One of the early requests I had when I started working where I do was to “get rid of the certificate warnings” when signing into iLOs. Up until a few months back this was not possible due to iLO’s only understanding SSL Certificates for short hosts as opposed to FQDNs.
When the firmware was updated to support FQDN SSL Certificates, I was now able to start looking into getting all the certificates signed by our internal Microsoft Certificate Services CA. However there was no way I was going to manually configure 200+ interfaces.
So I wrote a script, and it is now available for all.
Please view the readme file – it explains a little bit more some of the knowledge of the script.
Of note, please be aware that the script will attempt to rename your iLO system name and domain based on the information you supply so that a matching certificate can be created. This script will also fail if your iLO device’s network configuration is obtained via DHCP.
As always, the script is supplied as-is with no liability accepted, but if it’s broken, let me know and I will look into it.