![ASRock EPYCD8-2T [6/66] Certificates to import the certificate](/img/pdf.png)
ASRock EPYCD8-2T [6/66] Certificates to import the certificate
![ASRock EPYCD8-2T [6/66] Certificates to import the certificate](/views2/1694347/page6/bg6.png)
Logging in to Web using SSL mutual authentication
You can also login to the IPMI via SSL mutual authentication without entering
username/password.
Before you login as SSL mutual authentication, ensure that:
1. Upload CA certificate(.pem), server certificate(.pem) and server private
key(.pem) to BMC
2. Install the client certificate(.p12) into the browser
• Chrome: Using “//settings/” to open Manager certificates to import the
certificate.
• IE11: Using “Tools>Internet Options>Certificates” to import the certificate.
• Firefox: Using “Tools > Options > Advanced > Certificates” to import the
certificate.
3. Login to IPMI using the link https://[IP address]:[ mutual port number].
Note:
1. The default mutual port number is 4433. You can modify it in Services page.
2. If you want to generate SSL certificate yourself, please follow the steps below.
• Install OpenSSL in your Linux machine.
• Generate CA certificate:
(1) Type openssl genrsa -out ./private/ca.key 1024 to generate a private key
(2) Type openssl req -new -x509 -days 365 -key ./private/ca.key -out ./certs/ca.crt to
generate a certificate file(contain public key)
(3) Type cat ./certs/ca.crt > ./certs/ca.pem to transfers the file format to .pem.
• Generate server certificate:
(1) Type openssl genrsa -out ./private/server.key 1024 to generate a server key.
(2) Type openssl req -new -key ./private/server.key -out ./certs/server.csr to generate
the csr file.
(3) Type openssl x509 -req -days 365 -in ./certs/server.csr -CA ./certs/ca.crt
-CAkey ./private/ca.key -set_serial 01 -out ./certs/server.crt to sign the file and
generate a server certificate
(4) Type cat ./certs/server.crt > ./certs/server.pem to transfers the file format to .pem.
(5) Type cat ./private/server.key > ./private/server_key.pem to transfers the file format
to .pem.
• Generate client certificate:
(1) Type openssl genrsa -out ./private/client.key 1024 to generate a client key.
(2) Type openssl req -new -key ./private/client.key -out ./certs/client.csr to generate the
csr file.
(3) Type openssl x509 -req -days 365 -in ./certs/client.csr -CA ./certs/ca.crt
-CAkey ./private/ca.key -set_serial 02 -out ./certs/client.crt to sign the file and
3
Содержание
- Ipmi configuration guide 1
- Table of contents 2
- Introduction 4
- Terminology 4
- The user guide is for system administrators to remotely access computers with bmc baseboard management controllers and ipmi intelligence platform management interface system administrators may easily monitor system conditions or manage issues of remote computers via the web based interface a web browser on the internet 4
- Html5 web gui 5
- Logging in to web using ipmi user 5
- Certificates to import the certificate 6
- Chrome using settings to open manager certificates to import the certificate 6
- Logging in to web using ssl mutual authentication 6
- Login to ipmi using the link https ip address mutual port number 6
- You can also login to the ipmi via ssl mutual authentication without entering username password before you login as ssl mutual authentication ensure that 1 upload ca certificate pem server certificate pem and server private key pem to bmc 2 install the client certificate p12 into the browser 6
- Chrome latest version ie11 and above firefox with limited support 7
- Client machine with 8gb ram if the client machine has 4gb ram there will be lag in video keyboard mouse functionality 7
- Supported browsers 7
- System requirements 7
- Menu bar 8
- Web gui overview 8
- Dashboard 9
- Firmware information 9
- Quick button and logged in user 9
- Event logs 10
- Network information 10
- Sensor 10
- Sensor monitoring 10
- Sensor detail 11
- System information 12
- System inventory 12
- Fru information 13
- Fru page 13
- System inventory page 13
- This page displays the fru information select a fru device id from the fru information section to view the details of the selected device 13
- Available fru devices 14
- Board information 14
- Chassis information 14
- Product information 14
- Ipmi event log 15
- Logs reports 15
- Power source 15
- Data time 17
- Settings 17
- Video log 17
- External user services 18
- General settings 19
- Ldap e directory settings 19
- Role groups 20
- Active directory settings 21
- General settings 21
- Radius settings 22
- Role groups 22
- Advanced radius settings 23
- General radius settings 23
- Kvm mouse setting 24
- Log settings 25
- Log settings policy 25
- Vmedia instance settings 28
- Remote session 29
- Network ip settings 30
- Network settings 30
- Dns configuration 32
- Pam order settings 33
- Pam order settings page pam authentication order it shows the list of available pam modules supported in bmc click and drag the required pam module to change its order 34
- Platform event filter 34
- Platform event filter pef provides a mechanism for configuring the bmc to take selected actions on event messages that it receives or has internally generated these actions include operations such as system power off system reset as well as triggering the generation of an alert 34
- Event filter configuration 35
- Event filters 35
- Alert policies 37
- Alert policies 39
- Lan destinations 39
- Lan destination configuration 40
- Services 41
- View the active sessions 41
- Edit the existing service 42
- Smtp settings 43
- Ssl settings 44
- View ssl certificate 44
- Generate ssl certificate 45
- Upload ssl certificate 46
- System firewall 47
- Add firewall settings 48
- Existing firewall settings 48
- General firewall settings 48
- Existing ip rules 49
- Ip firewall rules 49
- Add ip rule 50
- Port firewall rules 50
- Add port rule 51
- Existing port rules 51
- Add a new user 52
- User management 52
- Modify user 54
- Video recording 54
- Auto video settings 55
- Video trigger settings 55
- Pre event video recordings 56
- Video remote storage 56
- Keep share nic link up 57
- Image redirection 58
- Remote control 58
- Remote media 58
- Power control 59
- Miscellaneous 60
- Post snoop 61
- Uid control 61
- Backup configuration 62
- Maintenance 62
- Restore configuration 62
- Firmware image location 63
- Bios update 64
- Firmware update 64
- Restore factory defaults 65
- Sign out 66
Похожие устройства
- ASRock EPYCD8-2T Инструкция
- ERGO F282 Travel Инструкция по эксплуатации
- ASRock ROMED6U-2L2T Краткая инструкция
- ASRock ROMED6U-2L2T Инструкция
- ERGO F249 Bliss Инструкция по эксплуатации
- ERGO F248 Defender Инструкция по эксплуатации
- ERGO F245 Strength Инструкция по эксплуатации
- ERGO F243 Swift Инструкция по эксплуатации
- ERGO F2412 Signal Инструкция по эксплуатации
- ERGO F187 Contact Инструкция по эксплуатации
- ERGO F184 Respect Инструкция по эксплуатации
- ERGO F181 Step Инструкция по эксплуатации
- ERGO F280 Strong Инструкция по эксплуатации
- ERGO F246 Shield Инструкция по эксплуатации
- ERGO F244 Shell Инструкция по эксплуатации
- ERGO F241 Talk Инструкция по эксплуатации
- ERGO F240 Pulse Инструкция по эксплуатации
- ERGO F185 Speak Инструкция по эксплуатации
- ERGO F183 Beat Инструкция по эксплуатации
- ERGO F182 Point Инструкция по эксплуатации