Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

User Privileges Required for the DHCP and File Server While Using Zero Touch Provisioning

 

Ensure that you have the following user privileges on the DHCP server and the file server prior to configuring them for zero touch provisioning (ZTP).

  • DHCP server—Ensure that the DHCP user has permissions to:

    • write to the dhcpd.conf file on the DHCP server.

      Note

      To fetch the dhcp.conf file, ensure that the DHCP server and the Layer 3 Fabric devices are in the same subnets. If you are not in the same subnet, you must specify the gateway IP address that these devices can use to reach Network Director and fetch the dhcp.conf file. For information about specifying the gateway IP address, see, Creating Layer 3 Fabrics.

    • write to the /etc/dhcp/ddns-keys directory

    • copy the file dhcpd.conf to the file dhcpdbacknd.conf

    • start the isc-dhcp-server service

    For more information about file permissions, refer DHCP server documentation.

  • File server—Network Director uses the anonymous user to connect to the file server. You must modify certain configurations in the server configuration file to enable Network Director to access the file server. Change the configuration settings for the following file servers, depending on the file server type and the operating system that is running on the file server:

    • For FTP server running CentOS (or any other FreeBSD-based servers)—Modify the configuration in the /etc/vsftpd/vsftpd.conf file as follows:

      anonymous_enable=YES

      anon_upload_enable=YES

      anon_mkdir_write_enable=YES

      file_open_mode=0644

      anon_umask=033

    • For TFTP running on a Linux server—Modify the configuration in the /etc/xinetd.d/tftp file as follows:

      server_args = -c -s <dir>

      disable = no

Related Documentation