Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    User Privileges Required for the DHCP and File Server While Using Zero Touch Provisioning

    Ensure that you have the following user privileges on the DHCP server and the file server prior to configuring them for zero touch provisioning (ZTP).

    • DHCP server—Ensure that the DHCP user has permissions to:
      • write to the dhcpd.conf file on the DHCP server.

        Note: To fetch the dhcp.conf file, ensure that the DHCP server and the Layer 3 Fabric devices are in the same subnets. If you are not in the same subnet, you must specify the gateway IP address that these devices can use to reach Network Director and fetch the dhcp.conf file. For information about specifying the gateway IP address, see, Creating Layer 3 Fabrics.

      • write to the /etc/dhcp/ddns-keys directory
      • copy the file dhcpd.conf to the file dhcpdbacknd.conf
      • start the isc-dhcp-server service

      For more information about file permissions, refer DHCP server documentation.

    • File server—Network Director uses the anonymous user to connect to the file server. You must modify certain configurations in the server configuration file to enable Network Director to access the file server. Change the configuration settings for the following file servers, depending on the file server type and the operating system that is running on the file server:
      • For FTP server running CentOS (or any other FreeBSD-based servers)—Modify the configuration in the /etc/vsftpd/vsftpd.conf file as follows:

        anonymous_enable=YES
        anon_upload_enable=YES
        anon_mkdir_write_enable=YES
        file_open_mode=0644
        anon_umask=033

      • For TFTP running on a Linux server—Modify the configuration in the /etc/xinetd.d/tftp file as follows:

        server_args = -c -s <dir>
        disable = no

    Modified: 2018-01-23