|
|
|
Enhanced IP Connectivity Settings available in Oracle ILOM on
selected systems.
|
Oracle ILOM, as of firmware 3.2.4, supports the ability to
independently enable or disable the property States for IPv4 and
IPv6 network connectivity. In addition, a new static IPv6 gateway
property is available for configuration.
These enhanced IP settings are available on most new server models
and a select number of legacy servers that are running a later
software release.
Note -
If the IP connectivity enhancements described in this section
are not available for configuration, refer to the server
administrator guide or product notes to determine if a later
software release is available that supports these IP
enhancements.
|
|
FIPS Mode
|
The Oracle ILOM web and command-line interfaces enable you to
configure a Federal Information Processing Standards (FIPS)
compliant mode. When this mode is enabled, Oracle ILOM uses
cryptographic algorithms in compliance with the FIPS 140-2 security
standards to protect sensitive or valuable data on the system.
|
|
IPMI 2.0
|
For high security, Intelligent Platform Management Interface
(IPMI) v2.0 sessions are enabled by default. As an alternative to
IPMI v1.5, IPMI v2.0 provides enhanced authentication and IPMI
packet encryption.
|
|
Oracle ILOM Remote System Console Plus Session Count
|
By default, Oracle ILOM enables you to launch up to four video
redirections of the host console. As of Oracle ILOM 3.2.4, you can
optionally limit the number of redirection sessions.
|
|
UEFI Diagnostics (x86 only)
|
The UEFI Diagnostics configuration paradigm has been simplified to
enable you to start and stop the diagnostics tests from the
configuration page. In addition, you can view the status of the
diagnostic tests in the Oracle ILOM web interface.
|
|
Transport Layer Security Protocol Support
|
Transport Layer Security (TLS) v1.1 and v1.2 have been added as
supported protocols for the HTTPS service in Oracle ILOM. TLS
provides higher security than Secure Socket Layer (SSL)
implementations.
|
|
Deprecated SSL and Weak Cipher Properties for HTTPS Management
Access
Deprecated Weak Ciphers property for SSH Management Access
|
For greater communication security over the Internet, TLS
properties are enabled by default in newer Oracle ILOM firmware
releases (3.2.4.x and later). If a managed device is running an
older Oracle ILOM firmware release, you should disable the SSL and
Weak Ciphers properties and enable the TSL properties.
|
|
IP Address Restriction
|
Prior to the 3.2.4 firmware release, Oracle ILOM enabled you to
assign IP addresses in the following subnetworks to the NET MGT
port:
-
169.254.10.n
-
169.254.11.n
-
169.254.12.n
However, these IP addresses are reserved for special use. As of
the 3.2.4 firmware release, Oracle ILOM issues an error message when
you attempt to assign the listed addresses to the NET MGT port.
|
|
Web Interface Accessibility
|
The Oracle ILOM web interface has been updated for compliance with
Oracle's Accessibility Guidelines.
|
|