When the iDRAC (integrated Dell Remote Access Controll) is not configured, the default credentials are
- Username : root
- Password : calvin
For iDRAC 9, a new feature called "secure password
" is available during the purchase configuration.
- If you have opted for secure default access to iDRAC, the iDRAC secure default password is available on the back of the system Information tag.
- If you have not opted for secure default access to iDRAC, then the default username and password are "root" and "calvin".
The Secure Password will be located on a sticker on the underside of the system tag with the Service Tag information. If the default password on the sticker is blank, it means that the default credentials root/calvin have to be used.
Fig. 1: Sticker with secure default password
It is possible to reset the password throught the iDRAC settings in the F2 menu at startup.
Also it is possible to reset the password to "factory default" with the following racadm command:
racadm racresetcfg -all
To reset the password to the legacy password, please use the following racadm command:
racadm racresetcfg -rc
: More tutorials about the iDRAC are available in the article SLN300677
- How-To Dell Server : iDRAC
What is the "Default Password Warning" on iDRAC? SEC0701
Default username and password of iDRAC is widely known to everyone. It is important to change the default password or any user can access the server and make changes using default credentials. With Default Password Warning feature in iDRAC, you will be warned when iDRAC have default username and password (root/calvin).
Whenever a user, with the Configure User privilege, logs in to iDRAC or SSH/Telnet or executes racadm commands remotely and the default credentials are configured, a warning message will be displayed (SEC0701)
. Because GUI and SSH/Telnet users logs in once per session they will see a single warning message for each session. Because remote racadm users login for every command they will see a warning message for every command.
While having default credentials makes iDRAC insecure, iDRAC can become even more insecure if it can be accessed from the internet
(or other large network where different trust boundaries exist) when the default credentials are configured. If any of the following items is configured the possibility exists that iDRAC could go from being inaccessible on the internet to being accessible.
Whenever a user, with the Configure User privilege
, logs in to iDRAC via Web GUI
and the default credentials are configured, the Default Password Warning Message
will be displayed. From this page user can either change the password for root user or user can keep default password and proceed with iDRAC login. There will be an option to disable Default Password Warning
feature on this page. This page will not be shown, if user changes the password for user "root" or disables the Default Password Warning feature.
Defaut Password Warning
Default Password Warning feature can be enabled or disabled from iDRAC Overview
-> iDRAC Settings
-> User Authentication
-> Local Users page under the section titled "Default Password Warning
I cannot remember the iDRAC Password
If the iDRAC password is lost, the solution is to reset the iDRAC to default setting. How to reset the iDRAC is explained in this article.