-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathUpdate-UCSFirmware.ps1
233 lines (195 loc) · 10.5 KB
/
Update-UCSFirmware.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
#requires -version 2
<#
.SYNOPSIS
Script to update Cisco UCS Firmware on VMware based blades in a rolling update manner, by VMware cluster
.DESCRIPTION
User provides vSphere cluster, hostname pattern, and UCS Host Firmware Policy name.
The script will sequentially check if each host is running the requested firmware.
If not running the desired firmware, the host will be put into maintenance, shut down,
UCS firmware update applied, and then powered on and taken out of maintenance mode
This repeats until all hosts in the cluster have been updated.
.PARAMETER <Parameter_Name>
<Brief description of parameter input required. Repeat this attribute if required>
.INPUTS
Script assumes the user has previously installed the VMware PowerCLI and Cisco PowerTool modules into Powershell
VMware PowerCLI install
Install-Module VMware.PowerCLI -Scope CurrentUser
UCS PowerTool install
Install-Module Cisco.UCSManager -Scope CurrentUser
Also assumes a connection to vSphere and UCS has already been created using the modules
$vcenters = @("vcenter.domain.local","vcenter2.domain.local)
Connect-VIServer $vcenters -AllLinked
$UCSManagers= @("192.168.0.1","UCS1.domain.local")
Import-Module Cisco.UCSManager
Set-UcsPowerToolConfiguration -supportmultipledefaultucs $true
connect-ucs $UCSManagers
To prevent issues with Remediation of Update Manager Baselines reporting an error, run the following command to
extend the timeout from 5 minutes to 20 minutes and then close and open the Powershell window
Set-PowerCLIConfiguration -Scope AllUsers -WebOperationTimeoutSeconds 1200 -Confirm:$False
.OUTPUTS
None
.NOTES
Version: 1.4
Author: Joshua Post
Modify Date: 09/06/2018
https://github.com/MallocArray/Update-UCSFirmware
Purpose/Change: Modification of other base scripts to support multiple UCS connections and Update Manager to install drivers associated with firmware update
Based on http://timsvirtualworld.com/2014/02/automate-ucs-esxi-host-firmware-updates-with-powerclipowertool/
Adapted from Cisco example found here: https://communities.cisco.com/docs/DOC-36050
.EXAMPLE
Run script, being prompted for all input, but no updates installed
.\Update-UCSFirmware.ps1
Run script, providing all needed input including baseline to install updates
.\Update-UCSFirmware.ps1 -ESXiCluster "Cluster1" -ESXiHost "*" -FirmwarePackage "3.2.3d." -baseline "3.2.3d Drivers"
Run script, being prompted for baselines to install updates
.\Update-UCSFirmware.ps1 -PromptBaseline
#>
[CmdletBinding()]
Param(
[Parameter(Mandatory=$False, HelpMessage="ESXi Cluster to Update")]
[string]$ESXiCluster,
[Parameter(Mandatory=$False, HelpMessage="ESXi Host(s) in cluster to update. Specify * in quotes for all hosts or as a wildcard")]
[string]$ESXiHost,
[Parameter(Mandatory=$False, HelpMessage="Name of Update Manager baseline to apply or * in quotes for all attached baselines and 999 to skip updates")]
[string]$Baseline,
[Parameter(Mandatory=$False, HelpMessage="UCS Host Firmware Package Name")]
[string]$FirmwarePackage
)
########################################
# Listing Available options if not supplied
########################################
if ($ESXiCluster -eq "") {
$x=1
$ClusterList = Get-Cluster | sort name
Write-Host "`nAvailable Clusters to update"
$ClusterList | %{Write-Host $x":" $_.name ; $x++}
$x = Read-Host "Enter the number of the package for the update"
$ESXiClusterObject = Get-Cluster $ClusterList[$x-1]
}Else {
$ESXiClusterObject = Get-Cluster $ESXiCluster
}
if ($ESXiHost -eq "") {
Write-Host "`nEnter name of ESXi Host to update. `nSpecify a FQDN, * for all hosts in cluster, or a wildcard such as Server1*"
$ESXiHost = Read-Host "ESXi Host"
}
if ($Baseline -eq "") {
$x=1
$BaselineList = $ESXiClusterObject | get-vmhost | Get-Baseline -Inherit | sort LastUpdateTime -descending
Write-Host "`nAvailable Update Manager Baselines in this cluster. `nIf the desired baseline is missing, attach it to the cluster or host and run the script again."
Write-Host "Enter 999 to skip baseline updates. `n0: All Available Updates"
$BaselineList | %{Write-Host $x":" $_.name ; $x++}
$x = Read-Host "Enter the number of the Baseline"
switch ($x) {
'0' { $BaselineObject = $BaselineList }
'999' { $BaselineObject = "" }
default { $BaselineObject = $BaselineList[$x-1] }
}
}
if ($Baseline -ne "") {
if ($Baseline -eq '999') { $BaselineObject = "" }
else { $BaselineObject = $ESXiClusterObject | get-vmhost | Get-Baseline -Inherit $Baseline }
}
If ($FirmwarePackage -eq "") {
$x=1
$FirmwarePackageList = Get-UcsFirmwareComputeHostPack | select name -unique | sort name
Write-Host "`nHost Firmware Packages available on connected UCS systems"
$FirmwarePackageList | %{Write-Host $x":" $_.name ; $x++}
$x = Read-Host "Enter the number of the package for the update"
$FirmwarePackage = $FirmwarePackageList[$x-1].name
}
Write-Host "`nStarting process at $(date)"
Write-Host "Working on ESXi Cluster: $($ESXiClusterObject.name)"
Write-Host "Using Host Firmware Package: $FirmwarePackage"
$Progress=-1
$VMHosts = $ESXiClusterObject | Get-VMHost | Where { $_.Name -like "$ESXiHost" } | sort name
try {
Foreach ($VMHost in $VMHosts) {
$MacAddr=$ServiceProfiletoUpdate=$UCShardware=$Maint=$Shutdown=$poweron=$ackuserack=$null #Emptying variables
$StartTime = Get-Date
$Progress++
Write-Progress -Activity 'Update Process' -CurrentOperation $vmhost.name -PercentComplete (($Progress / $VMHosts.count) * 100)
if (($VMHost = Get-VMHost $VMHost).ConnectionState -eq "NotResponding") {
Write-Error "$($vmhost.name) is not responding. Skipping."
Continue
}
Write-Host "Processing $($VMHost.name) at $(date)"
Write-Host "UCS: Correlating ESXi Host: $($VMHost.Name) to running UCS Service Profile (SP)"
$MacAddr = Get-VMHostNetworkAdapter -vmhost $vmhost -Physical | where {$_.BitRatePerSec -gt 0} | select -first 1 #Select first connected physical NIC
$ServiceProfileToUpdate = Get-UcsServiceProfile | Get-UcsVnic | where { $_.addr -ieq $MacAddr.Mac } | Get-UcsParent
$UCSHardware = $ServiceProfileToUpdate.PnDn
Write-Verbose "Validating Settings"
if ($ServiceProfileToUpdate -eq $null) {
write-host $VMhost "was not found in UCS. Skipping host" -foregroundcolor Red
Continue
}
if ((Get-UcsFirmwareComputeHostPack | where {$_.ucs -eq $ServiceProfileToUpdate.Ucs -and $_.name -eq $FirmwarePackage }).count -ne 1) {
write-host "Firmware Package" $FirmwarePackage "not found on" $ServiceProfileToUpdate.Ucs "for server" $vmhost.name -foregroundcolor Red
Continue
}
if ($ServiceProfileToUpdate.HostFwPolicyName -eq $FirmwarePackage) {
Write-Host $ServiceProfileToUpdate.name "is already running firmware" $FirmwarePackage -foregroundcolor Yellow
Continue
}
if ($ESXiClusterObject.DrsEnabled -eq $False) {
Write-Host $ESXiClusterObject.name "does not have DRS enabled. Automatic maintenance mode is not possible. `nPlease put hosts into maintenace mode manually"
}
Write-Host "vC: Placing ESXi Host: $($VMHost.Name) into maintenance mode"
$Maint = $VMHost | Set-VMHost -State Maintenance -Evacuate
Write-Host "vC: Waiting for ESXi Host: $($VMHost.Name) to enter Maintenance Mode"
do {
Sleep 10
} until ((Get-VMHost $VMHost).ConnectionState -eq "Maintenance")
Write-Host "vC: ESXi Host: $($VMHost.Name) now in Maintenance Mode"
if ($BaselineObject -ne "") {
Write-Host "VC: Installing Updates on host $($VMhost.name)"
Test-compliance -entity $vmhost
Remediate-Inventory -baseline $BaselineObject -entity $vmhost -confirm:$False
$Maint = $VMHost | Set-VMHost -State Maintenance -Evacuate
}
#Read-Host "Last Chance to quit"
Write-Host "vC: ESXi Host: $($VMHost.Name) is now being shut down"
$Shutdown = $VMHost.ExtensionData.ShutdownHost($true)
Write-Host "UCS: ESXi Host: $($VMhost.Name) is running on UCS $($ServiceProfileToUpdate.Ucs) SP: $($ServiceProfileToUpdate.name)"
Write-Host "UCS: Waiting for UCS SP: $($ServiceProfileToUpdate.name) to gracefully power down"
do {
if ( (get-ucsmanagedobject -dn $ServiceProfileToUpdate.PnDn -ucs $ServiceProfileToUpdate.Ucs).OperPower -eq "off")
{
break
}
Sleep 60
} until ((get-ucsmanagedobject -dn $ServiceProfileToUpdate.PnDn -ucs $ServiceProfileToUpdate.Ucs).OperPower -eq "off" )
Write-Host "UCS: UCS SP: $($ServiceProfileToUpdate.name) powered down"
Write-Host "UCS: Setting desired power state for UCS SP: $($ServiceProfileToUpdate.name) to down"
$poweron = $ServiceProfileToUpdate | Set-UcsServerPower -State "down" -Force
Write-Host "UCS: Changing Host Firmware pack policy for UCS SP: $($ServiceProfileToUpdate.name) to '$($FirmwarePackage)'"
$updatehfp = $ServiceProfileToUpdate | Set-UcsServiceProfile -HostFwPolicyName $FirmwarePackage -Force
Write-Host "UCS: Acknowledging any User Maintenance Actions for UCS SP: $($ServiceProfileToUpdate.name)"
if (($ServiceProfileToUpdate | Get-UcsLsmaintAck| measure).Count -ge 1)
{
$ackuserack = $ServiceProfileToUpdate | get-ucslsmaintack | Set-UcsLsmaintAck -AdminState "trigger-immediate" -Force
}
Write-Host "UCS: Waiting for UCS SP: $($ServiceProfileToUpdate.name) to complete firmware update process..."
do {
Sleep 40
} until ((Get-UcsManagedObject -Dn $ServiceProfileToUpdate.Dn -ucs $ServiceProfileToUpdate.Ucs).AssocState -ieq "associated")
Write-Host "UCS: Host Firmware Pack update process complete. Setting desired power state for UCS SP: $($ServiceProfileToUpdate.name) to 'up'"
$poweron = $ServiceProfileToUpdate | Set-UcsServerPower -State "up" -Force
Write "vC: Waiting for ESXi: $($VMHost.Name) to connect to vCenter"
do {
Sleep 40
} until (($VMHost = Get-VMHost $VMHost).ConnectionState -ne "NotResponding" )
Write-host "VC: Exiting maintenance mode on $(date)"
$Maint = $VMHost | Set-VMHost -State Connected
#Finishing Up
$ElapsedTime = $(get-date) - $StartTime
write-host "$($VMhost.name) completed in $($elapsedTime.ToString("hh\:mm\:ss"))`n"
}
}
Catch
{
Write-Host "Error occurred in script:"
Write-Host ${Error}
Write-Host "Finished process at $(date)"
exit
}
Write-Host "Finished process at $(date)"