Black Box ServSelect KV119A Installer/User Manual Download Page 24 | Manualshive

Page: 24 / 84

background image

CHAPTER 4: OPERATIONS

23

Authenticating an SSH user

SSH is enabled and disabled with the Server SSH command. When you enable SSH,

you may specify the authentication method(s) that will be used for SSH connections.

The method may be a password, an SSH key or both. A user’s password and SSH

key are specified with a User Add or User Set command. All SSH keys must be

RSA keys. DSA keys are not supported.

The following table lists and describes the valid SSH authentication methods that

can be specified with a Server SSH command.

SSH Authentication Methods

Method Description

PW (default)

SSH connections will be authenticated with a username/
password. With this method, a user’s defi nition must
include a valid password in order for that user to
authenticate an SSH session.

KEY

SSH connections will be authenticated with an SSH key.
With this method, a user’s defi nition must include valid
SSH key information in order for that user to authenticate
an SSH session. For more information, see

SSH user keys

in this chapter.

PW|KEY or KEY|PW SSH connections will be authenticated with either a

username/password or an SSH key. If a user has only a
password defi ned, that user must authenticate an SSH
session with a username/password. If a user has only an
SSH key defi ned, that user must authenticate an SSH
session using the key. If a user has both a password and
an SSH key defi ned, that user may use either a username/
password or the SSH key to authenticate an SSH session.
This method allows the SCPS administrator to defi ne how
each user will authenticate an SSH session based on
information provided in the User Add/Set command.

PW&KEY or KEY&PW SSH connections will be authenticated using both a

username/password and an SSH key. With this method,
a user’s defi nition must include a password and SSH key
information for that user to authenticate an SSH session.

A user’s access rights are determined from the authentication method used. SSH key

authentication always uses the access rights from the local user database. Depending

on the server authentication mode specified with the Server Security command, SSH

password authentication will use either the access rights from the local user database

or the values returned by the RADIUS server.

«
...
22
23
24
25
26
...
»

Summary of Contents for ServSelect KV119A

Page 1: ...Doc No 590 326 001A...

Page 2: ...rds and monitors on your desk Or do you need to share many computers including a mix of IBM PC RS 6000 Apple Macintosh Sun Microsystems and SGI types among multiple worldwide users with different acce...

Page 3: ...gulation of Industry Canada Le pr sent appareil num rique n met pas de bruits radio lectriques d passant les limites applicables aux appareils num riques de la classe A prescrites dans le R glement su...

Page 4: ...registered trademarks and ServSwitch ServSelect and ServSelect IP are trademarks of BLACK BOX Corporation Apple Mac and Macintosh are registered trademarks of Apple Computer Inc IBM PS 2 and RS 6000 a...

Page 5: ...el ctrico debe ser situado de tal manera que su posici n no interfiera su uso La colocaci n del aparato el ctrico sobre una cama sof alfombra o superficie similar puede bloquea la ventilaci n no se de...

Page 6: ...o por personal calificado deber ser provisto cuando A El cable de poder o el contacto ha sido da ado u B Objectos han ca do o l quido ha sido derramado dentro del aparato o C El aparato ha sido expues...

Page 7: ...ces 18 4 4 Managing Users 27 4 5 Using Authentication Modes 29 4 6 Managing the Port History Buffer 32 4 7 Managing SNMP Structures 35 5 Using SCPS Commands 39 5 1 Accessing the CLI 39 5 2 Entering Co...

Page 8: ...EE 802 3U 100BaseT Connector RJ45 Other Characteristics Dimensions HxWxD 4 45 x 22 23 x 20 32 cm 1U form factor 1 75 x 8 75 x 8 00 in Weight 5 lbs 2 3 kg without cables Heat Dissipation 75 BTU hr SCPS...

Page 9: ...or from a third party Secure Shell SSH client User authentication and data security The SCPS user database supports up to 64 user definitions which include usernames passwords and or keys plus specif...

Page 10: ...te IP Connection CAT5 Connection TCP IP Managed Devices IP Connection Figure 2 2 Example SCPS Configuration 2 2 Safety Precautions To avoid potential device problems If the building has 3 phase AC pow...

Page 11: ...ent Use care not to exceed the rated maximum ambient temperature of the unit Reduced Airflow Installation of the equipment in a rack should be such that the amount of airflow required for safe operati...

Page 12: ...itialization procedures complete successfully LINK The LINK LED illuminates when the SCPS establishes a connection to the network TRAFFIC The TRAFFIC LED blinks when there is network traffic 100MBps T...

Page 13: ...that it is inserted snugly into the back of the SCPS The ONLINE LED will illuminate within one minute to indicate that the SCPS self test is complete If the ONLINE LED blinks contact Technical Support...

Page 14: ...erver with the SCPS Ethernet MAC address IP address and subnet mask restore power to the SCPS and wait for the ONLINE LED to illuminate Once this occurs the SCPS has completed the BootP protocol obtai...

Page 15: ...MAC address 00 80 7d 54 01 54 to the SCPS arp s 192 168 0 5 00 80 7d 54 01 54 On a UNIX platform the MAC address may require colons instead of dashes for example 00 80 7d 54 01 54 3 You may verify th...

Page 16: ...assword prompt press Return 2 Once authentication completes the SCPS prompts for any missing configuration values that are required for operation If you already provided the IP address and subnet mask...

Page 17: ...tialize the SCPS 1 Locate the recessed INIT button on the front of the SCPS You will need a non conductive non metallic tool that fits inside the recess 2 Insert the tool in the recess then depress an...

Page 18: ...Time out 15 minutes CLI access character D To change serial port settings Issue a Port Set command You may specify settings for one or all ports PORT port ALL SET BAUD baud_rate SIZE size PARITY pari...

Page 19: ...out value is non that value is used Connecting to devices using Telnet Each SCPS serial port has a unique Telnet socket number that provides a connection to the attached serial device To connect to a...

Page 20: ...dem For information about modem connections see Configuring and using dial in connections in this chapter and Server CLI command in Chapter 6 To configure a port for the serial CLI 1 Issue a Server CL...

Page 21: ...he PPP provides an alternate path to one or more remote SCPS devices Once the PPP connection is established you must launch an application that connects to the SCPS or to one of its ports The PPP conn...

Page 22: ...d to ensure that the port where the modem is connected has been defined as the serial CLI port SHOW SERVER CLI 2 Issue a Server CLI command using the Modeminit parameter to specify the modem initializ...

Page 23: ...clients however connecting to Telnet port 23 can be tunneled via a connection to SSH port 22 SSH server keys When SSH is enabled for the first time all other sessions on the SCPS are terminated and th...

Page 24: ...EY or KEY PW SSH connections will be authenticated with either a username password or an SSH key If a user has only a password defined that user must authenticate an SSH session with a username passwo...

Page 25: ...server s IP address When this method is specified the SCPS initiates an FTP client request to the specified IP address The SCPS then prompts the user for an FTP username and password for connection Wh...

Page 26: ...sion access to the SCPS 1 Issue a Server SSH command with the Disable parameter SERVER SSH DISABLE 2 You are prompted for a reboot Enter Y to reboot or N to cancel the reboot When SSH is disabled the...

Page 27: ...CLI For more information see Show Server CLI command in Chapter 6 Ending device sessions To terminate a device connection Enter CLI mode and issue a Quit command or a User Logout command QUIT or USER...

Page 28: ...cess You may change your own password at any time You must have User access rights to change another user s password or to change any user s SSH user key information and access rights To remove an SSH...

Page 29: ...may be given Access Rights Access Right Description PCON The Port Configuration access right should be given to users who must modify port settings Grant PCON access only to users who need to issue th...

Page 30: ...choice of formats you may specify the user s entire set of access rights or you may selectively add or delete access rights to a user s current definition The last two formats enable you to change a u...

Page 31: ...tribute in the RADIUS server s dictionary must be specified as a string containing the user s access rights for the SCPS exactly matching the syntax used in the SCPS User Add command Consult your RADI...

Page 32: ...ation goes to the defined RADIUS servers For serial CLI connections authentication uses the SCPS user database RADIUS Local For Telnet to serial port Telnet to admin port PPP dial in and SSH connectio...

Page 33: ...thentication and encryption settings that were configured with the Server Security command If SSH access has been enabled the display indicates SSH2 Regardless of whether SSH is enabled the display in...

Page 34: ...ts the current history display line by the number of lines per page and outputs a new history display page Prev P decrements the current history display line by the number of lines per page and output...

Page 35: ...The following command searches the history buffer for the string Process ignoring case PORT HISTORY s i Process For more information see Server CLI command and Port History command in Chapter 6 To ac...

Page 36: ...d indicating History Clear SERVER CLI HISTORY CLEAR In this case the port s history buffer is cleared at the end of each device session 4 7 Managing SNMP Structures The SCPS provides a set of commands...

Page 37: ...parameter and the management entity s IP address You may define up to four SNMP management entity addresses using separate commands SERVER SNMP MANAGER ADD ip_address When you define at least one SNM...

Page 38: ...MP Trap command with the Disable and All parameters In this case the numbered list is not displayed SERVER SNMP TRAP DISABLE ALL For more information see Server SNMP Trap command in Chapter 6 The supp...

Page 39: ...ort issue a Port Alert Copy command specifying the port numbers to be copied to and from PORT n1 ALERT COPY n2 At the confirmation prompt press Y to confirm or N to cancel When the copy operation occu...

Page 40: ...he cursor is not at the beginning of the line the cursor moves one character to the left If the cursor is at the beginning of the line no action is taken Right Arrow If the cursor is not at the end of...

Page 41: ...sessions on the SCPS are terminated For example the Server FLASH command requires a reboot before it becomes effective Similarly if you enter a Port Set command that changes the CLI access character...

Page 42: ...erminal type with the Type parameter in the Server CLI command In this case you must enter all characters When you specify an authentication method with the Auth parameter in the Server SSH command In...

Page 43: ...arameters and their values POR 2 SET BAUD 57600 FLOW XON ERR 26 SET keyword parameter invalid Syntax conventions This manual uses the following command syntax conventions Brackets surround optional ke...

Page 44: ...nates the current SCPS session None Resume Resumes device connection after being in CLI mode None Server CLI Specifies the serial CLI port port type and access character enables disables device connec...

Page 45: ...splays SCPS configuration statistics and session information SMON Show Server CLI Displays information specified with the Server CLI command SMON Show Server PPP Displays PPP settings SMON Show Server...

Page 46: ...ter 4 Access Port specific Syntax CONNECT port Connect Command Parameter Parameter Description port Port number in range 1 8 for an SCPS 8 or 1 16 for an SCPS 16 Example The following command establis...

Page 47: ...rt strings from one port to another port Port Alert Delete Deletes one or more port alert strings from a specified port Port Break Sends a serial break signal to the attached device Port History Acces...

Page 48: ...where alert strings will be copied in the range 1 8 for an SCPS 8 or 1 16 for an SCPS 16 n2 Port number from which alert strings will be copied in the range 1 8 for an SCPS 8 or 1 16 for an SCPS 16 Ex...

Page 49: ...urth alert string Select Alert string s to delete The alert string numbers specified at the prompt will be deleted Port Break command The Port Break command sends a serial break signal to the device t...

Page 50: ...sumes the serial session with the attached serial device Search S searches the port history buffer for a specified string Enclose strings containing embedded spaces in quotes To specify search directi...

Page 51: ...et CHAR cli_char TOGGLE NONE DTR Port Set Command Parameters Parameter Description port Port number in range 1 8 for an SCPS 8 or 1 16 for an SCPS 16 Default port to which you are attached ALL Indicat...

Page 52: ...matically adds 100 to the specified value When All is specified port 1 will be assigned the specified socket value plus 1 port 2 will be assigned the specified value plus 2 and so on When All is speci...

Page 53: ...Server CLI Specifies the serial CLI port type and access character modem initialization string port history mode operations and port time out value It also enables disables device connection from the...

Page 54: ...Specifies a port time out value At least one parameter must be specified Access SCON Syntax SERVER CLI PORT port TYPE type CHAR char CONNECT ON OFF HISTORY HOLD AUTO CLEAR KEEP MODEMINIT string TIMEO...

Page 55: ...he history buffer but it is not displayed When Auto is specified upon connection you are informed of how much information is in the history buffer and it is then displayed When Clear is specified the...

Page 56: ...n TFTP server host containing the image file Example The following command updates the SCPS boot image program using the image file name c winnt system32 drivers scpsboot img which is located on the T...

Page 57: ...l in client Examples The following command enables the PPP server with a local IP address of 192 168 0 1 a remote IP address of 192 168 0 2 and a subnet mask of 255 255 255 0 ser ppp ena loc 192 168 0...

Page 58: ...e the string in quotes if it contains spaces USER RIGHTS attr Attribute number defined on the RADIUS server in the range 1 255 AUTHPORT udp UDP port for RADIUS authentication server in the range 1 655...

Page 59: ...more information see Using Authentication Modes and Encryption in Chapter 4 When you enter this command you are asked to confirm or cancel the specified information Access SCON Syntax SERVER SECURITY...

Page 60: ...d changes SCPS address information When you enter this command you are asked to confirm or cancel an SCPS reboot to effect the changes Access SCON Syntax SERVER SET IP ip_address MASK subnet GATEWAY g...

Page 61: ...Community Command Parameters Parameter Description READCOMM name 1 64 alphanumeric character read community name Default public WRITECOMM name 1 64 alphanumeric character write community name Default...

Page 62: ...ently enabled traps You may indicate the traps to be enabled disabled by entering a single number several numbers separated by commas a range of numbers separated by a dash or a combinations of number...

Page 63: ...ion command The Server SNMP Trap Destination command defines or deletes destinations for enabled SNMP traps Once you define destinations for enabled SNMP traps when a trap occurs the SCPS will generat...

Page 64: ...EY Password or key authentication KEY PW Key or password authentication PW KEY Password and key authentication KEY PW Key and password authentication Default PW 6 8 Show Commands The Show command has...

Page 65: ...ytes transmitted RX Bytes Number of bytes received Errors Number of TX RX parity and framing errors User Username from User Add command Access User s access rights from User Add and User Set Access co...

Page 66: ...ommand displays SCPS configuration information and statistics Access SMON Syntax SHOW SERVER Show Server Command Display Fields Field Content Server SCPS IP address from initial configuration or Serve...

Page 67: ...S serial CLI settings Access SMON Syntax SHOW SERVER CLI Show Server CLI Command Display Fields Field Contents CLI Port Serial CLI port number and terminal type Access Character Control character used...

Page 68: ...ntax SHOW SERVER RADIUS Show Server Security command The Show Server Security command displays the current SCPS authentication settings that were configured with the Server Security and Server SSH com...

Page 69: ...Show User Command Display Fields Field Contents User Username Access User s access rights Last Login System up time value when the user logged in Port Serial port to which user is connected Username U...

Page 70: ...n see Managing Users Connecting to devices using SSH and Access rights in Chapter 4 Access USER Syntax USER ADD username PASSWORD pwd SSHKEY keyfile FTPIP ftpadd KEY sshkey ACCESS access User Add Comm...

Page 71: ...ports 2 5 6 and 7 and user and monitor access rights user add JohnDoe password secretname access P2 5 7 user smon The following command adds the username JaneDoe with access to all ports The name of t...

Page 72: ...username Username to be logged out User Set command The User Set command changes a user s configuration in the SCPS user database For more information see Managing Users Connecting to devices using SS...

Page 73: ...ss rights Multiple values may be specified separated by commas You may use one of three forms ACCESS access to specify all the user s access rights ACCESS access to specify only access rights to be ad...

Page 74: ...owing command changes the password to mynewpass for the user typing the command user set password mynewpass The following command deletes the SSH key information for JohnDoe The command will complete...

Page 75: ...gged into the SCPS Variable scpsTrapObjectUserName name of user who logged in scpsUserLogout A user logged out of the SCPS Variable scpsTrapObjectUserName name of user who logged out scpsSerialSession...

Page 76: ...rentVersion image version that SCPS is currently running scpsImageUpgradeResults Results of TFTP upgrade of an image spcsUserAdded A new user was added to the local user database Variables scpsTrapObj...

Page 77: ...E 76 Trap Description scpsPortAlert The SCPS detected a port alert string on a serial port Variables scpsTrapObjectPortNumber serial port number where port alert string was detected scpsTrapObjectPort...

Page 78: ...m Black Box to convert RJ 45 modular jacks to DB 25 or DB 9 connectors Cables and Adaptors Part No Description FA260 RJ 45 to DB 25 DTE Male Adaptor FA261 RJ 45 to DB 25 DTE Female Adaptor FA262 RJ 45...

Page 79: ...uration of the problem when the problem occurs the components involved in the problem any particular application that when used appears to create the problem or make it worse and the results of any te...

Page 80: ...NOTES 79...

Page 81: ...NOTES 80...

Page 82: ...NOTES 81...

Page 83: ...NOTES 82...

Page 84: ...Doc No 590 326 001A...

Reviews:

No comments

Related manuals for ServSelect KV119A

ARM Cortex-A9 MPCore

Brand: Dave Embedded Systems Pages: 67

Brand: Phytec Pages: 53

Brand: ZyXEL Communications Pages: 2

Brand: Dahua Pages: 24

Active Module Carrier VX402C-64

Brand: C&H Pages: 32

Brand: StarTech.com Pages: 9

Brand: Perle Pages: 491

Brand: PairGain Pages: 80

Brand: RTS Pages: 3

Brand: Altera Pages: 33

Brand: National Instruments Pages: 121

CORE 2 DUO E4000 - 3-2008

Brand: Intel Pages: 122

Brand: ADTRAN Pages: 136

Brand: ZALMAN Pages: 32

TEG-S16R - DATA SHEETS

Brand: TRENDnet Pages: 12

EZ-KIT LITE ADSP-2191

Brand: Analog Devices Pages: 98

Brand: ProCurve Pages: 2

Brand: Ublox Pages: 11

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands