Data Domain: iDRAC Operator User Changes in DDOS

Summary: Starting with Data Domain releases from April 2026, updates have been introduced to iDRAC operator user behavior as part of Dell’s ongoing security enhancements. These updates help protect your system by preventing prolonged or unauthorized privileged access, while continuing to ensure full supportability. When maintenance that requires elevated access is necessary, Dell Support follows established and approved procedures and returns the system to a compliant and secure state once the work is complete. ...

Acest articol se aplică pentru Acest articol nu se aplică pentru Acest articol nu este legat de un produs specific. Acest articol nu acoperă toate versiunile de produs existente.
Consultați alte resurse

Symptoms

  • On RLCE systems running newer DDOS versions, users assigned the iDRAC Operator role are unable to access or launch the Virtual Console.
  • The Virtual Console option may be unavailable, disabled, or return an access-related error.
  • Operator users may also observe that previously available capabilities (such as power operations or virtual media access) are no longer accessible.

Cause

With the latest DDOS releases, the iDRAC Operator role on RLCE systems has reduced privileges by design. Operator access is now limited to the following:

  • Login
  • System Operations (event and notification visibility)
  • Debug (diagnostic commands)

All other privileges have been removed, including:

  • Access to Virtual Console
  • Access to Virtual Media
  • System Control and power management
  • Storage management
  • Clear Logs
  • iDRAC configuration

These restricted functions require Dell Support assistance.

 

DDOS Impacted

  • DDOS 8.7 and latest
  • DDOS 8.6.1.10 and latest
  • DDOS 8.3.1.30 and latest
  • DDOS 7.13.1.70 and latest

Products Affected

  • Only where iDRAC users are created through DDOS and Retention Lock Compliance (RLC) is enabled.

PowerProtect DD (PPDD)

  • All platforms supported

DP Series

  • DP5900 (Uses DD6900)
  • DP8900 (Uses DD9900)
  • DP8400 (Uses DD9400)

Resolution

This behavior is expected and is designed as such.

 
Note: The iDRAC and DDOS teams are working to restore power cycle capability for the Operator role in a future DDOS release.

Additional Information

Reference: 

DSA-2026-060: Security Update for Dell PowerProtect Data Domain Multiple Vulnerabilities
 

Produse afectate

Data Domain, PowerProtect DP5900, PowerProtect DP8400, PowerProtect DP8900
Proprietăți articol
Article Number: 000453531
Article Type: Solution
Ultima modificare: 08 iun. 2026
Version:  8
Găsiți răspunsuri la întrebările dvs. de la alți utilizatori Dell
Servicii de asistență
Verificați dacă dispozitivul dvs. este acoperit de serviciile de asistență.