Security Features Per Oracle ILOM Firmware Release

2 Security Features Per Oracle ILOM Firmware Release

Use the following table to identify the firmware release in which an Oracle ILOM security feature became available.

Firmware Version Feature Availability	Security Feature	For details, see:
5.0.0	(New) Server Certificates for Validating Outgoing HTTPS Connections	Implementing Server Certificates to Prevent MITM Attacks
5.0.0	(New) Web Server Session Duration and Allowed Services	Set Web Services Allowed to Communicate With Oracle ILOM Set Web Services Allowed to Communicate With Oracle ILOM
5.0.0	(New) Password Policy Local Account Locking Capabilities	Set Password Policy Restrictions for All Local Users
5.0.0	Support for TLS v1.1 was removed in firmware version 5.0.0.	TLS v1.2 Support for HTTPS Data Transmission
5.0.0	IPMI 2.0 TLS Sessions for Use with (`-I lanplus`) IPMItool interface(Default: Disabled)	Configure IPMI Management Access for Increased Security
5.0.0	Support for DSA server side keys was removed in firmware version 5.0.0.	Use Server Side Keys to Encrypt SSH Connections Append SSH Keys to User Accounts for Automated CLI Authentication
Pre-5.0.x	Dedicated Secure Management Connection	Securing the Physical Management Connection Maintaining a Secure Management Connection
Pre-5.0.x	Encrypted Preconfigured Network Ports	Preconfigured Services and Network Ports
Pre-5.0.x	Local Host Interconnect Authenticated Sessions	Preferred Authenticated Host Interconnect Access
Pre-5.0.x	Authentication and Authorization Physical Security Presence Check Audit Log Access	Securing Oracle ILOM User Access Physical Security Presence for Resetting root Account Default Password Monitor Audit Events to Find Unauthorized Access
Pre-5.0.x	CLI and Web Interface Session Timeout Interval	Set a Timeout Interval for Inactive Web Sessions Set a Timeout Interval for Inactive CLI Sessions
Pre-5.0.x	Secure Shell Key Encryption Configuration	Use Server Side Keys to Encrypt SSH Connections Append SSH Keys to User Accounts for Automated CLI Authentication
Pre-5.0.x	SSL Certificates for HTTPS Access	Upload a Custom SSL Certificate and Private Key to Oracle ILOM Obtain a Custom SSL Certificate and Private Key Using OpenSSL Toolkit Regenerate Self-Signed Default SSL Certificate Issued By Oracle
Pre-5.0.x	Banner Messages	Secure System Access With Login Banner
Pre-5.0.x	FIPS Compliance Encryption Support	Choosing Whether to Configure FIPS Mode At Deployment Unsupported Features When FIPS Mode Is Enabled Post Deployment Considerations for Securing User Access
Pre-5.0.x	Endpoint SSL Certificate behavior for ASR Notifications	Securing the Automatic Service Request (ASR) Endpoint Connection
Pre-5.0.x	SNMP Trap Notifications	Configure SNMP Management Access for Increased Security
Pre-5.0.x	Remote KVMS Encryption and Secure Protocols Remote KVMS Host Lock Access Remote KVMS Sessions Count	Using Remote KVMS Securely Lock Host Access Upon Exiting a KVMS Session Limit Viewable KVMS Sessions for Remote System Console Plus
Pre-5.0.x	The `servicetag` protocol, when in use, should be configured to use HTTPS and a passphrase.	Limit Viewable KVMS Sessions for Remote System Console Plus