Skip to main content
Start a Conversation

Solved!

Go to Solution

idracula1

1 Rookie

 • 

4 Posts

129

April 15th, 2025 09:45

Unable to Renew iDRAC default Self-Signed Certificate (iDRAC6 – PowerEdge R510)

Hi all,

We are currently facing an issue with renewing the default self-signed SSL certificate on an iDRAC6 (PowerEdge R510) running firmware version 2.92. The certificate expired in 2024, and despite our attempts to renew it, the expired certificate remains in use.

We have executed the racadm sslresetcfg command, but it does not appear to generate or apply a new certificate. Indeed, we have rebooted the iDRAC as well.

Could you please advise on further steps to troubleshoot or manually regenerate and apply a new self-signed certificate on iDRAC6?

Thank you in advance for your support.

DELL-Erman O

Moderator

 • 

2.9K Posts

April 16th, 2025 10:30

Hi,

to the best of my knowledge, iDRAC6 does not support CSR validation directly within its environment. You will need to use an external tool for this purpose. This article may enlight a bit more please take a look at it.

DELL-Chris H

Moderator

 • 

9.6K Posts

April 15th, 2025 14:11

Idracula1,

 

Would you confirm if the rest of the server is up to date, I know you stated the idrac was, but confirming the rest of the server is as well?


If you have access to the iDrac web interface you can try the following steps

 

  1. Access iDRAC Web Interface:

    • Open your web browser and navigate to the iDRAC IP address.
    • Log in using your credentials.

  2. Generate a Self-Signed Certificate:

    • Go to the "System" tab.
    • Select "Settings" and then "Network/Security".
    • Under "SSL/TLS Certificate", click on "Generate Certificate".

  3. Fill in Certificate Details:

    • Enter the required information such as Common Name (CN), Organization, and other fields.
    • Ensure the Common Name matches the iDRAC IP or hostname.

  4. Apply the Certificate:

    • Click "Generate" to create the certificate.
    • Once generated, click "Apply" to use the new certificate.

  5. Restart iDRAC:

    • To ensure the new certificate is applied, restart the iDRAC interface.

A couple other things you can check is if you have the correct permissions, as well as you can try resetting the idrac with racadmracreset, and see if that resolves the issue., 

 

Let me know if this helps.

 

idracula1

1 Rookie

 • 

4 Posts

April 16th, 2025 08:46

Hi @DELL-Chris H  - thank you so much for your response.

Unfortunately, I can only generate CSR request via iDRAC 6 web gui.

Is it somehow possible to validate this certificate request within iDRAC environment? Or is it possible to validate the request for example using openssl?

Your help will be much appreciated!

idracula1

1 Rookie

 • 

4 Posts

April 22nd, 2025 13:59

Hi @DELL-Erman O  - thank you for pointing me to the correct procedure. Using your article, I was able to successfully create, sign, and upload the required certificate and key file. The steps were clearly described and very helpful. There was just one small caveat: I had to manually create the serial file and set its content to 00. And of course, correct file path destinations had to be maintened.

I’m happy to mark your post as the accepted answer. Thanks again!

Was this post helpful?

View All

No Events found!

Top