2 Posts
0
892
September 20th, 2021 09:00
Configuring a Custom Root CA?
Hello OME Community!
I am deploying the appliance into an environment in which TLS decryption and packet inspection is performed at the network boundary. This necessitates the enterprise issuing a custom certificate (e.g. customRootCA.pem) in order for the inspection to be transparent to web clients inside the network.
Out of the box I see this breaking several components of OME, such as the warranty plugin and the app's self-updater. Is there currently a way for me to upload a custom cert for this internal CA? I am familiar with the dialog at '/core/newSettings/security/certificates' for managing OME's web server certificate, but I don't see any obvious methods for updating the internal cert bundle to address this trust issue.
F12-PXE
2 Posts
0
January 24th, 2022 12:00
Adding a comment in case anyone else in the wilderness is looking for help with this re: OME.
After posting here, contacting my account team, having our TAM talk internally, and also opening up a support case:
So: If you want to use OME in an enterprise with TLS decryption you will have to rely on your firewall admins whitelisting Dell's appliance. Or go spelunking into OME itself under /opt/dell and try to see if you can reconfigure the app. I haven't gone that far yet.
DELL-Joey C
Moderator
•
4.1K Posts
0
September 21st, 2021 01:00
Hello @F12-PXE,
I'm Joey from the social support. Truthfully, I'm terrible with OME appliance custom configuration, but I'll try to help out. I found something on the user guide, with SSL certification settings on OME, probably might help you: https://dell.to/3AtVxM8 page 155.
In case if you need something custom that it's beyond the user guide that can provide information to you, you might need to contact support and engage with the SME.