Dell Version 7.3 manual Certificate Management, Click X.509 Certificate

Page 38

Auto Negotiate — Allows connection from browser with any encryption strength. The browser auto negotiates with the Server Administrator Web Server and uses the highest available encryption level for the session. Legacy browsers with weaker encryption can also connect to the Server Administrator.

128-bit or Higher — Allows connections from browsers with 128-bit or higher encryption strength. One of the following cipher suites is applicable based on the browser for any established sessions:

SSL_RSA_WITH_RC4_128_SHA

SSL_RSA_WITH_RC4_128_MD5

SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA

TLS_DHE_RSA_WITH_AES_128_CBC_SHA

SSL_RSA_WITH_3DES_EDE_CBC_SHA

TLS_RSA_WITH_AES_128_CBC_SHA

TLS_DHE_DSS_WITH_AES_128_CBC_SHA

SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA

NOTE: The 128-bit or Higher option does not allow connections from browsers with lower SSL encryption strength, such as 40 bit and 56 bit.

Key Signing Algorithm (For Self Signed Certificate) — Allows you to select a supported signing algorithm. If you select either SHA 512 or SHA 256, ensure that your operating system/browser supports this algorithm. If you select one of these options without the requisite operating system/browser support, Server Administrator displays a cannot display the webpage error. This field is meant only for Server Administrator auto- generated self-signed certificates. The drop-down list is grayed out if you import or generate new certificates into Server Administrator.

The Java Runtime Environment — Allows you to select the one of the following options:

Bundled JRE — Enables use of the JRE provided along with the System Administrator.

System JRE — Enables use of the JRE installed on the system. Select the required version from the drop-down list.

NOTE: If the JRE does not exist on the system on which Server Administrator is running, the JRE provided with the Server Administrator is used.

NOTE: If the encryption level is set to 128-bit or Higher, you can access or modify the Server Administrator settings using a browser with the same or higher encryption levels.

4.When you finish setting options in the Server Preferences window, click Apply.

NOTE: You must restart the Server Administrator web server for the changes to take effect.

X.509 Certificate Management

NOTE: You must be logged in with Administrator privileges to perform certificate management.

Web certificates are necessary to ensure the identity of a remote system and ensure that information exchanged with the remote system are not viewed or changed by others. To ensure system security, it is recommended that:

You generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from a Certification Authority (CA).

All systems that have Server Administrator installed have unique host names.

To manage X.509 certificates through the Preferences home page, click General Settings, click the Web Server tab, and

click X.509 Certificate.

The following are the available options:

Generate a new certificate — Generates a new self-signed certificate used for SSL communication between the server running Server Administrator and the browser.

38

Page 37 Page 39
Image 38
Page 37 Page 39
Contents Dell OpenManage Server Administrator Version 7.3 Users Guide Dell Inc Contents Server Administrator Services Working With Remote Access ControllerTroubleshooting Server Administrator LogsSetting Alert Actions Frequently Asked QuestionsInstallation Updating Individual System Components IntroductionRemote Access Controller Storage Management ServiceInstrumentation Service What Is New In This ReleaseSystems Management Standards Availability Availability On Supported Operating SystemsOperating System Server Administrator HomeOther Documents You May Need Accessing Documents From Dell Support Site OMConnectionsEnterpriseSystemsManagement Serviceability ToolsObtaining Technical Assistance Contacting Dell User Privilege Access Description Level Type View Manage Setup And AdministrationRole-Based Access Control Service User Privilege Level Required ViewVMware ESX Server 4.X Authentication AuthenticationMicrosoft Windows Authentication VMware ESXi Server 5.X AuthenticationAdding Users To a Domain On Windows Operating Systems EncryptionAssigning User Privileges UserName HostName Rights Creating Users With Power User PrivilegesCreating Users Creating Users With User Privileges Best Practices While Using The Omarolemap File Open the Computer Management window Configuring The Snmp AgentSelect Account is disabled and click OK Snmp Service Properties window appears Changing The Snmp Community NameEnabling Snmp Set Operations Snmp Agent Access Control ConfigurationSnmp Service Configuration window appears Server Administrator Snmp Agent Install Actions Sever Administrator Snmp Install Actions Enabling Snmp Access From Remote HostsTo configure the Snmp agent To enable VMWare Snmp service, run the following command Page Firewall Configuration Logging In And Out Using Server AdministratorServer Administrator Local System Login Central Web Server Login Click SubmitUsing The Active Directory Login Single Sign-OnEnabling The Use Of Client-Side Scripts On Internet Explorer Enabling The Use Of Client-Side Scripts On Mozilla FirefoxGUI Field Name Sample Server Administrator Home Page Non-Modular System Features Modular System System Tree System/Server Module Component Status IndicatorsGlobal Navigation Bar Action WindowUnderlined Items Gauge IndicatorsTask Buttons Using The Online Help Using The Preferences HomeManaged System Preferences Server Administrator Web Server PreferencesSetting User And System Preferences Click General Settings Secure Port SystemCertificate Management Click X.509 CertificateUsing The Server Administrator Command Line Interface Server Administrator Web Server Action TabsServer Administrator Services Managing Your SystemModular Enclosure Server Administrator Home Page System Tree ObjectsManaging System/Server Module Tree Objects Modular Enclosure object Tab Properties Subtab Information Accessing And Using Chassis Management ControllerSystem/Server Module Properties Licensing Subtabs Information LicensingLogs Subtabs Hardware Alert CommandShutdown Alert ManagementSubtabs Session Main System Chassis/Main SystemSession Management Main System Chassis/Main System Properties Batteries Properties and Setup Subtab InformationSetup Subtab Bios Properties Subtab InformationHardware Performance FansFirmware Properties Subtab Intrusion IntrusionMemory Properties Subtab MemoryPorts Power ManagementNetwork Subtab Information PropertiesAlert Management Properties Subtab Elements Power SuppliesManagement Subtabs Budget Profiles Alert Management Subtabs Alert Actions Remote AccessProcessors Removable Flash Media TemperaturesSubtab Temperature Probes Properties SlotsOperating System VoltagesSoftware Properties Subtab Voltage ProbesStorage Managing Preferences Home Page Configuration OptionsGeneral Settings Server Administrator Subtabs Access Configuration Snmp Configuration PreferencesWorking With Remote Access Controller Modular Enclosure Modular system Server Modules Main SystemSystem Remote Access DeviceViewing Basic Information Main System ChassisIPv4 Address IPv6 AddressVlan ID Click Apply ChangesClick Serial Port Serial Port Configuration window appears Click Apply Changes Click Terminal Mode SettingsClick Additional Configuration Additional Configuration For iDRACConfiguring Remote Access Device Users Power Off System Setting Platform Event Filter AlertsNone Reboot System Power Cycle SystemSetting Platform Event Alert Destinations Server Administrator Logs Server Administrator LogsIntegrated Features Log Window Task ButtonsMaintaining The Hardware Log Hardware LogAlert Log StatusCommand Log Setting Alert Actions Example 1 ps -ef /tmp/psout.txt 2&1Setting Alert Action Execute Application In Windows Server BMC/iDRAC Platform Events Filter Alert MessagesEvent Description Login Failure Scenarios TroubleshootingConnection Service Failure Opt/dell/srvadmin/sbin/dsmomconnsvcdSeverity OpenManage Server Administrator ServicesService Name Description Impact of Failure Dsmsadatamgr Port Frequently Asked QuestionsAre there other ports users can use apart from 1311? ITA communicating with Linux systems
Top Page Image Contents