Users Guide
184 Using Microsoft Active Directory
14
Click
Next
and save the certificate to a location of your choice. You will
need to upload this certificate to the DRAC 4. To do this, go to the
DRAC 4 Web-based interface
→
Configuration tab
→
Active Directory
page
. Or, you can use the
racadm
CLI commands (see "Configuring
DRAC 4 and DRAC 5 Active Directory Settings Using the racadm CLI").
15
Click
Finish
and click
OK
.
Importing the DRAC 4 Firmware SSL Certificate to All Domain Controllers’ Trusted
Certificate Lists
NOTE: If the DRAC 4 firmware SSL certificate is signed by a well-known CA, you do
not need to perform the steps described in this section.
NOTE: The following steps may vary slightly if you are using Windows 2000.
1
The DRAC 4 SSL certificate is the same certificate that is used for the
DRAC 4 Web server. All DRAC 4 controllers are shipped with a default
self-signed certificate. You can get this certificate from the DRAC 4 by
selecting
Download DRAC 4 Server Certificate
(see the DRAC 4
Web-based interface
Configuration
tab and the
Active Directory
subtab).
2
On the domain controller, open an
MMC Console
window and select
Certificates
→
Trusted Root Certification Authorities
.
3
Right-click
Certificates
, select
All Tasks
and click
Import
.
4
Click
Next
and browse to the SSL certificate file.
5
Install the RAC SSL Certificate in each domain controller’s
Trusted Root
Certification Authority
.
If you have installed your own certificate, ensure that the CA signing your
certificate is in the
Trusted Root Certification Authority
list. If the CA is
not in the list, you must install it on all your Domain Controllers.
6
Click
Next
and select whether you would like Windows to automatically
select the certificate store based on the type of certificate, or browse to a
store of your choice.
7
Click
Finish
and click
OK
.