RE: [Ipmitool-devel] MD5 Algorithm

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Naban,
The Get Session Challenge is sent without Authentication. You have to
switch to the desired Authentication after the Get Session Challenge
(e.g. in the activate session command) and keep it.
=20
Since you are using the multisession capable LAN channel, you should use
only the=20
MD5 + Mulitsession
AuthCode =3D H(password + session ID + IPMI Message data + session_seq# =
+
password).
algorithm. The singlesession one is for channels which support only one
session at the time (e.g. IPMI over serial).=20
The activate session command is the first one for which you have to
provide a valid authcode. I would suggest you start with plain password
authentication (if your BMC supports this) to figure out how to set up a
session to the BMC and later switch to MD2/MD5. (supporting all possible
authentications is a good idea anyway)
=20
Best Regards & good luck
Holger

________________________________

	From: ipm...@li...
[mailto:ipm...@li...] On Behalf Of Padma
naban
	Sent: Friday, December 17, 2004 9:42 AM
	To: ipm...@li...
	Subject: [Ipmitool-devel] MD5 Algorithm
=09
=09
	Hai,
	We are developing a tool similar to IPMI Tool which work on
Windows Platform. I am planning to implement basic IPMI functions like
Remote Power UP, Power Down, Restart.
	we are having a Server with the following Configuration:
	Motherboard: Intel Entry Server Board SE7210TP1-E=20
	BMC chip : National Semiconductor PC87431 (supports IPMI 1.5
spec and MD5 Algorithm)
	NIC card: Intel PRO/1000 CT Network connection
	 I have Implemented the basic funtions but got struck with the
Security Algorithm
	Can any one help me in the Implementation of MD 5 Algorithm in
IPMI.
	I set the Password in the BMC (server) using Configuration
Utility CD.
	According to IPMI 1.5 Spec,
	MD5 + Mulitsession
	AuthCode =3D H(password + session ID[1] + IPMI Message data +
session_seq# + password).
	MD5 + singlesession
	AuthCode =3D H(password + temporary session ID + challenge string+
password)

	1.In the "Get session challenge Request" I set the
Authentication type as MD5 Algorithm(in IPMI request data as 0x2)
	2.In the  "Get session challenge Response" I got the Temporary
Session ID and Challenge  String
	3. Now in the "activate session request command" how to pass the
Value of Authcode? Should I change the hex value for "authentication
type in the Session Header" during the request.
	=20
	I intially didn't send any authcode but the BMC returned the
Hash Key of the Password which I have set in the server.=20
	I am not able to match the Hash key value returned by the BMC
with the Password I set in the BMC.
	Tell me how to solve this problem.

	Thanks,
	naban

=09
________________________________

	Do you Yahoo!?
	Take Yahoo! Mail with you!
<http://us.rd.yahoo.com/mail_us/taglines/mobile/*http://mobile.yahoo.com
/maildemo>  Get it on your mobile phone.