Procedure
1.
Click
Security
in the navigation tree, and then click the
Certificate Mappings
tab.
iLO displays a list of local user accounts with their associated SHA-256 certificate thumbprints.
2.
Select one or more local user accounts by clicking the check box next to the
Login Name
.
3.
Click
Delete Selected Certificate(s)
.
The certificates are immediately removed and the system displays the message
Certificate(s)
deleted
.
Administering SSL certificates
SSL protocol is a standard for encrypting data so that it cannot be viewed or modified while in transit on
the network. An SSL certificate is a small computer file that digitally combines a cryptographic key (the
server public key) with the server name. Only the server itself has the corresponding private key, allowing
for authenticated two-way communication between a user and the server.
A certificate must be signed to be valid. If it is signed by a Certificate Authority (CA), and that CA is
trusted, all certificates signed by the CA are also trusted. A self-signed certificate is one in which the
owner of the certificate acts as its own CA.
By default, iLO creates a self-signed certificate for use in SSL connections. This certificate enables iLO to
work without additional configuration steps.
IMPORTANT:
Using a self-signed certificate is less secure than importing a trusted certificate. Hewlett Packard
Enterprise recommends importing a trusted certificate to protect the iLO user credentials.
Viewing SSL certificate information
Procedure
To view certificate information, click
Security
in the navigation tree, and then click the
SSL Certificate
tab.
SSL certificate details
•
Issued To
—The entity to which the certificate was issued.
•
Issued By
—The CA that issued the certificate.
•
Valid From
—The first date that the certificate is valid.
•
Valid Until
—The date that the certificate expires.
•
Serial Number
—The serial number that the CA assigned to the certificate.
Obtaining and importing an SSL certificate
iLO allows you to create a Certificate Signing Request that you can send to a Certificate Authority to
obtain a trusted SSL certificate to import into iLO.
An SSL certificate works only with the keys generated with its corresponding CSR. If iLO is reset to the
factory default settings, or another CSR is generated before the certificate that corresponds to the
246
Administering SSL certificates