Secure The Server - Dell S5000 Series Getting Started Manual
Servers for sap hana
Hide thumbs
Also See for S5000 Series:
- Installation and service manual (106 pages) ,
- Customer service manual (106 pages) ,
- Installation manual (66 pages)
Table of Contents
Advertisement
Secure the server
About this task
This feature allows you to secure Web connections to the console and to control the encryption mode of the KVM protocol,
which is activated when using the Remote System Console.
Steps
1. Secure data flows:
a. From the Configuration tab, click Security > Encryption to display the Encryption page.
b. Select Force HTTPS for Web Access and Force KVM Encryption.
c. Click Apply.
d. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
2. Get and install a new SSL certificate:
a. From the Configuration tab, click Security > SSL Certificate to display the Certificate Signing Request page.
b. Complete the fields and click Create to generate the CSR.
c. Click Download to save the CSR to the computer and to send it to the Certification Authority, who will check the
information, and then generate and return a signed certificate.
d. When the signed certificate is received, use the Certificate Upload box to install the certificate.
e. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
3. Define the number of simultaneous connections and password expiration policy:
a. From the Configuration tab, click Security > User Logon Policy to display the User Logon Policy page.
b. Select or clear the check boxes as required and click Apply.
c. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
4. Define the maximum number of invalid logon attempts:
a. From the Configuration tab, click Security > User Lockout to display the User Lockout page.
b. Complete the fields and click Apply.
c. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
5. Define the authentication mode:
a. From the Configuration tab, click Security > Authentication to display the Authentication page.
b. Click Local Authentication, LDAP, or RADIUS and complete the appropriate fields and click Apply.
c. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
6. Disable the power button:
a. From the Configuration tab, click Security > Power Button Lockout to open the Power Button Lockout page.
b. Click Activate Lockout to disable the power button.
7. Change the Super User password:
a. From the Configuration tab, click BMC User Management > Password to display the Password Modification page.
b. Complete the three fields.
● Minimum password length: 4 characters
● Maximum password length: 32 characters
● The space character is forbidden.
NOTE:
The CLI commands do not support passwords containing space, quote, double quote, slash, backslash,
percent, pipe, parenthesis, and the following characters: .;,+&*=<>:~?`^%#$.
c. Click Apply. The new password is now valid and must be used for the next logon.
d. Use the bsmBMCcfg.sh -a backup utility, provided in the Resource and Documentation ISO file, to back up system,
PEF, and configuration data if required.
8. Click the Logout button to stop the SHC.
22
Initial Configuration
Advertisement
Table of Contents
