How to disable IPMI 2.0 on Exadata nodes
(Doc ID 2236124.1)
Last updated on OCTOBER 31, 2017
Oracle Exadata Storage Server Software - Version 22.214.171.124.0 and later Linux x86-64
This note will explain how to disable IPMI 2.0 and use secure IPMI TLS. The IPMI 2.0 specification supports an insecure authentication method as described in CVE-2013-4786. This protocol is used in ILOM on Exadata database nodes and cell servers. Starting in Exadata Storage Software version 126.96.36.199.0 and later, a newer version of ILOM firmware (3.2.8.x) includes a secure IPMI implementation (IPMI TLS Service and Interface).
188.8.131.52.0: This note is supported on X3-2 hardware and later, and X4-8 hardware and later. (3.2.8.x)
184.108.40.206.1: This note is supported on X3-2 hardware and later, and X2-8 hardware and later. (3.2.9.x) (updated 4/27/17)
220.127.116.11.3: This note is supported on X2-2 and V2 hardware and later, and X2-8 hardware and later. (3.2.10.x) (updated 10/31/17)
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!