Access Supermicro IPMI via HTTP?

Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.
Fritz

Fritz

Well-Known Member
Apr 6, 2015
3,386
1,387
113
70
Motherboard in question is a X12STL-iF. I have no need for HTTPS and the browser will not save the user name and password if I connect via https and of course I get the stupid "This Connection is Not Secure" message. The option to disable HTTPS is grayed out.
Anybody know how to deal with this?

TIA
 
N

nexox

Well-Known Member
May 3, 2023
673
278
63
I haven't found a way to enable basic http, but you can replace the https certs with legit ones, if it's worth it to go to the trouble of creating your own CA and adding it to your browser and all the other steps required there.
 
R

RolloZ170

Well-Known Member
Apr 24, 2016
5,369
1,615
113
Fritz said:
I get the stupid "This Connection is Not Secure" message
Click to expand...
any Router i.e. Fritz!Box is same. just accept and go further.
Since the supermicro's individual security certificate is unknown to third parties who issue such certificates, the Internet browser marks the HTTPS connection to the IPMI as not secure.
 
N

niekbergboer

Active Member
Jun 21, 2016
156
61
28
46
Switzerland
nexox said:
I haven't found a way to enable basic http, but you can replace the https certs with legit ones, if it's worth it to go to the trouble of creating your own CA and adding it to your browser and all the other steps required there.
Click to expand...
That is one way to go. Personally, I have Caddy handle the SSL certificates and HTTPS work. Then, I use Authelia to only have authorized people (me) be able to even access the IPMI web pages.
 
  • Like
Reactions: Fritz
Fritz

Fritz

Well-Known Member
Apr 6, 2015
3,386
1,387
113
70
niekbergboer said:
That is one way to go. Personally, I have Caddy handle the SSL certificates and HTTPS work. Then, I use Authelia to only have authorized people (me) be able to even access the IPMI web pages.
Click to expand...
Thanks. I'll check Caddy out.
 
Koop

Koop

Active Member
Jan 24, 2024
162
66
28
Doesn't really answer your question but can you use IPMIView instead maybe? Perhaps less annoying? ¯\_(ツ)_/¯
 
S

sko

Active Member
Jun 11, 2021
246
129
43
why don't you just add a permanent exception for that site in your browser? firefox should do this by default, so you only have to accept the self-signed cert once.

regarding the user credentials: use a password manager. its 2024...


edit:
I also wonder how often one might need the IPMI web interface/iKVM that this is an 'issue'. Usually you only need it for initial setup and troubleshooting, so pretty much never or very few times per year...
 
  • Like
Reactions: RolloZ170
You must log in or register to reply here.
Top Bottom