Users Guide
Obtaining certificates
The following table lists the types of certificates based on the login type.
Table 9. Types of certificate based on login type
Login Type Certificate Type How to Obtain
Single Sign-on using Active
Directory
Trusted CA certificate Generate a CSR and get it signed
from a Certificate Authority
SHA-2 certificates are also
supported.
Smart Card login as a local or
Active Directory user
• User certificate
• Trusted CA certificate
• User Certificate — Export the
smart card user certificate as
Base64-encoded file using
the card management
software provided by the
smart card vendor.
• Trusted CA certificate — This
certificate is issued by a CA.
SHA-2 certificates are also
supported.
Active Directory user login Trusted CA certificate This certificate is issued by a CA.
SHA-2 certificates are also
supported.
Local User login SSL Certificate Generate a CSR and get it signed
from a trusted CA
NOTE: iDRAC ships with a
default self-signed SSL
server certificate. The iDRAC
Web server, Virtual Media,
and Virtual Console use this
certificate.
SHA-2 certificates are also
supported.
Related Links
SSL server certificates
Generating a new certificate signing request
SSL server certificates
iDRAC includes a Web server that is configured to use the industry-standard SSL security protocol to
transfer encrypted data over a network. Built upon asymmetric encryption technology, SSL is widely
accepted for providing authenticated and encrypted communication between clients and servers to
prevent eavesdropping across a network.
An SSL-enabled system can perform the following tasks:
102