Ribbon ships the SBC 5400 pre-configured with the default IP address, “169.254.77.1” to facilitate out of the box access to the BMC web interface. Configure your PC/Laptop IP address to be on this network so that it can communicate with the SBC 5400 platform. To access the BMC web application, using an Ethernet crossover cable, connect the Field Service Port (FSP) to a PC Ethernet port configured for 100 Mbps (Full Duplex) with an IP Address in the same subnet (for example, 169.254.77.2 /24) and connect to the pre-configured IP address in a web browser.
To configure the BMC for remote access:
Enter "https://169.254.77.1" into a supported browser (Firefox or IE) to connect to the BMC GUI.
The SBC 5400 is delivered with sample self-signed X.509 certificates. Please be aware that even though these sample certificates will allow you to use HTTPS to access the SBC 5400 from BMC and EMA interfaces, using this protocol with the sample certificates is not a truly secure access method. If your organization requires a more secure access, see Generating PKI Certificates.
Log on to the SBC 5400 BMC GUI.
The SBC 5400 BMC main screen is displayed.
Click Configuration > Network tab.
The Network Settings screen is displayed.
Select Enable JViewer and/or Enable SSH options under the “Security” settings depending upon your security requirements. It is recommended to leave the Enable IPMI option disabled.
Enable IPMI is a service impacting operation. This reboots both the BMC and the host server. The changes to any of the three security items does not occur until the Save button is clicked.
Due to an IPMI vulnerability, Ribbon recommends not connecting the BMC Ethernet port to an external network unless the network is deemed well-protected.
[Reference: NIST National Vulnerability Database website]
Click Save.
Click Ok to reboot the BMC.
Once you click Save, the following warning message appears:
Click OK to proceed. A pop up window appears stating that the security configuration is successfully completed.
Connect the FSP of SBC 5400 to allow remote access of the BMC.
Once the real BMC address is configured, you cannot access the pre-configured BMC address. Clear the browser cache (browser-specific) and open a new browser session to reflect the changes.