Go to main content

Oracle® ILOM Administrator's Guide for Configuration and Maintenance Firmware Release 3.2.x

Exit Print View

Updated: November 2019
 
 

FIPS Compliance Mode Effect on ILOM Configuration Properties

Any change to the FIPS State property will automatically cause all user-defined configuration settings in Oracle ILOM to be reset to their default values upon the next ILOM boot. To avoid the loss of user-defined configuration settings, you should review the following guidelines prior to: 1) deploying a new server with FIPS mode, or 2) updating the Oracle ILOM firmware and modifying the FIPS mode on a server in an existing environment.

Table 36  Guidelines for Deploying a Server or Updating a Server with FIPS Mode
Guideline
Description
New Server Deployment with FIPS Mode
To avoid the loss of user-defined configuration settings in Oracle ILOM when deploying a new server with FIPS mode, you should:

  1. Decide if FIPS mode is needed.

  2. If FIPS mode is required, enable FIPS mode prior to configuring the Oracle ILOM configuration settings.
Update the Oracle ILOM Firmware and Modify the FIPS Mode State on Server in Existing Environment
To avoid the loss of user-defined configuration settings when updating the Oracle ILOM firmware and modifying the FIPS State property on an existing server, you should:

  1. Back up the existing Oracle ILOM configuration settings:

    • In the web, navigate to ILOM Administration > Configuration Management > Backup/Restore page.

    • For additional backup instructions, click the More Details link on the Backup/Restore page in the web interface; or, see Back Up the Oracle ILOM Configuration Settings.

  2. Perform an Oracle ILOM firmware update:

    • In the web, navigate to ILOM Administration > Maintenance > Firmware Update page.

    • To simplify reconnecting to Oracle ILOM when the firmware update is complete, you should enable the firmware update option for "Preserve the ILOM Configuration" (or, "Preserve the SP Configuration").

    • For additional firmware update instructions, click the More Details link on the Firmware Update page in the web interface; or, see Updating Oracle ILOM Firmware.

  3. Modify the FIPS mode (which will reset the configuration in Oracle ILOM and require a reboot):

    • In the web, navigate to ILOM Administration> Management Access > FIPS page. For further instructions, see Modify FIPS Mode .

  4. Restore the backed-up Oracle ILOM configuration:

    • In the web, navigate to ILOM Administration > Configuration Management > Backup/Restore page.

    • For additional restore instructions, click the More Details link on the Backup/Restore page in the web interface; or, see Restore the Oracle ILOM Backup XML File.

Note -  If you perform Step 2 prior to Step 1, you will need to edit the backed-up XML configuration file and remove the FIPS setting prior to restoring the configuration file in Step 4. Otherwise, you will have an inconsistent configuration between the backed-up Oracle ILOM XML configuration file and the FIPS mode state running on the server, which is not allowed.

Copyright © 2014 - 2019, Oracle and/or its affiliates. All rights reserved. 
Previous
Next