There is no universal "one-size-fits-all" Fujitsu iRMC default password you can rely on — defaults vary by iRMC generation, server model, firmware and region. Common defaults historically are:
# Install ipmitool if not present sudo yum install ipmitool # RHEL/CentOS sudo apt install ipmitool # Ubuntu/Debian
iRMC operates independently of the server’s CPU and OS. It has direct access to the motherboard, memory, and storage controllers. An attacker with iRMC access can:
If the default credentials fail, you can reset the password without a system reboot using from the host operating system. fujitsu irmc default password
Using ipmitool (no authentication required if default enabled):
Some iRMC versions allow you to load a configuration file from a FAT32-formatted USB drive. Create a file irmc.cfg containing:
If the server is running Windows or Linux and has the Fujitsu ServerView agents installed, you can use local command-line tools to reset the password without a reboot. ipmitool user set password 2 YourNewPassword Use code with caution. An attacker with iRMC access can: If the
Once logged in with the default credentials, changing the password is a straightforward process, typically performed through the web interface.
The Fujitsu Integrated Remote Management Controller (iRMC) is a powerful out-of-band management system used in PRIMERGY servers. Like many enterprise hardware solutions, it ships with a default administrative account. While intended for initial configuration, the failure to change this credential ( admin/admin ) post-deployment remains a critical vulnerability. This paper details the default credential, the associated attack vectors, and mandatory remediation strategies.
admin Password: admin
To check if your Fujitsu iRMC still uses default credentials:
Use the Windows IPMI tool utility or Fujitsu ServerView Local Service command line to push a password update directly over the internal KCS (Keyboard Controller Style) interface. 2. Resetting to Factory Defaults via BIOS
Beyond the web interface, this credential pair is also effective for other standard management interfaces. It works for SSH (Secure Shell) access to the iRMC, the telnet command-line interface, and the IPMI (Intelligent Platform Management Interface) protocol via tools like ipmitool . For IPMI, user ID 2 is the standard identifier for the OEM (Original Equipment Manufacturer) default admin user, which corresponds to the admin account. This wide applicability means that default credentials create multiple potential vectors for unauthorized access if not addressed. ipmitool user set password 2 YourNewPassword Use code
: This Windows command-line tool is invaluable for security. It can generate encrypted passwords that can be safely used in configuration scripts or XML files, avoiding the need to store passwords in plain text. The generated encrypted string can be used in configuration payloads sent to the iRMC.
Include at least of the following: lowercase letters, uppercase letters, digits, or special characters.