Security guidelines
Learn how to secure your eBMC system.
IBM recommends that you use the following security guidelines for your eBMC system:
- Install and operate the eBMC system on a private network or public network that is behind a firewall.
- When you plug the eBMC system into the network, login to the default admin account of the eBMC system and set the password. You can complete this task by using the eBMC web-based Advanced System Management Interface (ASMI) GUI.
- You can create a separate account for each entity to access the eBMC system. Assign the appropriate role to each account. From the ASMI GUI, go to .
- Use a strong password for each account. From the ASMI GUI, go to .
- Keep the admin account usable for service calls.
- Keep the Intelligent Platform Management Interface (IPMI) service of the eBMC system in its default disabled state. The IPMI interface has security vulnerabilities and is deprecated. Alternatively, you can use the Redfish interface. From the ASMI GUI, go to Risks of using IPMI on IBM Power systems. . For more information, see
- Create an HTTPS server site-identity certificate and install it onto the eBMC system. From the ASMI GUI, go to .
- Verify that the following eBMC configuration and settings are correctly configured:
- Keep up with security bulletins and firmware updates. For more information, see https://www.ibm.com/mysupport.