Go to main content

Oracle® ILOM Security Guide For Firmware Releases 3.x and 4.x

Exit Print View

Updated: December 2019

Use Server Side Keys to Encrypt SSH Connections

Oracle ILOM provides a Secure Shell (SSH) server capability, allowing remote clients to securely connect and manage Oracle ILOM through a command-line interface. The SSH protocol uses server-side keys to encrypt the management channel and secure all communication. SSH clients also use these keys to verify the authenticity of the SSH server.

Oracle ILOM generates a set of unique SSH keys on the first boot of a factory default system. In the event that new server-side keys are needed, Oracle ILOM supports the ability to manually generate additional SSH server-side keys.

To view or manually generate SSH server-side encryption keys, see the following web-based instructions.

Before You Begin

  • The Admin (a) is required to modify the SSH server properties.

  1. Navigate to the SSH Server page in the Oracle ILOM web Interface.

    For instance, in the:

    • 3.0.x web interface, click System Management -> SSH Server.
    • 3.1 and later web interface, click ILOM Administration -> Management Access-> SSH Server.
  2. In the SSH Server page, review the generated RSA and DSA Key information, or perform the following:
    1. Click Generate RSA Key to generate a new key.
    2. Click Generate DSA Key to generate a new key.

Related Information