the user from selecting a new boot device with which to overwrite the HMC, without providing the system password.
NOTE: When the HMC is allowed to boot automatically from the hard drive boot image, the system password is not required. - Having root access on the Petitboot shell - The user is set to "petituser". In order to switch to root, the command "su -" must be entered, followed by providing the system password.
- Saving Petitboot configuration changes.
Example of Petitboot prompting for the system password when trying to manually boot from a boot device. In this case, booting from the HMC hard drive:
Example showing the default user is petituser when the Exit to shell option is selected, and there is a system password set.
How is the Petitboot system password set?
The system password is set in Petitboot under "System configuration".
There are instances when a system password is set, and the user is not aware of having set one. As a result, they don't know the currently set system password.
How to clear the Petitboot system password
If the system password is not known, there are two ways to clear it.
- Clearing the system password through the BMC
- Clearing the system password using the Operating System
Clearing the system password through the BMC
- Shutdown the HMC
- Access the BMC of the HMC through the BMC Web UI
Example:
https://<BMC IP> - Log in as user ADMIN
- Click Maintenance -> Factory default (the user is prompted for confirmation)
NOTE: Resetting the BMC to factory default, resets the ADMIN password to the default password "ADMIN". Please modify this password at your earliest convenience for security.
The IP address of the BMC may be lost. If it is lost, it can be set again through the Petitboot shell using ipmitool commands , or through the HMC settings (see the Additional Information section for details.) - Wait at least one minute and Power On the HMC
Clearing the system password using the Operating System
This method can be used if it is possible to log into the HMC as user hscpe as it is needed to get root access.
Obtain root access on the HMC by contacting IBM Support to get the required credentials.
Run the following commands as root on the HMC:
- Verify the system password is enabled
nvram -p common --print-config=petitboot,password
If the command returns output (long string of characters), the system password is enabled. - Clear the system password
nvram -p common --update-config petitboot,password=
This command returns no output - Finally, verify the system password is disabled
nvram -p common --print-config=petitboot,password
The command should return no output.
Additional Information
Configuring the BMC network settings from the Petitboot shell:
NOTE: The BMC must be able to detect an active Ethernet link in the port being configured or the settings will not be saved.
- Power on the HMC by pressing the power button on the front of the system. The system powers on to the Petitboot bootloader menu.
When Petitboot loads, the console activates. Press any key to interrupt the boot process.Note: The boot process takes about 1 to 2 minutes to complete.
- At the Petitboot bootloader main menu, select Exit to Shell.
Run the following command: ipmitool lan print 1.
If this command returns an IP address, verify that it is correct.
To set a static IP address, follow these steps:
If this command returns an IP address, verify that it is correct.
To set a static IP address, follow these steps:
- Set the mode to static by running the following command: ipmitool lan set 1 ipsrc static
- Set your IP address by running the following command: ipmitool lan set 1 ipaddr ip_address, where ip_address is the static IP address that you want to assign to this system.
- Set your netmask by running the following command: ipmitool lan set 1 netmask netmask_address, where netmask_address is the netmask for the system.
- Set your gateway server by running the following command: ipmitool lan set 1 defgw ipaddr gateway_server, where gateway_server is the gateway for this system.
- Confirm the IP address by running the following command: ipmitool lan print 1
Configuring the BMC network settings through the HMC:
For HMC v10R3.1060 and later, click HMC Management -> BMC settings
For HMC v10R2.103x to v10R2.105x, click HMC management -> BMC connectivity
For HMC v9.950 - V10R1.102x, click Console Management -> Console Settings -> Change BMC/IPMI Network Settings
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB68","label":"Power HW"},"Business Unit":{"code":"BU070","label":"IBM Infrastructure"},"Product":{"code":"7063CR1","label":"Hardware Management Console (7063-CR1)"},"ARM Category":[{"code":"a8mKe000000000fIAA","label":"HMC-\u003E7063 Hardware"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}]}]
Was this topic helpful?
Document Information
Modified date:
24 March 2025
UID
ibm17228874