Oracle^® ILOM Security Guide For Firmware Releases 3.x and 4.x

Lock Host Access Upon Exiting a KVMS Session

Because the host console is considered a shared network resource when using Remote KVMS, if one user logs into the host console and closes either the Oracle ILOM Remote System Console, Remote System Console Plus, or the CLI Storage Redirection application without having logged out from the host operating system, a second user who connects to the same console using Remote KVMS will be able to use the previously authenticated operating system session. For this reason, Oracle ILOM provides the ability to automatically lock the host operating system whenever a Remote KVMS session is disconnected. For Increased security, enable or configure this feature in Oracle ILOM.

To lock the remote host desktop after terminating a KVMS sessions, see the following web-based instructions. For information about how to enable the host lock feature, see the Oracle ILOM Administrator's Guide for Configuration and Maintenance (Firmware 3.2.x).

Before You Begin

• The Console (c) role is required to modify the host lock mode property in Oracle ILOM.

• Firmware 3.0.4 or later is required to use the host lock mode feature in Oracle ILOM.

• The host lock mode feature is disabled by default.

1. Navigate to the KVMS page in the Oracle ILOM web interface.

   For instance, in the:

   • 3.0.x web interface, click Remote Console -> KVMS.
   • 3.1 and later web interface, click Remote Control -> KVMS.
2. In the Host Lock Settings section of the KVMS page, perform one of the following.
   • Specify a lock mode (Windows, Custom, or Disabled).
   • Click Save to apply the change.

Related Information

• Lock Host Desktop, Oracle ILOM Administrator Guide for Configuration and Maintenance (Firmware 3.2.x)

• Lock Host Desktop, Oracle ILOM 3.1 Configuration and Maintenance

• KVMS Lock, Oracle ILOM 3.0 Remote Redirection Consoles CLI and Web Guide