Unsolved
This post is more than 5 years old
3 Posts
0
13738
June 8th, 2017 01:00
iDRAC6 sslresetcfg
Hello, world!
Server Model PowerEdgeM610
iDRAC Firmware 3.80 (Build 3)
CPLD Version 1.0.3
BIOS Version 6.4.0
I want to generate new certificate.
$ racadm sslcertview -t 1
Serial Number : 09CCC70C
Subject Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Issuer Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Valid From : Dec 23 00:00:42 2007 GMT
Valid To : Dec 20 00:00:42 2017 GMT
Certificate will expire in present year.
lets try to reset.....
$ racadm sslresetcfg
.................+++
...................+++
Certificate regeneration and webserver restart initiated
$ racadm sslcertview -t 1
Serial Number : 1B812D0E
Subject Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Issuer Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Valid From : Dec 23 00:00:17 2007 GMT
Valid To : Dec 20 00:00:17 2017 GMT
try to restart iDRAC
$ racadm racreset
RAC reset operation initiated successfully. It may take up to a minute
for the RAC to come back online again.
check again
$ racadm sslcertview -t 1
Serial Number : 1B812D0E
Subject Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Issuer Information:
Country Code (CC) : US
Locality (L) : Round Rock
Organization (O) : Dell Inc.
Organizational Unit (OU) : iDRAC Group
Common Name (CN) : iDRACdefault18037309FD9F
Valid From : Dec 23 00:00:17 2007 GMT
Valid To : Dec 20 00:00:17 2017 GMT
What wrong with it ?
DELL-Chris H
Moderator
•
9.6K Posts
0
June 9th, 2017 07:00
iHarry,
Verify that the iDrac, as well as the BIOS, are current and up to date. Once that is complete then you should look at page 72-74 here. As the issue appears to be the command you are using. Sslcertview is a command used to view, not create. I believe the command you need is sslcsrgen, specifically the racadm sslcsrgen -g command.
Hope this helps. Let me know how it goes.
iHarry
3 Posts
0
June 13th, 2017 00:00
What do you mean ?
I believe the command I need is racadm sslresetcfg
$ racadm help
sslEncryptionStrength -- Display or modify the SSL Encryption strength.
sslresetcfg -- generate a new self-signed certificate
testemail -- test RAC e-mail notifications
you can find in my first message
lets try to reset.....
$ racadm sslresetcfg
.................+++
...................+++
Certificate regeneration and webserver restart initiated
iHarry
3 Posts
0
June 16th, 2017 00:00
Anybody who have M610 iDRAC6 can you check my issue ?
jllvx
2 Posts
0
January 18th, 2018 19:00
Hello,
Did anyone find the solution? We're experiencing the exact same issue.
Jacco73
1 Message
1
February 16th, 2018 05:00
Hi,
not sure if you still have issues with it.
But there is a new Firmware release 3.85
http://www.dell.com/support/home/nl/nl/nlbsdt1/drivers/driversdetails?driverId=62C8X
This update sets the SSL certificate expiration date to march 18 2027
Keep in mind that you need to reset the SSL config and iDRAC after updating to 3.85
Applying the new SSL certificate can be done using the racadm SSLRESETCFG command
Do not forget to reset the iDRAC after running this command !
jllvx
2 Posts
0
February 22nd, 2018 08:00
Upgrading the firmware and running racadm sslresetcfg works! Thank you