Users Guide

ManualsBrandsDell ManualsActive System ManagerChassis Management Controller Version 6.10 For Dell PowerEdge M1000e

261

262

263

264

265

266

267

268

269

270

The logout and quit commands are not supported in the CMC RACADM interface.

Managing and Recovering a Remote System

While accessing the CMC Web interface, a security warning stating that the host name of the SSL certicate does not match the

host name of CMC is displayed.

CMC includes a default CMC server certicate to ensure network security for the Web interface and remote RACADM features. When this

certicate is used, the Web browser displays a security warning because the default certicate is issued to CMC default certicate which

does not match the host name of CMC (for example, the IP address).

To address this security concern, upload a CMC server certicate issued to the IP address of CMC. When generating the certicate signing

request (CSR) to be used for issuing the certicate, ensure that the common name (CN) of the CSR matches the IP address of CMC (for

example, 192.168.0.120) or the registered DNS CMC name.

To ensure that the CSR matches the registered DNS CMC name:

1 In the CMC Web interface, go to the System tree, click Chassis Overview.

2 Click the Network tab, and then click Network.

The Network Conguration page appears.

3 Select the Register CMC on DNS option.

4 Type the CMC name in the DNS CMC Name eld.

5 Click Apply Changes.

For more information about generating CSRs and issuing certicates, see Obtaining Certicates.

Why are the remote RACADM and Web-based services unavailable after a property change?

It may take some time for the remote RACADM services and the Web interface to become available after the CMC Web server resets.

The CMC Web server is reset after the following occurrences:

• Changing the network conguration or network security properties using the CMC Web interface.

• The cfgRacTuneHttpsPort property is changed (including when a config -f <config file> command changes it).

• racresetcfg is used or a chassis conguration backup is restored.

• CMC is reset.

• A new SSL server certicate is uploaded.

The DNS server does not register my CMC.

Some DNS servers only register names with a maximum of 31 characters.

When accessing the CMC Web interface, a security warning stating that the SSL certicate was issued by a certicate authority

that is not trusted is displayed.

CMC includes a default CMC server certicate to ensure network security for the Web interface and remote RACADM features. This

certicate is not issued by a trusted certicate authority. To address this security concern, upload a CMC server certicate issued by a

trusted certicate authority (such as Thawte or Verisign). For more information about certicates, see Obtaining Certicates.

Why is the following message displayed for unknown reasons?

Remote Access: SNMP Authentication Failure

As part of discovery, IT Assistant attempts to verify the device’s get and set community names. In IT Assistant, the get community

name = public and the set community name = private. By default, the community name for the CMC agent is public. When IT

Assistant sends out a set request, the CMC agent generates the SNMP authentication error because it only accepts requests from

community = public.

Frequently Asked Questions

267