Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManageriDRAC8 with Lifecycle Controller version 2.70.70.70
919293949596979899100
The default value is 169.254.0.1. However, if this IP address conflicts with an IP address of other interfaces of the host
system or the local network, you must change it. Do not enter 169.254.0.3 and 169.254.0.4 IPs. These IPs are reserved for
the USB NIC port on the front panel when a A/A cable is used
5. Click Back, click Finish, and then click Yes.
The details are saved.
Obtaining certificates
The following table lists the types of certificates based on the login type.
Table 13. Types of certificate based on login type
Login Type Certificate Type How to Obtain
Single Sign-on using Active Directory Trusted CA certificate Generate a CSR and get it signed from a
Certificate Authority
SHA-2 certificates are also supported.
Smart Card login as a local or Active
Directory user
User certificate
Trusted CA certificate
User Certificate Export the smart
card user certificate as Base64-
encoded file using the card
management software provided by
the smart card vendor.
Trusted CA certificate This
certificate is issued by a CA.
SHA-2 certificates are also supported.
Active Directory user login Trusted CA certificate This certificate is issued by a CA.
SHA-2 certificates are also supported.
Local User login SSL Certificate Generate a CSR and get it signed from a
trusted CA
NOTE: iDRAC ships with a default
self-signed SSL server certificate.
The iDRAC Web server, Virtual
Media, and Virtual Console use this
certificate.
SHA-2 certificates are also supported.
Related concepts
SSL server certificates on page 94
Generating a new certificate signing request on page 95
SSL server certificates
iDRAC includes a web server that is configured to use the industry-standard SSL security protocol to transfer encrypted data
over a network. An SSL encryption option is provided to disable weak ciphers. Built upon asymmetric encryption technology,
SSL is widely accepted for providing authenticated and encrypted communication between clients and servers to prevent
eavesdropping across a network.
An SSL-enabled system can perform the following tasks:
Authenticate itself to an SSL-enabled client
Allow the two systems to establish an encrypted connection
NOTE:
If SSL encryption is set to 256-bit or higher, the cryptography settings for your virtual machine environment (JVM,
IcedTea) may require installing the Unlimited Strength Java Cryptography Extension Policy Files to permit usage of iDRAC
94 Configuring iDRAC