Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC6 for Blade Servers Version 3.3
101102103104105106107108109110
Configuring iDRAC6 Enterprise Using the Web Interface 107
Securing iDRAC6 Communications Using SSL and
Digital Certificates
This section provides information about the following data security features
that are incorporated in iDRAC6:
Secure Sockets Layer (SSL)
Certificate Signing Request (CSR)
Accessing the SSL main menu
Generating a new CSR
Uploading a server certificate
Viewing a server certificate
Secure Sockets Layer (SSL)
iDRAC6 includes a Web server that is configured to use the industry-standard
SSL security protocol to transfer encrypted data over a network. Built upon
public-key and private-key encryption technology, SSL is a widely accepted
technology for providing authenticated and encrypted communication
between clients and servers to prevent eavesdropping across a network.
An SSL-enabled system can perform the following tasks:
Authenticate itself to an SSL-enabled client
Allow the client to authenticate itself to the server
Allow both systems to establish an encrypted connection
The encryption process provides a high level of data protection. iDRAC6
employs the 128-bit SSL encryption standard, the most secure form of
encryption generally available for Internet browsers in North America.
iDRAC6 Web server has a Dell self-signed SSL digital certificate (Server ID)
by default. To ensure high security over the Internet, replace the Web server
SSL certificate with a certificate signed by a well-known Certificate Authority
(CA). A Certificate Authority is a business entity that is recognized in the
Information Technology industry for meeting high standards of reliable
screening, identification, and other important security criteria. Examples of
CAs include Thawte and VeriSign. To initiate the process of obtaining a