Unsupported Features When FIPS Mode Is Enabled
The features described in the following table are unsupported when the FIPS compliance mode in
Oracle ILOM is enabled and running on the system.
|
|
IPMI 1.5
|
When FIPS mode is enabled and running on the system, the IPMI 1.5 configuration property is
removed from the Oracle ILOM CLI and web interface. The IPMI 2.0 service is automatically enabled in
Oracle ILOM. IPMI 2.0 supports both FIPS compliant and non-compliant modes.
|
Firmware Compatibility for Oracle ILOM System Remote Console
|
FIPS mode in Oracle ILOM prevents the earlier firmware versions of Oracle ILOM Remote System
Console to be compatible with the later Oracle ILOM Remote System Console firmware versions.
For instance, the Oracle ILOM Remote System Console Client firmware version 3.2.4 is backward
compatible with the Oracle ILOM Remote System Console firmware version 3.2.3 and earlier. However,
the Oracle ILOM Remote System Console Client firmware version 3.2.3 and earlier are not forward
compatible with the Oracle ILOM Remote System Console firmware version 3.2.4 and later.
Note -
This firmware compatibility limitation does not apply to the Oracle ILOM Remote System Console
Plus. The Oracle ILOM Remote System Console Plus is provided on newer service processor systems such
as, SPARC T5 and later and Oracle x86 servers such as x4-4, x4-8 and later. The Oracle ILOM Remote
System Console is provided on earlier service processor systems such as, SPARC T3 and T4 and Oracle
x86 servers such as x4-2, x4-2L, x4-2B, and earlier systems.
|
Lightweight Directory Access Protocol (LDAP)
|
When FIPS mode is enabled and running on the system, the LDAP configuration properties in
Oracle ILOM are automatically removed from the Oracle ILOM CLI and web interface.
Note -
The following remote authentication services are supported in both FIPS compliant and
non-compliant modes: Active Directory and LDAP/SSL.
|
Remote Authentication Dial-In User Service (RADIUS)
|
When FIPS mode is enabled and running on the system, the RADIUS configuration properties in Oracle ILOM are automatically removed from the Oracle ILOM CLI and web interface.
Note -
The following remote authentication services are supported in both FIPS compliant and non-compliant modes: Active Directory and LDAP/SSL.
|
|