1. Oracle Hardware Management Pack for Oracle Solaris 11.4 Security Guide
  2. Securing Oracle Hardware Management Pack
  3. Secure Login Passwords When Using ipmitool

Secure Login Passwords When Using ipmitool

The ipmitool command utility provides a broad range of management capabilities. When using ipmitool from the Oracle Solaris operating system to access a remote service processor, do not include the login password using the -P option in the command line or script as other Oracle Solaris users might be able to see it.

Instead, create a separate text file that contains only the password and use one of the following options when issuing a command or script that requires a login password:

Option Description

-f password_file

Specifies a file containing the remote Oracle ILOM service processor user account password. For example:

# ipmitool -U root -f password.txt -H hostname bmc info

Where hostname is the host name or common name (when using a certificate) of the target service processor and password.txt is the text file containing the user account password.

If the password_file argument for this option is absent or the file is empty, the password will default to NULL.

-f -

If a single hyphen character ("-") is used in place of password_file, the password can be read from either piped or redirected standard input. Example: 

# ipmitool -U root -f - -H hostname bmc info < password.txt

Where hostname is the host name or common name (when using a certificate) of the target service processor and password.txt is the text file containing the remote Oracle ILOM service processor user account password.

For additional information on using ipmitool, refer to the man page.

Parent topic: Securing Oracle Hardware Management Pack