IDRAC: iDRAC6, iDRAC7, or iDRAC8 - default SSL web-server certificate expired
Summary: Older models of PowerEdge servers may encounter a browser prompt that the iDRAC default SSL web-server certificate has expired. Access to the iDRAC UI is not affected but may affect customers with higher security environments. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Access iDRAC web-server UI may show the following prompt:
Customers may still access the iDRAC web interface by choosing "Continue to this website."
Cause
The default iDRAC certificate validity period has expired, and you can go to the following page in the iDRAC7 or iDRAC8 verify it:
Figure 1: iDRAC settings > Network > SSL
Note:
For the iDRAC6 go to: "iDRAC Settings" > "Network/Security" > "SSL"
For the iDRAC8, go to: "iDRAC settings" > "Network" > "SSL" (as seen in figure 1)
For the iDRAC6 go to: "iDRAC Settings" > "Network/Security" > "SSL"
For the iDRAC8, go to: "iDRAC settings" > "Network" > "SSL" (as seen in figure 1)
Resolution
Updating iDRAC firmware and resetting iDRAC to factory default might not resolve the issue.
There is no option available in the web-server UI to reset or renew the certificate.
In those cases, the only option available is using CLI. You can use telnet or SSH or racadm tools to do this. See this manual page for details.
For iDRAC9 and custom certificates, look at the additional information at the end of this article.
Here is the specific command to renew the certificate:
sslresetcfg
| Description | Restores the web-server certificate to factory default and restarts web-server. The certificate takes effect 30 seconds after the command is entered.
|
| Synopsis |
|
| Input | N/A |
| Example |
|
Note: If the validity period did not refresh when viewed in the UI, you must reset the iDRAC.
Additional Information
Video Guide for iDRAC9:
Tutorial on iDRAC Web Server Certificates
Duration: 00:16:18 (hh:mm:ss)
When available, closed caption (subtitles) language settings can be chosen using the CC icon on this video player.
Find an article on using a custom certificate below:
PowerEdge: How to import an externally created custom certificate and private key into the iDRAC
Affected Products
iDRAC6, iDRAC7, iDRAC8, OEMR R210II, OEMR R210, OEMR R220, OEMR R230, OEMR R310, OEMR R320, OEMR R330, OEMR R410, OEMR R420, OEMR R430, OEMR R510, OEMR R520, OEMR R530, OEMR R610, OEMR R620, OEMR R630, OEMR R710, OEMR R720, OEMR R720xd, OEMR R730
, OEMR R730xd, OEMR R810, OEMR R820, OEMR R830, OEMR R910, OEMR R920, OEMR R930, OEMR T130, OEMR T320, OEMR T330, OEMR T420, OEMR T430, OEMR T610, OEMR T620, OEMR T630, OEMR T710, OEMR XL R210, OEMR XL R210II, OEMR XL R220, OEMR XL R230, OEMR XL R330, OEMR XL R520, OEMR XL R610, OEMR V2 XL R610, OEMR XL R620, OEMR XL R630, OEMR XL R710, OEMR XL V2 R710, OEMR XL R720, OEMR XL R720xd, OEMR XL R730, OEMR XL R730XD, PowerEdge C4130, PowerEdge c6320, PowerEdge c6320p, Poweredge FC430, Poweredge FC630, Poweredge FC830, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge R230, PowerEdge R330, PowerEdge R430, PowerEdge R530, PowerEdge R530xd, PowerEdge R630, PowerEdge R730, PowerEdge R730xd, PowerEdge R830, PowerEdge R930, PowerEdge T130, PowerEdge T330, PowerEdge T430, PowerEdge T630
...
Article Properties
Article Number: 000208464
Article Type: Solution
Last Modified: 05 Feb 2025
Version: 2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.