Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC7 with Lifecycle Controller Version 2.40.40.40
81828384858687888990
Dierence between FIPS-mode supported and FIPS-validated
Software that has been validated by completing the Cryptographic Module Validation Program is referred to as FIPS-validated.
Because of the time it takes to complete FIPS-validation, not all versions of iDRAC are validated. For information about the latest
status of FIPS-validation for iDRAC, see the Cryptographic Module Validation Program page on the NIST website.
Enabling FIPS Mode
CAUTION: Enabling FIPS mode resets iDRAC to factory-default settings. If you want to restore the settings, back up the
server conguration prole (SCP) before you enable FIPS mode, and restore the SCP after iDRAC restarts.
NOTE: If you reinstall or upgrade iDRAC rmware, FIPS mode gets disabled.
Enabling FIPS mode using web interface
1. On the iDRAC web interface, navigate to OverviewiDRAC SettingsNetwork.
2. Click Advanced Settings next to Options.
3. In FIPS Mode, select Enabled and click Apply.
4. A message appears prompting you to conrm the change. Click OK.
iDRAC restarts in FIPS mode. Wait for at least 60 seconds before you reconnect to iDRAC.
5. Install a trusted certicate for iDRAC.
NOTE: The default SSL certicate is not allowed in FIPS mode.
NOTE: Some iDRAC interfaces, such as the standards-compliant implementations of IPMI and SNMP, do not support
FIPS-compliance.
Enabling FIPS mode using RACADM
Use RACADM CLI to execute the following command:
racadm set iDRAC.Security.FIPSMode <Enable>
Disabling FIPS mode
To disable FIPS mode, you must reset iDRAC to the factory-default settings.
Conguring services
You can congure and enable the following services on iDRAC:
Local
Conguration Disable access to iDRAC conguration (from the host system) using Local RACADM and iDRAC Settings
utility.
Web Server Enable access to iDRAC web interface. If you disable the web interface, remote RACADM also gets disabled.
Use local RACADM to re-enable the web server and remote RACADM.
SSH Access iDRAC through rmware RACADM.
Telnet Access iDRAC through rmware RACADM.
Remote RACADM Remotely access iDRAC.
Redsh Enables support for Redsh RESTful API.
SNMP Agent Enables support for SNMP queries (GET, GETNEXT, and GETBULK operations) in iDRAC.
Automated System
Recovery Agent
Enable Last System Crash Screen.
VNC Server Enable VNC server with or without SSL encryption.
81