User Privileges Required for the DHCP and File Server While Using Zero Touch Provisioning
Ensure that you have the following user privileges on the DHCP server and the file server prior to configuring them for zero touch provisioning (ZTP).
DHCP server—Ensure that the DHCP user has permissions to:
write to the dhcpd.conf file on the DHCP server.
Note:To fetch the dhcp.conf file, ensure that the DHCP server and the Layer 3 Fabric devices are in the same subnets. If you are not in the same subnet, you must specify the gateway IP address that these devices can use to reach Network Director and fetch the dhcp.conf file. For information about specifying the gateway IP address, see, Creating Layer 3 Fabrics.
write to the /etc/dhcp/ddns-keys directory
copy the file dhcpd.conf to the file dhcpdbacknd.conf
start the isc-dhcp-server service
For more information about file permissions, refer DHCP server documentation.
File server—Network Director uses the anonymous user to connect to the file server. You must modify certain configurations in the server configuration file to enable Network Director to access the file server. Change the configuration settings for the following file servers, depending on the file server type and the operating system that is running on the file server:
For FTP server running CentOS (or any other FreeBSD-based servers)—Modify the configuration in the /etc/vsftpd/vsftpd.conf file as follows:
anonymous_enable=YES anon_upload_enable=YES anon_mkdir_write_enable=YES file_open_mode=0644 anon_umask=033
For TFTP running on a Linux server—Modify the configuration in the /etc/xinetd.d/tftp file as follows:
server_args = -c -s <dir> disable = no