Nov 112012
Looking at a file (manuf_sign_cert.sh):
# This script is run on every iDRAC at manufacturing time.
# to create a certificate with a derived CN using the
# service tag so it can be authenticated by a provisioning server
# for zero touch deployment.
#
# Files used:
# 1) d_h_ssl_manuf.cnf
# 2) ROOTCAPK.PEM (loaded by mdiags via dynamic partition)
[…]
ENCRYPTED_CA_PRIV_KEY=”/tmp/MFGDRV/ROOTCAPK.PEM”
[…]
#decrypt the signing key
if ! openssl base64 -d -in $ENCRYPTED_CA_PRIV_KEY -out $CA_PRIV_KEY \
-pass pass:zrPhlYx
then
Nice password, Dell… now to find ROOTCAPK.PEM and I’ll be set….
Sorry, the comment form is closed at this time.