Hi, Assume if BIOS call Get Bootstrap Account Credentials without A5(Keep credential bootstrapping enabled.), one account will be created. BIOS can use this account to create permanent account and Get Bootstrap Account Credentials will not provide new username since Enabled property within the CredentialBootstrapping property of the host interface resource shall be set to false. How OS can communicate to Redfish using Bootstrap Account Credentials in this case? BIOS needs to share credentials to OS(earlier we have two different users HostAutoFW, HostAutoOS) or User needs to patch Enabled property within the CredentialBootstrapping property of the host interface to true for Get Bootstrap Account Credentials to work(using OOB request), so that OS also can create one permanent user
At that point they won't be able to. Generally speaking, while BIOS can use those commands to get a bootstrap account, they really were designed with the intent that the OS or management software would be using them. If BIOS were to also leverage them, BIOS needs to be cautious that other software entities might be reliant on them at runtime.
I will also say that I think long term, we would need BIOS to have its own set of commands to get its own credentials so it does not impact the OS or management software. This is something we'll need to discuss further in the forum.