manualshive.com logo in svg

HP 16-port SCS, Installation Instructions Manual, Page: 39 / 123

Share
Download
HP 16-port SCS Installation Instructions Manual Download Page 39

 

Operations 33 

 

 
 

 

The APPLIANCEADMIN level is equivalent to PALL, USER, SCON, SMON, PCON, and BREAK. 

 

The ADMIN level is equivalent to PALL, USER, SMON, PCON, and BREAK. 

The third level (that is, not APPLIANCEADMIN or ADMIN) is user. For preemption purposes, the following hierarchy is 
used: APPLIANCEADMIN>ADMIN>user.

 

Session sharing is affected by access levels. See “Session sharing.” 

Managing user access rights and access levels 

1.

 

To configure the access rights of a user, issue a 

User Add

 command, using the 

Access

 parameter to specify 

the rights or a level. 

user add <username> access=<access> 

2.

 

To change the access rights of a user, issue a 

User Set

 command, using the 

Access

 parameter to specify the 

rights or a level. 

user set <username> access=<access> 

3.

 

To display the access rights and level for one or all users, issue a 

Show User

 command. 

show user <username>|all 

See “Managing user accounts,” “User add command,” “User set command,” and “Show user command.” 

Using authentication methods 

The SCS supports several methods for authenticating users: Local, RADIUS, LDAP and None. By default, 
authentication is performed in the local SCS user database. 

Local authentication 

Local authentication uses the SCS internal user database to authenticate users. The local database supports up to 64 
users and an administrator. 

RADIUS authentication 

RADIUS authentication uses an external third-party RADIUS server containing a user database to authenticate SCS 
users. The SCS, functioning as a RADIUS client, sends user names and passwords to the RADIUS server. If a user 
name and password do not agree with equivalent information on the RADIUS server, the SCS is informed and the 
user is denied SCS access. If the user name and password are successfully validated on the RADIUS server, the 
RADIUS server returns an attribute that indicates the access rights defined for that user name. 

To use RADIUS authentication, specify information about the primary RADIUS server and optionally, a secondary 
RADIUS server to be used as a backup. 

The RADIUS server definition values specified in SCS commands must match corresponding values configured on the 
RADIUS server. On the RADIUS server, you must include SCS-specific information: the list of valid users and their 
access rights for the SCS. Each user-rights attribute in the RADIUS server’s dictionary must be specified as a string 
containing the user’s access rights for the SCS, exactly matching the syntax used in the 

SCS User Add

 command. 

Consult your RADIUS manual or administrator for information about specifying users and their attributes. The exact 
process depends on the RADIUS server you are using. 

When port group names are used, the SCS will parse group names coming from a RADIUS server and allow access 
according to group content. 

LDAP authentication 

LDAP authentication enables the user to leverage their directory service for authentication. HP supports Microsoft® 
Active Directory. The LDAP module must be managed through HP IP Console Viewer software. The details for 
configuring LDAP can be located in the documentation for the HP IP Console Viewer software or in the online Help 
section within the software itself. See 

http://www.hp.com/go/kvm

 for more information about the HP IP Console 

Viewer software. 

No authentication 

When authentication is disabled, users are not authenticated. Telnet sessions to serial ports are accepted 
immediately, and users are not prompted for a user name or password. In this case, users are granted access only to 
the port to which they are connected, including Break access. 

Summary of Contents for 16-port SCS

Page 1: ...structions See Herein Delivery Required Livraison exigée Delivery Offered Livraison proposée Vendor Firm Name and Address Comments Commentaires Raison sociale et adresse du fournisseur de l entrepreneur Title Sujet COMPUTER SUBASSEMBLY Solicitation No N de l invitation W8482 145963 A Client Reference No N de référence du client W8482 145963 GETS Reference No N de référence de SEAG PW ML 035 24064 ...

Page 2: ...ls on the Computer Sub assembly Answer 1 Attached for your information are technical details on the Computer Sub assembly Solicitation No N de l invitation Amd No N de la modif Buyer ID Id de l acheteur W8482 145963 A 001 035ml Client Ref No N de réf du client File No N du dossier CCC No N CCC FMS No N VME W8482 145963 035mlW8482 145963 Page 2 of de 2 ...

Page 3: ...ips with rack mounting hardware for easy integration into the rack Before installing the console switches and other components in the rack cabinet if not already installed stabilize the rack in a permanent location Begin installing the equipment at the bottom of the rack cabinet and then work to the top Avoid uneven loading or overloading of the rack cabinets Installation checklist Before installa...

Page 4: ...ports and you can connect a LAN interface cable between the Ethernet hub or switch and the SCS LAN connector IMPORTANT Before mounting the SCS note the media access control MAC address on the top of all 16 port SCS and the bottom of all 48 port SCS Performing the 16 port SCS rack mount The 16 port SCS can be installed in either the front or rear of the rack depending on your rack configuration and...

Page 5: ...mounting brackets are reversible allowing the SCS to be mounted facing either direction and can mount in front or rear of the rack The 48 port SCS ships with the 1U mounting brackets already attached in the standard position Figure 7 Securing 1U mounting brackets to the front of the SCS standard position Figure 8 Securing 1U mounting brackets to the rear of the SCS alternate position 4 Install up ...

Page 6: ...T LAN interface cable to the LAN port connector on the front of the SCS 7 If using Bootp for IP address assignment configure the Bootp server with the MAC address noted in step 2 See the Configuring the network address settings using BootP section of the HP 16 and 48 Port Serial Console Server User Guide for more information 8 Insert the power cord into the back of the SCS and attach the strain re...

Page 7: ...HP 16 and 48 Port Serial Console Servers User Guide Part number 391188 002 Second Edition March 2006 ...

Page 8: ...ccompanying such products and services Nothing herein should be construed as constituting an additional warranty HP shall not be liable for technical or editorial errors or omissions contained herein Linux is a U S registered trademark of Linus Torvalds UNIX is a registered trademark of The Open Group Microsoft and Windows are U S registered trademark of Microsoft Corporation Part number 391188 00...

Page 9: ...l SCS login 19 Rebooting the SCS 19 Reinitializing the SCS 20 3 Operations Overview 21 Configuring global settings 21 Console port settings 21 Changing the SCS IP 21 Updating firmware 21 Rebooting or reinitializing the SCS 21 Enabling and disabling features 21 Updating the SCS clock 22 Enabling NTP 22 Disabling NTP 22 Configuring serial port settings 22 Port groups 23 Configuring TD console serial...

Page 10: ...out user 35 Managing port history 35 Using the local history buffer 35 NFS history files 37 Timestamps 37 Enabling NFS on the SCS 37 NFS file names 38 Displaying NFS configuration information and mount status 39 Enabling NFS on a port 39 Disabling NFS on a port 39 Displaying NFS port history file information 39 Managing the SCS using SNMP 39 Enabling SNMP processing 40 Disabling SNMP processing 40...

Page 11: ... text 90 Getting help 90 Technical support 90 HP website 90 Authorized reseller 90 8 Regulatory compliance notices Federal Communications Commission notice 91 Class A equipment 91 Class B equipment 91 Declaration of conformity for products marked with the FCC logo United States only 92 Modifications 92 Cables 92 Canadian notice Avis Canadien 92 Class A equipment 92 Class B equipment 92 European Un...

Page 12: ...s are coupled together in multiple rack installations Only one component is extended at a time A rack may become unstable if more than one component is extended for any reason Power requirements WARNING To reduce the risk of personal injury fire or damage to the equipment do not overload the AC supply branch circuit that provides power to the rack Consult the electrical authority having jurisdicti...

Page 13: ...mplying with IEC 60309 are considered suitable for this purpose HP does not recommend using common power outlets strips for this equipment Airflow requirements HP 16 and 48 port Serial Console Servers draw cool air in through the front door and expel warm air out through the rear Therefore the front door of the rack must be adequately ventilated to allow ambient room air to enter the cabinet and t...

Page 14: ...en the SCS is connected to a power source 5 100 Mbps LED Illuminates when the SCS is connected to a 100 Mbps LAN 2 Online LED Illuminates steadily not blinking when the SCS self test and initialization procedures complete successfully 6 Reset button Reboots the SCS 3 Link LED Illuminates when the SCS establishes a connection to the network 7 Init button Restores the SCS factory default values when...

Page 15: ...16 port Serial Console Server rear panel 1 AC line cord connector Connects an AC power supply 3 RJ 45 serial console port 2 RJ 45 port connectors Connects serial cabling The port number is adjacent to each connector 4 LAN connector Connects a 10 100 BaseT interface cable ...

Page 16: ...nectors Connects serial cabling The port number is adjacent to each connector 3 Reset button Reboots the SCS 8 Speed LED Indicates the link speed See Table 2 1 4 Init button Restores the SCS factory default values when pressed and held 9 Link Traffic LED Indicates whether there is traffic on the link See Table 2 1 5 RJ 45 serial console port Speed and Link Traffic LEDs The Speed and Link Traffic L...

Page 17: ...re 2 4 HP 48 port Serial Console Server rear panel 1 AC line cord connector Connects an AC power supply 3 DB 9 debug port connector Should be used only on the advice and with the guidance of HP Technical Support 2 Outflow openings Openings for two internal fans ...

Page 18: ...ll the SCS so that you can connect cables between the serial devices and the SCS serial ports and you can connect a LAN interface cable between the Ethernet hub or switch and the SCS LAN connector Performing the 16 port SCS rack mount The 16 port SCS can be installed in either the front or rear of the rack depending on your rack configuration and can be secured to the shelf in the following positi...

Page 19: ...SCS to the shelf in one of the positions illustrated in Figure 2 5 and Figure 2 6 Figure 2 7 16 port SCS center shelf mount 2 Install up to four clip nuts for round hole racks or four cage nuts for square hole racks Figure 2 8 Installing clip nuts Figure 2 9 Installing cage nuts ...

Page 20: ...Installation and configuration 14 3 Secure the shelf with the 16 port SCS to the rack using four T 25 Torx screws Figure 2 10 16 port SCS shelf mount ...

Page 21: ...mounting brackets already attached in the standard position Figure 2 11 Securing 1U mounting brackets to front of SCS standard position Figure 2 12 Securing 1U mounting brackets to the rear of SCS alternate position 1 Install up to four clip nuts for round hole racks or four cage nuts for square hole racks ...

Page 22: ...tallation and configuration 16 Figure 2 13 Installing clip nuts Figure 2 14 Installing cage nuts 2 Secure the SCS to the rack using four T 25 Torx screws Figure 2 15 Securing the 48 port SCS into the rack ...

Page 23: ...cumentation of the device 6 Connect the LAN B by attaching a CAT5 or better interface cable to the LAN port connector on the front of the SCS 7 If using BootP for IP address assignment configure the BootP server with the MAC address noted in step 2 See Configuring the network address settings using BootP 8 Insert the power cord into the back of the SCS and attach the strain relief to secure the po...

Page 24: ... 192 168 0 5 bytes 32 time 10ms TTL 128 Reply from 192 168 0 5 bytes 32 time 10ms TTL 128 Reply from 192 168 0 5 bytes 32 time 10ms TTL 128 If the SCS did not successfully obtain its IP address with the BootP protocol the following reply displays Pinging 192 168 0 5 with 32 bytes of data Request timed out Request timed out Request timed out Request timed out In this case confirm that the address i...

Page 25: ... prompted for a new Admin password Passwords are case sensitive and must contain three to 16 alphanumeric characters You must enter the new password twice to confirm that you entered it correctly Enter SCS New Admin Password Confirm New Admin Password After you have provided the required configuration information a confirmation message appears while the SCS stores the values in its configuration d...

Page 26: ... seven seconds to release the button before any action is taken After seven seconds the online LED blinks more rapidly to confirm that the SCS configuration database has been erased Continuing to hold the init button for a few more seconds erases the IP address as well The online LED blinks faster to confirm the deletion If any portion of FLASH is erased the SCS reboots when the init button is rel...

Page 27: ...ring connection and when a session ends See Managing port history The session time out value which indicates the period of inactivity that must occur before a session is ended this value can be overridden at the port level See Session time out Changing the SCS IP To change the SCS IP gateway or subnet addresses use the server set command See SCS commands Updating firmware To update the boot and ap...

Page 28: ...with the Disable parameter ntp disable Configuring serial port settings A console target device TD can be a serial managed Linux or other UNIX server router firewall or other supported serial device By default SCS ports are configured with the settings listed in Table 3 2 Table 3 2 Default port settings Parameter Value Target device Console Name xx xx xx Pn last three octets of MAC address plus th...

Page 29: ...p stop_bits flow flow_ctrl timeout time out socket socket char cli_char toggle none dtr power signal group group See Port set command Displaying serial port settings Issue a Show Port command show port port all names groups When you request information about a port configured as td console the display includes configuration information current power status if power status monitoring has been enabl...

Page 30: ...et client Connecting to devices from the console port You can connect to a serial device from the console port using a local terminal or a local PC using a terminal emulation program If you connect an external modem to the console port you can also access devices through a remote terminal or PC that can dial into the external modem See Configuring and using dial in and Server CLI command To connec...

Page 31: ...ver CLI command Using PPP The SCS supports remote PPP access using an auto answer modem that answers calls and establishes the PPP protocol with a dial in client You can establish Telnet or SSH connections over PPP PPP dial in can be used to access a remote SCS that does not warrant a WAN link to the Ethernet interface The PPP dial in can also be used to access a subnet containing remote devices i...

Page 32: ...nabled and disabled with the Server SSH command When you enable SSH you can specify the authentication methods that are used for SSH connections The method can be a password an SSH key or both A user s password and SSH key are specified with a User Add or User Set command All SSH keys must be Rivest Shamir and Adelman RSA keys Digital signature algorithm DSA keys are not supported Table 3 3 lists ...

Page 33: ...e SSHKey and FTPIP keyword pair to define the network location of a user SSH key file the SSHKey parameter specifies the name of the uuencoded UNIX to UNIX encoded public key file on an FTP server The maximum file size that can be received is 4 KB The FTPIP parameter specifies the server FTP IP address When this method is specified the SCS initiates an FTP client request to the specified IP addres...

Page 34: ...ctions with the Server SSH command both plain text and SSH connections are allowed To enable both Telnet and SSH connections issue a Server Security command indicating Encrypt SSH None Session sharing Session sharing allows multiple concurrent sessions to the same attached device The 16 port SCS allows up to 32 total concurrent sessions with up to four concurrent sessions per port The 48 port SCS ...

Page 35: ...vely RU is prompted with preemption choices E N and D If RU replies with E then SO will be preempted or disconnected and RU will be connected exclusively to the port If RU replies with N then SO will be preempted or disconnected and RU will be connected non exclusively to the port If RU replies with D SO will remain connected and RU will not be connected to the port Share mode Auto or Query SO is ...

Page 36: ...rently using the port Displaying share mode information Issue a Show Server command The display indicates the share mode CLI mode While you are connected to an attached serial device you can enter CLI mode and enter SCS commands Entering CLI mode To enter CLI mode enter the CLI access character by pressing the Ctrl D keys At the CLI prompt you can enter SCS commands Exiting CLI mode Issue a Resume...

Page 37: ...ou are the session originator all the sessions that share with you will also be logged out See User Logout command and Session sharing Session time out The SCS monitors data traffic when you are connected to an attached serial device You can specify a time out value with the Server CLI command You and also specify a time out value for each port with the Port Set command The value indicates the num...

Page 38: ...e listed in Table 3 4 which also describes the access rights a user can be given Table 3 4 Access rights Access right Description PCON The Port Configuration access right allows the user to modify port settings Grant PCON access only to users who must issue the Port Set command SCON The Server Configuration access right allows the user to change the SCS configurations including setting the IP addr...

Page 39: ...s If the user name and password are successfully validated on the RADIUS server the RADIUS server returns an attribute that indicates the access rights defined for that user name To use RADIUS authentication specify information about the primary RADIUS server and optionally a secondary RADIUS server to be used as a backup The RADIUS server definition values specified in SCS commands must match cor...

Page 40: ...r database This authentication mode cannot be used for SSH connections Specifying authentication method 1 For RADIUS authentication issue a Server RADIUS command server radius primary secondary ip radius_ip secret secret user rights attr authport udp timeout time out retries retry You must specify the IP address of the server the User Datagram Protocol UDP port to be used and a secret to be used Y...

Page 41: ...DMIN level may unlock all users Enabling security lock out To enable security lock out issue a Server Security command using the Lockout parameter with a value between one and 99 server security lockout 1 Disabling security lock out To disable security lock out issue a Server Security command using the Lockout 0 parameter server security lockout 0 Unlocking a locked out user Issue a User Unlock co...

Page 42: ...er information is output and the current history display line is not changed Entering the Search command with no parameters searches again for the previous string in the same direction as the previous search Top T sets the current history display line to one and outputs a history display page The following examples assume the user is in port history mode The following command searches the history ...

Page 43: ... of network load or server speed an overrun might occur in the history accumulation buffer and older data will be discarded to accommodate new incoming data If this occurs the location in the history file where the data was lost will indicate data lost due to overrun appended to the timestamp Enabling NFS on the SCS To use NFS you must first enable NFS on the SCS by identifying the address and mou...

Page 44: ...egardless of the file type Table 3 7 Substitution strings in NFS file name specification Two character string Substituted value Example Port 7 on 08 January 2004 d Day of month 01 31 08 D Same as m d y 01 08 04 F Same as Y m d this is the ISO 8601 date format 2004 01 08 j Julian day of year 001 366 008 m Month 01 12 008 y Year without century 00 99 04 Y Year with century 2004 9999 2004 Port number...

Page 45: ...e written when the specified number of bytes has accumulated regardless of elapsed time If you configure a size value larger than 3 584 the data will be written whenever 3 584 or more unwritten bytes accumulate Displaying NFS configuration information and mount status Issue a Show NFS command The display will include the status of the mount operation show nfs See Show NFS command Enabling NFS on a...

Page 46: ... addresses To add an SNMP management entity address issue a Server SNMP Manager command with the Add parameter and the IP address of the management entity You can define up to four SNMP management entity addresses using separate commands server snmp manager add ip_address When you define at least one SNMP manager SNMP requests are processed if they are from one of the defined SNMP managers If a re...

Page 47: ...g You can define up to 10 strings for each port using separate commands The alert string will only generate a trap if the Port Alert trap is enabled with a Server SNMP Trap command port port alert add string To delete a port alert string issue a Port Alert Delete command specifying a port port port alert delete The SCS displays a numbered list of alert strings that have been defined for the specif...

Page 48: ...CFG is created 3 From the C Program Files HP Systems Insight Manager mibs command line enter mxmib a CPQSERIAL cfg to register the new MIB 4 From the C Program Files HP Systems Insight Manager mibs command line enter mxmib and verify that the new MIB is listed NOTE For more information on uploading and registering an MIB in HP SIM see the HP Systems Insight Manager Technical Reference Guide locate...

Page 49: ...Configuring the device to send traps to Insight Manager 7 SP2 1 Add the Insight Manager 7 SP2 server as an SNMP trap recipient 2 Configure the device to send alert notifications to Insight Manager 7 SP2 as SNMP traps ...

Page 50: ...If there is no previous command line in the command line buffer the command line is set to blanks and you can enter a new command Down arrow The next command in the CLI command line buffer is made available for edit If there is no next command line the command line is set to blanks and you can enter a new command Delete The character at the cursor position is deleted and all characters to the righ...

Page 51: ...SH command you must enter all characters When you specify control signal monitoring with the Power parameter in the Port Set command you must enter all characters When you specify the console port in commands such as Port Set and Show Port you must enter the capitalized abbreviation CON Port names can contain up to 32 alphanumeric characters and hyphens and must be unique Two ports on the same SCS...

Page 52: ...y information if the information spans more than one screen More appears on the last line You can To view the next line press one of the following Crtl J keys Crtl M keys Enter key Enter q to quit Syntax conventions This manual uses the following command syntax conventions Brackets surround optional keywords and values Angle brackets surround user supplied positional parameters and keyword paramet...

Page 53: ...Access level APPLIANCEADMIN Port Alert Add Description Adds a port alert string Access right SCON or PCON Access level ADMIN or APPLIANCEADMIN Port Alert Copy Description Copies a port alert strings to another port Access right SCON or PCON Access level ADMIN or APPLIANCEADMIN Port Alert Delete Description Deletes one or more port alert strings Access right SCON or PCON Access level ADMIN or APPLI...

Page 54: ... and connection methods Access right SCON Access level APPLIANCEADMIN Server Set Description Changes the SCS network configuration Access right SCON Access level APPLIANCEADMIN Server Share Description Enables and disables session sharing on the SCS Access right SCON Access level APPLIANCEADMIN Server SNMP Description Enables and disables UDP port 161 SNMP processing Access right SCON Access level...

Page 55: ...t SMON Access level ADMIN or APPLIANCEADMIN Show Server Security Description Displays authentication and lock out settings Access right SMON Access level ADMIN or APPLIANCEADMIN Show Server SNMP Description Displays SNMP configuration information Access right SMON Access level ADMIN or APPLIANCEADMIN Show User Description Displays user configuration and session information Access right SMON Access...

Page 56: ...ears listing all ports that are available for serial connection this excludes ports to which you are already connected and ports you do not have permission to access At the prompt enter a port number or name You can also press the Enter key to cancel the command EXCLUSIVE Requests exclusive access to the port initially accommodated only if the port is not currently in use Example The following com...

Page 57: ...Table 5 3 NFS command parameters Parameter Description ENABLE Enables NFS on the SCS IP nfs_server IP address of the NFS server in IP dot notation The NFS server must support NFSv3 RFC1813 This parameter is required if NFS is being enabled for the first time MOUNT mount Mount point subdirectory location on the NFS server This parameter is required if NFS is being enabled for the first time The NFS...

Page 58: ...command parameters Parameter Description ENABLE Enables NTP on the SCS IP prim_add sec_addr IP address of the first NTP server to contact to obtain the time and optionally the IP address of the second NTP server to contact if a valid time is not received from the first server At least a primary address is required if NTP is being enabled for the first time UPDATE hours Interval for sending a time ...

Page 59: ...uplicate strings are not allowed on the same port To generate a trap issue the Server SNMP Trap command to enable the Port Alert trap See Managing the SCS using SNMP Access right SCON or PCON Access level ADMIN or APPLIANCEADMIN Syntax port port alert add string Table 5 6 Port Alert Add command parameters Parameter Description port Port number or name string Three to 32 character string If the str...

Page 60: ...escription port Port number or name Example The following command deletes defined alert strings from port 26 port 26 alert delete Alert strings assigned to port 26 1 The first alert string 2 The second alert string 3 The third alert string 4 The fourth alert string Select Alert string s to delete The alert string numbers specified at the prompt will be deleted Port Break The Port Break command sen...

Page 61: ...DMIN Syntax port port all nfs enable file file size bytes time sec or port port all nfs disable Table 5 10 Port NFS command parameters Parameter Description ENABLE Enables NFS on the specified port port Port name or number ALL Indicates that the following parameters should be applied to all ports FILE file File name specification up to 32 characters This parameter must result in a unique file name...

Page 62: ...g serial port settings Access right SCON or PCON Access level ADMIN or APPLIANCEADMIN Syntax port port all set td device name name baud baud size size parity parity stop stopbits flow signal timeout time out socket socket char cli_char toggle none dtr power signal group group Table 5 11 Port Set command parameters Parameter Description port A port number port name Default Port to which you are att...

Page 63: ...nd so on When All is specified and SSH is enabled port 1 will be assigned the specified socket value plus 101 port 2 will be assigned the specified value plus 102 and so on When both plain text Telnet and SSH connections are enabled the 100 value will not appear in displays The value should not be in the range 6000 to 6063 Default 3000 plus the port number 3100 plus the port number if SSH is enabl...

Page 64: ... Indicates that the port settings that follow should be applied to all ports except the console port IN OUT Either In to specify translation for incoming data or Out to specify translation for outgoing data CR cr Translation to be made for carriage returns Valid values are CR CR Carriage return is treated as a carriage return CR LF Carriage return is treated as a linefeed CR STRIP Carriage return ...

Page 65: ...rt Server RADIUS Specifies RADIUS server parameters Server Reboot Reboots the unit Server Security Specifies user authentication method enables and disables security lock out and enables and disables connection methods Server Set Changes the SCS network configuration Server Share Specifies session sharing settings Server SNMP Enables and disables UDP port 161 SNMP processing Server SNMP Community ...

Page 66: ...pend the session with the device and place you in CLI command mode This value will be used if the Port Set command of a port contains a Char None parameter Default d CONNECT ON OFF Enables or disables the ability to use the Connect command from the console port When enabled a console port user can use the Connect command to establish a connection to the serial device attached to another SCS serial...

Page 67: ... To update the bootstrap HP recommends that the unit be placed on a UPS under controlled conditions to avoid interruption of the boot FLASH update process Access right SCON Access level APPLIANCEADMIN Syntax server flash boot app hostip tftp_add image host_file Table 5 15 Server FLASH command parameters Parameter Description BOOT APP Indicates that the image loading is either a boot image or an ap...

Page 68: ...st be on same subnet as REMOTEIP address REMOTEIP rem_ip IP address to assign to the PPP client end of the PPP connection Must be on same subnet as LOCALIP address MASK subnet Subnet mask for the PPP dial in client Examples The following command enables the PPP server with a local IP address of 192 168 0 1 a remote IP address of 192 168 0 2 and a subnet mask of 255 255 255 0 ser ppp ena loc 192 16...

Page 69: ...ation Default values will be used for the UDP port time out and retries values ser radius primary ip 192 168 0 200 secret ThePrimaryRadSecret user rights 86 The following command deletes the primary RADIUS server definition ser radius primary del Server Reboot The Server Reboot command reboots the SCS During a reboot any active Telnet sessions including your own are terminated and all users are in...

Page 70: ...disable specify a zero value Default 0 disabled Server Set The Server Set command changes SCS address settings You can specify one two or all three parameters A reboot is required if you change the IP address Access right SCON Access level APPLIANCEADMIN Syntax server set ip ip_address mask subnet gateway gtwy Table 5 20 Server Set command parameters Parameter Description IP ip_address IP address ...

Page 71: ...ommunity readcomm name writecomm name trapcomm name Table 5 23 Server SNMP Community command parameters Parameter Description READCOMM name 1 to 64 alphanumeric characters read community name Default Public WRITECOMM name 1 to 64 alphanumeric characters write community name Default Public TRAPCOMM name 1 to 64 alphanumeric character trap community name If you specify this parameter the name must b...

Page 72: ...e Managing the SCS using SNMP and Supported traps Access right SCON Access level APPLIANCEADMIN Syntax server snmp trap enable disable all Table 5 25 Server SNMP Trap command parameter Parameter Description ENABLE DISABLE ENABLE generates a numbered list of currently disabled traps from which you choose those to enable DISABLE generates a numbered list of currently enabled traps from which you cho...

Page 73: ...ication PW KEY Password and key authentication KEY PW Key and password authentication Default PW Show commands The Show command has several forms as listed in Table 5 28 Table 5 28 Show command summary Command Description Show NFS Displays NFS mount status and configured values Show NTP Displays configured NTP values Show Port Displays port information Show Port In Out Displays how carriage return...

Page 74: ...port A port number port name or CON If the port name contains spaces it must be enclosed in double quotes Default Your port ALL Displays information about all ports NAMES Displays a list of port numbers and associated names GROUPS Displays a list of port numbers and the group name assigned to each port if any ALERT Displays port alert strings Table 5 30 lists the display fields for a Show Port com...

Page 75: ...t Access commands Groups Group names Port Access Indicates if a user can connect to the port BY GROUP or BY PORT If there is any group defined for any ports which can be determined with a show Port Groups command each user can connect BY GROUP unless a user s access rights include PALL in which case a user can connect BY PORT If a user is assigned an empty group with no ports in it or no groups at...

Page 76: ... mask from initial configuration or Server Set command Gateway Gateway IP address from initial configuration or Server Set command Up Time Days hours minutes and seconds since unit was rebooted MAC Ethernet MAC address S N Serial number Port Port number Username User name from User Add command Duration Duration of session Socket Telnet socket number From Socket Telnet client IP address with socket...

Page 77: ...onnect Indicates whether a valid user on the console port may use the Connect command Modeminit string String used to initiate modem connections on the console port Server CLI Timeout Session time out value shown in full minute or minute second form for example 3m for 3 minutes 3 30 for 3 minutes 3 seconds Show Server PPP command The Show Server PPP command displays the current PPP settings that w...

Page 78: ...ss right SMON Access level ADMIN or APPLIANCEADMIN Syntax show server snmp Table 5 34 Show Server SNMP command display fields Field Content Server SNMP Enable if SNMP processing is enabled Disable if SNMP processing is disabled from server SNMP command Read Community Read community name from Server SNMP Community command Write Community Write community name from Server SNMP Community command Trap ...

Page 79: ...which user is connected Username User name Duration Duration of user s session Socket Telnet socket number From Socket Telnet client IP address and socket number There might be difference between the display for a Show User command without a user name and Show User current_username If you do not specify a user name the command displays the current user credentials with a user name the information ...

Page 80: ...lso specify the FTPIP parameter FTPIP ftpadd FTP server IP address If this parameter is specified you must also specify the SSHKey parameter KEY sshkey Uuencoded SSH key ACCESS access Command and port access rights or level You may specify multiple access rights separated by commas or a level Valid values for access rights are P n Access to the specified port number P x y Access to the specified r...

Page 81: ...setup by default and is located in the CONFIG database in stead of the USER database The user name is Admin and is case sensitive The account has no password Upon fist login the authenticating user must assign an Override Admin password If you are authenticating on the Serial Console and the SCS has not been configured the authenticating user will be asked to enter IP address Subnet Mask Gateway a...

Page 82: ...ified with the SSHKey and FTPIP parameters or with the Key parameter specify Key ACCESS access Command and port access rights or level You can specify multiple access rights separated by commas or a level If specifying access rights you can use one of three forms ACCESS access to specify all access rights ACCESS access to specify only access rights to be added ACCESS access to specify only access ...

Page 83: ...He may now access the ports defined in group Dev3 as well as ports in other groups that were previously configured for him user set group Dev3 User Unlock command The User Unlock command unlocks a user who was previously locked out After this command completes the user can attempt login authentication again Access right USER Access level ADMIN may unlock all except APPLIANCEADMIN or APPLIANCEADMIN...

Page 84: ... 1 75 x 8 75 x 8 00 in 4 45 x 44 45 x 25 40 cm 1U form factor 1 75 x 17 50 x 10 00 in Weight without cables 5 lb 2 3 kg 9 lb 4 08 kg Heat dissipation 102 BTU hr 205 BTU hr Airflow 2 5 cfm 14 cfm Power consumption 30 W 60 W AC input power 45 W maximum 90 W maximum AC input maximum 100 to 240 VAC 100 to 240 VAC AC input current rating 0 5 A 1 A maximum AC input cable 18 AWG three wire cable with a t...

Page 85: ...ar adapter CAT5 cable and CAT6 cables for SCS 48 are available to convert RJ 45 modular jacks to standard pinout configurations Adapters for use with CAT5 and CAT6 cable Table 6 3 lists the adapters available for use with CAT5 and CAT6 cables Table 6 3 Adapters for use with CAT5 and CAT6 cables Part number Description AF103A HP RJ 45 to DB9 DCE F Adapter AF104A HP Cable CAT5 RJ 45 Cisco AF105A HP ...

Page 86: ...Technical specifications 80 Figure 6 1 CAT5 and CAT6 cable adapter pin assignments ...

Page 87: ...y NFS error codes See NFS error codes and ports NFSMountFailedRetrying NFS is enabled and the first mount attempt failed Additional mount retries are still being performed Variables Primary and secondary NFS error codes See NFS error codes and ports NFSMountLost1stRetryFailed NFS is enabled and a mount completed successfully That mount was lost and the first attempt to re establish that mount has ...

Page 88: ... the port and has successfully opened the history file on the NFS server However an error occurred when writing to that file Variables SCS port number port error status plus primary and secondary NFS error codes See NFS error codes and ports NFSUnmountedOK NFS is disabled and the unmount operation has completed successfully PortAlert The SCS detected a port alert string on a serial port Variables ...

Page 89: ...rrun error occurred 7 From the remote procedure call arguments cannot be encoded 8 From the remote procedure call the result cannot be decoded 9 From the remote procedure call unable to send 10 From the remote procedure call unable to receive 11 From the remote procedure call a time out occurred 12 From the remote procedure call RPS versions were incompatible 13 From the remote procedure call an a...

Page 90: ...y 44 An invalid argument was encountered 45 The file was too large 46 There is no space left on the device 47 This is a read only file system 48 There were too many links 49 The network is down 50 The network is unreachable 51 The network dropped the connection because of a reset 52 The software caused a connection abort 53 The connection was reset by a peer 54 No buffer space is available 55 The ...

Page 91: ...2 The client s disk quota on the server has been exceeded For NFSv3 and NFSv4 The user s resource limit on the server has been exceeded 81 The file handle specified in the arguments was invalid It either no longer exists or access to it has been revoked 82 The file handle specified in the arguments referenced a file on a non local file system on the server that is there were too many levels of rem...

Page 92: ... server instance was used 107 A state ID that designates the locking state for a lockowner file at an earlier time was used 108 A state ID generated by the current server instance that does not designate any locking state either current or superseded for a current lockowner file pair was used 109 The sequence number in a locking request is neither the next expected number nor the last number proce...

Page 93: ...locks 127 An illegal operation value has been specified in the arg op field of a COMPOUND or CB_COMPOUND procedure 128 The server determined a file locking deadlock condition for a blocking lock request 129 The operation cannot be successfully processed because a file used in the operation is currently open 130 Because of administrator intervention the lock owner s record locks share reservations ...

Page 94: ...red unable to write to the file fast enough 9999 No recent errors Ports used Table 6 7 lists the UDP and TCP ports numbed used by the SCS and the attached server and devices The values assume a default configuration Some values are configurable Table 6 7 Ports used by SCS Port type and number Direction Used for TCP 22 Inbound on SCS SSH2 if enabled TCP 23 Inbound on SCS Telnet UDP 69 Inbound on SC...

Page 95: ...intenance upgrades and services to qualified personnel WARNING To reduce the risk of injury from electric shock hazards do not open this enclosure WARNING To reduce the risk of electric shock fire or damage to the equipment do not plug telephone or telecommunications connectors into this receptacle WARNING To reduce the risk of injury from a hot component allow the surface to cool before touching ...

Page 96: ...his service is available 24 hours a day 7 days a week For continuous quality improvement calls may be recorded or monitored If you have purchased a Care Pack service upgrade call 1 800 633 3600 For more information about Care Packs see the HP website http www hp com Outside North America call the nearest HP Technical Support Phone Center For telephone numbers for worldwide Technical Support Center...

Page 97: ...f the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications Operation of this equipment in a residential ar...

Page 98: ...dentify this product see the part series or model number found on the product Modifications The FCC requires the user to be notified that any changes or modifications made to this device that are not expressly approved by Hewlett Packard Company may void the user s authority to operate the equipment Cables Connections to this device must be made with shielded cables with metallic RFI EMI connector...

Page 99: ...standards European Norms which are listed on the EU Declaration of Conformity issued by Hewlett Packard for this product or product family This compliance is indicated by the following conformity marking placed on the product This marking is valid for non Telecom products and EU harmonized Telecom products e g Bluetooth This marking is valid for EU non harmonized Telecom products Notified body num...

Page 100: ...uipment by handing it over to a designated collection point for the recycling of waste electrical and electronic equipment The separate collection and recycling of your waste equipment at the time of disposal will help to conserve natural resources and ensure that it is recycled in a manner that protects human health and the environment For more information about where you can drop off your waste ...

Page 101: ...iguring to receive traps 42 discovering the device 42 managing alert traps 42 sending traps 42 initial SCS login 19 installation 17 modifications 92 NFS 37 commands 51 disabling 38 disabling on port 39 displaying configuration 39 enabling 37 enabling NFS on the SCS ports 38 enabling on port 39 error codes 83 file names 38 history 39 mount status 38 port status 88 timestamps 37 NTP 52 Port display ...

Page 102: ...splaying configuration information 41 enabling 40 enabling traps 40 SSH authenticating 26 disabling SSH session to SCS 28 display SSH information 28 enabling SSH session to SCS 28 server keys 26 user keys 27 supported traps 81 technical specifications 78 user accounts adding user 31 changing configuration 32 deleting user 32 displaying user configuration 32 managing user access 33 User accounts co...

Page 103: ... Virtual media functionality 8 Local versus remote management 9 Remote KVM console operation 10 IPv6 protocol support 10 KVM performance over a network 11 Session types 11 Managing switch users through Active Directory 12 Authenticate Only mode 13 LDAP mode 14 Local KVM console operation 16 Integrating HP console switches and HP Lights Out technology 17 Integrating legacy KVM components 18 KVM con...

Page 104: ...ith Virtual Media 2x1x16 and 4x1x16 models available x HP Server Console Switch with Virtual Media x Interface adapters for keyboards video monitors mice KVMs and CAT5e cabling Figure 1 HP KVM and serial consoling components HP IP Console Switch with Virtual Media and IP Console Viewer HP TFT7600 RKM HP Server Console Switch with Virtual Media PS 2 USB Virtual Media Interface Adapters CAT5e cable ...

Page 105: ...yboard Monitor The HP TFT7600 Rackmount Keyboard Monitor RKM combines a 17 inch WXGA monitor with a keyboard touch pad that mounts in a standard 19 inch rack The RKM Figure 2 is designed to meet the special needs of the data center environment x Both PS 2 and USB connectivity for operation with a variety of equipment x Anti glare display for easy viewing in a brightly lit equipment room x Front pa...

Page 106: ...e Viewer software that supports both Linux and Microsoft Windows clients including integration with Microsoft Active Directory using Lightweight Directory Access Protocol LDAP and support for IPv6 The switch can integrate with HP Systems Insight Manager HP SIM and provide SNMP traps alerts to HP SIM for event tracking Figure 3 HP IP Console Switch with Virtual Media HP Server Console Switch with V...

Page 107: ...ions No Virtual media VM operation is supported only by the Virtual Media Interface adapter which is easily distinguishable from legacy non VM adapters by the status LEDs on the RJ 45 module Each interface adapter has a unique factory assigned electronic identification number EID used by the switch to recognize and manage the attached device The interface adapter also stores a user configured serv...

Page 108: ... in the cable is twisted to prevent electromagnetic interference crosstalk caused by electrical signals traveling in adjacent wire pairs In normal network communication only two of the four pairs are used The HP KVM Console Switches use all four pairs to send the signal data CAT5 cables are available from HP in standard lengths of 3 6 12 20 and 40 feet To reduce cable clutter or the need to coil e...

Page 109: ...rver connected directly or tiered downstream The HP Server Console Switch with Virtual Media on the other hand enables one or two local KVM users to fully manage any server connected directly or tiered downstream When tiered downstream from an HP IP Console Switch supporting a remote KVM user the HP Server Console Switch enables that remote KVM user to access and manage any server connected direct...

Page 110: ...image file of a floppy disk or ISO image file of a CD ROM can also be mapped to a target server from a remote client using IP Console Viewer 3 0 or later HP IP Console Viewer has the built in ability to mount and use img and iso images For more information on using ISO images in the client OS refer to the following URL http h20229 www2 hp com downloads iso_format html jumpid reg_R1002_USEN Virtual...

Page 111: ...e A and four Remote KVM Consoles have access to all servers in the system Groups A and B while the Local KVM Console B has access only to the servers in Group B Note In a tiered Server Console Switch only local port B is available for local KVM use Figure 7 System using remote and local KVM console management Remote KVM Consoles Local KVM Console B LAN HP IP Console Switch 4x1x16 HP Server Console...

Page 112: ...ware The significantly higher addressing capability of IPv6 relieves the address exhaustion and translation issues that are inherent with IPv4 Figure 8 OSD network settings menu A Network settings menu IPv4 selected B Network settings menu IPv6 selected Only one protocol IPv4 or IPv6 can be configured for a KVM system The IPv4 protocol is the default and it can be set for either Static or BOOTP de...

Page 113: ...KVM performance over a network HP recommends that administrators do the following for KVM sessions x Use a 100 Mbps or faster network The latest HP IP Console Switches support operation on gigabit Ethernet networks x Use standard video settings and color depth 1024 x 768 256 colors x Minimize screen refreshes by not running applications that display large windows and require frequent content chang...

Page 114: ...ned by a network s Domain Controller Server It allows centralized management of access to network components including console switches Figure 10 Figure 10 HP IP Console Switch management using Active Directory Active Directory Domain user Domain user w switch A rights Domain user w switch B rights Domain user w switch C rights Domain user Remote KVM Console Domain Controller Server Switch A Switc...

Page 115: ... itself grants access to the requested server User data exists in the both the switch and the directory of the domain controller Figure 11 illustrates how a switch user s query is processed in the Authenticate Only mode Figure 11 Query processing in Authenticate Only mode Switch User Switch 1 Request to view server console Domain Controller Server 6 Switch response 5 If valid switch grants access ...

Page 116: ...ted server console LDAP mode can process switch user queries using one of three sub modes Basic mode User Attribute mode or Group Attribute mode LDAP Basic mode In Basic mode Figure 12 only the user ID and password are checked against the directory If the user exists and the password is correct then the user obtains access without further validation Note For security reasons HP recommends using LD...

Page 117: ...tch 1 Request to view server console Domain Controller Server 4 Directory response 5 Switch response 2 User ID password server forwarded by LDAP 3 Directory checks User ID and password then checks user groups to determine access for validated user KVM Switch Admin Group Windows Server Admin Group Linux Server Admin Group Switch User Switch 1 Request to view server console 5 Switch response 2 User ...

Page 118: ...h 1 and can access all connected servers Local KVM console operation The local out of band KVM console attaches directly to the console switch using either PS 2 and video cables or a USB adapter The local KVM console uses the OSD application included in the console switch firmware Generally only an IT administrator has access to a local KVM console Production and development servers can be locked ...

Page 119: ...and HP Lights Out technology Table 4 KVM functionality of the HP IP Console Switch and of Lights Out technology Remote KVM console function HP IP console switch Lights Out technology Required software HP IP Console Viewer HP ProLiant Management Pack Works with any server Yes Requires Lights Out management port Server BIOS and OS level access Yes Yes IP addresses required 1 per switch 1 per server ...

Page 120: ...d may limit tiering capabilities and video performance Infrastructure designers should note the following limitations of legacy server management components x Virtual media operation is not supported x No tiering is supported downstream of a legacy device x Video resolutions above 1024 x 768 256 colors may result in poor performance x Expansion modules support downstream servers only and cannot be...

Page 121: ...tices Firmware upgrades HP recommends upgrading the firmware on all newly installed switches and interface adapters before configuring the system In addition HP recommends upgrading the firmware on all existing management devices when a new management device is added to the system Administrators can upgrade the HP IP Console Switch firmware using either of the following methods x Through a TFTP or...

Page 122: ...nattended the screen saver should be enabled so that the local console is automatically disconnected from a server after a specified period of inactivity Energy mode Energy saving modes for either the switch OSD or the target servers are not recommended for the following reasons x Little energy savings CRTs are not attached to the servers and the TFT screens typically used in the racks are general...

Page 123: ...P com 2006 2008 Hewlett Packard Development Company L P The information contained herein is subject to change without notice The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services Nothing herein should be construed as constituting an additional warranty HP shall not be liable for technical or editorial errors or omi...

Reviews:

No comments