Printable version

Drivers & software

* RECOMMENDED * Online ROM Flash Component for Windows x64 - HPE Integrated Lights-Out 5

By downloading, you agree to the terms and conditions of the Hewlett Packard Enterprise Software License Agreement.
Note:  Some software requires a valid warranty, current Hewlett Packard Enterprise support contract, or a license fee.

Type: Firmware - Lights-Out Management
Version: 2.31(20 Oct 2020)
Operating System(s): Microsoft Windows Server 2012
Microsoft Windows Server 2012 Essentials
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Multi-part download
File name: cp044397.exe (33 MB)
File name: cp044397_part1.compsig (2.0 KB)
File name: cp044397_part2.compsig (2.0 KB)
This component provides and installs an updated version of firmware for the iLO 5 Management Processor allowing for continued management support of your Server.

  • Ability to read DIMM serial number using REST API
  • Enabled support for below GPUs: 
    • NVIDIA A100 HGX x4 GPU Air Cooled Baseboard  
    • NVIDIA A100 HGX x8 GPU Air FIO Baseboard  
    • AMD Instinct MI100 PCIE Accelerator
  • New IPMI sensors added for Power Supply Input Power(PS Input), Power Supply Input Voltage(Volt_In), Power Supply Output Voltage(Volt_Out), Power Supply Input Current(Curr_In), Power Supply Output Current(Curr_Out)

Prerequisites:

Hewlett Packard Enterprise recommends the following or greater versions of iLO utilities
for best performance:

  • RESTful Interface Tool (iLOREST) 2.3
  • HPQLOCFG v5.2 
  • Lights-Out XML Scripting Sample bundle 5.10.0
  • HPONCFG Windows 5.2.0
  • HPONCFG Linux 5.3.0
  • LOCFG v5.10.0
  • HPLOMIG 5.2.0

  NOTE: Updated utilities and system libraries are required to support the iLO 
  HighSecurity, FIPS, and CNSA security states. The HPONCFG Windows utility 
  does not currently support the CNSA security state.


To ensure the integrity of your download, HPE recommends verifying your results with the following SHA-256 Checksum values:

011c0b5f93450bd1ad6b8283b1e719205dbf73f99b46cd1d267c3fb561a96bd3 cp044397_part1.compsig
9bfe4e8c4171df3991ce34c7c4d6fae7eb08641c917a4042f6ef1bb2a1774d06 cp044397.exe
2a1d9af58b55e4f3e5fdc5917792a6d0b3cf2b08f27f503d04062cf0521801ff cp044397_part2.compsig

Reboot Requirement:
Reboot is not required after installation for updates to take effect and hardware stability to be maintained.


Installation:

To update to iLO 5 version 2.31 or later, you must have a minimum iLO 5 version of 1.48

Install the firmware using one of these options:

  • Run the Component on the host to be updated.
    The component will update the iLO 5 firmware and reset the iLO 5 processor.
     
  • Extract the firmware from the component.  This will place the firmware image file, iLO5_yyy.bin (where yyy represents the firmware version) in the target directory.  You now have these options:
    • Login to iLO 5, navigate to the Update Firmware page, and update the firmware from there.
    • Use the HPE Lights-Out Configuration Utility, and RIBCL/XML scripts to update iLO 5 across the network.
    • Use the HPE Online Lights-Out Configuration utility, HPONCFG, and RIBCL/XML scripts to update iLO 5 from the supported host OS.
    • Use the Directory Migration Utility, contained in the HPE Directories support for Management Processors,  The Windows utility supports network discovery of lights-out processors, import/export, as well as bulk firmware update, and does not require directory migration.

End User License Agreements:
HPE Software License Agreement v1
Hewlett-Packard End User License Agreement


Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Important:

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)


Notes:

 

iLO 5 User Guide and Lights-Out Scripting Guide can also be found by following the links at:

http://www.hpe.com/go/ilo

Select your lights-out product, then support & documents, then manuals.
 

  • Check the online help for additional information about how to use features. 
    Online help can be accessed from within the browser web pages by clicking the question mark in the upper right-hand corner of each page.

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • iLO may fail to detect NVMe controllers during power cycle.
  • Firmware version information may not displayed when the server has more than 8 GPUs
  • iLO may reset after FWPKG/PLDM update and coldboot
  • IE and SPS Firmware updates may fail on Gen10 Plus servers 
  • Remote Syslog is made to adhere to RFC 5424 for Unstructured data format    
  • On VSP performing ‘cat’ or ‘head’ or 'tail' command on a file that contains some embedded NULL characters hangs the VSP or trims the file after the NULL character
  • Inaccurate Memory Sensor status reported in the vSphere web client for HPE ProLiant Gen10 and Gen10 Plus servers running VMware ESXi 6.5/6.7/7.0 (Refer to Customer Advisory)

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)

Version:2.31 (20 Oct 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • iLO may fail to detect NVMe controllers during power cycle.
  • Firmware version information may not displayed when the server has more than 8 GPUs
  • iLO may reset after FWPKG/PLDM update and coldboot
  • IE and SPS Firmware updates may fail on Gen10 Plus servers 
  • Remote Syslog is made to adhere to RFC 5424 for Unstructured data format    
  • On VSP performing ‘cat’ or ‘head’ or 'tail' command on a file that contains some embedded NULL characters hangs the VSP or trims the file after the NULL character
  • Inaccurate Memory Sensor status reported in the vSphere web client for HPE ProLiant Gen10 and Gen10 Plus servers running VMware ESXi 6.5/6.7/7.0 (Refer to Customer Advisory)
Enhancements

  • Ability to read DIMM serial number using REST API
  • Enabled support for below GPUs: 
    • NVIDIA A100 HGX x4 GPU Air Cooled Baseboard  
    • NVIDIA A100 HGX x8 GPU Air FIO Baseboard  
    • AMD Instinct MI100 PCIE Accelerator
  • New IPMI sensors added for Power Supply Input Power(PS Input), Power Supply Input Voltage(Volt_In), Power Supply Output Voltage(Volt_Out), Power Supply Input Current(Curr_In), Power Supply Output Current(Curr_Out)

Version:2.30(a) (20 Oct 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


iLO 5 version 2.30(a) was released adding HPE ProLiant m750 server to the supported servers. The update does not affect the firmware functionality. If version 2.30 was previously deployed to target device, then it is not necessary to update to version 2.30(a)

Enhancements

Added HPE ProLiant m750 Server to the supported server list.


Version:2.30 (4 Sep 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Ripple20 vulnerabilities might affect the TCP/IP stack.
  • Synergy compute modules do not power up after One-button secure erase completes.
  • SPS firmware updates initiated through the iLO Firmware & OS Software pages might fail.
  • C-Class blades do not complete FRU discovery.
  • During central connect Remote Support registration, an error message is not displayed when a  required field is blank.
  • The Virtual NIC feature intermittently fails to provide an IP address to a host with SUSE Linux Enterprise Server 15.
  • Zero Sign In login fails when Kerberos authentication is configured for a large number of groups.
  • When iLO is set to the factory default settings on a fully populated NVDIMM configuration, iLO may lose CHIF communication.
  • DCi compliant Network Adapters under un-managed network configuration, reset to defaults on cold boot.
  • External provider registration may fail after de-registration and multiple server reboots.

Known Issue:

  • Memory sensor status getting reported in the vSphere web client may not be accurate for HPE ProLiant Gen10 and Gen 10 Plus servers running VMware ESXi 6.5/6.7/7.0 and HPE Integrated Lights-Out 5 (iLO 5) firmware version 2.30. It is recommended to use IPMI commands over LAN or iLO GUI memory information page for actual memory health/sensor status.
Enhancements

  • MCTP now addresses the iLO false alarm "device/adapter not responsive" issue.
  • Shutdown by virtual button press is included in the iLO enhanced reset cause.
  • Support for initiating the One-button secure erase process from the iLO web interface Lifecycle Management - Decommission page.
  • User account roles provide predefined privilege sets or allow you to define a custom set.
  • New HTML5 remote console modes: Standalone mode and New Window mode.
  • Virtual power button to power NVMe drives on and off. You can access this feature from the Physical Drive Details pane on the Storage Information page.
  • Configuration of Minimum Fan speed using iLO interfaces.
  • Users can view and modify the System thermal configuration settings using iLO interfaces..
  • PLDM firmware update support for NIC and storage option cards.
  • New REST alerts for Auto Heal and Safe Mode.
  • Enabled the iLO webserver to identify the source of request as Host over Virtual NIC.
  • Read support for RDE-enabled devices.
  • Support for flashing Universal FWPKG 2.0 images.
  • Power reading support for Edgeline 8000 systems.
  • Drive Indicator LED - 'Lit' and 'Off' state support for U.2/UBM1/UBM3 with NVMe direct attached storage.
  • When iLO is set to the factory default settings, Virtual NIC is disabled by default.
  • User can now configure iLO to avoid access over an HTTP connection

Version:2.19 (18 Aug 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Direct attached NVMe drives may go missing in the iLO Web Page after random server power cycle.
Enhancements

  • None

Version:2.18 (10 Jul 2020)
Fixes

Upgrade Requirement:
Critical - HPE requires users update to this version immediately.


  • Potential Ripple20 vulnerabilities affecting the TCP/IP stack

To learn more about Ripple Vulnerabilties please click here.

Enhancements

  • None

Version:2.16 (8 Jun 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • HPE SimpliVity Accelerator disappear from the thermal sensor data after iLO firmware update.
  • Xilinx U50 cards getting over heat due to wrong thermal limits on iLO 5 v2.15
  • Unable to set HPE m750 Blade Server's Asset Tag through Redfish method.
  • iLO authentication with CM2 credential through Redfish fails frequently with more number of nodes installed.
  • Insight Online shows CPU2 Status as UNKNOWN for HPE ProLiant DL360 Gen10 Servers, while iLO GUI shows CPU2 status as OK.
  • Incorrect IML message IDs are logged which prevents the AMS service from logging those messages to OS syslog.
Enhancements

  • Enabled support for Pensando Distributed Services Platform DSC-25 10/25Gb 2-port SFP28 Card.
  • Enabled support for Pensando Distributed Services Platform for HPE iLO Sideband Management Adaptive LOM Module.
  • Added Redfish property for setting the Server to remain Power OFF after thermal shutdown (Critical Temperature threshold exceeded) 
  • Allow Power Regulator Mode management in Apollo platforms without an iLO Advanced license.

Version:2.15 (29 Apr 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Some of the fans in Apollo XL225n Gen10 Plus Servers show a speed greater than 100% in the iLO web interface.
  • The HPE Synergy 3820C 10/20Gb CNA loses flexed sub-ports after a cold boot or E-fuse reset.
  • Updated the thermal parameters for the Xilinx U50 GPU.
  • iLO is temporarily unresponsive or iLO resets on HPE Gen10 servers and HPE Synergy Gen10 compute modules running HPE Infosight.
  • When you query for Software Inventory details, the RESTful Interface Tool 3.0 (part of SUM 8.5.5) does not fetch the "Microchip-smartpqi" driver installed on ESXi7.0.
Enhancements

  • Users can now restore the last power state after a power outage on Synergy compute modules.
  • Apollo servers now allow you to use the iLO RESTful API to enable or disable power regulation mode (Global settings).
  • Apollo servers now allow you to switch between power regulation modes (iLO Standard license). User Configurable Mode is available only with an iLO Advanced license.

Version:2.14 (13 Feb 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Fixed the issue where PMBUS power supply is being detected when a Flex Slot is installed.
Enhancements

  • Support new Accelerators:
    • Xilinx Alveo U250
    • Xilinx Alveo U50
  • User can now define pre-caution threshold alert value for the inlet ambient sensor.

Version:2.12 (23 Jan 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Integrated Remote Console requires code to accommodate low power mode on AMD based system to work with the ROM on EU Lot 9 requirements
  • Incorrect IML messages occur when SAS/SATA drives are installed.
  • Spurious drive hot plug events occur when the server goes through a warm reset
  • In some cases, iLO tries to use an invalid SMBIOS handle from the ROM
  • Certain NIC devices would stop responding when FRU data was read. iLO implements new code to better handle this condition.
Enhancements

  •  NVMe drives and open drive support, this includes additional robustness for device discovery and management. This helps to correct some iLO related timeout issues.

Version:2.10 (20 Dec 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • The iLO clock incorrectly changes when iLO is reset due to a configuration change, firmware update, or a cause other than system power loss.
  • System GPUs might be listed without GPU version information.
  • Incorrect power consumption information is displayed in RIBCL output and the Active Health System Log.
  • If the domain name system is unavailable, an HPE ProLiant Gen10 Server might stop responding for up to three minutes during startup.
  • Fixed an issue where the iLO 5 webserver may becoming unresponsive when applying OV profile with certain models of NVME drives present.

Security Fixes: 

Security best practices:

  •   For the latest information about security best practices, see the HPE Integrated Lights-Out Security Technology Brief at the following website: http://www.hpe.com/support/ilo-docs.
Enhancements

This version adds support for the following features and enhancements:

  • Added a security log that lists security events recorded by the iLO firmware.
  • Enhanced Secure Start verification of CPLD on Gen10 Plus servers.
  • Updated menu path and feature names for the Performance Management features. The features that were accessed through the Intelligent System Tuning menu can now be accessed through the Performance menu.
  • Embedded remote support over IPv6.
  • New alert for recovery events.
  • SUM/SUT support on servers using the High Security, FIPS, or CNSA security states.
  • Support for staging firmware to update direct-attached hard drives through the UEFI System Utilities.
  • Ability to import and export drive bay mapping information.
  • Daily firmware flash limit, to protect iLO, ROM, and CPLD from repeated flashing attacks.
  • Performance data logging in a new Active Health System record.
  • Increased the certificate size limit from 4096 to 8096.
  • When iLO is set to the factory default settings, Virtual NIC is enabled by default.
  • The following System Diagnostics features are supported on Gen10 Plus servers: 
    • Booting to safe mode—Allows you to boot the server with a safe minimum configuration.
    • Booting to intelligent diagnostics mode—Allows the system to automatically diagnose a boot failure during POST.
    • Restoring the default manufacturing settings—Resets all BIOS configuration settings to their default manufacturing values. This process deletes all UEFI nonvolatile variables, such as boot configuration, Secure Boot security keys (if Secure Boot is enabled), and configured date and time settings.
    • Restoring the default system settings—Resets all BIOS configuration settings to their default values and restarts the server. This option preserves some UEFI settings.
  • Modified text of iLO time zone selections to match system ROM time zone selections. For backward compatibility, either previous time zone selection text or the new text can be used in APIs to set the time zone.

Version:1.48(a) (1 Jun 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Implemented the set server info command for all the DCi supporting options in previous versions of iLO 5 which may reset NIC settings during iLO 5 update.

Version:1.46 (16 Aug 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Fixed potential problem of Gen10 Synergy server NIC port being down after complete Synergy frame power cycle.

Enhancements

None


Version:1.45 (3 Jul 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


- Fixed problem introduced in iLO 5 v1.43 which could cause an HTTP connection to be refused under high activity of REST calls. 


Version:1.43 (31 May 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

Enhancements

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 


Version:1.40(a) (6 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • User interface fixes and improvements.
  • The text “R&D Server” is incorrectly displayed in the iLO web interface navigation pane.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.40 (4 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

The following issues are resolved in this version:

  • User interface fixes and improvements.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

 

Enhancements

REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.39 (14 Dec 2018)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Fixed issue where pressing UID button on Gen10 server can occasionally cause server to power off
Enhancements

  • Added Downgrade Policy setting to Security->Access Settings page.

Version:1.37 (26 Oct 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

 - Fix for "VGA Port Detect Override" to show video in all cases where monitors are installed.
 - Fix for intermittent file upload failures.
 - Fix for issues with Virtual Media in FIPS mode.
 - Fix for issues with simultaneous use of virtual DVD and floppy in FIPS mode.
 - Fix for USB floppy when used with ESXi 7 installation driver.
 - Fixed potential problem where iLO could continue to interact with system memory after it has been released by hpilo module.
 - Fix for erroneous reporting of disk drive overheating.
 - Fix for intermittent iLO communication error on HPE Apollo 2000. 
 - Fix for potential RESTful API errors at boot with multiple NICs installed.
 - Fix to add iLO 5 NIC information into anonymous XML response.
 - Fixed false errors showing link lost on NICs when link never seen in IPMI.

SECURITY FIXES: 

 - HPESBHF03894 - HPE iLO5 Local Bypass of Security Restrictions in Firmware Update

 

Enhancements

This version adds support for the following features and enhancements:

 - Ability to backup and to restore a copy of the iLO configuration settings to/from iLO non-volatile memory via REST calls.  
 


Version:1.35(a) (20 Sep 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


iLO 5 version 1.35(a) was released with a packaging update.  The update does not affect the firmware functionality. If version 1.35 was previously deployed to target device, then it is not necessary to update to version 1.35(a).

The following issues are resolved in iLO 5 version 1.35:

The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Version:1.35 (16 Aug 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Version:1.30 (4 Jun 2018)
Fixes

Upgrade Requirement:
Critical - HPE requires users update to this version immediately.

Install this update to take advantage of significant improvements to the write algorithm for the embedded 4 GB non-volatile flash memory (also known as the NAND). These improvements increase the NAND lifespan.


The following issues are resolved in this version:

  • Compute modules do not power on after restoring power to Frame.
  • When you use iLO Virtual Media to install an operating system, installation might fail when iLO is configured to use the Shared Network Port.
  • In rare cases, a server runs out of available SSH sessions because the sessions are not reclaimed when a client disconnects.
  • iLO 5 unexpectedly restored itself to the factory default settings when a user did not initiate the process.
  • When Auto Power-On is set to Always Power On or Restore Last Power State, the server might not power on after a cold reset.
  • iLO cannot display the HP Ethernet 1Gb 4-port 331i Adapter MAC address.
  • NVMe drive model numbers are incorrect or inconsistent.
  • Clearing the oemHPE_usercntxt## from the command line clears the value, even though error messages might be displayed.
  • Fixed Single Sign-On when in CNSA mode.
  • Added support for RSA-PSS certificate signatures.

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • Added support for new platforms: 
    • HPE ProLiant DL20 Gen10 Server
    • HPE ProLiant ML10 Gen10 Server  
  • Improved HTML5 IRC performance, including:
    • Added virtual keys to improve the ability to send keyboard actions to the server.
    • Added the ability to configure the keyboard layout in the HTML5 IRC
    • Added Virtual Media support for local ISO and IMG files.
  • Firmware and software update enhancements:
    • iLO users can now view, create, and delete maintenance windows.
    • A new check box allows users to clear the installation queue when initiating an install set.
    • Updated the iLO RESTful API and iLO web interface to report when a reboot is required after an installation task completes.
  • Each time iLO starts, it backs up the iLO configuration to the nonvolatile flash memory (NAND). If the SRAM is erased, the configuration is automatically restored.
  • Added iLO web interface support for Density Optimized Drive Zoning features on supported HPE Apollo products.
  • AlertMail now supports SSL (TLS) for secure email.
  • AlertMail now supports external SMTP mail servers.
  • Added an SNMP trap for when all host NICs are down.
  • Updated to OpenSSL-1.0.2u-fips-2.0.16.
  • Added the list of open source licenses to the login page.
  • Added an SNMP trap for when iLO is reset by IPMI watchdog.
  • Added Intelligent System Tuning features to the iLO web interface. From the iLO web interface, you can view the configured settings, configure Jitter Smoothing, and launch Intelligent Provisioning to configure Workload Matching and Core Boosting.
  • Improved Active Health System logging efficiency to prolong the NAND lifespan.
  • Added iLO health status to the Overview page. If the status is Degraded, this value is also displayed on the Login page.
  • Re-signed the Java IRC to extend the certificate expiration date.
  • Re-signed the .NET IRC to extend the certificate expiration date.
    • With this enhancement, the .NET IRC requires version 4.5.1 or later of the .NET Framework.
  • Added the ability to remove an SSL certificate and regenerate the iLO self-signed certificate.
    • Hewlett Packard Enterprise recommends that you install a CA signed certificate.

Version:1.20 (9 Feb 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • NVMe drive details are not displayed in the iLO web interface for HPE ProLiant XL190r Gen10 servers.
  • The system BIOS version is missing in AlertMail messages.
  • The IPMI Get Chassis Capabilities and Get Chassis Status commands do not reflect the Chassis Intrusion state.
  • Virtual Media devices are inaccessible when two virtual devices are mounted simultaneously.
  • Patched configuration file system.
  • The IPMI pre-watchdog-timeout interrupt does not occur when no watchdog action is selected.
  • Intermittent loss of network interface card (NIC) and drive detection (P408e-m controller) by BIOS on system boot up of HPE ProLiant BL460c servers.
Enhancements

This version adds support for the following features and enhancements:

  • HTML5 Remote Console
  • Shared Network Port IPv6 support
  • Shared Network Port iLO Federation support
  • Ability to associate an SNMP alert destination with an SNMPv1 or SNMPv3 user
  • Enhanced firmware and software update interface:
    • New Add to Queue pane
    • Remove All option for install sets, queued components, or components in the iLO Repository
    • Recovery Set update option during firmware update, iLO Repository upload, or install queue update
  • CAC Smartcard  authentication support for the Online Certificate Status Protocol (OCSP)
  • iLO RESTful API updates:
    • NVMe drive properties
    • Remote Support configuration
    • Device Inventory
  • Support for eight SNMP trap destinations
  • SNMPv3 Inform notification support
  • Support for RSA-PSS certificate signatures
  • RSA cipher support in CNSA mode
  • Ability to disable device discovery on Device Inventory page
  • New Service Account option to support user accounts that are used as service accounts for supported applications

Version:1.17 (12 Dec 2017)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • SSH does not work correctly when iLO is configured to use the SuiteB security state.  
  • Importing a certificate does not work correctly after the generation of a SuiteB-compliant CSR.

Enhancements

This version adds support for the following features and enhancements:

  • iLO Amplifier Pack Server System Restore - Use the Send Recovery Event button on the Firmware Verification page to send a recovery event to iLO Amplifier Pack. If iLO Amplifier Pack is configured to listen for system recovery events, this event causes iLO Amplifier Pack to initiate the system recovery process.  The system recovery process includes the installation of the System Recovery Set followed by reimaging the server operating system.
  • RESTful API updates:
    • Added certificate authentication and validation for Virtual Media.
    • Added certificate authentication and validation for RESTful API events that support the iLO Amplifier Pack Server System Restore feature.

Version:1.15 (25 Sep 2017)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.

  Users should update to this firmware version if their system is
  affected by one of the documented fixes or if there is a desire to utilize any
  of the enhanced functionality provided by this version.


  • No traps from the System Management Assistant are received when SNMP is disabled in the  iLO web interface.
  • The power profile cannot be changed through the iLO web interface.
  • Network transmission graph data is not populated in Active Health System logs.
  • The NVDIMM firmware version is not displayed on the iLO web interface Installed Firmware page.
  • The iLO web interface intermittently displays incorrect memory status after a system reset.
  • The iLO  RESTful API does not provide a method to get current cipher information.
  • The Server Power page stalls when loading the server power information.
  • Nothing happens when you click the Import button on the HPE SSO page.
  • Secure boot cannot be configured through the iLO RESTful API, even if the pending configuration is in UEFI mode.
  • The maximum available power is displayed incorrectly.
  • If the IML contains a maintenance note, the first attempt to clear the log fails.   
  • Certificate-based authentication returns a session URL with inconsistent case.
  • Onetimeboot and Continuousboot do not  take effect in iLOrest.
  • Virtual Media status is not displayed in the Java IRC.
  • The local client keyboard might get disabled when the Java IRC  is in use.
  • An iLO  Federation authentication error might occur when group names with unsupported characters are used in URLs without correct encoding.
  • An issue occurs when copying or restoring certificate mapping entries using fingerprints.
  • An iLO web interface error occurs after an installed certificate was deleted by using the iLO RESTful API.
  • An Internal Error occurs when HPONCFG for Linux is used with a server that uses the SuiteB security state.
  • SNMPv3 user details cannot be modified  through RIBCL.
  • A false positive “Insecure Cache Management Policy” issue is reported by some security scanners.
Enhancements

  • iLO backup and restore—This feature allows you to restore the iLO configuration on a system with the same hardware configuration as the system that was backed up. For example, you could use this feature if the system board is replaced, an accidental or incorrect configuration change occurred, or iLO was set to the factory default settings.  This feature is not meant to duplicate a configuration and apply it to a different iLO system.
  • AMD platform support
  • Support for diffie-hellman-group-exchange-sha256.
  • Support for multiple destination AlertMail email addresses. Enter the addresses separated by a semicolon.
  • iLO RESTful API features:
    • Aux Power Reset
    • Jitter Control features to get and set Jitter Control Mode and Frequency
  • New iLO RESTful API properties to bridge the gap between RIBCL and iLO RESTful API features:
    • High Efficiency Mode
    • Encryption-related properties and Cache Module Serial Number
    • Login Security Banner
    • Current Power on Time (provides the time since the system was last powered on).
    • Persistent Mouse/Keyboard Enabled
  • New iLO RESTful API  events for NVDIMM Init Error and Runtime Firmware Authentication Error.

Version:1.11 (8 Dec 2017)
Enhancements

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • This firmware release is intended for FIPS 140-2 (level 1) validation and Common Criterial (EAL 2+) certification. For the status of both, go to http://csrc.nist.gov/groups/STM/cmvp/validation.html for FIPS and http://www.commoncriteriaportal.org/ for Common Criteria. Search for "iLO 5".
  • Updated cryptographic stack as required by FIPS inspection and validation process.

Version:1.10 (12 Jul 2017)
Enhancements

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


Initial iLO 5 release with the following features:

  • The iLO Service Port on the front of the server is new on Gen10 ProLiant servers and Synergy compute modules. Use this feature to connect a client directly to the server to access the iLO web interface, remote console, CLI, or scripts. You can also connect a USB key and download the Active Health System log to a supported USB flash drive.
  • Improved HPE Agentless Management support for out of the box SNMP-based server management that does not require OS-based agents. OS-based agents are not supported on Gen10 servers.
  • Improved secure firmware update and recovery.
  • Secure Start ensures firmware integrity for essential system firmware.
  • Runtime firmware verification scans essential system firmware for further system integrity.
  • Automatic secure recovery of essential system firmware.
  • Common Access Card (CAC)Smartcard authentication.
  • New user account privilege levels. Specific privileges for BIOS, Storage, and Network configuration.
  • Virtual Media performance is typically at least twice as fast as it was with iLO 4.
  • New iLO web interface design.
  • Expanded Redfish support.

Type: Firmware - Lights-Out Management
Version: 2.31(20 Oct 2020)
Operating System(s):
Microsoft Windows Server 2012
Microsoft Windows Server 2012 Essentials
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2019

Description

This component provides and installs an updated version of firmware for the iLO 5 Management Processor allowing for continued management support of your Server.

Enhancements

  • Ability to read DIMM serial number using REST API
  • Enabled support for below GPUs: 
    • NVIDIA A100 HGX x4 GPU Air Cooled Baseboard  
    • NVIDIA A100 HGX x8 GPU Air FIO Baseboard  
    • AMD Instinct MI100 PCIE Accelerator
  • New IPMI sensors added for Power Supply Input Power(PS Input), Power Supply Input Voltage(Volt_In), Power Supply Output Voltage(Volt_Out), Power Supply Input Current(Curr_In), Power Supply Output Current(Curr_Out)

Installation Instructions

Prerequisites:

Hewlett Packard Enterprise recommends the following or greater versions of iLO utilities
for best performance:

  • RESTful Interface Tool (iLOREST) 2.3
  • HPQLOCFG v5.2 
  • Lights-Out XML Scripting Sample bundle 5.10.0
  • HPONCFG Windows 5.2.0
  • HPONCFG Linux 5.3.0
  • LOCFG v5.10.0
  • HPLOMIG 5.2.0

  NOTE: Updated utilities and system libraries are required to support the iLO 
  HighSecurity, FIPS, and CNSA security states. The HPONCFG Windows utility 
  does not currently support the CNSA security state.


To ensure the integrity of your download, HPE recommends verifying your results with the following SHA-256 Checksum values:

011c0b5f93450bd1ad6b8283b1e719205dbf73f99b46cd1d267c3fb561a96bd3 cp044397_part1.compsig
9bfe4e8c4171df3991ce34c7c4d6fae7eb08641c917a4042f6ef1bb2a1774d06 cp044397.exe
2a1d9af58b55e4f3e5fdc5917792a6d0b3cf2b08f27f503d04062cf0521801ff cp044397_part2.compsig

Reboot Requirement:
Reboot is not required after installation for updates to take effect and hardware stability to be maintained.


Installation:

To update to iLO 5 version 2.31 or later, you must have a minimum iLO 5 version of 1.48

Install the firmware using one of these options:

  • Run the Component on the host to be updated.
    The component will update the iLO 5 firmware and reset the iLO 5 processor.
     
  • Extract the firmware from the component.  This will place the firmware image file, iLO5_yyy.bin (where yyy represents the firmware version) in the target directory.  You now have these options:
    • Login to iLO 5, navigate to the Update Firmware page, and update the firmware from there.
    • Use the HPE Lights-Out Configuration Utility, and RIBCL/XML scripts to update iLO 5 across the network.
    • Use the HPE Online Lights-Out Configuration utility, HPONCFG, and RIBCL/XML scripts to update iLO 5 from the supported host OS.
    • Use the Directory Migration Utility, contained in the HPE Directories support for Management Processors,  The Windows utility supports network discovery of lights-out processors, import/export, as well as bulk firmware update, and does not require directory migration.

Release Notes

End User License Agreements:
HPE Software License Agreement v1
Hewlett-Packard End User License Agreement


Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Important:

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)


Notes:

 

iLO 5 User Guide and Lights-Out Scripting Guide can also be found by following the links at:

http://www.hpe.com/go/ilo

Select your lights-out product, then support & documents, then manuals.
 

  • Check the online help for additional information about how to use features. 
    Online help can be accessed from within the browser web pages by clicking the question mark in the upper right-hand corner of each page.

Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • iLO may fail to detect NVMe controllers during power cycle.
  • Firmware version information may not displayed when the server has more than 8 GPUs
  • iLO may reset after FWPKG/PLDM update and coldboot
  • IE and SPS Firmware updates may fail on Gen10 Plus servers 
  • Remote Syslog is made to adhere to RFC 5424 for Unstructured data format    
  • On VSP performing ‘cat’ or ‘head’ or 'tail' command on a file that contains some embedded NULL characters hangs the VSP or trims the file after the NULL character
  • Inaccurate Memory Sensor status reported in the vSphere web client for HPE ProLiant Gen10 and Gen10 Plus servers running VMware ESXi 6.5/6.7/7.0 (Refer to Customer Advisory)

Important

IPv6 network communications - Dedicated network connection only
     Supported Networking Features
                IPv6 Static Address Assignment
                IPv6 SLAAC Address Assignment
                IPv6 Static Route Assignment
                IPv6 Static Default Gateway Entry
                DHCPv6 Stateful Address Assignment
                DHCPv6 Stateless DNS, Domain Name, and NTP Configuration
                Integrated Remote Console
                OA Single Sign-On
                HP-SIM Single Sign-On
                Web Server
                SSH Server
                SNTP Client
                DDNS Client
                RIBCL over IPv6
                SNMP
                AlertMail
                Remote Syslog
                WinDBG Support
                HPONCFG/HPLOMIG over an IPv6 connection
                Scriptable Virtual Media
                CLI/RIBCL Key Import over IPv6
                Authentication using LDAP and Kerberos over IPv6
                iLO Federation
     Networking Features not supported by IPv6 in this release
                IPv6 Over Shared Network Port Connections
                IPMI
                NETBIOS-WINS
                Enterprise Secure Key Manager (ESKM) Support
                Embedded Remote Support (ERS)

Revision History

Version:2.31 (20 Oct 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • iLO may fail to detect NVMe controllers during power cycle.
  • Firmware version information may not displayed when the server has more than 8 GPUs
  • iLO may reset after FWPKG/PLDM update and coldboot
  • IE and SPS Firmware updates may fail on Gen10 Plus servers 
  • Remote Syslog is made to adhere to RFC 5424 for Unstructured data format    
  • On VSP performing ‘cat’ or ‘head’ or 'tail' command on a file that contains some embedded NULL characters hangs the VSP or trims the file after the NULL character
  • Inaccurate Memory Sensor status reported in the vSphere web client for HPE ProLiant Gen10 and Gen10 Plus servers running VMware ESXi 6.5/6.7/7.0 (Refer to Customer Advisory)
Enhancements

  • Ability to read DIMM serial number using REST API
  • Enabled support for below GPUs: 
    • NVIDIA A100 HGX x4 GPU Air Cooled Baseboard  
    • NVIDIA A100 HGX x8 GPU Air FIO Baseboard  
    • AMD Instinct MI100 PCIE Accelerator
  • New IPMI sensors added for Power Supply Input Power(PS Input), Power Supply Input Voltage(Volt_In), Power Supply Output Voltage(Volt_Out), Power Supply Input Current(Curr_In), Power Supply Output Current(Curr_Out)

Version:2.30(a) (20 Oct 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


iLO 5 version 2.30(a) was released adding HPE ProLiant m750 server to the supported servers. The update does not affect the firmware functionality. If version 2.30 was previously deployed to target device, then it is not necessary to update to version 2.30(a)

Enhancements

Added HPE ProLiant m750 Server to the supported server list.


Version:2.30 (4 Sep 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Ripple20 vulnerabilities might affect the TCP/IP stack.
  • Synergy compute modules do not power up after One-button secure erase completes.
  • SPS firmware updates initiated through the iLO Firmware & OS Software pages might fail.
  • C-Class blades do not complete FRU discovery.
  • During central connect Remote Support registration, an error message is not displayed when a  required field is blank.
  • The Virtual NIC feature intermittently fails to provide an IP address to a host with SUSE Linux Enterprise Server 15.
  • Zero Sign In login fails when Kerberos authentication is configured for a large number of groups.
  • When iLO is set to the factory default settings on a fully populated NVDIMM configuration, iLO may lose CHIF communication.
  • DCi compliant Network Adapters under un-managed network configuration, reset to defaults on cold boot.
  • External provider registration may fail after de-registration and multiple server reboots.

Known Issue:

  • Memory sensor status getting reported in the vSphere web client may not be accurate for HPE ProLiant Gen10 and Gen 10 Plus servers running VMware ESXi 6.5/6.7/7.0 and HPE Integrated Lights-Out 5 (iLO 5) firmware version 2.30. It is recommended to use IPMI commands over LAN or iLO GUI memory information page for actual memory health/sensor status.
Enhancements

  • MCTP now addresses the iLO false alarm "device/adapter not responsive" issue.
  • Shutdown by virtual button press is included in the iLO enhanced reset cause.
  • Support for initiating the One-button secure erase process from the iLO web interface Lifecycle Management - Decommission page.
  • User account roles provide predefined privilege sets or allow you to define a custom set.
  • New HTML5 remote console modes: Standalone mode and New Window mode.
  • Virtual power button to power NVMe drives on and off. You can access this feature from the Physical Drive Details pane on the Storage Information page.
  • Configuration of Minimum Fan speed using iLO interfaces.
  • Users can view and modify the System thermal configuration settings using iLO interfaces..
  • PLDM firmware update support for NIC and storage option cards.
  • New REST alerts for Auto Heal and Safe Mode.
  • Enabled the iLO webserver to identify the source of request as Host over Virtual NIC.
  • Read support for RDE-enabled devices.
  • Support for flashing Universal FWPKG 2.0 images.
  • Power reading support for Edgeline 8000 systems.
  • Drive Indicator LED - 'Lit' and 'Off' state support for U.2/UBM1/UBM3 with NVMe direct attached storage.
  • When iLO is set to the factory default settings, Virtual NIC is disabled by default.
  • User can now configure iLO to avoid access over an HTTP connection

Version:2.19 (18 Aug 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Direct attached NVMe drives may go missing in the iLO Web Page after random server power cycle.
Enhancements

  • None

Version:2.18 (10 Jul 2020)
Fixes

Upgrade Requirement:
Critical - HPE requires users update to this version immediately.


  • Potential Ripple20 vulnerabilities affecting the TCP/IP stack

To learn more about Ripple Vulnerabilties please click here.

Enhancements

  • None

Version:2.16 (8 Jun 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • HPE SimpliVity Accelerator disappear from the thermal sensor data after iLO firmware update.
  • Xilinx U50 cards getting over heat due to wrong thermal limits on iLO 5 v2.15
  • Unable to set HPE m750 Blade Server's Asset Tag through Redfish method.
  • iLO authentication with CM2 credential through Redfish fails frequently with more number of nodes installed.
  • Insight Online shows CPU2 Status as UNKNOWN for HPE ProLiant DL360 Gen10 Servers, while iLO GUI shows CPU2 status as OK.
  • Incorrect IML message IDs are logged which prevents the AMS service from logging those messages to OS syslog.
Enhancements

  • Enabled support for Pensando Distributed Services Platform DSC-25 10/25Gb 2-port SFP28 Card.
  • Enabled support for Pensando Distributed Services Platform for HPE iLO Sideband Management Adaptive LOM Module.
  • Added Redfish property for setting the Server to remain Power OFF after thermal shutdown (Critical Temperature threshold exceeded) 
  • Allow Power Regulator Mode management in Apollo platforms without an iLO Advanced license.

Version:2.15 (29 Apr 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Some of the fans in Apollo XL225n Gen10 Plus Servers show a speed greater than 100% in the iLO web interface.
  • The HPE Synergy 3820C 10/20Gb CNA loses flexed sub-ports after a cold boot or E-fuse reset.
  • Updated the thermal parameters for the Xilinx U50 GPU.
  • iLO is temporarily unresponsive or iLO resets on HPE Gen10 servers and HPE Synergy Gen10 compute modules running HPE Infosight.
  • When you query for Software Inventory details, the RESTful Interface Tool 3.0 (part of SUM 8.5.5) does not fetch the "Microchip-smartpqi" driver installed on ESXi7.0.
Enhancements

  • Users can now restore the last power state after a power outage on Synergy compute modules.
  • Apollo servers now allow you to use the iLO RESTful API to enable or disable power regulation mode (Global settings).
  • Apollo servers now allow you to switch between power regulation modes (iLO Standard license). User Configurable Mode is available only with an iLO Advanced license.

Version:2.14 (13 Feb 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • Fixed the issue where PMBUS power supply is being detected when a Flex Slot is installed.
Enhancements

  • Support new Accelerators:
    • Xilinx Alveo U250
    • Xilinx Alveo U50
  • User can now define pre-caution threshold alert value for the inlet ambient sensor.

Version:2.12 (23 Jan 2020)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • The Integrated Remote Console requires code to accommodate low power mode on AMD based system to work with the ROM on EU Lot 9 requirements
  • Incorrect IML messages occur when SAS/SATA drives are installed.
  • Spurious drive hot plug events occur when the server goes through a warm reset
  • In some cases, iLO tries to use an invalid SMBIOS handle from the ROM
  • Certain NIC devices would stop responding when FRU data was read. iLO implements new code to better handle this condition.
Enhancements

  •  NVMe drives and open drive support, this includes additional robustness for device discovery and management. This helps to correct some iLO related timeout issues.

Version:2.10 (20 Dec 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • The iLO clock incorrectly changes when iLO is reset due to a configuration change, firmware update, or a cause other than system power loss.
  • System GPUs might be listed without GPU version information.
  • Incorrect power consumption information is displayed in RIBCL output and the Active Health System Log.
  • If the domain name system is unavailable, an HPE ProLiant Gen10 Server might stop responding for up to three minutes during startup.
  • Fixed an issue where the iLO 5 webserver may becoming unresponsive when applying OV profile with certain models of NVME drives present.

Security Fixes: 

Security best practices:

  •   For the latest information about security best practices, see the HPE Integrated Lights-Out Security Technology Brief at the following website: http://www.hpe.com/support/ilo-docs.
Enhancements

This version adds support for the following features and enhancements:

  • Added a security log that lists security events recorded by the iLO firmware.
  • Enhanced Secure Start verification of CPLD on Gen10 Plus servers.
  • Updated menu path and feature names for the Performance Management features. The features that were accessed through the Intelligent System Tuning menu can now be accessed through the Performance menu.
  • Embedded remote support over IPv6.
  • New alert for recovery events.
  • SUM/SUT support on servers using the High Security, FIPS, or CNSA security states.
  • Support for staging firmware to update direct-attached hard drives through the UEFI System Utilities.
  • Ability to import and export drive bay mapping information.
  • Daily firmware flash limit, to protect iLO, ROM, and CPLD from repeated flashing attacks.
  • Performance data logging in a new Active Health System record.
  • Increased the certificate size limit from 4096 to 8096.
  • When iLO is set to the factory default settings, Virtual NIC is enabled by default.
  • The following System Diagnostics features are supported on Gen10 Plus servers: 
    • Booting to safe mode—Allows you to boot the server with a safe minimum configuration.
    • Booting to intelligent diagnostics mode—Allows the system to automatically diagnose a boot failure during POST.
    • Restoring the default manufacturing settings—Resets all BIOS configuration settings to their default manufacturing values. This process deletes all UEFI nonvolatile variables, such as boot configuration, Secure Boot security keys (if Secure Boot is enabled), and configured date and time settings.
    • Restoring the default system settings—Resets all BIOS configuration settings to their default values and restarts the server. This option preserves some UEFI settings.
  • Modified text of iLO time zone selections to match system ROM time zone selections. For backward compatibility, either previous time zone selection text or the new text can be used in APIs to set the time zone.

Version:1.48(a) (1 Jun 2020)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Implemented the set server info command for all the DCi supporting options in previous versions of iLO 5 which may reset NIC settings during iLO 5 update.

Version:1.46 (16 Aug 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


Fixed potential problem of Gen10 Synergy server NIC port being down after complete Synergy frame power cycle.

Enhancements

None


Version:1.45 (3 Jul 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


- Fixed problem introduced in iLO 5 v1.43 which could cause an HTTP connection to be refused under high activity of REST calls. 


Version:1.43 (31 May 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

- Fix for potential firmware use of system memory after free, which could lead to an OS exception or

   memory corruption under Linux or ESX when using hpilo driver.  It was not an issue for Windows.

 - Fix so iLO 5 can connect to switch when both are set to 100 Full Duplex.

 - Fixed REST call so that "ilorest -d serverlogs --selectlog=IML --clearlog rc 255" does not fail when

   it should succeed.

- Fixed problem with erroneously logging an IML event for "exceeding power capacity threshold" when

   it should not be logged.

 - Modified time zone string for "Asia/Taipei" to "Beijing, Chongqing, Hong Kong, Urumqi, Taipei, Perth"

- Only send Remote Support type 1000 events for Critical IML events when they should be sent

 

SECURITY FIXES:

- HPESBHF03917

  For the latest security bulletins and vulnerabilities addressed in this version, please visit:

  https://support.hpe.com/hpesc/public/home

Enhancements

This version adds support for the following features and enhancements:

 

 - Added VLAN tagging support on iLO Dedicated NIC for non-blades.

- Modified the iLO auto-generated SNMP EngineID to not change upon iLO resets.

 - Modified Embedded Remote Support (eRS) service events to properly report Windows 2019. 

 - Reduced the number of Redfish resource change events sent.   Removed watching of fields that

   change frequently.

- BIOS Admin password will NOT cause iLO to act as if Require Host Authentication is Enabled

 


Version:1.40(a) (6 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • User interface fixes and improvements.
  • The text “R&D Server” is incorrectly displayed in the iLO web interface navigation pane.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.40 (4 Feb 2019)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

The following issues are resolved in this version:

  • User interface fixes and improvements.
  • Fixed an issue where power supply status changes may be delayed.
  • Device Inventory could display a parse error under Internet Explorer 11 when certain PCI Cards are installed.
  • Improved shared network port out-of-band LOM resuscitation to reduce the scope and the frequency of system power-on/power-off during systems shutdown/reboot.
  • iLO communication issues in certain configurations where a server is set to Auto-Power-On after an AC power cycle.

SECURITY FIXES: 

  • HPESBHF03907

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

 

Enhancements

REMOVED - HPE Integrated Lights-Out 5 (iLO 5) v1.40 is NO LONGER AVAILABLE for download and has been replaced with version 1.40(a). Click the “Obtain software” link to download version 1.40(a). More information is also available in the Customer Advisory.

  • Ability to edit Maintenance Windows in Firmware & OS Software section
  • Added Password Complexity feature to Security > Access Settings
  • Enable/disable for overlay video showing Server Health Summary
  • Downgrade Policy - Specifies how iLO handles requests to downgrade any of the firmware types that you can update through iLO. 
  • Virtual NIC functionality (disabled by default)
  • Enabled One-button Secure Erase via Intelligent Provisioning
  • LDAP/Directory settings configurable via Redfish
  • Security Dashboard - displays the status of important security features, the Overall Security Status for the system, and the current configuration for the Security State and Server Configuration Lock features.
  • Support for Gemalto SafeNet and SafeNet AT key managers
  • InfoSight Optimized AHS Download
  • Show NVMe wear level
  • Workload performance advisor: provides server tuning recommendations to improve server performance

Version:1.39 (14 Dec 2018)
Fixes

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


  • Fixed issue where pressing UID button on Gen10 server can occasionally cause server to power off
Enhancements

  • Added Downgrade Policy setting to Security->Access Settings page.

Version:1.37 (26 Oct 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

 - Fix for "VGA Port Detect Override" to show video in all cases where monitors are installed.
 - Fix for intermittent file upload failures.
 - Fix for issues with Virtual Media in FIPS mode.
 - Fix for issues with simultaneous use of virtual DVD and floppy in FIPS mode.
 - Fix for USB floppy when used with ESXi 7 installation driver.
 - Fixed potential problem where iLO could continue to interact with system memory after it has been released by hpilo module.
 - Fix for erroneous reporting of disk drive overheating.
 - Fix for intermittent iLO communication error on HPE Apollo 2000. 
 - Fix for potential RESTful API errors at boot with multiple NICs installed.
 - Fix to add iLO 5 NIC information into anonymous XML response.
 - Fixed false errors showing link lost on NICs when link never seen in IPMI.

SECURITY FIXES: 

 - HPESBHF03894 - HPE iLO5 Local Bypass of Security Restrictions in Firmware Update

 

Enhancements

This version adds support for the following features and enhancements:

 - Ability to backup and to restore a copy of the iLO configuration settings to/from iLO non-volatile memory via REST calls.  
 


Version:1.35(a) (20 Sep 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


iLO 5 version 1.35(a) was released with a packaging update.  The update does not affect the firmware functionality. If version 1.35 was previously deployed to target device, then it is not necessary to update to version 1.35(a).

The following issues are resolved in iLO 5 version 1.35:

The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Version:1.35 (16 Aug 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • Fix for improper Smart Array error reported: Cache module board backup power failed.
  • Fixed where iLO may become unresponsive after ejecting virtual media.

SECURITY FIXES: 

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

  • Security Bulletin HPESBHF03866

Security best practices:

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • VGA Port Detect Override--Controls how devices connected to the system video port are detected. Dynamic detection protects the system from abnormal port voltages. This setting is enabled by default, and can be used for troubleshooting cases when there is no video output to displays, KVM concentrators, or active dongles.
  • DHCP Client ID override via iLO RESTful API.

Version:1.30 (4 Jun 2018)
Fixes

Upgrade Requirement:
Critical - HPE requires users update to this version immediately.

Install this update to take advantage of significant improvements to the write algorithm for the embedded 4 GB non-volatile flash memory (also known as the NAND). These improvements increase the NAND lifespan.


The following issues are resolved in this version:

  • Compute modules do not power on after restoring power to Frame.
  • When you use iLO Virtual Media to install an operating system, installation might fail when iLO is configured to use the Shared Network Port.
  • In rare cases, a server runs out of available SSH sessions because the sessions are not reclaimed when a client disconnects.
  • iLO 5 unexpectedly restored itself to the factory default settings when a user did not initiate the process.
  • When Auto Power-On is set to Always Power On or Restore Last Power State, the server might not power on after a cold reset.
  • iLO cannot display the HP Ethernet 1Gb 4-port 331i Adapter MAC address.
  • NVMe drive model numbers are incorrect or inconsistent.
  • Clearing the oemHPE_usercntxt## from the command line clears the value, even though error messages might be displayed.
  • Fixed Single Sign-On when in CNSA mode.
  • Added support for RSA-PSS certificate signatures.

For the latest security bulletins and vulnerabilities, please visit: 
https://support.hpe.com/hpesc/public/home  

Please refer to the HPE Integrated Lights-Out 5 Security Technology Brief for the latest on security best practices at: 
http://www.hpe.com/support/ilo5-security-en

Enhancements

This version adds support for the following features and enhancements:

  • Added support for new platforms: 
    • HPE ProLiant DL20 Gen10 Server
    • HPE ProLiant ML10 Gen10 Server  
  • Improved HTML5 IRC performance, including:
    • Added virtual keys to improve the ability to send keyboard actions to the server.
    • Added the ability to configure the keyboard layout in the HTML5 IRC
    • Added Virtual Media support for local ISO and IMG files.
  • Firmware and software update enhancements:
    • iLO users can now view, create, and delete maintenance windows.
    • A new check box allows users to clear the installation queue when initiating an install set.
    • Updated the iLO RESTful API and iLO web interface to report when a reboot is required after an installation task completes.
  • Each time iLO starts, it backs up the iLO configuration to the nonvolatile flash memory (NAND). If the SRAM is erased, the configuration is automatically restored.
  • Added iLO web interface support for Density Optimized Drive Zoning features on supported HPE Apollo products.
  • AlertMail now supports SSL (TLS) for secure email.
  • AlertMail now supports external SMTP mail servers.
  • Added an SNMP trap for when all host NICs are down.
  • Updated to OpenSSL-1.0.2u-fips-2.0.16.
  • Added the list of open source licenses to the login page.
  • Added an SNMP trap for when iLO is reset by IPMI watchdog.
  • Added Intelligent System Tuning features to the iLO web interface. From the iLO web interface, you can view the configured settings, configure Jitter Smoothing, and launch Intelligent Provisioning to configure Workload Matching and Core Boosting.
  • Improved Active Health System logging efficiency to prolong the NAND lifespan.
  • Added iLO health status to the Overview page. If the status is Degraded, this value is also displayed on the Login page.
  • Re-signed the Java IRC to extend the certificate expiration date.
  • Re-signed the .NET IRC to extend the certificate expiration date.
    • With this enhancement, the .NET IRC requires version 4.5.1 or later of the .NET Framework.
  • Added the ability to remove an SSL certificate and regenerate the iLO self-signed certificate.
    • Hewlett Packard Enterprise recommends that you install a CA signed certificate.

Version:1.20 (9 Feb 2018)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • NVMe drive details are not displayed in the iLO web interface for HPE ProLiant XL190r Gen10 servers.
  • The system BIOS version is missing in AlertMail messages.
  • The IPMI Get Chassis Capabilities and Get Chassis Status commands do not reflect the Chassis Intrusion state.
  • Virtual Media devices are inaccessible when two virtual devices are mounted simultaneously.
  • Patched configuration file system.
  • The IPMI pre-watchdog-timeout interrupt does not occur when no watchdog action is selected.
  • Intermittent loss of network interface card (NIC) and drive detection (P408e-m controller) by BIOS on system boot up of HPE ProLiant BL460c servers.
Enhancements

This version adds support for the following features and enhancements:

  • HTML5 Remote Console
  • Shared Network Port IPv6 support
  • Shared Network Port iLO Federation support
  • Ability to associate an SNMP alert destination with an SNMPv1 or SNMPv3 user
  • Enhanced firmware and software update interface:
    • New Add to Queue pane
    • Remove All option for install sets, queued components, or components in the iLO Repository
    • Recovery Set update option during firmware update, iLO Repository upload, or install queue update
  • CAC Smartcard  authentication support for the Online Certificate Status Protocol (OCSP)
  • iLO RESTful API updates:
    • NVMe drive properties
    • Remote Support configuration
    • Device Inventory
  • Support for eight SNMP trap destinations
  • SNMPv3 Inform notification support
  • Support for RSA-PSS certificate signatures
  • RSA cipher support in CNSA mode
  • Ability to disable device discovery on Device Inventory page
  • New Service Account option to support user accounts that are used as service accounts for supported applications

Version:1.17 (12 Dec 2017)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


The following issues are resolved in this version:

  • SSH does not work correctly when iLO is configured to use the SuiteB security state.  
  • Importing a certificate does not work correctly after the generation of a SuiteB-compliant CSR.

Enhancements

This version adds support for the following features and enhancements:

  • iLO Amplifier Pack Server System Restore - Use the Send Recovery Event button on the Firmware Verification page to send a recovery event to iLO Amplifier Pack. If iLO Amplifier Pack is configured to listen for system recovery events, this event causes iLO Amplifier Pack to initiate the system recovery process.  The system recovery process includes the installation of the System Recovery Set followed by reimaging the server operating system.
  • RESTful API updates:
    • Added certificate authentication and validation for Virtual Media.
    • Added certificate authentication and validation for RESTful API events that support the iLO Amplifier Pack Server System Restore feature.

Version:1.15 (25 Sep 2017)
Fixes

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.

  Users should update to this firmware version if their system is
  affected by one of the documented fixes or if there is a desire to utilize any
  of the enhanced functionality provided by this version.


  • No traps from the System Management Assistant are received when SNMP is disabled in the  iLO web interface.
  • The power profile cannot be changed through the iLO web interface.
  • Network transmission graph data is not populated in Active Health System logs.
  • The NVDIMM firmware version is not displayed on the iLO web interface Installed Firmware page.
  • The iLO web interface intermittently displays incorrect memory status after a system reset.
  • The iLO  RESTful API does not provide a method to get current cipher information.
  • The Server Power page stalls when loading the server power information.
  • Nothing happens when you click the Import button on the HPE SSO page.
  • Secure boot cannot be configured through the iLO RESTful API, even if the pending configuration is in UEFI mode.
  • The maximum available power is displayed incorrectly.
  • If the IML contains a maintenance note, the first attempt to clear the log fails.   
  • Certificate-based authentication returns a session URL with inconsistent case.
  • Onetimeboot and Continuousboot do not  take effect in iLOrest.
  • Virtual Media status is not displayed in the Java IRC.
  • The local client keyboard might get disabled when the Java IRC  is in use.
  • An iLO  Federation authentication error might occur when group names with unsupported characters are used in URLs without correct encoding.
  • An issue occurs when copying or restoring certificate mapping entries using fingerprints.
  • An iLO web interface error occurs after an installed certificate was deleted by using the iLO RESTful API.
  • An Internal Error occurs when HPONCFG for Linux is used with a server that uses the SuiteB security state.
  • SNMPv3 user details cannot be modified  through RIBCL.
  • A false positive “Insecure Cache Management Policy” issue is reported by some security scanners.
Enhancements

  • iLO backup and restore—This feature allows you to restore the iLO configuration on a system with the same hardware configuration as the system that was backed up. For example, you could use this feature if the system board is replaced, an accidental or incorrect configuration change occurred, or iLO was set to the factory default settings.  This feature is not meant to duplicate a configuration and apply it to a different iLO system.
  • AMD platform support
  • Support for diffie-hellman-group-exchange-sha256.
  • Support for multiple destination AlertMail email addresses. Enter the addresses separated by a semicolon.
  • iLO RESTful API features:
    • Aux Power Reset
    • Jitter Control features to get and set Jitter Control Mode and Frequency
  • New iLO RESTful API properties to bridge the gap between RIBCL and iLO RESTful API features:
    • High Efficiency Mode
    • Encryption-related properties and Cache Module Serial Number
    • Login Security Banner
    • Current Power on Time (provides the time since the system was last powered on).
    • Persistent Mouse/Keyboard Enabled
  • New iLO RESTful API  events for NVDIMM Init Error and Runtime Firmware Authentication Error.

Version:1.11 (8 Dec 2017)
Enhancements

Upgrade Requirement:
Recommended - HPE recommends users update to this version at their earliest convenience.


  • This firmware release is intended for FIPS 140-2 (level 1) validation and Common Criterial (EAL 2+) certification. For the status of both, go to http://csrc.nist.gov/groups/STM/cmvp/validation.html for FIPS and http://www.commoncriteriaportal.org/ for Common Criteria. Search for "iLO 5".
  • Updated cryptographic stack as required by FIPS inspection and validation process.

Version:1.10 (12 Jul 2017)
Enhancements

Upgrade Requirement:
Optional - Users should update to this version if their system is affected by one of the documented fixes or if there is a desire to utilize any of the enhanced functionality provided by this version.


Initial iLO 5 release with the following features:

  • The iLO Service Port on the front of the server is new on Gen10 ProLiant servers and Synergy compute modules. Use this feature to connect a client directly to the server to access the iLO web interface, remote console, CLI, or scripts. You can also connect a USB key and download the Active Health System log to a supported USB flash drive.
  • Improved HPE Agentless Management support for out of the box SNMP-based server management that does not require OS-based agents. OS-based agents are not supported on Gen10 servers.
  • Improved secure firmware update and recovery.
  • Secure Start ensures firmware integrity for essential system firmware.
  • Runtime firmware verification scans essential system firmware for further system integrity.
  • Automatic secure recovery of essential system firmware.
  • Common Access Card (CAC)Smartcard authentication.
  • New user account privilege levels. Specific privileges for BIOS, Storage, and Network configuration.
  • Virtual Media performance is typically at least twice as fast as it was with iLO 4.
  • New iLO web interface design.
  • Expanded Redfish support.

Legal Disclaimer: Products sold prior to the November 1, 2015 separation of Hewlett-Packard Company into Hewlett Packard Enterprise Company and HP Inc. may have older product names and model numbers that differ from current models.