1. Oracle ILOM Security Guide For Firmware Release 5.1.x
  2. Oracle ILOM Deployment Practices for Increasing Security
  3. Configuring Oracle ILOM Interfaces for Increased Security
  4. Configure the Web Interface for Increased Security
  5. Implementing Server Certificates to Prevent MITM Attacks

Implementing Server Certificates to Prevent MITM Attacks

As of firmware version 5.0.0, Oracle ILOM supports the ability to upload and store up to five trusted SSL server certificates. Oracle ILOM uses these certificates to prevent man-in-the-middle (MITM) attacks when uploading and downloading data to and from the Oracle ILOM SP using HTTPS. To ensure the validity of SSL server certificates on all HTTPS connections, Oracle ILOM fully authenticates each SSL server certificate by:

  • Matching the client SSL server certificate with the list of trusted SSL server certificates stored on the server SP.

  • Ensuring that the client SSL server certificate originated from the requested host server.

For additional information about how to configure and add SSL Server Certificates, see the following procedure.