Skip to main content
Start a Conversation

Solved!

Go to Solution

Browning_E

2 Posts

6044

July 11th, 2022 06:00

iDRAC9 6.0.0.0 and Redfish

Good day!

 

I am working to pull iDRAC version information from iDRAC9 newly updated to FW Version 6.0.0.0

I use the same GET as I have in previous versions:

 

iDRAC_URI = https:// /redfish/v1/Managers/iDRAC.Embedded.1

called in PowerShell:

Invoke-restmethod -Uri $iDRAC_URI -Credential $currentcreds -Method GET


@odata.context : /redfish/v1/$metadata#Manager.Manager
@odata.id : /redfish/v1/Managers/iDRAC.Embedded.1

...

 

However, the same call to an iDRAC with the new firmware fails...

 

c:\> Invoke-restmethod -Uri $iDRAC_URI -Credential $currentcreds -Method GET


Invoke-restmethod : {
"error": {
"code": "Base.1.8.GeneralError",
"message": "A general error has occurred. See ExtendedInfo for more information.",
"@Message.ExtendedInfo": [
{
"@odata.type": "#Message.v1_1_0.Message",
"MessageId": "Base.1.8.QueryNotSupported",
"Description": "Indicates that query is not supported on the implementation.",
"Message": "Querying is not supported by the implementation.",
"Severity": "Warning",
"Resolution": "Remove the query parameters and resubmit the request if the operation failed."
}
]
}
}

 

It seems the error is stating that I can no longer query the iDRAC for information...

Is this a new implementation on iDRAC9 FW Version 6.0.0.0?

 

If so what URI should I use to be using to gather iDRAC information?

 

Thank you!

Browning_E

2 Posts

July 13th, 2022 06:00

Good Day!

Actually it is!

After a LOT of research I was directed to this KB Article:

https://www.dell.com/support/kbdoc/en-us/000189996/idrac8-https-fqdn-connection-failures-on-2-81-81-81

Which talks about a new security implementation in the most recent iDRAC firmware versions called HostHeaderCheck. This security measure validates the URL/URI Host Header address against the iDRAC's configured DNSRacName and DNSDomainName under "iDRAC.NIC"

(validate the current settings by connecting to the iDRAC using SSH)

racadm get idrac.nic

If these two values are blank or they do not match the incoming Host Header the access attempt is refused.

According to the KB article the HostHeaderCheck enforcement can be disabled with:

#Disable host header check
racadm set idrac.webserver.HostHeaderCheck 0

However, the additional security feature is lost.

In my case it was just as easy to properly configure the DNSRacName and DNSDomainName.

Once these changes were complete I was able to access the iDRAC API without issue.

 

Thank you!

Browning_E

DELL-Charles R

Moderator

 • 

4.5K Posts

July 11th, 2022 11:00

Hello Browning_E,

 

We as moderators don't support the APIs and as a result, don't have a lot of experience with them.

The community may be able to add more to this tread.

 

I did find this you may try:

FirmwareInventory instance

https://dell.to/3nS80nZ

 

Other resource: Redfish API with Dell integrated Remote Access Controller guidance on using the Redfish API with Dell integrated Remote Access Controller

https://dell.to/3uEZSv0

 

 

DELL-Charles R

Moderator

 • 

4.5K Posts

July 13th, 2022 06:00

Hello Browning_E,

 

That is great to see. Thank you for posting your resolution that other community members may find helpful.

Was this post helpful?

View All

No Events found!

Top