Top
Author
Updated
22 Mar 2024Form Number
LP1260PDF size
63 pages, 1.5 MBSubscribed to LP1260.
Thank you for your feedback.
Abstract
This paper provides guidance to securely deploy Lenovo® servers and management applications within an organization. For servers, it focuses on security hardening of ThinkSystem™ servers, but the guidance can be applied to other servers as well. It also focuses on the primary applications used to manage Lenovo ThinkSystem servers such as Lenovo XClarity™ Controller and Lenovo XClarity Administrator. The paper provides guidance and recommendations for configuring the servers and applications, so they are secure and hardened.
This paper is targeted at individuals responsible for the security of servers and applications used to manage them. Readers should be familiar with ThinkSystem Server configuration using the F1-System Setup menus or OneCLI and the Lenovo management software used to manage the ThinkSystem server.
Table of Contents
Introduction
Hardening UEFI
Hardening Lenovo XClarity Controller
Hardening Lenovo XClarity Administrator
Hardening Lenovo XClarity Orchestrator
Hardening Chassis Management Module
Hardening System Management Module
Hardening Fan and Power Controller
To view the document, click the Download PDF button.
Change History
Changes in the March 22, 2024 update:
- Added a recommendation about storing your passwords:
- “Set an administrator password” on page 9
- “Set a Power-On Password” on page 10
- “Change the Default Account Username and Password” on page 25
Configure and Buy
Please select a locale
Full Change History
Course Detail
Employees Only Content
The content in this document with a is only visible to employees who are logged in. Logon using your Lenovo ITcode and password via Lenovo single-signon (SSO).
The owner of the document has determined that this content is classified as Lenovo Internal and should not be normally be made available to people who are not employees or contractors. This includes partners, customers, and competitors. The reasons may vary and you should reach out to the authors of the document for clarification, if needed. Be cautious about sharing this content with others as it may contain sensitive information.
Any visitor to the Lenovo Press web site who is not logged on will not be able to see this employee-only content. This content is excluded from search engine indexes and will not appear in any search results.
For all users, including logged-in employees, this employee-only content does not appear in the PDF version of this document.
This functionality is cookie based. The web site will normally remember your login state between browser sessions, however, if you clear cookies at the end of a session or work in an Incognito/Private browser window, then you will need to log in each time.
If you have any questions about this feature of the Lenovo Press web, please email David Watts at [email protected].
