Users Guide
204 Configuring Security Features
Certificate Signing Request (CSR)
A CSR is a digital request to a Certificate Authority (CA) for a secure server
certificate. Secure server certificates protect the identity of a remote system
and ensure that information exchanged with the remote system cannot be
viewed or changed by others. To ensure security for your DRAC, it is strongly
recommended that you generate a CSR, submit the CSR to a CA, and upload
the certificate returned from the CA.
A CA is a business entity that is recognized in the IT industry for meeting
high standards of reliable screening, identification, and other important
security criteria. Examples of CAs include Thawte and VeriSign. After the
CA receives your CSR, they review and verify the information the CSR
contains. If the applicant meets the CA’s security standards, the CA issues a
certificate to the applicant that uniquely identifies that applicant for
transactions over networks and on the Internet.
After the CA approves the CSR and sends you a certificate, you must upload
the certificate to the DRAC firmware. The CSR information stored on the
DRAC firmware must match the information contained in the certificate.
Accessing the SSL Main Menu
1
Expand the
System
tree and click
Remote Access
.
2
Click the
Configuration
tab and then click
SSL
.
Use the SSL Main Menu page options (see Table 11-1) to generate a CSR to
send to a CA. The CSR information is stored on the DRAC 5 firmware.
Table 11-2 describes the buttons available on the SSL Main Menu page.
Table 11-1. SSL Main Menu Options
Field Description
Generate a New
Certificate Signing
Request (CSR)
Click Next to open the Certificate Signing Request
Generation page that enables you to generate a CSR to
send to a CA to request a secure Web certificate.
NOTICE: Each new CSR overwrites any pervious CSR
on the firmware. For a CA to accept your CSR, the CSR
in the firmware must match the certificate returned
from the CA.