White Papers
10 Version 2.0.0
iDRAC Handshake to Acquire Login Credentials for Remote Enablement
iDRAC Credential Server (or Management
Console)
iDRAC
ClientHello
Recieved
Send Prov
Server Certificate
Get Credentials
SOAP request
Provide iDRAC
username &
password or NULL
if invalid STAG
Zero Touch Setup can
proceed under new
username/password
iDRAC discovers
console
address(es)
iDRAC powerd on
listening on
specified port
(4433 default)
TLS
connection
initiated
Success
Connection
Failure
No
Server Signed
by Trusted CA
Send iDRAC
Certificate
Yes
Validate iDRAC
signed by trusted
CA
Allow or Deny TLS
connection
TLS
connection
Failed
Success
Lookup Credential
by Service Tag
(STAG) & validate
CN = STAG
Set username
password
Success
Failed
Note: Attempts will be made
every 90 seconds over a
period of 24 hours to
complete discovery and
handshake process
245
246
Figure 3 - iDRAC Handshake to Acquire Login Credentials for Remote Enablement
247