Access DRAC 5 console from CentOS 7 with icedtea-web

Many times we had trouble accessing the discontinued DRAC 5 from older generation Dell PowerEdge servers. Needed Internet Explorer 7 with specific Java installed and strange ActiveX setup.
What about accessing that console from Linux?

Here comes icedtea-web to help.

Install icedtea

yum -y install icedtea-web

 

Adjust Java security

Altering java.security is needed because DRAC 5 uses older security vulnerable alagorithms.

vi /usr/lib/jvm/java-1.7.0-openjdk-1.7.0.121-2.6.8.0.el7_3.x86_64/jre/lib/security/java.security

And change the following 2 lines:

jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.certpath.disabledAlgorithms=MD2, DSA, RSA keySize < 2048

into

jdk.tls.disabledAlgorithms=
jdk.certpath.disabledAlgorithms=
Edit javaws.itweb

vi /usr/bin/javaws.itweb

And make sure you have these 2 lines matching the “right” Java (the one with security altered)

JAVA=/usr/lib/jvm/java-1.7.0-openjdk-1.7.0.121-2.6.8.0.el7_3.x86_64/jre/bin/java
CP=/usr/lib/jvm/java-1.7.0-openjdk-1.7.0.121-2.6.8.0.el7_3.x86_64/jre/lib/rt.jar:/usr/lib/jvm/java-1.7.0-openjdk-1.7.0.121-2.6.8.0.el7_3.x86_64/jre/lib/jfxrt.jar

 

DRAC 5 certificate import

Via browser download Dell Drac 5 default certificate and import into javaws

itweb-settings.itweb

Click Certificates -> User -> Import -> ~/Downloads/drac5.cert

Click Cache -> View Files -> Purge -> Done -> Apply -> OK

 

Open the console and start working

javaws.itweb Downloads/vkvm.jnlp

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s