Accessing IPMI and Changing IPMI Password

Note

By default, the IPMI port is configured to be a DHCP client. When connected to a network with DHCP, the IP address will appear in the lower right corner of the screen during boot.

In compliance with new privacy legislation, the Username and Password to access the IPMI port on the Netgate 1537 1U has been changed to a unique password on each device. Netgate started shipping systems with this change beginning February 21, 2020.

Prior to February 21, 2020, the IPMI Username and Password were ADMIN/ADMIN.

After February 21, 2020, the IPMI Username is still ADMIN, the password is located on a sticker on the bottom of the Netgate 1537 as shown below.

../_images/xg-1537-ipmi-pwd-sticker.jpg

IPMI Password Sticker Location

Note

The password is alpha-numeric and the letters are capital letters.

Changing the IPMI Password

The IPMI password for Netgate appliances can be changed either through the browser-based IPMI console or using ipmitool directly in pfSense.

IPMI Web Console

  1. To change the IPMI password, begin by accessing the IPMI GUI using a web browser and the IPMI IP Address. Log in to the IPMI console.

    ../_images/ipmi-login.png

    Log Into IPMI

  2. Navigate to Configuration -> Users.

    ../_images/ipmi-configuration-users.png

    Configuration -> Users

  3. Highlight the Administrator and click Modify User.

    ../_images/ipmi-modify-user.png

    Modify User

  4. Check the box by Change Password, enter the new password and confirm it by typing it a second time, then click Modify.

    ../_images/ipmi-change-pw.png

    Change Password and click Modify

  5. Click OK on the message window that says “Modified user successfully.”

    ../_images/ipmi-modified-successfully.png

    Click OK

ipmitool

If you do not have access to the IPMI web interface, ipmitool is packaged with pfSense by default and can be used to change the password through the pfSense graphical interface or logged into the firewall over SSH as the root user.

  1. Navigate to Diagnostics > Command Prompt and load the IPMI kernel module. Enter the following command and click Execute:

kldload ipmi

  1. List the IPMI users available. By default, Netgate appliances use the user name ADMIN. Be aware that the username is case-sensitive.

ipmitool user list

That should return:

ID  Name         Callin  Link Auth  IPMI Msg   Channel Priv Limit
1                    true    false      false      Unknown (0x00)
2   ADMIN            true    false      false      Unknown (0x00)
3                    true    false      false      Unknown (0x00)
4                    true    false      false      Unknown (0x00)
5                    true    false      false      Unknown (0x00)
6                    true    false      false      Unknown (0x00)
7                    true    false      false      Unknown (0x00)
8                    true    false      false      Unknown (0x00)
9                    true    false      false      Unknown (0x00)
10                   true    false      false      Unknown (0x00)

  1. Reset the password for the necessary user. The default ADMIN user will be User ID 2, and the example below sets the password to NETGATE.

ipmitool user set password 2 NETGATE

If successful, the output will be:

Set User Password command successful (user 2)

  1. Unload the IPMI kernel module since we’re done with it:

kldunload ipmi