User’s guide, Mete red rac k pdu – Dell Metered PDU LED User Manual

USER’S GUIDE

Mete

red Rac

k

PDU

142

– The length of the public key (RSA key) that is used for encryption when setting up

an SSL session is 2048 bits, by default.

Method 2: Use the Rack PDU Security Wizard to create a CA certificate and a
server certificate.

Use the Rack PDU Security Wizard to create two digital

certificates:

• A CA root certificate (Certificate Authority root certificate) that the Rack PDU Security

Wizard uses to sign all server certificates and which you then install into the
certificate store (cache) of the browser of each user who needs access to the Rack
PDU.

• A server certificate that you upload to the Rack PDU. When the Rack PDU Security

Wizard creates a server certificate, it uses the CA root certificate to sign the server
certificate.

The Web browser authenticates the Rack PDU sending or requesting data:

• To identify the Rack PDU, the browser uses the common name (IP address or DNS

name of the Rack PDU) that was specified in the server certificate’s distinguished
name when the certificate was created.

• To confirm that the server certificate is signed by a “trusted” signing authority, the

browser compares the signature of the server certificate with the signature in the root
certificate cached in the browser. An expiration date confirms whether the server
certificate is current.

Method 2 has the following advantages and disadvantages.

•

Advantages:

– Before they are transmitted, the user name and password and all data to and from

the Rack PDU are encrypted.

– You choose the length of the public key (RSA key) that is used for encryption when

setting up an SSL session (use 1024 bits, which is the default setting, or use 2048
bits to provide complex encryption and a high level of security).

– The server certificate that you upload to the Rack PDU enables SSL to

authenticate that data are being received from and sent to the correct Rack PDU.