I've got some servers with iDRAC7 Enterprise and I want to add my existing wildcard SSL certificate for my domain so that when I load the iDRAC webpage I get a valid certificate.
I've tried the "Upload Server Certificate" option but I can't seem to find the required format. If this was possible I would assume the format would be PEM or PKCS12, something that included the key as well as the certificate. And allowed intermediate certificates as well, but I can't seem to figure it out.
The other option that comes to mind is that IDRAC7 just doesn't support using an existing certificate, and you have to generate a new one, using its built in key, but that seems like a useless feature.
Edit:
When I try to upload a PEM file that contains: key/cert/intermediate certs I get the following error: "RAC0508: An unexpected error occured. Wait for a few minutes and refresh the page. If the problem persists, contact service provider."
So, is it possible to upload an existing certificate to a server with iDRAC7, and if so how?
Best Answer
After giving up a few times I finally figured out how to upload an SSL certificate with the RACADM command:
After running the second command, the server rebooted, iDRAC web interface was down for a minute, but when it came back, it was using my custom SSL certificate.
This page should tell you how to obtain RACADM if you don't already have it.
If you run it (as an administrator account) on the server you are trying to modify, you can leave off the -r and IP parameters. This is important if you are using iDRAC Express which does not allow remote RACADM access.
NOTE: If you've changed the HTTPS port of your iDRAC interface, you will need to specify :, As RACADM appears to use the HTTPS port for remote access.