Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Server Administrator Version 9.3
31323334353637383940
TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384,
TLS_ECDH_RSA_WITH_AES_256_CBC_SHA,TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256,
TLS_ECDH_RSA_WITH_AES_128_CBC_SHA,TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
NOTE: If an incorrect cipher value is set and the connection service fails to start, use the CLI command prompt
or manually set the valid ciphers and restart the connection service.
NOTE: Upgrading to the Server Administrator 9.1 will not retain the existing web server cipher settings due to
security reasons.
The SSL Protocols eld allows you to set from the web server listed SSL protocols to establish an HTTPS connection. The
possible values are: TLSv1.1, TLSv1.2 , and (TLSv1.1, TLSv1.2) . By default, the value of SSL protocol is set to
(TLSv1.1, TLSv1.2). The changes take eect after web server restart.
NOTE
: If the protocol is not supported by default congurations, enable the SSL Protocol from the browser
settings.
Key Signing Algorithm (For Self-Signed Certicate) — Allows you to select a supported signing algorithm. If you select either
SHA 512 or SHA 256, ensure that your operating system/browser supports this algorithm. If you select one of these options
without the requisite operating system/browser support, Server Administrator displays a cannot display the webpage
error. This eld is meant only for Server Administrator autogenerated self-signed certicates. The drop-down list is grayed out if
you import or generate new certicates into Server Administrator.
The Java Runtime Environment — Allows you to select the one of the following options:
Bundled JRE — Enables use of the JRE provided along with the System Administrator.
System JRE — Enables use of the JRE installed on the system. Select the required version from the drop-down list.
NOTE
: Server Administrator does not recommend the upgrade to major versions of Java Runtime Environment
(JRE), it is limited to the security patch and minor JRE versions. For more details, see the release notes of
Server Administrator (packaged with Server Administrator application) or at dell.com/openmanagemanuals.
NOTE: If the JRE does not exist on the system on which Server Administrator is running, the JRE provided with
the Server Administrator is used.
4 When you nish setting options in the Server Preferences window, click Apply.
NOTE
: You must restart the Server Administrator web server for the changes to take
eect.
X.509 Certicate Management
NOTE
: You must be logged in with Administrator privileges to perform certicate management.
Web certicates are necessary to ensure the identity of a remote system and ensure that information exchanged with the remote system
are not viewed or changed by others. To ensure system security, it is recommended that:
You generate a new X.509 certicate, reuse an existing X.509 certicate or import a certicate chain from a Certication Authority
(CA).
Using Server Administrator
37