White Papers

Import and Export of Secure Server Profiles

1. For 12G, ensure your Enterprise License level iDRAC is set up according to the user

documentation for the iDRAC with Lifecycle Controller. Collect System Inventory On System

Restart (CSIOR) must be enabled. Restart at least once after CSIOR is enabled.

2. If the export destination is vFlash:

a. Make sure supported vFlash media is inserted in the maintenance port.

3. If the export destination is a network share:

a. Select the network connection for iDRAC to use.

b. Establish network parameters.

c. Make sure the physical network connection is present and active.

The import and export server profile features are now available for use.

Export system profile

Export system profile is a process of extracting BIOS and firmware information and save them into an

image file for later restoration as shown in Figure 1. When the user starts the export system process,

the viewable data such as servicetag, system type, firmware versions, are collected. These data are

in plain text to allow users to read it without decryption or decompression. When a chunk of data is

saved, its hash value is calculated and saved to a portion of the image file to prevent tampering. The

process then starts reading the specific storage location for firmware and configuration. Each category

of the firmware is saved to a specific section. For example, the USC, Firmwares, iDRAC firmware are

saved to different portions of the backup image file. For categories such as configuration information

that contain user-sensitive data, the bits are encrypted with a password to ensure that data is safe in

the image file.

Workflow

After all categories of the system profile are saved to the image file, the hash value of the content is

recalculated and saved to the system. The final image is then made tamper-proof with optional

passphrase protection.