Release Notes
2. Under Tools, click "Internet Options".
3. Under "Internet Options", click the "Security" tab.
4. Select the security zone that the system running Server Administrator belongs to.
NOTE: This option should be set to "Trusted sites".
5. Click the "Custom Level" button.
6. For Windows 2003, perform the following steps,
— Under "Miscellaneous", select the "Allow Meta Refresh" radio button.
— Under "Active Scripting", select the "Enable" radio button.
— Under "Active scripting", select the "Allow scripting of Internet Explorer web browser controls"
radio button.
7. Click "OK" and restart your browser.
•
To allow Single Sign-on for Server Administrator, perform the following steps:
1. Navigate to "Tools" in Internet Explorer.
2. Under "Tools", click "Internet Options"
3. Under "Internet Options", click the "Security" tab.
4. Select "Trusted sites".
5. Click the "Custom Level" button.
6. Under "User Authentication", select the "Automatic Logon with current username and password" radio button.
Press ‘OK’ to exit the "Custom Level" window.
7. Now select the "Advanced" tab, and under "HTTP 1.1 settings", make sure "Use HTTP 1.1" is checked.
8. Select "Trusted sites". Click "Sites". Add server to the website. Click "Close".
9. Click "OK" and restart your browser
•
If you run a security scanner tool (such as Nessus) against the Server Administrator Web server, certain
security warnings against port 1311 running the Server Administrator Web server may be displayed. The
following warnings have been investigated by Dell engineering and are determined to be "false positives"
(invalid security warnings) that you can safely ignore:
— "The Web server on 1311 allows scripts to read sensitive configuration and / or XML files." Dell has
determined that this warning is a false positive.
— "The Web server on 1311 allows to delete " / " which implies that the Web server will allow a remote user to
delete the files in root on the server." Dell has determined that this warning is a false positive.
— "The Web server on 1311 may be susceptible to a 'WWW Infinite Request' attack." Dell has determined that
this warning is a false positive.
— "It is possible to make the remote thttpd server execute arbitrary code by sending a request like: GET If-
Modified-Since:AAA[...]AAAA Solution: If you are using thttpd, upgrade to version 2.0. If you are not, then
contact your vendor and ask for a patch, or change your Web server. CVE on this one is CAN-2000-0359".
Dell has determined that this warning is a false positive.
•
Enabling Integrated Windows Authentication in Internet Explorer is not required to activate the Single Sign-
On feature.
•
Server Administrator security settings are not applicable for Active Directory users. Active Directory users
with read-only login can access Server Administrator, even after access is blocked in the preferences page of
Server Administrator.
•
Dell SNMP MIB Files for Dell Systems
Dell SNMP MIB files for Dell systems allow you to obtain and verify information provided by
supported software agents. The current MIB files supported by PowerEdge(TM) software agents are
located at "\support\mib" on the Dell Systems Management Tools and Documentation DVD.
NOTE: A MIB-II-compliant, SNMP-supported network management station is required to compile and browse MIB
files.
•
OpenManage support for Encrypting File System (EFS)
To improve security, Microsoft provides the capability to encrypt files using EFS. Note that Server
Administrator will not function if its dependent files are encrypted.