TLS/SSL/Encryption Certs are a pain in the butt, when you have lots of them to manage.

Here are notes, for myself really, that go over the commands needed to update a commercially issued cert/key pair.

The cert can (must?) contain the issuing chain certs as well.

racadm -r server.fqdn -u root -p “password” sslkeyupload -t 1 -f /tmp/example.com.key
racadm -r server.fqdn -u root -p “password” sslcertupload -t 1 -f /tmp/example.com.crt

racadm -r server.fqdn -u root -p “password” racreset

After you have reset the iDrac, it comes back up in about 5 minutes with the new cert in place and you are good for another year.