Printable version

Drivers & software

* RECOMMENDED * Online ROM Flash Firmware Package - HPE Integrated Lights-Out 5

By downloading, you agree to the terms and conditions of the Hewlett Packard Enterprise Software License Agreement.
Note:  Some software requires a valid warranty, current Hewlett Packard Enterprise support contract, or a license fee.

Type: Firmware - Lights-Out Management
Version: 1.43(31 May 2019)
Operating System(s): OS Independent
VMware vSphere 6.0
VMware vSphere 6.5
VMware vSphere 6.7
File name: ilo5_143.fwpkg (16 MB)
This component provides updated iLO firmware that can be installed directly on supported Operating Systems. This component can also be used to obtain the firmware image for updating via iLO user interface, utilities, or through the scripting interface. Additionally, this component can be used with the HPE Smart Update Manager.

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 

Prerequisites:

Hewlett Packard Enterprise recommends the following or greater versions of iLO utilities
for best performance:

  • RESTful Interface Tool (iLOREST) 2.3
  • HPQLOCFG v5.2 
  • Lights-Out XML Scripting Sample bundle 5.10.0
  • HPONCFG Windows 5.2.0
  • HPONCFG Linux 5.3.0
  • LOCFG v5.10.0
  • HPLOMIG 5.2.0

  NOTE: Updated utilities and system libraries are required to support the iLO 
  HighSecurity, FIPS, and CNSA security states. The HPONCFG Windows utility 
  does not currently support the CNSA security state.


To ensure the integrity of your download, HPE recommends verifying your results with this SHA-256 Checksum value:

b105df6b4bd808d2f4388a3ca6007c8d81e6158c1e80455d2ee7ae73e4273371 ilo5_143.fwpkg

Reboot Requirement:
Reboot is not required after installation for updates to take effect and hardware stability to be maintained.


Installation:

To flash this firmware package, use the following iLOrest command.  See http://www.hpe.com/servers/resttool to download the latest version of the iLOrest tool.

localhost OS example:
ilorest flashfwpkg <file_name.fwpkg> 

remote example:
ilorest flashfwpkg <file_name.fwpkg> --url <iLO5_IP_Address> -u <iLO5_username> -p <iLO5_password>

This firmware package can also be installed with the latest version of Smart Update Manager (SUM).

Supplemental updates for supported ProLiant servers and options can be done by using SUM, which is found on the Service Pack for ProLiant (SPP) ISO.

  • Place the Service Pack for ProLiant on a USB key using the USB Key Creator Utility.
  • Place the desired firmware packages and components to be updated in the directory "\packages" on the USB key.

Update the firmware and software in the usual manner.


End User License Agreements:
HPE Software License Agreement v1


Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Important:

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)


Notes:

 

iLO 5 User Guide and Lights-Out Scripting Guide can also be found by following the links at:

http://www.hpe.com/go/ilo

Select your lights-out product, then support & documents, then manuals.
 

  • Check the online help for additional information about how to use features. 
    Online help can be accessed from within the browser web pages by clicking the question mark in the upper right-hand corner of each page.

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)

Version:2.14 (13 Feb 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Fixed the issue where PMBUS power supply is being detected when a Flex Slot is installed.
Enhancements

  • Support new Accelerators:
    • Xilinx Alveo U250
    • Xilinx Alveo U50
  • User can now define pre-caution threshold alert value for the inlet ambient sensor.

Version:2.12 (23 Jan 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Integrated Remote Console requires code to accommodate low power mode on AMD based system to work with the ROM on EU Lot 9 requirements
  • Incorrect IML messages occur when SAS/SATA drives are installed.
  • Spurious drive hot plug events occur when the server goes through a warm reset
  • In some cases, iLO tries to use an invalid SMBIOS handle from the ROM
Enhancements

  •  NVMe drives and open drive support, this includes additional robustness for device discovery and management. This helps to correct some iLO related timeout issues.

Version:2.10 (20 Dec 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • The iLO clock incorrectly changes when iLO is reset due to a configuration change, firmware update, or a cause other than system power loss.
  • System GPUs might be listed without GPU version information.
  • Incorrect power consumption information is displayed in RIBCL output and the Active Health System Log.
  • If the domain name system is unavailable, an HPE ProLiant Gen10 Server might stop responding for up to three minutes during startup.
  • Fixed an issue where the iLO 5 webserver may becoming unresponsive when applying OV profile with certain models of NVME drives present.

Security Fixes: 

Security best practices:

  •   For the latest information about security best practices, see the HPE Integrated Lights-Out Security Technology Brief at the following website: http://www.hpe.com/support/ilo-docs.
Enhancements

This version adds support for the following features and enhancements:

  • Added a security log that lists security events recorded by the iLO firmware.
  • Enhanced Secure Start verification of CPLD on Gen10 Plus servers.
  • Updated menu path and feature names for the Performance Management features. The features that were accessed through the Intelligent System Tuning menu can now be accessed through the Performance menu.
  • Embedded remote support over IPv6.
  • New alert for recovery events.
  • SUM/SUT support on servers using the High Security, FIPS, or CNSA security states.
  • Support for staging firmware to update direct-attached hard drives through the UEFI System Utilities.
  • Ability to import and export drive bay mapping information.
  • Daily firmware flash limit, to protect iLO, ROM, and CPLD from repeated flashing attacks.
  • Performance data logging in a new Active Health System record.
  • Increased the certificate size limit from 4096 to 8096.
  • When iLO is set to the factory default settings, Virtual NIC is enabled by default.
  • The following System Diagnostics features are supported on Gen10 Plus servers: 
    • Booting to safe mode—Allows you to boot the server with a safe minimum configuration.
    • Booting to intelligent diagnostics mode—Allows the system to automatically diagnose a boot failure during POST.
    • Restoring the default manufacturing settings—Resets all BIOS configuration settings to their default manufacturing values. This process deletes all UEFI nonvolatile variables, such as boot configuration, Secure Boot security keys (if Secure Boot is enabled), and configured date and time settings.
    • Restoring the default system settings—Resets all BIOS configuration settings to their default values and restarts the server. This option preserves some UEFI settings.
  • Modified text of iLO time zone selections to match system ROM time zone selections. For backward compatibility, either previous time zone selection text or the new text can be used in APIs to set the time zone.

Version:1.46 (16 Aug 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Fixed potential problem of Gen10 Synergy server NIC port being down after complete Synergy frame power cycle.

Enhancements

None


Version:1.45 (3 Jul 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


- Fixed problem introduced in iLO 5 v1.43 which could cause an HTTP connection to be refused under high activity of REST calls. 


Version:1.43 (31 May 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

Enhancements

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 


Version:1.40(a) (6 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • User interface fixes and improvements.
  • The text “R&D Server” is incorrectly displayed in the iLO web interface navigation pane.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.40 (4 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

The following issues are resolved in this version:

  • User interface fixes and improvements.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

 

Enhancements

REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.39 (14 Dec 2018)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Fixed issue where pressing UID button on Gen10 server can occasionally cause server to power off
Enhancements

  • Added Downgrade Policy setting to Security->Access Settings page.

Version:1.37 (26 Oct 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

 - Fix for "VGA Port Detect Override" to show video in all cases where monitors are installed.
 - Fix for intermittent file upload failures.
 - Fix for issues with Virtual Media in FIPS mode.
 - Fix for issues with simultaneous use of virtual DVD and floppy in FIPS mode.
 - Fix for USB floppy when used with ESXi 7 installation driver.
 - Fixed potential problem where iLO could continue to interact with system memory after it has been released by hpilo module.
 - Fix for erroneous reporting of disk drive overheating.
 - Fix for intermittent iLO communication error on HPE Apollo 2000. 
 - Fix for potential RESTful API errors at boot with multiple NICs installed.
 - Fix to add iLO 5 NIC information into anonymous XML response.
 - Fixed false errors showing link lost on NICs when link never seen in IPMI.

SECURITY FIXES: 

 - HPESBHF03894 - HPE iLO5 Local Bypass of Security Restrictions in Firmware Update

 

Enhancements

This version adds support for the following features and enhancements:

 - Ability to backup and to restore a copy of the iLO configuration settings to/from iLO non-volatile memory via REST calls.  
 


Version:1.35 (16 Aug 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Type: Firmware - Lights-Out Management
Version: 1.43(31 May 2019)
Operating System(s):
OS Independent
VMware vSphere 6.0
VMware vSphere 6.5
VMware vSphere 6.7

Description

This component provides updated iLO firmware that can be installed directly on supported Operating Systems. This component can also be used to obtain the firmware image for updating via iLO user interface, utilities, or through the scripting interface. Additionally, this component can be used with the HPE Smart Update Manager.

Enhancements

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 

Installation Instructions

Prerequisites:

Hewlett Packard Enterprise recommends the following or greater versions of iLO utilities
for best performance:

  • RESTful Interface Tool (iLOREST) 2.3
  • HPQLOCFG v5.2 
  • Lights-Out XML Scripting Sample bundle 5.10.0
  • HPONCFG Windows 5.2.0
  • HPONCFG Linux 5.3.0
  • LOCFG v5.10.0
  • HPLOMIG 5.2.0

  NOTE: Updated utilities and system libraries are required to support the iLO 
  HighSecurity, FIPS, and CNSA security states. The HPONCFG Windows utility 
  does not currently support the CNSA security state.


To ensure the integrity of your download, HPE recommends verifying your results with this SHA-256 Checksum value:

b105df6b4bd808d2f4388a3ca6007c8d81e6158c1e80455d2ee7ae73e4273371 ilo5_143.fwpkg

Reboot Requirement:
Reboot is not required after installation for updates to take effect and hardware stability to be maintained.


Installation:

To flash this firmware package, use the following iLOrest command.  See http://www.hpe.com/servers/resttool to download the latest version of the iLOrest tool.

localhost OS example:
ilorest flashfwpkg <file_name.fwpkg> 

remote example:
ilorest flashfwpkg <file_name.fwpkg> --url <iLO5_IP_Address> -u <iLO5_username> -p <iLO5_password>

This firmware package can also be installed with the latest version of Smart Update Manager (SUM).

Supplemental updates for supported ProLiant servers and options can be done by using SUM, which is found on the Service Pack for ProLiant (SPP) ISO.

  • Place the Service Pack for ProLiant on a USB key using the USB Key Creator Utility.
  • Place the desired firmware packages and components to be updated in the directory "\packages" on the USB key.

Update the firmware and software in the usual manner.


Release Notes

End User License Agreements:
HPE Software License Agreement v1


Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Important:

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)


Notes:

 

iLO 5 User Guide and Lights-Out Scripting Guide can also be found by following the links at:

http://www.hpe.com/go/ilo

Select your lights-out product, then support & documents, then manuals.
 

  • Check the online help for additional information about how to use features. 
    Online help can be accessed from within the browser web pages by clicking the question mark in the upper right-hand corner of each page.

Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

Important

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)

Revision History

Version:2.14 (13 Feb 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Fixed the issue where PMBUS power supply is being detected when a Flex Slot is installed.
Enhancements

  • Support new Accelerators:
    • Xilinx Alveo U250
    • Xilinx Alveo U50
  • User can now define pre-caution threshold alert value for the inlet ambient sensor.

Version:2.12 (23 Jan 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Integrated Remote Console requires code to accommodate low power mode on AMD based system to work with the ROM on EU Lot 9 requirements
  • Incorrect IML messages occur when SAS/SATA drives are installed.
  • Spurious drive hot plug events occur when the server goes through a warm reset
  • In some cases, iLO tries to use an invalid SMBIOS handle from the ROM
Enhancements

  •  NVMe drives and open drive support, this includes additional robustness for device discovery and management. This helps to correct some iLO related timeout issues.

Version:2.10 (20 Dec 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • The iLO clock incorrectly changes when iLO is reset due to a configuration change, firmware update, or a cause other than system power loss.
  • System GPUs might be listed without GPU version information.
  • Incorrect power consumption information is displayed in RIBCL output and the Active Health System Log.
  • If the domain name system is unavailable, an HPE ProLiant Gen10 Server might stop responding for up to three minutes during startup.
  • Fixed an issue where the iLO 5 webserver may becoming unresponsive when applying OV profile with certain models of NVME drives present.

Security Fixes: 

Security best practices:

  •   For the latest information about security best practices, see the HPE Integrated Lights-Out Security Technology Brief at the following website: http://www.hpe.com/support/ilo-docs.
Enhancements

This version adds support for the following features and enhancements:

  • Added a security log that lists security events recorded by the iLO firmware.
  • Enhanced Secure Start verification of CPLD on Gen10 Plus servers.
  • Updated menu path and feature names for the Performance Management features. The features that were accessed through the Intelligent System Tuning menu can now be accessed through the Performance menu.
  • Embedded remote support over IPv6.
  • New alert for recovery events.
  • SUM/SUT support on servers using the High Security, FIPS, or CNSA security states.
  • Support for staging firmware to update direct-attached hard drives through the UEFI System Utilities.
  • Ability to import and export drive bay mapping information.
  • Daily firmware flash limit, to protect iLO, ROM, and CPLD from repeated flashing attacks.
  • Performance data logging in a new Active Health System record.
  • Increased the certificate size limit from 4096 to 8096.
  • When iLO is set to the factory default settings, Virtual NIC is enabled by default.
  • The following System Diagnostics features are supported on Gen10 Plus servers: 
    • Booting to safe mode—Allows you to boot the server with a safe minimum configuration.
    • Booting to intelligent diagnostics mode—Allows the system to automatically diagnose a boot failure during POST.
    • Restoring the default manufacturing settings—Resets all BIOS configuration settings to their default manufacturing values. This process deletes all UEFI nonvolatile variables, such as boot configuration, Secure Boot security keys (if Secure Boot is enabled), and configured date and time settings.
    • Restoring the default system settings—Resets all BIOS configuration settings to their default values and restarts the server. This option preserves some UEFI settings.
  • Modified text of iLO time zone selections to match system ROM time zone selections. For backward compatibility, either previous time zone selection text or the new text can be used in APIs to set the time zone.

Version:1.46 (16 Aug 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Fixed potential problem of Gen10 Synergy server NIC port being down after complete Synergy frame power cycle.

Enhancements

None


Version:1.45 (3 Jul 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


- Fixed problem introduced in iLO 5 v1.43 which could cause an HTTP connection to be refused under high activity of REST calls. 


Version:1.43 (31 May 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

Enhancements

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 


Version:1.40(a) (6 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • User interface fixes and improvements.
  • The text “R&D Server” is incorrectly displayed in the iLO web interface navigation pane.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.40 (4 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

The following issues are resolved in this version:

  • User interface fixes and improvements.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

 

Enhancements

REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.39 (14 Dec 2018)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Fixed issue where pressing UID button on Gen10 server can occasionally cause server to power off
Enhancements

  • Added Downgrade Policy setting to Security->Access Settings page.

Version:1.37 (26 Oct 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

 - Fix for "VGA Port Detect Override" to show video in all cases where monitors are installed.
 - Fix for intermittent file upload failures.
 - Fix for issues with Virtual Media in FIPS mode.
 - Fix for issues with simultaneous use of virtual DVD and floppy in FIPS mode.
 - Fix for USB floppy when used with ESXi 7 installation driver.
 - Fixed potential problem where iLO could continue to interact with system memory after it has been released by hpilo module.
 - Fix for erroneous reporting of disk drive overheating.
 - Fix for intermittent iLO communication error on HPE Apollo 2000. 
 - Fix for potential RESTful API errors at boot with multiple NICs installed.
 - Fix to add iLO 5 NIC information into anonymous XML response.
 - Fixed false errors showing link lost on NICs when link never seen in IPMI.

SECURITY FIXES: 

 - HPESBHF03894 - HPE iLO5 Local Bypass of Security Restrictions in Firmware Update

 

Enhancements

This version adds support for the following features and enhancements:

 - Ability to backup and to restore a copy of the iLO configuration settings to/from iLO non-volatile memory via REST calls.  
 


Version:1.35 (16 Aug 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Legal Disclaimer: Products sold prior to the November 1, 2015 separation of Hewlett-Packard Company into Hewlett Packard Enterprise Company and HP Inc. may have older product names and model numbers that differ from current models.