TLS 1.3

Hi,

Could you provide me more details on what platform that you need to change the certificate configuration? What model server? Are you referring to use self sign certificate on iDRAC? 

@DELL-Joey C​ Yes I am referring to self signed certificate on iDRAC.  The initial boot up and configuration will be using self signed certificate.  Later on we plan to use CA signed certificate manage by a CA server.

Thanks

Hi,

Just to check if this video could help: https://www.dell.com/support/contents/en-us/videos/videoplayer/tutorial-on-idrac-web-server-certificates/1705245631487900566#:~:text=It's%20important%20to%20note%20that,by%20your%20internal%20certificate%20authority.

This is for iDRAC 7 and 8: https://www.dell.com/support/kbdoc/en-us/000120158/dell-poweredge-how-to-import-an-externally-created-custom-certificate-and-private-key-into-the-idrac#:~:text=First%2C%20we%20must%20create%20a,the%20length%20of%20the%20commands.

@DELL-Joey C​ Thank you for sharing.

We are looking for guidance on our use case regarding server certificate management:

1. During initial boot-up and configuration, the server utilizes a self-signed certificate.
2. The server is configured for automatic certificate enrollment, providing credentials to a CA server endpoint.
3. Once the connection to the CA server is established, all subsequent server-client communication must transition to using a CA-signed certificate, replacing the initial self-signed one.

We will be using iDRAC 10.

Is there a procedure available? 

Thank you for the help in advance