Enabling SSL for the LDAP client
Use the SSL Client Configuration for LDAP Client section of the Security page to
enable or disable SSL for the LDAP Client. To enable SSL, a valid SSL client
certificate and at least one trusted certificate must first be installed.
Complete the following steps to enable SSL for the client:
1. In the navigation pane, click MM Control → Security. A page similar to the one
2. On the SSL Client Configuration for LDAP Client page, select Enabled in the
3. Click Save. The value selected takes effect immediately.
Configuring the secure shell server
The Secure Shell (SSH) feature provides secure access to the command-line
interface and the serial over LAN (text console) redirect features of the
management module.
Secure shell users are authenticated by exchanging user ID and password. The
password and user ID are sent after the encryption channel is established. The user
ID and password pair can be one of the 12 locally stored user IDs and passwords
or they can be stored on an LDAP server. Public key authentication is not
supported.
Generating a secure shell server key
A secure shell server key is used to authenticate the identity of the secure shell
server to the client. Secure shell must be disabled before you create a new secure
shell server private key. You must create a server key before enabling the secure
shell server.
When you request a new server key, both a Rivest, Shamir, and Adelman (RSA)
key and a DSA key are created to allow access to the management module from
52
BladeCenter Management Module: User's Guide
in the following illustration is displayed.
The MM Control → Security page shows an installed SSL client certificate and
Trusted CA Certificate 1.
SSL Client field.