1 Rookie
•
15 Posts
0
1260
February 14th, 2022 05:00
Redfish API renew SSL Certificate with OpenSSL
Hi,
Im trying to renew the idrac ssl cert using redfish API and OpenSSL for generating the CSR. This creates an external key file. This works great using RACADM but when attempting to automate using the API method I get the error seen in attached image. I know i could just use RACADM but API's are a more secure method of doing this.
My question: is there a way to upload the .key file with the cert when using redfish? Im trying this in pwsh core.
Thanks,
No Events found!
DELL-Shine K
4 Operator
•
3K Posts
1
February 16th, 2022 19:00
on iDRAC 9 (R740 and R740xd) you can use redfish to download CSR from iDRAC and upload the signed certificate back to iDRAC.
DELL-Chris H
Moderator
•
9.6K Posts
0
February 14th, 2022 13:00
Hawker91,
Let me look into this for you, as I am not certain it is designed to manage custom certs.
Let me see what I can find and I will let you know.
DELL-Shine K
4 Operator
•
3K Posts
0
February 14th, 2022 20:00
Are you creating CSR from iDRAC and uploading the signed certificate back to iDRAC or you are creating CSR outside iDRAC and uploading signed certificate to iDRAC. Can you also share the steps followed using racadm?
Share the iDRAC FW version installed on the server
hawker91
1 Rookie
•
15 Posts
0
February 15th, 2022 01:00
I am creating the CSR outside of the iDRAC. But i am trying to automate the SSL process using redfish API & OpenSSL. Long story but this is an automated process we use for other vendor SSL automation processes.
Thanks,
DELL-Shine K
4 Operator
•
3K Posts
0
February 16th, 2022 06:00
Can you share the server model and iDRAC FW version you have?
hawker91
1 Rookie
•
15 Posts
0
February 16th, 2022 06:00
most are R740, r740xd but also have some R730 & T630's.
hawker91
1 Rookie
•
15 Posts
0
February 16th, 2022 06:00
Any update on this one please?
Thanks,
hawker91
1 Rookie
•
15 Posts
0
February 16th, 2022 06:00
Yes sure:
we have 300+ dell servers in our environment but i believe there either idrac 8 or 9 and roughly on the below firmware version:
iDRAC 8: 2.81.81.81
iDRAC 9: 5.00.10.20
DELL-Chris H
Moderator
•
9.6K Posts
0
February 16th, 2022 08:00
Sorry for the delay, but from what I am finding it isn't currently supported, also I don't see that there is anything addressing it in the next release or near future, but if you like i can throw the request in the hat to be considered down the road.
hawker91
1 Rookie
•
15 Posts
0
February 21st, 2022 01:00
Thats the route i am going to go down now, thank you.
DELL-Chris H
Moderator
•
9.6K Posts
1
February 21st, 2022 08:00
Hawker91,
I just heard back that the feature looks to be included in one of the updates coming up later this year.
Just wanted to let you know.
hawker91
1 Rookie
•
15 Posts
0
February 21st, 2022 09:00
Hi Chris, ok sounds great. Shame it isnt in this release, no problem though i can either for RACADM route or automate fully via redfish. Any ideas which release? Im guessing not or you would have said, worth asking though!
Thanks,
DELL-Chris H
Moderator
•
9.6K Posts
0
February 21st, 2022 09:00
Unfortunately I do not.