Configuring Security Features 349
Securing iDRAC6 Communications Using SSL and
Digital Certificates
This subsection provides information about the following data security
features that are incorporated in your iDRAC6:
• "Secure Sockets Layer (SSL)" on page 349
• "Certificate Signing Request (CSR)" on page 349
• "Accessing the SSL Main Menu" on page 350
• "Generating a Certificate Signing Request" on page 351
Secure Sockets Layer (SSL)
The iDRAC6 includes a Web server that is configured to use the
industry-standard SSL security protocol to transfer encrypted data over
the Internet. Built upon public-key and private-key encryption technology,
SSL is a widely accepted technique for providing authenticated and
encrypted communication between clients and servers to prevent
eavesdropping across a network.
An SSL-enabled system:
• Authenticates itself to an SSL-enabled client
• Allows the client to authenticate itself to the server
• Allows both systems to establish an encrypted connection
This encryption process provides a high level of data protection. The iDRAC6
employs the 128-bit SSL encryption standard, the most secure form of
encryption generally available for Internet browsers in North America.
The iDRAC6 Web server includes a Dell self-signed SSL digital certificate
(Server ID). To ensure high security over the Internet, replace the Web server
SSL certificate by submitting a request to the iDRAC6 to generate a new
Certificate Signing Request (CSR).
Certificate Signing Request (CSR)
A CSR is a digital request to a Certificate Authority (CA) for a secure server
certificate. Secure server certificates protect the identity of a remote system
and ensure that information exchanged with the remote system cannot be
