PowerEdge: More Strong TLS Cipher Suites Added to iDRAC9 4.40.40 for iSM Access

Summary: iDRAC9 4.40.40 and later adds the following strong TLS cipher suites for iDRAC Service Module (iSM) to leverage over the iDRAC's internal USB passthrough NIC.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

iDRAC9 4.40.40 and later adds the following TLS 1.2 strong cipher suites for iDRAC Service Module (iSM) to communicate over iDRAC's internal USB passthrough NIC:

  • TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_RC4_128_SHA

The following cipher suites existed in previous iDRAC9 versions:

  • TLS_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_RSA_WITH_AES_128_CBC_SHA
  • TLS_RSA_WITH_AES_128_CBC_SHA256
  • TLS_RSA_WITH_AES_128_GCM_SHA256
  • TLS_RSA_WITH_AES_256_CBC_SHA
  • TLS_RSA_WITH_AES_256_CBC_SHA256
  • TLS_RSA_WITH_AES_256_GCM_SHA384
  • TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
  • TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
  • TLS_RSA_WITH_IDEA_CBC_SHA
  • TLS_RSA_WITH_RC4_128_MD5
  • TLS_RSA_WITH_RC4_128_SHA
  • TLS_RSA_WITH_SEED_CBC_SHA

Cause

These stronger ciphers were not in previous iDRAC9 versions.

Resolution

If iSM is logging TLS communication errors with iDRAC, ensure at least one of the cipher suites is enabled in operating system policy.

 

Note: iSM does not depend on TLS negotiation for iDRAC7 or iDRAC8.

Affected Products

iDRAC Service Module, iDRAC9, iDRAC Service Module 4.x, iDRAC9 - 4.xx Series

Products

PowerEdge XR2, Poweredge C4140, PowerEdge C6420, PowerEdge R240, PowerEdge R340, PowerEdge R440, PowerEdge R540, PowerEdge R640, PowerEdge R6415, PowerEdge R740, PowerEdge R740XD, PowerEdge R740XD2, PowerEdge R7415, PowerEdge R7425, PowerEdge R840 , PowerEdge R940, PowerEdge R940xa, PowerEdge T140, PowerEdge T340, PowerEdge T440, PowerEdge T640, PowerEdge XE2420, PowerEdge XE7420, PowerEdge XE7440 ...
Article Properties
Article Number: 000181948
Article Type: Solution
Last Modified: 01 Jan 2025
Version:  6
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.