Dell : How to install a custom issued SSL certificate on iDRAC

By | March 4, 2018

If you already have a certificate generated by a certificate authority (or maybe a wildcard certificate), you can use the following procedure to configure it on your iDRAC, so you can get rid of the browser security warning.

We will use the iDRAC “racadm” command line utility (if you do not have it already, you may get it from the Dell Web site, the easiest way would be using your server service tag, then downloads – you will find it in the OpenManage utilities or simply typing “racadm” in the download search field.)

Use the following commands for :

1. Upload the private key :

racadm -r <ip_address> -u root -p <password> sslkeyupload -t 1 -f  <path/to/certificate_private.key>

2. Upload the certificate :

racadm -r <ip_address> -u root -p <password> sslcertupload -t 1 -f <path/to/domain_certificate.crt>

3. Restart the iDRAC controller :

racadm -r <ip_address> -u root -p <password> racreset

NOTE : You may notice the following output while doing those commands, despite the certificate is valid and signed. In my case, it still worked as expected.

Security Alert: Certificate is invalid – Certificate is not signed by Trusted Third Party
Continuing execution. Use -S option for racadm to stop execution on certificate-related errors.
ERROR: An invalid certificate is uploaded.