CN108667639B

CN108667639B - Resource management method and management server in private cloud environment

Info

Publication number: CN108667639B
Application number: CN201710198664.7A
Authority: CN
Inventors: 李琦; 杨晓颖
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd
Priority date: 2017-03-29
Filing date: 2017-03-29
Publication date: 2022-01-11
Anticipated expiration: 2037-03-29
Also published as: CN108667639A

Abstract

The invention discloses a resource management method and a management server under a private cloud environment, wherein the method comprises the following steps: receiving a first request triggered by out-of-band operation, wherein the first request is used for representing a currently detected service server to be identified and carries a request identifier of the service server; analyzing a request identifier of a service server from the first request, and inquiring the request identifier of the service server in the extracted first configuration information, wherein the first configuration information is a mapping relation obtained based on the request identifier of the previously reported service server and a network identifier distributed for the service server; when the request identification of the service server does not exist in the first configuration information, identifying the service server as a target service server to be newly added for configuration management; and extracting a preset strategy, and carrying out automatic configuration management operation on each processing link of the target service server in the whole resource life cycle according to the preset strategy.

Description

Resource management method and management server in private cloud environment

Technical Field

The invention relates to a resource management technology, in particular to a resource management method and a management server in a private cloud environment.

Background

In a public cloud environment, a user only needs to contact virtual cloud resources, such as a cloud host, a cloud hard disk, a cloud database and the like, and the public cloud can provide a matched automatic management system for the user without manual intervention. In the private cloud environment, however, there is no such automated configuration. In a private cloud environment, the whole is delivered to a user together with physical server resources, and the user manages the physical server resources by himself, including operations such as initial installation, remote startup, shutdown, restart, and reinstallation of the physical server resources, that is, in the private cloud environment, the user needs to manage the physical server resources by himself in a manual and on-site manner, which causes very low efficiency, and further affects the management efficiency of the cloud resources. However, in the related art, there is no effective solution to this problem.

Disclosure of Invention

In view of this, embodiments of the present invention provide a resource management method and a management server in a private cloud environment, which at least solve the problems in the prior art.

The technical scheme of the embodiment of the invention is realized as follows:

the embodiment of the invention provides a resource management method under a private cloud environment, which comprises the following steps:

the method comprises the steps that a management server receives a first request triggered by out-of-band operation, wherein the first request is used for representing a currently detected service server to be identified, and a request identifier of the service server is carried in the first request;

the management server analyzes the request identifier of the service server from the first request, and inquires the request identifier of the service server in the extracted first configuration information, wherein the first configuration information is a mapping relation obtained based on the request identifier of the service server reported before and the network identifier distributed for the service server;

when the request identification of the service server does not exist in the first configuration information, the management server identifies the service server as a target service server to be newly added for configuration management;

and the management server extracts a preset strategy and carries out automatic configuration management operation on each processing link of the target service server in the whole resource life cycle according to the preset strategy.

In the above solution, the performing, according to the preset policy, an automated configuration management operation on each processing link of the target service server in the whole resource life cycle includes:

before network deployment is carried out on the target service server by the management server, carrying out-of-band initialization configuration on the target service server so as to reset an out-of-band password, and obtaining a modified password after the resetting is successful;

and the management server records the modified password into a password library after symmetrically encrypting.

In the above solution, when the management server is implemented by using a distributed cluster architecture, the management server includes a management control subunit and at least one controlled subunit;

the method further comprises the following steps:

scheduling and distributing the tasks in centralized management through the management control subunit;

and reporting respective operation results after the distributed tasks are operated by the at least one controlled subunit.

when the management control subunit performs out-of-band operation configuration on the target service server, a task is received, and an out-of-band command corresponding to the out-of-band operation is encapsulated in the task;

analyzing the out-of-band command from the task through the management control subunit;

inquiring information related to the out-of-band network identification of the target service server through the management control subunit;

obtaining a first target task to be allocated to the at least one controlled subunit according to information related to an out-of-band network identifier of the target service server and the out-of-band command;

and uniformly scheduling and distributing the first target task through the management control subunit.

In the foregoing solution, the unified scheduling and allocating of the first target task by the management control subunit includes any one of the following manners:

the first method is as follows:

after the management control subunit actively issues the first target task to the at least one controlled subunit, the at least one controlled subunit initiates a request to the first target service server in a preset communication mode, finishes the operation of the first target task after obtaining a request response, and returns an operation result of the first target task;

the second method comprises the following steps:

receiving a task acquisition request of the at least one controlled subunit through the management control subunit;

after the management control subunit issues the first target task to the at least one controlled subunit, the at least one controlled subunit initiates a request to the target service server in a preset communication mode, finishes the operation of the first target task after obtaining a request response, and returns an operation result of the first target task.

when the management control subunit performs operating system installation configuration on the target service server, receiving a task, wherein an operating command corresponding to the installation configuration operation is encapsulated in the task;

analyzing the operation command from the task through the management control subunit;

obtaining a second target task to be allocated to the at least one controlled subunit according to the information related to the out-of-band network identifier of the target service server and the operation command;

and uniformly scheduling and distributing the second target task through the management control subunit.

In the foregoing solution, the performing unified scheduling allocation on the second target task by the management control subunit includes:

after the management control subunit actively issues the second target task to the at least one controlled subunit, the at least one controlled subunit analyzes the operation command from the second target task, initiates an operation command corresponding to the operation command to the target service server in a preset communication mode, finishes the operation of the second target task after obtaining a command response, and returns an operation result of the second target task.

In the above scheme, the method further comprises:

when the running result of the second target task obtained by the management control subunit is successful, recording the running result of the second target task, and waiting for the target service server to report the current state and configuration;

receiving the reported information containing the current state and configuration through the management control subunit, and checking according to the reported information;

and installing the operating system after the management control subunit passes the verification.

A management server according to an embodiment of the present invention includes:

a receiving unit, configured to receive a first request triggered by an out-of-band operation, where the first request is used to represent a currently detected service server to be identified, and a request identifier of the service server is carried in the first request;

the analysis unit is used for analyzing the request identifier of the service server from the first request, and inquiring the request identifier of the service server in the extracted first configuration information, wherein the first configuration information is a mapping relation obtained based on the request identifier of the service server reported before and the network identifier distributed for the service server;

the identification unit is used for identifying the service server as a target service server to be newly added for configuration management when the request identifier of the service server is not inquired to exist in the first configuration information;

and the configuration management unit is used for extracting a preset strategy and carrying out automatic configuration management operation on the target service server in each processing link of the whole resource life cycle according to the preset strategy.

In the foregoing solution, the configuration management unit is further configured to:

carrying out-of-band initialization configuration on the target service server before carrying out network deployment on the target service server so as to reset an out-of-band password, and obtaining a modified password after the resetting is successful;

In the above solution, when the management server is implemented by using a distributed cluster architecture, the management server further includes a management control subunit and at least one controlled subunit;

the management control subunit is used for performing centralized management scheduling allocation on the tasks;

and the controlled subunits are used for reporting respective operation results after the distributed tasks are operated.

In the foregoing solution, the management control subunit is further configured to:

when the out-of-band operation configuration is carried out on the target business server, a task is received, and an out-of-band command corresponding to the out-of-band operation is packaged in the task;

parsing the out-of-band command from the task;

inquiring information related to the out-of-band network identification of the target service server;

In the foregoing solution, the management control subunit is further configured to implement any one of the following manners:

the first method is as follows:

after the first target task is actively issued to the at least one controlled subunit, the at least one controlled subunit initiates a request to the first target service server in a preset communication mode, finishes the operation of the first target task after a request response is obtained, and returns an operation result of the first target task;

the second method comprises the following steps:

receiving a task acquisition request of the at least one controlled subunit;

and after the first target task is issued to the at least one controlled subunit, the at least one controlled subunit initiates a request to the target service server in a preset communication mode, finishes the operation of the first target task after a request response is obtained, and returns an operation result of the first target task.

when the target service server is subjected to operating system installation configuration, a task is received, and an operating command corresponding to the installation configuration operation is encapsulated in the task;

analyzing the operation command from the task;

and performing unified scheduling distribution on the second target task.

and after the second target task is actively issued to the at least one controlled subunit, the at least one controlled subunit analyzes the operation command from the second target task, initiates an operation instruction corresponding to the operation command to the target service server in a preset communication mode, finishes the operation of the second target task after the instruction response is obtained, and returns the operation result of the second target task.

when the obtained running result of the second target task is successful, recording the running result of the second target task, and waiting for the target service server to report the current state and configuration;

receiving report information containing the current state and configuration, and checking according to the report information;

and installing the operating system after the verification is passed.

The resource management method in the private cloud environment of the embodiment of the invention comprises the following steps: the method comprises the steps that a management server receives a first request triggered by out-of-band operation, wherein the first request is used for representing a currently detected service server to be identified, and a request identifier of the service server is carried in the first request; the management server analyzes the request identifier of the service server from the first request, and inquires the request identifier of the service server in the extracted first configuration information, wherein the first configuration information is a mapping relation obtained based on the request identifier of the service server reported before and the network identifier distributed for the service server; when the request identification of the service server does not exist in the first configuration information, the management server identifies the service server as a target service server to be newly added for configuration management; and the management server extracts a preset strategy and carries out automatic configuration management operation on each processing link of the target service server in the whole resource life cycle according to the preset strategy.

By adopting the embodiment of the invention, the user does not need to adopt manual and on-site modes to carry out self management, whether the service server initiating the request is a newly found resource or not, namely whether the required identifier is a target server needing to process the newly found resource or not is judged according to the mapping relation obtained by the request identifier of the service server and the network identifier distributed for the service server before, if so, the resource newly found in an out-of-band mode, namely a new service server is subjected to automatic configuration management operation in each processing link of the whole resource life cycle of the new service server through the management server, so that the operation efficiency of the user is improved, and the management efficiency of cloud resources is also improved.

Drawings

FIG. 1 is a diagram of hardware entities performing information interaction in an embodiment of the present invention;

FIG. 2 is a schematic flow chart illustrating a method according to an embodiment of the present invention;

FIG. 3 is a schematic flow chart illustrating an implementation of another method according to an embodiment of the present invention;

FIG. 4 is a diagram of a system architecture according to an embodiment of the present invention;

FIG. 5 is a diagram of an application scenario of the prior art;

FIG. 6 is a schematic diagram of a whole lifecycle processing procedure of a service server according to an embodiment of the present invention;

fig. 7 is a schematic operation diagram of an operation and maintenance worker who applies a private cloud according to an embodiment of the present invention;

FIG. 8 is a diagram illustrating a hardware environment of a private cloud to which embodiments of the invention are applied;

fig. 9 is a schematic diagram of a service server resource discovery scenario to which an embodiment of the present invention is applied;

FIG. 10 is a diagram illustrating an out-of-band operation scenario in which an embodiment of the present invention is applied;

FIG. 11 is a diagram illustrating an operating system installation scenario in which embodiments of the present invention are applied.

Detailed Description

The following describes the embodiments in further detail with reference to the accompanying drawings.

A mobile terminal implementing various embodiments of the present invention will now be described with reference to the accompanying drawings. In the following description, suffixes such as "module", "component", or "unit" used to denote elements are used only for facilitating the description of the embodiments of the present invention, and have no specific meaning in themselves. Thus, "module" and "component" may be used in a mixture.

In the following detailed description, numerous specific details are set forth in order to provide a thorough understanding of the present invention. It will be apparent, however, to one skilled in the art that the present invention may be practiced without these specific details. In other instances, well-known methods, procedures, components, circuits, and networks disclosed have not been described in detail as not to unnecessarily obscure aspects of the embodiments.

In addition, although the terms "first", "second", etc. are used herein several times to describe various elements (or various thresholds or various applications or various instructions or various operations), etc., these elements (or thresholds or applications or instructions or operations) should not be limited by these terms. These terms are only used to distinguish one element (or threshold or application or instruction or operation) from another element (or threshold or application or instruction or operation). For example, a first operation may be referred to as a second operation, and a second operation may be referred to as a first operation, without departing from the scope of the invention, the first operation and the second operation being operations, except that they are not the same operation.

The steps in the embodiment of the present invention are not necessarily processed according to the described step sequence, and may be optionally rearranged in a random manner, or steps in the embodiment may be deleted, or steps in the embodiment may be added according to requirements.

The term "and/or" in embodiments of the present invention refers to any and all possible combinations including one or more of the associated listed items. It is also to be noted that: when used in this specification, the term "comprises/comprising" specifies the presence of stated features, integers, steps, operations, elements and/or components but does not preclude the presence or addition of one or more other features, integers, steps, operations, elements and/or components and/or groups thereof.

The intelligent terminal (e.g., mobile terminal) of the embodiments of the present invention may be implemented in various forms. For example, the mobile terminal described in the embodiments of the present invention may include a mobile terminal such as a mobile phone, a smart phone, a notebook computer, a Digital broadcast receiver, a Personal Digital Assistant (PDA), a tablet computer (PAD), a Portable Multimedia Player (PMP), a navigation device, and the like, and a fixed terminal such as a Digital TV, a desktop computer, and the like. In the following, it is assumed that the terminal is a mobile terminal. However, it will be understood by those skilled in the art that the configuration according to the embodiment of the present invention can be applied to a fixed type terminal in addition to elements particularly used for moving purposes.

Fig. 1 is a schematic diagram of hardware entities performing information interaction in an embodiment of the present invention, where fig. 1 includes: server 1 and server 2. The server 1 performs information interaction with the server 2 through a wired network or a wireless network. By adopting the embodiment of the invention, the system is divided into a service server designated by the server 1 and a management server designated by the server 2. Of the two, the management server is more important as a control subject of the management configuration, and the management server is used as an execution subject to describe the processing procedure of the embodiment of the present invention. In a private cloud environment, a management server receives an out-of-band request sent by a service server, and identifies the out-of-band request according to a Serial Number (SN) carried in the out-of-band request and used for identifying the service server so as to identify whether the service server is a new resource to be identified. The SN is identified according to the mapping relation between the SN and the IP which is allocated for the service server before and used for identifying the network, if the SN conforms to the mapping relation, the SN is processed before, and if the SN does not conform to the mapping relation, the SN is not processed so far and a series of subsequent automatic configuration is performed, so that the service server which initiates the request is taken as a target service server, and automatic management of each processing link in the life cycle of the server resource is performed on the service server, for example, automatic management of a series of life cycles such as server resource import, automatic discovery, power supply management, system deployment, configuration initialization and recovery and the like is performed. Specifically, as shown in fig. 1, a processing logic 10 of a management server denoted by a server 2 is that the processing logic 10 includes: s1, the management server receives a first request triggered by the out-of-band operation; s2, where the first request is used to characterize a currently detected service server to be identified, and the first request carries a request identifier (e.g., SN) of the service server; s3, the management server analyzes the request identifier (such as SN) of the service server from the first request; s4, querying a request identifier (e.g., SN) of the service server in the extracted first configuration information (e.g., a mapping relationship obtained based on the SN of the service server reported before and the IP allocated to the service server), and determining that the service server has been identified when the query result shows that the request identifier (e.g., SN) does not exist in the first configuration information; and S5, the management server identifies the service server as a newly found resource, and carries out automatic configuration management operation on each processing link of the service server in the whole resource life cycle according to a preset strategy. By adopting the embodiment of the invention, the automatic management of the service server can be realized in a private cloud environment, and particularly, the operation and maintenance efficiency is higher when the method is applied to environments with thousands of scales, and the operation cost of enterprises is reduced.

The above example of fig. 1 is only an example of a system architecture for implementing the embodiment of the present invention, and the embodiment of the present invention is not limited to the system architecture described in the above fig. 1, and various embodiments of the method of the present invention are proposed based on the system architecture described in the above fig. 1.

As shown in fig. 2, a resource management method in a private cloud environment according to an embodiment of the present invention includes: the method comprises the steps that a management server receives a first request triggered by out-of-band operation, wherein the first request is used for representing a currently detected service server to be identified, and a request identifier (101) of the service server is carried in the first request. In a practical application, the service server is used as a physical server, and after the service server is physically mounted and connected to a power line (without being powered on), since the network card of the service server starts the PXE boot function, a broadcast request of a first request, such as DHCP (dynamic host configuration protocol) is immediately sent (the request carries the SN of the service server, and the SN is used as a request Identifier (ID) for identifying the service server) to a corresponding management server. The management server allocates an out-of-band IP to the service server, records the mapping relationship between the SN of the service server and the IP allocated to the SN, stores the mapping relationship in the management server, inquires whether the service server is identified before, and if not, considers that a new service server is detected through out-of-band discovery. Through the interactive processing, the following can be effectively identified: the service server which is powered on and out of band is normal can be used as a detection means for judging whether the new service server is normal after being put on shelf. The management server resolves the request identification (102) of the service server from the first request. In a practical application, the request identifier may be an SN in the mapping relationship, and the SN of the service server is queried in the extracted first configuration information to determine whether the service server has been identified before, where the first configuration information is a mapping relationship obtained based on an SN of a service server reported before and a network identifier (e.g., IP) allocated to the service server. When the request identification of the service server does not exist in the first configuration information, the management server identifies the service server as a target service server (103) to be newly added for configuration management. Here, whether the request identifier can be queried from the first configuration information is for the purpose of enabling the management server to query whether the service server has been identified before, where the identification indicates that the service server is an old server, and the configuration management has been performed before, and does not need to be processed; if not, the new resource is found out of band, that is, the service server is identified as a target service server to be newly added for configuration management, so as to perform a subsequent series of configuration management operations. And the management server extracts a preset strategy and carries out automatic configuration management operation (104) on each processing link of the target service server in the whole resource life cycle according to the preset strategy.

By adopting the embodiment of the invention, the automatic management of the life cycle of the physical server resource is realized in the private cloud environment. Specifically, in a private cloud environment, an automatic system for cloud resource management is established, and a series of life cycles of physical server resource import, automatic discovery, power management, system deployment, configuration initialization, recovery and the like are automatically managed. Therefore, under a private cloud environment, by using the automatic management technology of the physical server resource life cycle of the embodiment of the invention, a user (such as system operation and maintenance personnel of an enterprise) does not need manual intervention, and does not need to manage by self in a manual and on-site mode, and the user (such as the system operation and maintenance personnel of the enterprise) only needs to be in charge of physical shelving and shelving of the server, so that the processing efficiency of the user is improved, and the operation efficiency of the whole cloud resource management system is improved.

As shown in fig. 3, a resource management method in a private cloud environment according to an embodiment of the present invention includes: the management server receives a first request triggered by out-of-band operation, wherein the first request is used for representing a currently detected service server to be identified, and a request identifier (201) of the service server is carried in the first request. In a practical application, the service server is used as a physical server, and after the service server is physically mounted and connected to a power line (without being powered on), since the network card of the service server starts the PXE boot function, a first request, such as a broadcast request of DHCP (the request carries the SN of the service server, and the SN is used as a request ID for identifying the service server), is immediately sent to the corresponding management server. The management server allocates an out-of-band IP to the service server, records the mapping relationship between the SN of the service server and the IP allocated to the SN, stores the mapping relationship in the management server, inquires whether the service server is identified before, and if not, considers that a new service server is detected through out-of-band discovery. Through the interactive processing, the following can be effectively identified: the service server which is powered on and out of band is normal can be used as a detection means for judging whether the new service server is normal after being put on shelf. The management server resolves the request identification (202) of the service server from the first request. In a practical application, the request identifier may be an SN in the mapping relationship, and the SN of the service server is queried in the extracted first configuration information to determine whether the service server has been identified before, where the first configuration information is a mapping relationship obtained based on an SN of a service server reported before and a network identifier (e.g., IP) allocated to the service server. When the request identification of the service server does not exist in the first configuration information, the management server identifies the service server as a target service server to be newly added for configuration management (203). Here, whether the request identifier can be queried from the first configuration information is for the purpose of enabling the management server to query whether the service server has been identified before, where the identification indicates that the service server is an old server, and the configuration management has been performed before, and does not need to be processed; if not, the new resource is found out of band, that is, the service server is identified as a target service server to be newly added for configuration management, so as to perform a subsequent series of configuration management operations. In a subsequent series of configuration management operations, the management server may be implemented by using a distributed cluster architecture, and includes a management control subunit serving as a centralized management party and at least one controlled subunit serving as a controlled party, and according to the extracted preset policy, the management control subunit performs scheduling allocation (204) for centralized management on tasks. The at least one controlled subunit runs the assigned task, the task can interact with the target service server during running, and the running results of the assigned task are reported (205) after running through the at least one controlled subunit. The received tasks are different, the information and response processing transmitted in the specific interaction between the management control subunit and at least one controlled subunit serving as a controlled party are also different, and the target service server can be automatically configured and managed in each processing link of the whole resource life cycle through the interactive processing based on the preset strategy and different tasks.

In the embodiment of the present invention, the preset policy is used to represent how to perform an automated configuration management operation on each processing link of the target service server in the whole resource life cycle. In a practical application, there are several key nodes in the processing link, such as out-of-band initialization, out-of-band operation, and operating system installation of the service server. The method includes the steps that 1) a service server is initialized out of band, for example, after the service server is powered on, if DHCP is normal, the service server enters an out-of-band recording pool, before network deployment is carried out, the machine is required to be initialized out of band, namely, an out-of-band password is reset, and after the password is successfully modified, the password is symmetrically encrypted and then is recorded into a password library. 2) For out-of-band operations, for example, operations of new server network management, management of server initial setting, server running condition monitoring, power supply and heat dissipation optimization, remote servers and the like is realized through independent ILO network ports of the servers. In the embodiment of the present invention, the management server of the distributed cluster architecture may be introduced, that is, the management server may be a distributed cluster architecture formed by a plurality of servers (e.g., a master server, corresponding to a plurality of slave servers), or may be a distributed cluster architecture formed by a plurality of sub-processing units (e.g., a management control sub-unit, corresponding to a plurality of controlled sub-units). Specifically, when the management server forms a distributed cluster architecture by a plurality of sub-processing units (such as a management control subunit corresponding to a plurality of controlled subunits), the management control subunit allocates a task ID of the task after receiving the task of the out-of-band command, and then queries the out-of-band IP, the user and the password of the relevant service server and the command corresponding to the operation, and packages and stores the command in a Database (DB) according to a predetermined protocol to wait for a plurality of controlled subunits to pull the task. The plurality of controlled subunits periodically initiate task requests to the management control subunit, after the tasks are obtained, the requests are initiated to the target service server in an IPMI or SSH mode, and the requests are asynchronously waited for being screened and returned. The IPMI is an intelligent platform management interface, the SSH is an integrated framework of struts, spring and hibernate, and the framework is a Web application open-source framework. The system integrating the SSH framework is divided into four layers in terms of responsibility: the system comprises a presentation layer, a business logic layer, a data persistence layer and a domain module layer, so that developers can build Web application programs with clear structures, good reusability and convenient maintenance in a short time. And reporting the results to the management control subunit after the task running by the plurality of controlled subunits is finished, and updating the task state by the management control subunit according to the reported results. 3) For installation of an operating system, for example, after receiving a task of a system installation operating command, the management control subunit allocates a task ID to the task, issues out-of-band shutdown and PXE entry operations to the controlled subunits, sends an instruction to the target service server after the controlled subunits receive the task, and reports an execution result to the management control subunit, so that a simple version system, i.e., a cut-out version of the small operating system, is subsequently installed under the control of the management control subunit, and formal operating system installation including mirror image transmission, IP configuration, partitioning and the like is performed on the basis. In the embodiment of the invention, when the management server carries out automatic configuration management on the service server, the management server carries out a series of processing on the target service server in the whole resource life cycle, such as a series of life cycles of resource import, automatic discovery, power management, system deployment, configuration initialization, recovery and the like of the service server. The embodiment is described as an example, and specifically aims at "initialization and automatic execution of out-of-band operation" and "automatic installation of an operating system".

Based on the foregoing embodiments, in an implementation manner of an embodiment of the present invention, in an automatic configuration management operation process, before a management server performs network deployment for a target service server, the management server performs out-of-band initialization configuration on the target service server, so as to reset an out-of-band password, and after the resetting is successful, a modified password is obtained. And the management server records the modified password into a password library after symmetrically encrypting.

Based on the foregoing embodiments, in an implementation manner of an embodiment of the present invention, in an automatic configuration management operation process, when an out-of-band operation configuration is performed on a target service server by using a management control subunit, a task is received, where an out-of-band command corresponding to the out-of-band operation is encapsulated in the task; and analyzing the out-of-band command from the task through the management control subunit. In a practical application, the API serves as a communication interface between the service server and the management server to provide an external service, the API performs parameter verification after receiving a task request in an out-of-band command form, and then forwards the task to a management control subunit (e.g., Master) in the management server implemented by using a distributed cluster architecture, and the management control subunit distributes the task to at least one controlled subunit (e.g., Nodesvr). The management control subunit may not only centrally manage at least one controlled subunit (e.g., Nodesvr), but also may assign a task ID to the task received from the API. Benefits of assigning the task identity: because the execution of the out-of-band command needs some time, the management control subunit (such as the Master) can asynchronously execute the operation, immediately return the assigned task ID to the API, then respond to the caller, and after the caller gets the task ID, the caller can periodically inquire the task progress and result.

Based on the foregoing embodiments, in an implementation manner of an embodiment of the present invention, in an automatic configuration management operation process, a management control subunit (e.g., Master) is used to query information, such as an out-of-band IP, a user, a password, and the like, related to an out-of-band network identifier (e.g., an out-of-band IP) of a target service server, and then a first target task to be allocated to at least one controlled subunit (e.g., a Nodesvr) is obtained according to the information related to the out-of-band network identifier of the target service server and an out-of-band command, so that the first target task is subsequently scheduled and allocated based on an active or passive interaction operation between the management control subunit (e.g., Master) and the at least one controlled subunit (e.g., the Nodesvr). Different controlled subunits aim at the same task, the out-of-band commands can be different, when the management control subunit performs parameter configuration processing, the configuration file is written and loaded, the task is not required to be redefined by different controlled subunits, and only the configuration is required to be modified, so that the flow is simplified, and the processing efficiency is improved. And finally, uniformly scheduling and distributing the first target task through the management control subunit.

Based on the above embodiments, in an implementation manner of an embodiment of the present invention, in the process of performing an automated configuration management operation, there are two manners, namely an active interaction manner and a passive interaction manner: 1) after a first target task is actively issued to at least one controlled subunit (such as a Nodesvr) through a management control subunit (such as a Master), the at least one controlled subunit (such as the Nodesvr) initiates a request to a first target service server through a preset communication mode (such as IPMI or SSH), the operation of the first target task is finished after a request response is obtained, and an operation result of the first target task is returned. 2) Receiving a task acquisition request of at least one controlled subunit (such as Nodesvr) through a management control subunit (such as Master), sending the first target task to the at least one controlled subunit (such as Nodesvr) through the management control subunit (such as Master), enabling the at least one controlled subunit (such as Nodesvr) to initiate a request to the target service server through a preset communication mode, finishing the operation of the first target task after obtaining a request response, and returning an operation result of the first target task to the (such as Master).

Based on the foregoing embodiments, in an embodiment of the present invention, in the process of performing an automated configuration management operation, when an operating system is installed and configured on a target service server through a management control subunit (e.g., Master), a task is received, where an operation command corresponding to the installation configuration operation is encapsulated in the task, and the operation command may specifically be: out-of-band shutdown and PXE in operations. After the operation command is analyzed from the task through a management control subunit (such as a Master), information related to an out-of-band network identifier (such as an out-of-band IP) of a target service server, such as the out-of-band IP, a user and a password, is inquired through the management control subunit (such as the Master), a second target task to be allocated to at least one controlled subunit (such as a Nodesvr) is obtained according to the information related to the out-of-band network identifier of the target service server and the operation command, different controlled subunits can be different aiming at the same task, the out-of-band commands can be different, configuration files are written and loaded through unified processing of parameter configuration in the management control subunit, the tasks are not required to be redefined by different controlled subunits, and only the configuration of the management control subunit is required to be modified. And then, carrying out uniform scheduling allocation and scheduling allocation on the second target task based on the active interaction operation between the management control subunit and the at least one controlled subunit.

Based on the foregoing embodiments, in an embodiment of the present invention, in the process of performing an automated configuration management operation, after a second target task is actively issued to the at least one controlled subunit through a management control subunit (e.g., Master), an operation command is resolved from the second target task by the at least one controlled subunit (e.g., Nodesvr), where the operation command may specifically be: out-of-band shutdown and PXE in operations. And initiating an operation instruction corresponding to the operation command to the target service server through a preset communication mode (such as IPMI or SSH), finishing the operation of the second target task after obtaining the instruction response, and returning the operation result of the second target task. In an actual application, the management control subunit may be a Master, the Master issues an out-of-band shutdown and PXE access operation to the Nodesvr, and the Nodesvr sends an instruction to the target service server after taking a task and reports an execution result to the Master.

Based on the foregoing embodiments, in an embodiment of the present invention, in the process of performing an automatic configuration management operation, when an execution result of a second target task obtained by a management control subunit (e.g., Master) is successful, the execution result of the second target task is recorded, and it is waited for a target service server to report a current state and configuration. In an actual application, if the execution is successful, the Master records the current step to the database and asynchronously waits for the target service server to enter the PXE; the machine reports the current state and configuration through the embedded script after entering the PXE, the current state and configuration are forwarded to the Master through the Nodesvr, and the Master further starts RAID acquisition and modification, namely the machine RAID is guaranteed to be required by a calling party. And receiving the report information containing the current state and configuration through the management control subunit, and checking according to the report information, specifically, installing an operating system and entering the system after the RAID is checked. After that, the operating system is installed after the management control subunit (such as the Master) verifies that the operating system is passed. Here, there is a rollback mechanism in the process of installing the operating system, which provides a tailored version of the compact system, and specifically, obtains basic parameters related to the operating system, and obtains a first system, which is a more compact version (e.g., a system of a mini os version) with respect to the operating system, according to the basic parameters, where the mini os is a tailored version of the small operating system, and then installs the operating system based on the more compact version (e.g., the system of the mini os version), and in an actual application, that is, after the installation of the mini os system of the simple version after the RAID check is completed, waits to enter the mini os system, and then performs formal operating system installation including image transmission, IP configuration, partitioning, and the like on the basis of the mini os system. After the MINIOS system is introduced, if the system installation fails, a rollback mechanism is started, the MINIOS system can be rolled back to the MINIOS small version, and various configuration operations which are executed before the system is repeatedly executed are not needed, so that the flow is simplified, and the effect is improved. MINIOS is also not a necessary item, but is used for checking hardware components and improving the success rate of deployment. Appropriate clipping can be performed according to the actual environment and scene to simplify the scheme.

Based on the foregoing embodiments, in an implementation manner of an embodiment of the present invention, the method may further include an initial PXE deployment network operation, specifically, installing an operating system through a PXE network boot of the network card. The network deployment is not a necessary item, but is only a single network introduced for network isolation, so that the influence on the original service in the deployment process is reduced.

Based on the foregoing embodiments, in an embodiment of the present invention, in the process of performing an automated configuration management operation, there are multiple PXE/MINIOS status check modes, for example, Nodesvr active detection is used, and certainly, the PXE/MINIOS status check mode may also be a passive request, and is not limited to automatic reporting by a service server. The purpose is to determine whether a machine has entered PXE or MINIOS.

As shown in fig. 4, a resource management system in a private cloud environment according to an embodiment of the present invention at least includes: a service server 41 and a management server 42 as a management configuration control subject. In a private cloud environment, the management server may receive an out-of-band request sent by the service server, and identify the out-of-band request according to an SN carried in the out-of-band request and used for identifying the service server, so as to identify whether the service server is a new resource to be identified. The SN is identified according to the mapping relation between the SN and the IP which is allocated for the service server before and used for identifying the network, if the SN conforms to the mapping relation, the SN is processed before, and if the SN does not conform to the mapping relation, the SN is not processed so far and a series of subsequent automatic configuration is performed, so that the service server which initiates the request is taken as a target service server, and automatic management of each processing link in the life cycle of the server resource is performed on the service server, for example, automatic management of a series of life cycles such as server resource import, automatic discovery, power supply management, system deployment, configuration initialization and recovery and the like is performed. Among them, the management server 42 includes: a receiving unit 421, configured to receive a first request triggered by an out-of-band operation, where the first request is used to represent a currently detected service server to be identified, and a request identifier of the service server is carried in the first request; an analyzing unit 422, configured to analyze the request identifier of the service server from the first request, and query the request identifier of the service server in the extracted first configuration information, where the first configuration information is a mapping relationship obtained based on the request identifier of the service server reported before and a network identifier allocated to the service server; an identifying unit 423, configured to identify the service server as a target service server to be newly added for configuration management when the request identifier of the service server is not found in the first configuration information; the configuration management unit 424 is configured to extract a preset policy, and perform an automated configuration management operation on each processing link of the target service server in the whole resource life cycle according to the preset policy.

In an embodiment of the present invention, the configuration management unit is further configured to: before network deployment is carried out on the target service server, out-of-band initialization configuration is carried out on the target service server so as to reset an out-of-band password, after the resetting is successful, a modified password is obtained, and the modified password is input into a password library through symmetric encryption by the management server.

In an embodiment of the present invention, when the management server is implemented by using a distributed cluster architecture, the management server further includes a management control subunit and at least one controlled subunit; the management control subunit is used for performing centralized management scheduling allocation on the tasks; and the controlled subunits are used for reporting respective operation results after the distributed tasks are operated.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: when the out-of-band operation configuration is carried out on the target business server, a task is received, and an out-of-band command corresponding to the out-of-band operation is packaged in the task; parsing the out-of-band command from the task; inquiring information related to the out-of-band network identification of the target service server; obtaining a first target task to be allocated to the at least one controlled subunit according to information related to an out-of-band network identifier of the target service server and the out-of-band command; and uniformly scheduling and distributing the first target task through the management control subunit.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: after the first target task is actively issued to the at least one controlled subunit, the at least one controlled subunit initiates a request to the first target service server in a preset communication mode, finishes the operation of the first target task after a request response is obtained, and returns an operation result of the first target task.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: receiving a task acquisition request of the at least one controlled subunit; and after the first target task is issued to the at least one controlled subunit, the at least one controlled subunit initiates a request to the target service server in a preset communication mode, finishes the operation of the first target task after a request response is obtained, and returns an operation result of the first target task.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: when the target service server is subjected to operating system installation configuration, a task is received, and an operating command corresponding to the installation configuration operation is encapsulated in the task; analyzing the operation command from the task; inquiring information related to the out-of-band network identification of the target service server; obtaining a second target task to be allocated to the at least one controlled subunit according to the information related to the out-of-band network identifier of the target service server and the operation command; and performing unified scheduling distribution on the second target task.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: and after the second target task is actively issued to the at least one controlled subunit, the at least one controlled subunit analyzes the operation command from the second target task, initiates an operation instruction corresponding to the operation command to the target service server in a preset communication mode, finishes the operation of the second target task after the instruction response is obtained, and returns the operation result of the second target task.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: when the obtained running result of the second target task is successful, recording the running result of the second target task, and waiting for the target service server to report the current state and configuration; receiving report information containing the current state and configuration, and checking according to the report information; and installing the operating system after the verification is passed.

In an implementation manner of the embodiment of the present invention, the management control subunit is further configured to: obtaining basic parameters related to the operating system, and obtaining a first system according to the basic parameters, wherein the first system is a more simplified version relative to the operating system; installing the first system; installing the operating system based on the first system.

As for the Processor for data Processing, when executing Processing, the Processor can be implemented by a microprocessor, a Central Processing Unit (CPU), a Digital Signal Processor (DSP), or a Programmable logic Array (FPGA); for the storage medium, the storage medium contains operation instructions, which may be computer executable codes, and the operation instructions implement the steps in the flow of the information processing method according to the above-described embodiment of the present invention.

Here, it should be noted that: the above description related to the terminal and the server items is similar to the above description of the method, and the description of the beneficial effects of the same method is omitted for brevity. For technical details not disclosed in the embodiments of the terminal and the server of the present invention, please refer to the description of the embodiments of the method flow of the present invention.

The embodiment of the invention is explained by taking a practical application scene as an example as follows:

first, the relevant technical terms in the application scenario are described as follows:

PXE: preboot execution environment, which is the latest technology developed by Intel corporation, works in the network mode of Client/Server, and supports the workstation to download images from a remote Server through the network, thereby supporting the startup of an operating system through the network.

DHCP: the Dynamic Host Configuration Protocol is a network Protocol of a local area network, works by using a UDP Protocol, and mainly has two purposes: an IP address is automatically assigned to an internal network or network service provider.

TFTP: trivisual File Transfer Protocol, the simple File Transfer Protocol, is a Protocol in the TCP/IP suite for simple File Transfer between a client and a server.

IPMI: the method is an open standard hardware management interface specification, and defines a specific method for the embedded management subsystem to carry out communication.

Managing outside the band: the system is a new generation network centralized management system developed based on the OOBI out-of-band management architecture.

bonding: multiple network cards are virtualized into one network card, and the network cards have the same IP address, so that the network throughput of a host is improved or the network technology of the availability is improved.

MINIOS: a small operating system for cutting out edition.

Public cloud: the cloud service system is characterized in that a third-party provider provides a cloud capable of being used for a user, a public cloud can be generally used through the Internet, the cloud can be free or low in cost, and the core attribute is a shared resource service.

Private cloud: the system is constructed for independent use of a client, effective control over data and safety is provided, and the core attribute is a proprietary resource.

In this application scenario, for the management of the private cloud, the existing system architecture shown in fig. 5 is used, and in fig. 5, the OS Server is a mirror Server, the pxe client is a service Server, the DHCP Server is a dynamic host configuration protocol Server, the install/boot Server is a boot file Server, and the PXELinux tftp and nfs kickstart refer to open source software or services. The processing flow based on the system architecture comprises the following steps: 1) sending a request; 2) DHCP Server provides information; 3) requesting to download a start-up file; 4) responding to the request and transmitting the file; 5) requesting to download an auto-answer file; 6) and installing an operating system. The problems existing in the prior framework and process are as follows: only a management scheme of a certain link of the server is needed, and a whole management scheme of the whole life cycle is lacked; is only a technical scheme, not a system or a product which can be directly used; the system is formed by splicing various open source components, and has poor expandability and stability; and the network environment with complexity and large scale such as multi-network segment and server binding is not supported.

In the application scenario, the embodiment of the invention is adopted as an automatic management scheme of the life cycle of the server resources in the private cloud environment. In contrast, in the public cloud environment, a user only needs to contact virtual cloud resources, such as a cloud host, a cloud hard disk, a cloud database, and the like, and the public cloud provides a matched automatic management system to manage the cloud resources, such as resource production, allocation, recovery, and the like. However, in the private cloud environment, the whole is delivered to the user together with the physical server resources, and the user manages the resources by himself, including the operations of initial installation, remote startup, shutdown, restart, reinstallation, and the like of the physical server (the service server mentioned above in the embodiment of the present invention is a type of physical server), and if the management is performed in the conventional manual and on-site manner, the efficiency is very low, thereby affecting the management of the cloud resources. Therefore, in a private cloud environment, a set of automated systems similar to cloud resource management is needed to implement automated management of life cycles such as physical server resource import, automatic discovery, power management, system deployment, configuration initialization, and recovery.

In a private cloud environment, by using the automatic management scheme of the life cycle of the physical server resource of the embodiment of the invention, system operation and maintenance personnel of an enterprise only need to be responsible for physical shelving and shelving of the server, for example, the part of the shaded highlight identification frame in fig. 6. The rest of operations can be performed on the server automatically through the foreground management portal, and the system operation and maintenance personnel of the enterprise can be handed through simple training and page operation practices, as shown in fig. 7, an operation interface diagram of the operation and maintenance personnel is shown.

In this application scenario, a hardware environment in which the embodiment of the present invention is applied is shown in fig. 8. The equipment is not limited to Hua's and Cisco's brands of equipment specifically adopted in the application environment, and other brands may be selected, for example, Table 1 is a summary table of equipment models and classifications.

TABLE 1

Based on the above hardware environment, in the application scenario, the physical server resource discovery process according to the embodiment of the present invention, as shown in fig. 9, includes:

301, powering on the machine;

step 302, an out-of-band DHCP request;

step 303, reporting DHCP information;

step 304, judging whether the record of the physical server exists in the management server, if not, executing step 305;

and 305, identifying the newly discovered physical server as a new machine to complete the resource discovery process.

In the process, after a service server is physically put on shelf and connected with a power line (without starting up), a network card of the server immediately sends a broadcast request of a DHCP (dynamic host configuration protocol) because a PXE (peripheral component interconnect) boot function is started, sends a corresponding request to a management server through a DHCP relay mechanism of a switch, the management server distributes an out-of-band IP (Internet protocol) to the management server, records the mapping relation between a server SN (service number) and the distributed IP, inquires whether a machine is identified before, and if not, the machine is regarded as a newly discovered machine. The scheme can effectively identify the servers which are powered on and have normal out-of-band, and can be used as one of means for judging whether the servers are normal after being put on shelves.

Based on the hardware environment, in the application scenario, the out-of-band initialization process of the physical server according to the embodiment of the present invention is as follows: and after the service server is powered on, if the DHCP is normal, the service server enters an out-of-band recording pool. Before deployment, the machine is required to be initialized out-of-band, i.e. the out-of-band password is reset. After the password is successfully modified, the password is input into a password library after being symmetrically encrypted.

Based on the above hardware environment, in the application scenario, the out-of-band operation process according to the embodiment of the present invention is adopted, as shown in fig. 10, and includes:

step 401, the API receives a task request;

step 402, the API checks key parameters;

step 403, the task is forwarded to the Master;

step 404, the Master allocates task IDs for the tasks;

step 405, the Master returns a task ID;

step 406, the API responds the request to the caller;

step 407, the Master queries the out-of-band IP, and the user and password to obtain the required out-of-band command protocol for encapsulation and packaging;

step 408, the Master puts the packed result into a task cache;

step 409, the Master receives a task request of Nodesvr;

step 410, Nodesvr reads the cache;

step 411, the Master issues the task to Nodesvr;

step 412, the Nodesvr communicates with the physical server (such as a service server) in an IPMI/SSH mode;

step 413, Nodesvr asynchronously waits for the screen-printing to return;

step 414, Nodesvr reports the result to Master;

step 415, Master updates the task state;

step 416-.

In the process, the API provides external services, parameter verification is carried out after a task request is received, and then the task is forwarded to the Master. Since out-of-band command execution requires some time, an asynchronous approach is used: the Master allocates an ID of the task, immediately returns the ID to the API, responds to the caller, and can periodically query the progress and the result of the task after the caller obtains the ID; and the Master inquires the out-of-band IP, the user and the password of the relevant machine and the command corresponding to the operation, packages the command according to the established protocol and stores the command in a DB cache, and waits for the Nodesvr pull task. The Nodesvr regularly initiates a task request to the Master, initiates a request to a target machine in an IPMI or SSH mode after the task is obtained, asynchronously waits for a screen-printing return, reports a result after the task is finished, and the Master side updates the task state according to the result.

Based on the above hardware environment, in the application scenario, the installation process of the physical server operating system according to the embodiment of the present invention, as shown in fig. 11, includes:

step 501, receiving a task request by an API;

step 502, the API checks key parameters;

step 503, task forwarding Master;

step 504-;

507, 508, the Master queries the out-of-band IP, the user and the password to obtain the required out-of-band command protocol, packages and packs the out-of-band command protocol, and the Master puts the packed result into the task cache;

step 509, Master receives the task request of Nodesvr;

step 510, reading the cache by Nodesvr;

step 511-;

step 513, Nodesvr asynchronously waits for the screen-printing to return;

step 514, the Nodesvr reports the result to the Master;

step 515, the Master records the DB and waits for the PXE state to be reported;

step 516-;

step 518, reporting the PXE state;

step 519, the Master acquires a next step of packaging script commands;

step 520-;

step 521-;

523, asynchronously waiting for script screen-printing and returning of Nodesvr;

step 524, the Nodesvr reports the result to the Master;

and step 525, the Master judges whether the deployment is finished, and if so, the task state is updated.

In the process, the API checks the parameters after receiving the task request, and then forwards the task to the Master. Master allocates an ID of the task, immediately returns the ID to the API, responds to the caller, and after the caller obtains the ID, the caller can periodically inquire the progress and the result of the task. The Master issues out-of-band shutdown and PXE operation to the machine, the Nodesvr sends an instruction to the target machine after taking the task, and the execution result is reported to the Master. If the execution is successful, the Master records the current step to the database and asynchronously waits for the machine to enter the PXE. After entering the PXE, the machine reports the current state and configuration through the embedded script, the current state and configuration are forwarded to the Master through the Nodesvr, and the Master further starts the next RAID acquisition and modification step, namely the machine RAID is ensured to be required by a calling party. And after the RAID is checked, installing the simple version system and waiting for entering the system. And then, formal operating system installation is carried out on the basis of the simple version system, including mirror image transmission, IP configuration, partition and the like. After the system is installed, the Master continues to issue post-deployment inspection tasks, and initializes the network and the application through the script, such as PING inspection, password modification, installation service and the like.

In the several embodiments provided in the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. The above-described device embodiments are merely illustrative, for example, the division of the unit is only a logical functional division, and there may be other division ways in actual implementation, such as: multiple units or components may be combined, or may be integrated into another system, or some features may be omitted, or not implemented. In addition, the coupling, direct coupling or communication connection between the components shown or discussed may be through some interfaces, and the indirect coupling or communication connection between the devices or units may be electrical, mechanical or other forms.

The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed on a plurality of network units; some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, all the functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may be separately regarded as one unit, or two or more units may be integrated into one unit; the integrated unit can be realized in a form of hardware, or in a form of hardware plus a software functional unit.

Those of ordinary skill in the art will understand that: all or part of the steps for implementing the method embodiments may be implemented by hardware related to program instructions, and the program may be stored in a computer readable storage medium, and when executed, the program performs the steps including the method embodiments; and the aforementioned storage medium includes: a mobile storage device, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.

Alternatively, the integrated unit of the present invention may be stored in a computer-readable storage medium if it is implemented in the form of a software functional unit and sold or used as a separate product. Based on such understanding, the technical solutions of the embodiments of the present invention may be essentially implemented or a part contributing to the prior art may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the methods described in the embodiments of the present invention. And the aforementioned storage medium includes: a removable storage device, a ROM, a RAM, a magnetic or optical disk, or various other media that can store program code.

The above description is only for the specific embodiments of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present invention, and all the changes or substitutions should be covered within the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the appended claims.

Claims

1. A resource management method in a private cloud environment, the method comprising:

2. The method of claim 1, wherein performing automated configuration management operations on the target service server in each processing link of the whole resource lifecycle according to the preset policy comprises:

3. The method of claim 1, wherein the management server, when implemented in a distributed cluster architecture, comprises a management control subunit and at least one controlled subunit;

the method further comprises the following steps:

4. The method of claim 3, wherein performing automated configuration management operations on the target service server in each processing link of the whole resource lifecycle according to the preset policy comprises:

5. The method according to claim 4, wherein the unified scheduling assignment of the first target task by the management control subunit includes any one of the following:

the first method is as follows:

the second method comprises the following steps:

6. The method of claim 3, wherein performing automated configuration management operations on the target service server in each processing link of the whole resource lifecycle according to the preset policy comprises:

7. The method of claim 6, wherein the unified scheduling assignment of the second target task by the management control subunit comprises:

8. The method of claim 7, further comprising:

9. A management server, characterized in that the management server comprises:

10. The management server according to claim 9, wherein the configuration management unit is further configured to:

11. The management server according to claim 9, wherein the management server, when implemented in a distributed cluster architecture, further comprises a management control subunit and at least one controlled subunit;

12. The management server according to claim 11, wherein the management control subunit is further configured to:

parsing the out-of-band command from the task;

13. The management server according to claim 12, wherein the management control subunit is further configured to implement any one of the following:

the first method is as follows:

the second method comprises the following steps:

receiving a task acquisition request of the at least one controlled subunit;

14. The management server according to claim 11, wherein the management control subunit is further configured to:

analyzing the operation command from the task;

and performing unified scheduling distribution on the second target task.

15. The management server according to claim 14, wherein the management control subunit is further configured to:

16. The management server according to claim 15, wherein the management control subunit is further configured to:

and installing the operating system after the verification is passed.