ipmitool批量验证BMC密码且修改密码

需求：扫描出现有服务器的BMC管理帐号，修改唯一管理帐号

工具：ipmitool-1.8.11-20.el6.x86_64

系统：CentOS release 6.6 (Final)

1，通过yum搜索ipmitool安装源

[[email protected]]# yum search ipmitool
已加载插件：fastestmirror, security
Determining fastest mirrors
CentOS                                                                                 | 3.3 kB     00:00
JD-APP                                                                                 | 3.3 kB     00:00
epel                                                                                   | 4.3 kB     00:00
updates                                                                                | 3.4 kB     00:00
=========================================== N/S Matched: ipmitool ============================================
ipmitool.x86_64 : Utility for IPMI control

Name and summary matches only, use "search all" for everything.

2，通过yum安装ipmitool

[[email protected]]# yum install ipmitool
已加载插件：fastestmirror, security
设置安装进程
Loading mirror speeds from cached hostfile
解决依赖关系
--> 执行事务检查
---> Package ipmitool.x86_64 0:1.8.11-20.el6 will be 升级
---> Package ipmitool.x86_64 0:1.8.11-21.el6 will be an update
--> 完成依赖关系计算

依赖关系解决

==============================================================================================================
 软件包                   架构                   版本                           仓库                     大小
==============================================================================================================
正在升级:
 ipmitool                 x86_64                 1.8.11-21.el6                  updates                 463 k

事务概要
==============================================================================================================
Upgrade       1 Package(s)

总下载量：463 k
确定吗？[y/N]：y

3，将机器的BMC IP、用户名以及所有可能的密码输入trypwd_ip.csv文件中通过,号隔离

IP,user,password1,password2,password3
10.22.88.12,jdroot,5t^Y7u*I,123456789,calvin
10.22.88.15,jdroot,5t^Y7u*I,123456789,calvin
10.22.88.11,jdroot,5t^Y7u*I,123456789,calvin
10.22.88.17,jdroot,5t^Y7u*I,123456789,calvin

4，编写测试密码脚本trypwd_outband.sh

#!/bin/bash
VERSION=0.0.2
MODIFY_DATE=20170514
echo "Tool Version:$VERSION($MODIFY_DATE)"
function printHelp()
{
    printVersion
    echo "Usage:./trypwd_outband.sh -i ipFile
      ipFile is bmc machine info file include ip username and wanted several password,
      which interseted by comma
      all machine password output to bmcpwd.csv
"
}
function judgeIpActive()
{
    ping $1 -c 1 > /dev/null 2>&1
    if [ $? -ne 0 ]
    then
        echo "ip:$IP_ADDR not available"
        return 1
    fi
    echo "ip:$IP_ADDR is available"
    return 0
}
function checkpwd()
{
    sleep 20
    result=`ipmitool -H $IP_ADDR -U $USER_NAME -P $USER_PASSWD -I lanplus user list >/dev/null 2>&1`
    if [ $? -ne 0 ]
    then
        return 1
    fi
    return 0
}
case $1 in
            -h|--help)
            printHelp
            exit 0
                ;;
    esac
while getopts ":i:" opt
do
    case $opt in
        i)
            IP_FILE=$OPTARG
            echo "ip file is "$IP_FILE
            ;;
        *)
            echo "argument error"
            exit 1;;
    esac
done
if [ ${#IP_FILE} -eq 0 ]
then
    echo "please assign ip file. detail info check -h"
    exit 0
fi
echo "Ip,User,PassWord-TryResult" > trypwd_result.csv
for LINE in `cat $IP_FILE`;
do
{
    if [[ $LINE =~ "IP,user," ]]
    then
        echo "skip first line"
        continue
    fi
    if [ ${#LINE} -lt 10 ]
    then
        continue
    fi
    row=1
    IP_ADDR=`echo $LINE | awk -F, ‘{print $‘$row‘}‘`
    judgeIpActive $IP_ADDR
    if [ $? -ne 0 ]
    then
        echo "ip:$IP_ADDR not available">>trypwd_result.csv
        continue
    fi
    let row++
    USER_NAME=`echo $LINE | awk -F, ‘{print $‘$row‘}‘`
    while true
    do
        let row++
        USER_PASSWD=""
        USER_PASSWD=`echo $LINE  | awk -F, ‘{print $‘$row‘}‘ | sed ‘s/\r//g‘`
        if [ ${#USER_PASSWD} -gt 0 ]
        then
            array_Passwd[$row-3]=$USER_PASSWD
            checkpwd
            if [ $? -ne 0 ]
            then
                array_Result[$row-3]="fail"
                echo "$IP_ADDR,$USER_NAME,$USER_PASSWD,fail"
            else
                array_Result[$row-3]="success"
                echo "$IP_ADDR,$USER_NAME,$USER_PASSWD,success"
            fi
        else
            break
        fi
    done
    echo -n "$IP_ADDR,$USER_NAME," >> trypwd_result.csv
    count=${#array_Passwd[@]}
    for((i=1; $i<=$count; i++))
    do
        echo -n "${array_Passwd[$i-1]}-${array_Result[$i-1]};">>trypwd_result.csv
    done
    unset array_Passwd
    unset array_Result
    echo "">>trypwd_result.csv
}
done
wait
echo "all machine try password over"

4，将trypwd_ip.csv和trypwd_outband.sh文件拷贝到同一目录下，执行“chmod +x trypwd_outband.sh”给脚本添加可执行权限；

5，执行”./trypwd_outband –i trypwd_ip.csv”

[[email protected]# ./trypwd_outband.sh -i trypwd_ip.csv
Tool Version:0.0.2(20170514)
ip file is trypwd_ip.csv
skip first line
ip:10.22.88.12 is available
10.22.88.12,jdroot,5t^Y7u*I,success
10.22.88.12,jdroot,123456789,fail
10.22.88.12,jdroot,calvin,fail
ip:10.22.88.15 is available
10.22.88.15,jdroot,5t^Y7u*I,success
10.22.88.15,jdroot,123456789,fail
10.22.88.15,jdroot,calvin,fail
ip:10.22.88.11 is available
10.22.88.11,jdroot,5t^Y7u*I,success
10.22.88.11,jdroot,123456789,fail
10.22.88.11,jdroot,calvin,fail
ip:10.22.88.17 is available
10.22.88.17,jdroot,5t^Y7u*I,success
10.22.88.17,jdroot,123456789,fail
10.22.88.17,jdroot,calvin,fail
all machine try password over

6，脚本运行结束后，会输出trypwd_result.csv文件；

Ip,User,PassWord-TryResult
10.22.88.12,jdroot,5t^Y7u*I-success;123456789-fail;calvin-fail;
10.22.88.15,jdroot,5t^Y7u*I-success;123456789-fail;calvin-fail;
10.22.88.11,jdroot,5t^Y7u*I-success;123456789-fail;calvin-fail;
10.22.88.17,jdroot,5t^Y7u*I-success;123456789-fail;calvin-fail;

7，整理recoverpwd_ip.csv文件，第一列为IP，第二列为待修改用户ID的用户名，第三列为待更改密码；

10.22.88.12,jdroot,5t^Y7u*I
10.22.88.15,jdroot,5t^Y7u*I
10.22.88.11,jdroot,5t^Y7u*I
10.22.88.17,jdroot,5t^Y7u*I

8，编写recoverpwd_outband.sh执行修改注：SIMPLE_PASSWD="原密码"

#!/bin/bash
VERSION=0.0.1
MODIFY_DATE=20170512
SIMPLE_PASSWD="admin"
echo "Tool Version:$VERSION($MODIFY_DATE)"
function printHelp()
{
    printVersion
    echo "Usage:./recoverpwd_outband.sh -i ipFile
      ipFile is bmc machine info file include ip username and wanted password,
      which interseted by comma
      all machine log is recoverpwd_resule.txt which record change result
      this scripts purpose is recover simple password ‘admin‘ to password user
      wanted one which record in ipFile
"
}
function getuid()
{
    USER_ID=""
    USER_ID=`ipmitool -H $IP_ADDR -U $USER_NAME -P $SIMPLE_PASSWD -I lanplus user list | grep " $USER_NAME " | awk ‘{print $1}‘`
    if [ -z $USER_ID ]
    then
        return 1
    fi
    return 0
}
function changepwd()
{
    result=`ipmitool -H $IP_ADDR -U $USER_NAME -P $SIMPLE_PASSWD -I lanplus user set password $USER_ID $USER_PASSWD`
    if [ $? -ne 0 ]
    then
        return 1
    fi
    return 0
}
function checkpwd()
{
    result=`ipmitool -H $IP_ADDR -U $USER_NAME -P $USER_PASSWD -I lanplus user list`
    if [ $? -ne 0 ]
    then
        return 1
    fi
    return 0
}
case $1 in
            -h|--help)
            printHelp
            exit 0
                ;;
    esac
while getopts ":i:" opt
do
    case $opt in
        i)
            IP_FILE=$OPTARG
            echo "ip file is "$IP_FILE
            ;;
        *)
            echo "argument error"
            exit 1;;
    esac
done
if [ ${#IP_FILE} -eq 0 ]
then
    echo "please assign ip file. detail info check -h"
    exit 0
fi
for LINE in `cat $IP_FILE`;
do
{
    if [ ${#LINE} -lt 10 ]
    then
        exit 0;
    fi
    IP_ADDR=`echo $LINE | awk -F, ‘{print $1}‘`
    USER_NAME=`echo $LINE | awk -F, ‘{print $2}‘`
    USER_PASSWD=`echo $LINE  | awk -F, ‘{print $3}‘ | sed ‘s/\r//g‘`
    echo $IP_ADDR
    echo $USER_NAME
    echo $USER_PASSWD
    echo "$IP_ADDR is revocering ${USER_NAME}‘s password..."
    getuid
    if [ $? -ne 0 ]
    then
        echo "$IP_ADDR: get uid error, recover password fail" >> recoverpwd_result.txt
        echo "$IP_ADDR: get uid error, recover password fail"
        exit 0
    fi
    changepwd
    if [ $? -ne 0 ]
    then
        echo "$IP_ADDR: change password error, recover password fail" >> recoverpwd_result.txt
        echo "$IP_ADDR: change password error, recover password fail"
        exit 0
    fi
    checkpwd
    if [ $? -ne 0 ]
    then
        echo "$IP_ADDR: check password error, recover password fail" >> recoverpwd_result.txt
        echo "$IP_ADDR: check password error, recover password fail"
        exit 0
    fi
    echo "$IP_ADDR recover password success" >> recoverpwd_result.txt
    echo "$IP_ADDR recover password success"
}&
done
wait
echo "all machine recover password over"

9，将ip.csv和recoverpwd_outband.sh文件拷贝到同一目录下，执行“chmod +x recoverpwd_outband.sh”，给脚本添加可执行权限；

10，执行”./recoverpwd_outband –i ip.csv”；

[[email protected]# ./reoverpwd_outband.sh -i ip.csv
Tool Version:0.0.1(20170512)
ip file is ip.csv
10.22.88.11
jdroot
5t^Y7u*I
10.22.88.11 is revocering jdroot‘s password...
10.22.88.15
jdroot
5t^Y7u*I
10.22.88.15 is revocering jdroot‘s password...
10.22.88.17
jdroot
5t^Y7u*I
10.22.88.17 is revocering jdroot‘s password...
10.22.88.12
jdroot
5t^Y7u*I
10.22.88.12 is revocering jdroot‘s password...
10.22.88.17 recover password success
10.22.88.15 recover password success
10.22.88.11 recover password success
10.22.88.12 recover password success
all machine recover password over

11，脚本运行结束后会生成recoverpwd_result.txt文件，显示成功情况；

10.22.88.17 recover password success
10.22.88.15 recover password success
10.22.88.11 recover password success
10.22.88.12 recover password success

时间： 2024-10-11 17:26:07

ipmitool批量验证BMC密码且修改密码的相关文章

MySQL忘记密码怎么修改密码

MySQL的 root 帐号密码默认为空,经常都有修改密码后忘记密码的事.如果忘记了root 帐号密码,那该怎么修改密码呢?这里有一个可行的方法,就是在MySQL安全模式下(跳过权限检查)修改密码的方式来解决这个问题.本文分别对Windows环境与Linux环境下介绍MySQL忘记密码时修改密码的方法,希望帮助初学者解决丢失密码的烦恼. Windows下MySQL重置密码通常MySQL都是安装成Windows服务运行的. 1.启动cmd命令窗口: # 关闭MySQL服务 D:\MySQL\

MVC5 网站开发之六管理员功能之添加、删除、重置密码、修改密码、列表浏览

一.安装插件. 展示层前端框架以Bootstrap为主,因为Bootstrap的js功能较弱,这里添加一些插件作补充.其实很多js插件可以通过NuGet安装,只是NuGet安装时添加的内容较多,不如自己复制来的干净,所以这里所有的插件都是下载然后复制到项目中. 1.Bootstrap 3 Datepicker 4.17.37 网址:https://eonasdan.github.io/bootstrap-datetimepicker/ 下载并解压压缩包->将bootstrap-datetim

mysql多实例忘记root密码，修改密码

1.修改配置参数 /etc/my.cnf 在 [mysqld3306] 下面加上: skip-grant-tables 2.重启MySQL mysqld_multi start 3306 3.修改密码 mysql -h127.0.0.1 -P3306 -uroot update mysql.user set password=password('test_new2_password') where user= 'root'; flush privileges; 关闭数据库 mysqld_mult

mac忘记root密码，修改密码

能登陆系统,但是忘记了root密码,修改root密码如下: sudo bashpassword:输入你的当前用户密码bash-3.2# ok done!其实没啥,因为登陆当前用户默认在系统sudoers的list里. password root 输入新的密码

oracle忘记密码，修改密码

1:输入命令: sqlplus /nolog ,进入oracle控制台,并输入 conn /as sysdba;以DBA角色进入.2:若修改某一个用户密码, 修改用户口令格式为:alter user 用户名 identified by 新密码:以 test 为例,密码修改为 123456. 可输入alter user test identified by 123456;

MySQL 5.7 的初始化操作（root初始密码、修改密码、密码策略、关闭IPv6监听）

我这里是通过mysql官方的yum源来安装的mysql-community-server ,当前版本是MySQL 5.7.12 . wget rpm -ivh mysql57-community-release-el6-8.noarch.rpm yum install mysql-community-server service mysqld start 第一次启动后会有个初始化的过程,会产生root账户的随机密码. 为了加强安全性,MySQL5.7为root用户随机生成了一个密码,在err

mysql 忘记密码和修改密码

1．首先确认服务器出于安全的状态,也就是没有人能够任意地连接MySQL数据库. 因为在重新设置MySQL的root密码的期间,MySQL数据库完全出于没有密码保护的状态下,其他的用户也可以任意地登录和修改MySQL的信息.可以采用将MySQL对外的端口封闭,并且停止Apache以及所有的用户进程的方法实现服务器的准安全状态.最安全的状态是到服务器的Console上面操作,并且拔掉网线. 2．修改MySQL的登录设置: # vim /etc/my.cnf 在[mysqld]的段中加上一句:s

百万年薪python之路 -- MySQL数据库之永久修改字符串编码与忘了密码和修改密码

永久修改字符集编码的方法: 在mysql安装目录下创建一个my.ini(Windows下)文件,写入下面的配置,然后重启服务端. [client] #设置mysql客户端默认字符集 default-character-set=utf8 [mysql] # 设置mysql客户端默认字符集 default-character-set=utf8 user = 'root' password = '123' [mysqld] #设置3306端口 port = 3306 # 设置mysql的安装目录 ba

Mysql 忘密码 + Phpadmin 修改密码无法登陆

mysql有时候忘记密码了怎么办?我给出案例和说明!一下就解决了! Windows下的实际操作如下 1.关闭正在运行的MySQL. 2.打开DOS窗口,转到mysql\bin目录. 3.输入mysqld --skip-grant-tables回车.如果没有出现提示信息,那就对了. 4.再开一个DOS窗口(因为刚才那个DOS窗口已经不能动了),转到mysql\bin目录. 5.输入mysql回车,如果成功,将出现MySQL提示符 > 6. 连接权限数据库>use mysql; (>是本来就