Extracting the hp sim server certificate, Removing trusted certificates, Configuring remote console security settings – HP Integrated Lights-Out 3 User Manual

Page 65: Configuring remote console computer lock settings

Advertising
background image

Extracting the HP SIM server certificate

You can use the following methods to extract HP SIM certificates.

Enter one of the following links in a web browser:

For HP SIM versions earlier than 7.0:

http://<HP SIM name or network address>:280/GetCertificate

https://<HP SIM name or network address>:50000/GetCertificate

For HP SIM 7.0 or later:

http://<HP SIM name or network

address>:280/GetCertificate?certtype=sso

https://<HP SIM name or network

address>:50000/GetCertificate?certtype=sso

NOTE:

All request parameters are case-sensitive. If you capitalize the lowercase

certtype

parameter, the parameter will not be read, and HP SIM will return the default

HP SIM server certificate instead of a trust certificate.

Export the certificate from HP SIM:

For HP SIM versions earlier than 7.0:

Select Options

→Security→Certificates→Server Certificate.

For HP SIM 7.0 or later:

Select Options

→Security→HP Systems Insight Manager Server Certificate, and then click

Export.

Use the HP SIM command-line tools. For example, using the alias tomcat for the HP SIM
certificate, enter mxcert -l tomcat.

For more information, see the HP SIM documentation.

Removing trusted certificates

1.

Navigate to the Administration

→Security→HP SSO page, as shown in

Figure 26 (page 62)

.

2.

Select one or more records in the Manage Trusted Certificates table.

3.

Click Delete.

The following message appears:

Are you sure you want to remove the selected certificates?

4.

Click Yes.

Configuring Remote Console security settings

Use the Remote Console security settings to control the Remote Console Computer Lock settings
and the Integrated Remote Console Trust setting. You must have the Configure iLO Settings privilege
to change these settings.

Configuring Remote Console Computer Lock settings

Remote Console Computer Lock enhances the security of an iLO-managed server by automatically
locking an operating system or logging out a user when a Remote Console session ends or the
network link to iLO is lost. This feature is standard and does not require an additional license. As
a result, if you open a .NET IRC or Java IRC window and this feature is already configured, the
operating system will be locked when you close the window, even if an iLO license is not installed.

The Remote Console Computer Lock feature is set to Disabled by default.

Configuring iLO security

65

Advertising
Popular Brands
Popular manuals