Manualshelf

Users Guide

ManualsBrandsDell ManualsConverged InfrastructureDSS 9620
919293949596979899100
While using Vormetric Data Security Manager as KMS, ensure that the Common Name (CN) field in iDRAC SSL certificate
matches with the host name added to Vormetric Data Security Manager. Otherwise, the certificate may not import
successfully.
NOTE:
Rekey option will be disabled when racadm sekm getstatus reports as Failed.
SEKM only supports Common name, User ID, or Organization Unit for User Name field under Client certificate.
If you are using a third party CA to sign the iDRAC CSR, ensure that the third party CA supports the value UID for
User Name field in Client certificate. If it is not supported, use Common Name as the value for User Name field.
If you are using Username and Password fields, ensure that KMS server supports those attributes.
NOTE: For KeySecure key management server,
while creating an SSL certificate request, you must include the IP address of the key management server in Subject
Alternative Name field
the IP address must be in the following format: IP:xxx.xxx.xxx.xxx.
Configuring services using RACADM
To enable and configure services using RACADM, use the set command with the objects in the following object groups:
iDRAC.LocalSecurity
iDRAC.LocalSecurity
iDRAC.SSH
iDRAC.Webserver
iDRAC.Racadm
iDRAC.SNMP
For more information about these objects, see iDRAC RACADM CLI Guide available at https://www.dell.com/idracmanuals.
Enabling or disabling HTTPS redirection
If you do not want automatic redirection from HTTP to HTTPs due to certificate warning issue with default iDRAC certificate or
as a temporary setting for debugging purpose, you can configure iDRAC such that redirection from http port (default is 80) to
https port (default is 443) is disabled. By default, it is enabled. You have to log out and log in to iDRAC for this setting to take
effect. When you disable this feature, a warning message is displayed.
You must have Configure iDRAC privilege to enable or disable HTTPS redirection.
An event is recorded in the Lifecycle Controller log file when this feature is enabled or disabled.
To disable the HTTP to HTTPS redirection:
racadm set iDRAC.Webserver.HttpsRedirection Disabled
To enable HTTP to HTTPS redirection:
racadm set iDRAC.Webserver.HttpsRedirection Enabled
To view the status of the HTTP to HTTPS redirection:
racadm get iDRAC.Webserver.HttpsRedirection
Using VNC client to manage remote server
You can use a standard open VNC client to manage the remote server using both desktop and mobile devices such as Dell Wyse
PocketCloud. When servers in data centers stop functioning, the iDRAC or the operating system sends an alert to the console
on the management station. The console sends an email or SMS to a mobile device with required information and launches VNC
viewer application on the management station. This VNC viewer can connect to OS/Hypervisor on the server and provide
98
Configuring iDRAC