1. Oracle ILOM Security Guide For Firmware Release 5.1.x
  2. Oracle ILOM Deployment Practices for Increasing Security
  3. Configuring Oracle ILOM Interfaces for Increased Security
  4. Configure IPMI Management Access for Increased Security
  5. IPMI 2.0 Authentication Cypher Suite Support

IPMI 2.0 Authentication Cypher Suite Support

Note:

For IPMI v2.0 configuration planning purposes, see Deprecation Notice for IPMI 2.0 Management Service in

The authentication, confidentiality, and integrity checks in IPMI version 2.0 are supported through cipher suites. These cipher suites use the RMCP+ Authenticated Key-Exchange Protocol as described in the IPMI 2.0 specification.

Oracle ILOM supports the following cipher suite key algorithms for establishing IPMI 2.0 sessions between the client and the server.

  • Cipher Suite 2 – Cipher suite 2 uses both authentication and integrity algorithms.

  • Cipher Suite 3 – Cipher suite 3 uses all three algorithms for authentication, confidentiality, and integrity.

    Note:

    To ensure all IPMI 2.0 traffic is encrypted, Oracle ILOM does not implement support for IPMI 2.0 Cipher Type 0 (unencrypted mode of operation).