Manualshelf

White Papers

ManualsBrandsDell ManualsActive System ManagerEMC OpenManage Mobile - Current Version
12345678910
OpenManage Mobile remote connection security
Dell EMC Technical White Paper
2.3 Remote console security
OMM can start third party remote console (VNC) applications based on the RFB protocol. OMM Android
integrates with bVNC, while OMM iOS integrates with RealVNC and Remotix.
When connecting to the latest generations of PowerEdge servers, these connections can be channeled over
SSH by using standard iDRAC credentials. On iOS, this requires the paid Remotix app.
On Android, connections to the earlier generation of PowerEdge servers can be channeled over TLS. The
connection is secured by using a dedicated VNC password.
Note: Currently, no iOS VNC clients can communicate with iDRAC 8 and earlier over TLS. If you are
confident of the security of your management Wi-Fi or VPN network, use unencrypted VNC connections.
2.4 Remote Connection Security best practices
To help secure an environment by using OMM for remote management:
Use a VPN to secure access to the management network from remote sites. Avoid connecting to
iDRAC and OME systems directly to the internet.
When making a management network available by using Wi-Fi, use the best available security
configuration, such as WPA2 with a random key.
Use VNC over SSH or VNC clients with TLS encryption enabled.
Change the iDRAC root credentials to something other than the default.
Acquire a verifiable signing certificate and generate unique identities for each systems management
console or iDRAC. Install the signing certificate into the mobile devices to be able to automatically
verify the identity of all remotely-accessed systems.
Consider using a proxy server to control outbound internet access from the OME or OMM.