User-verified initial trust

The user-verified initial trust approach applies to devices that use self-signed certificates. HPE OneView displays the certificate for the device, including the certificate fingerprint. You can compare the fingerprint to one you have obtained from the device in a secure, out-of-band manner. If the device fingerprint displayed by HPE OneView matches the fingerprint obtained by the out-of-band approach, you are assured that the device is trusted and the self-signed certificate is safe to add to the HPE OneView trust store.

The key to this security model is to securely obtain the certificate fingerprint for the device. Automatic initial trust provides instructions.