Comment 21 for bug 1916860

ipmitool is a red herring here. As I mentioned previously mentioned MAAS checks both bmc-config and ipmitool to see which detects the most amount of ciphers. Both detect 16 ciphers but bmc-config detects ciphers 0-15 while ipmitool detects ciphers 1-16. Because both detect the same amount of ciphers MAAS is using bmc-config for all configuration. The bmc-config code path is doing the right thing and makes sure cipher is enabled and available for us. I verified this by manually disabling all ciphers, running the bmc-config script, then checking `bmc-config --checkout -S Rmcpplus_Conf_Privilege` which shows cipher 3 is enabled.

I think some other setting is locking remote commands out.