PXE Server Configuration

Prerequisites:

  • A working PXE server configured with supporting technologies (DHCP, TFTPD, and NFS share).

  • The Asset Tag provisioning image (assettag.iso).

  • The TPM for any hosts to be provisioned must be in the clear state with Intel TXT activated.

Configuration:

  1. Extract the contents of assettag.iso and copy the casper folder to the NFS share directory on the PXE server.

  2. Copy the SSL certificate located at: /etc/intel/cloudsecurity/ssl.crt.pem from your Asset Tag Management server to the PXE server, and place it in the NFS share directory of the PXE server.

  3. On the PXE server, edit the /tftpboot/ipxe/bootloader.cfg file and add the following arguments:

    atag_cert=’http://<PXE IP Address>/<nfsshare>/ssl.crt.pem’

    atag_username=’admin’

    atag_password=’password’

    atag_server=’http://<IP Address>:<Port>/mtwilson/v2’

    Note: Make the following changes to the file before saving:

    • Replace <PXE IP Address> with the IP address or hostname of the PXE server.
    • Replace <nfsshare> with the path to the NFS share.
    • Replace <IP Address> and <Port> with the IP address or hostname and port of the Asset Tag Management server on the PXE network.

 

HyTrust CloudControl v 5.6

Copyright © 2019 HyTrust, Inc. All Rights Reserved.

Follow us: