Automate disabling of IPMI over LAN access on HPE iLO

This article will describe how you can disable the IPMI over LAN access on HPE iLO.

The IPMI protocol can present a security vulnerability where the authentication process for IPMI requires a server to send a hash of a user password to the client before authentication. This is not a new vulnerability and since this is a part of the specification of the protocol there is no fix for it besides disabling it or accepting it.

Note that iLO versions 2, 3 and 4 have the IPMI over LAN access enabled by default whereas iLO version 5 has disabled this by default. ...  continue reading