HTTPS-assisted boot

This page provides high-level description of the HTTPS-assisted boot.

For platform-specific steps see examples using HTTPS-assisted boot:

• Onboard Dell XR12 Using HTTPs-Assisted Boot

• Onboard Lenovo ThinkEdge Using HTTPs-Assisted Boot

Requirements

• Ensure that Edge Nodes are connected to the network and has access to the orchestrator.

• Retrieve the provisioning certificate and create an HTTPS boot option for the network interface providing upstream connectivity.

• Configure Edge Nodes to boot from the HTTPS boot option.

• Configure Edge Node to boot from the hard disk as second boot option.

HTTPS-assisted boot flow

1. Configure BIOS with UEFI HTTP URL pointing to https://tinkerbell-nginx.CLUSTER_FQDN/tink-stack/signed_ipxe.efi.

2. Optionally, if Edge Nodes have been configured with Secure Boot, configure BIOS to enable Secure Boot and upload Edge Orchestrator CA certificates.

3. Manage boot order to boot from UEFI HTTP as the fist option and reboot Edge Nodes.