Home
/
Lantronix
/
SLC8
/
User Manual

Lantronix SLC8, User Manual

Share

Page: 194 / 351

background image

12: User Authentication

SLC™ Console Manager User Guide

194

To set permissions for Kerberos users not already defined by the user rights group:

set kerberos permissions <Permission List>

where

<Permission List> is one or more of nt, sv, dt, lu, ra, sk, um, dp, ub,

rs, rc, dr, wb, sn, ad, po, pc

To remove a permission, type a minus sign before the two-letter abbreviation for a user
right.

To set a default custom menu for Kerberos users:

set kerberos custommenu <Menu Name>

To view Kerberos settings:

show kerberos

Similar to RADIUS, the main function of is to perform authentication for remote access.
The SLC console manager supports the protocol (not the older TACACS or XTACACS
protocols).

The system administrator can configure the SLC unit to use to authenticate users
attempting to log in using the Web, Telnet, SSH, or the console port.

Users who are authenticated through Kerberos are granted device port access through the port
permissions on this page.

All Kerberos users are members of a group that has predefined user rights associated with it. You
can add additional user rights that are not defined by the group.

To configure the SLC console manager to use to authenticate users:

1.

Click the

tab and select

. The following page displays.

«
...
192
193
194
195
196
...
»

Summary of Contents for SLC8

Page 1: ...Part Number 900 449 Revision J July 2014 SLC Console Manager User Guide SLC8 SLC16 SLC32 SLC48...

Page 2: ...into hosts other than this product must be done under their terms A machine readable copy of the corresponding portions of GPL licensed source code may be available at the cost of distribution Such O...

Page 3: ...uipment Changes or modifications to this device not explicitly approved by Lantronix will void the user s authority to operate this device The information in this guide may change without notice The m...

Page 4: ...redesigned SLC Network web page Email Log Firmware Update vi PC Card and NFS SLC Temperature and PPP dialback including CallBack Control Protocol March 2010 H Updated for USB support that was added in...

Page 5: ...ols Supported ____________________________________________________25 Access Control ________________________________________________________25 Device Port Buffer ______________________________________...

Page 6: ...___________________________________47 Command Line Interface ____________________________________________________47 Logging In ____________________________________________________________47 Logging Ou...

Page 7: ...__________________71 Web SSH Web Telnet Settings ___________________________________________71 Phone Home __________________________________________________________71 SNMP ____________________________...

Page 8: ...s ________________________________________________104 Device Commands ____________________________________________________106 Interacting with a Device Port ___________________________________________...

Page 9: ...___138 CBCP Server ________________________________________________________139 9 PC Cards 140 Set Up of PC Card Storage _________________________________________________140 Modem Settings ____________...

Page 10: ...___________190 Kerberos Commands __________________________________________________193 TACACS ______________________________________________________________194 TACACS Commands ________________________...

Page 11: ...ext Mode to a Remote Device _______________________________________247 Local Serial Connection to Network Device via Telnet ____________________________248 15 Command Reference 250 Introduction to Com...

Page 12: ...ands _____________________________________________________305 Status Commands ________________________________________________________307 System Log Commands __________________________________________...

Page 13: ...________________________________322 Signalverbindungen ______________________________________________________323 Appendix E Adapters and Pinouts 324 Appendix F Protocol Glossary 329 Appendix G Complia...

Page 14: ..._______53 Figure 6 2 Network IP Filter ______________________________________________________58 Figure 6 3 Network IP Filter Ruleset Adding Editing Rulesets ___________________________60 Figure 6 4 Ne...

Page 15: ..._________________158 Figure 11 4 Multiport Device Server _________________________________________________159 Figure 11 5 Console Server _______________________________________________________160 Figu...

Page 16: ...sole Manager PN 200 2067A _ 325 Figure E 3 RJ45 Receptacle to DB9M DCE Adapter for the SLC Console Manager PN 200 2069A _ 326 Figure E 4 RJ45 Receptacle to DB9F DCE Adapter for the SLC Console Manager...

Page 17: ...ct Schema Object Window ___________________________________________347 Figure I 15 ADSI Edit Window _____________________________________________________348 Figure I 16 ADSI Edit Window CN Users Folde...

Page 18: ...4 4 Front Panel Setup Options with Associated Parameters __________________________36 Table 5 2 Actions and Category Options ______________________________________________48 Table 8 5 Port Status and...

Page 19: ...tallation Provides technical specifications describes connection formats and power supplies provides instructions for installing the unit in a rack Chapter 4 Quick Setup Provides instructions for gett...

Page 20: ...tions Chapter 15 Command Reference Lists and describes all of the commands available on the SLC command line interface Appendix A Bootloader Lists and describes the commands available for the bootload...

Page 21: ...Provides online help for assigning a static IP address to the SLC console manager using the Lantronix Detector tool Table 1 2 Conventions Used in This Book Convention Description Bold text Default pa...

Page 22: ...access systems UPS medial devices The key benefits of using Console Managers Saves money Enables remote management and troubleshooting without sending a technician onsite Reduces travel costs and dow...

Page 23: ...and Description SLC00812N 03 SLC00812N 02 SLC8 8 port Single AC Supply Secure Console Manager SLC01612N 03 SLC01612N 02 SLC16 16 Port Single AC Supply Secure Console Manager SLC03212N 03 SLC03212N 02...

Page 24: ...mail and SNMP notification ID Password security configurable access rights Secure shell SSH security supports numerous other security protocols Network File System NFS and Common Internet File System...

Page 25: ...BCP For descriptions of the protocols see Appendix F Protocol Glossary Access Control The system administrator controls access to attached servers or devices by assigning access rights to up to 128 us...

Page 26: ...tion see Technical Specifications on page 30 All physical connections use industry standard cabling and connectors The network and serial ports are on the rear panel of the SLC console manager and the...

Page 27: ...tandard RJ45 terminated Category 5 cables Network parameters must be configured before the SLC console manager can be accessed over the network Figure 2 6 Network Connection PC Card Interface Note Thi...

Page 28: ...ger User Guide 28 Figure 2 7 PC Card Interface USB Port Note This USB port is only supported on SLC 03 part numbers The SLC console manager has a USB port as shown in Figure 2 8 Figure 2 8 SLC Console...

Page 29: ...cription Adapters 200 2066A Adapter DB25M DCE Sun w DB25 female 200 2067A Adapter DB25F DCE to RJ45 Sun w DB25 male and some HP9000s 200 2069A Adapter DB9M DCE to RJ45 SGI Onyx 200 2070A Adapter DB9F...

Page 30: ...ion cooling to dissipate excess heat Table 3 2 Components and Descriptions Component Description Serial Interface Device RJ45 type 8 conductor connector DTE Speed software selectable 300 to 115 200 ba...

Page 31: ...page 32 5 Wait approximately a minute and a half for the boot process to complete When the boot process ends the SLC host name and the clock appear on the LCD display Now you are ready to configure th...

Page 32: ...onal adapters that provide a connection between an RJ45 jack and a DB9 or DB25 connector The console port is configured as DTE For more information see Appendix E Adapters and Pinouts on page 324 and...

Page 33: ...puts and power switch Figure 3 4 AC Power Input and Power Switch SLCxxxx2N Note The SLC48 console manager with dual AC does not have an on off switch DC Input The DC version of the SLC console manager...

Page 34: ...tem administrator generally provides the IP address and corresponding subnet mask and gateway The IP address must be within a valid range unique to your network and in the same subnet as your PC The f...

Page 35: ...t Right The front panel display initially shows the hostname abbreviated to 14 letters and total current level When you click the right arrow keypad the SLC console manager s network settings display...

Page 36: ...ter button To enter edit mode Up and down arrows Within edit mode to increase or decrease a numerical entry Right or left arrows Within edit mode to move the cursor right or left Enter To exit edit mo...

Page 37: ...and then press the down arrow button The Subnet Mask parameter displays Note You must edit the IP address and the Subnet Mask together for a valid IP address combination 5 To save your entries for one...

Page 38: ...efault password is 999999 Note The Restore Factory Defaults password is only for the LCD You can change it at the command line interface using the admin keypad password command 5 Press Enter to exit e...

Page 39: ...etwork Settings Note Configurations with the same IP subnet on multiple interfaces Ethernet or PPP are not currently supported Network Setting Description Eth 1 Settings Obtain from DHCP Acquires IP a...

Page 40: ...nter the subnet mask for the network on which the SLC console manager resides There is no default Default Gateway The IP address of the router for this network There is no default Hostname The default...

Page 41: ...wing 1 obtain IP Address from DHCP The unit will acquire the IP address subnet mask hostname and gateway from the DHCP server The DHCP server may or may not provide the gateway and hostname depending...

Page 42: ...ter time zone GMT ____Date Time___________________________________________________________ Hostname The default host name is slcXXXX where XXXX is the last 4 characters of the hardware address of Ethe...

Page 43: ...rd current password Quick Setup is now complete Next Step After completing quick setup on the SLC console manager you may want to configure other settings You can use the web page or the command line...

Page 44: ...SLC 02 part numbers The features and functionality specific to USB port use are supported on SLC 03 part numbers Web Interface A web interface allows the system administrator and other authorized user...

Page 45: ...on allows you to configure the USB device flash drive or modem plugged into the front panel USB connector The gray U2 button allows you to configure the internal USB dial up modem The blue E1 and E2 b...

Page 46: ...contact information Configuration site map Status of the SLC device Help Button Provides online Help for the specific web page Logging In Only the system administrator or users with web access rights...

Page 47: ...web page a serial terminal connection or an SSH connection See Chapter 7 Services The sysadmin user and users with who have full administrative rights have access to the complete command set while al...

Page 48: ...ed parameters whose settings you want to configure or view Examples are ntp deviceport and network parameter s is one or more name value pairs in one of the following formats Table 5 2 Actions and Cat...

Page 49: ...the name if only one is possible or to display the possible names if more than one is possible Following a space after the preceding name Tab displays all possible names Should you make a mistake whi...

Page 50: ...f To configure the current command line session set cli scscommands enable disable Allows you to use SCS compatible commands as shortcuts for executing commands Note Settings are retained between CLI...

Page 51: ...terfaces SLC Console Manager User Guide 51 To clear the command history set history clear To view the rights of the currently logged in user show user Note For information about user rights see Chapte...

Page 52: ...use are supported on SLC 02 part numbers The features and functionality specific to USB port use are supported on SLC 03 part numbers Requirements If you assign a different IP address from the current...

Page 53: ...ters SLC Console Manager User Guide 53 To enter settings for one or both network ports 1 Click the Network tab and select the Network Settings option The following page displays Figure 6 1 Network Net...

Page 54: ...support configurations with the same IP subnet on multiple interfaces Ethernet or PPP Subnet Mask If specifying an IP address enter the network segment on which the SLC resides There is no default IP...

Page 55: ...ress to Ping IP address to ping to determine whether to use the alternate gateway Ethernet Port to Ping Ethernet port to use for the ping Delay between Pings Number of seconds between pings Number of...

Page 56: ...t half 100mbit half 10mbit full 100mbit full state dhcp bootp static disable ipaddr IP Address mask Mask ipv6addr IP v6 Address Prefix DNS Servers 1 3 Configure up to three name servers 1 is required...

Page 57: ...ually accessible through the default gateway fails to return one or more pings To set the SLC host name and domain name set network host Hostname domain Domain Name To set TCP Keepalive and IP Forward...

Page 58: ...out notice or it may be rejected sends back an error packet depending upon the rules of that filter rule set The administrator uses the Network IP Filter page to view add edit delete and map IP filter...

Page 59: ...llowing page displays Enable IP Filter Select the Enable IP Filter checkbox to enable all filters or clear the checkbox to disable all filters Disabled by default Packets Dropped Displays the number o...

Page 60: ...ngle IP address to act as a filter or specify a range of IP addresses if the range cannot be defined by an IP address and Subnet Mask Example 172 19 220 64 this specific IP address only 172 19 220 60...

Page 61: ...mbers to be tested An entry is required for TCP TCP New TCP Established and UDP and is not allowed for other protocols Separate multiple ports with commas Separate ranges of ports by colons Examples 2...

Page 62: ...modem connected to a Device Port To map a rule set to a network interface 1 On the Network IP Filter page select the IP filter ruleset to be mapped 2 From the Interface drop down list select the inter...

Page 63: ...ameters Edit Parameters append insert Rule Number replace Rule Number delete Rule Number Routing The SLC console manager allows you to define static routes and for networks using Routing Information P...

Page 64: ...s enable show routing resolveip enable disable email Email Address Note You can optionally email the displayed information Enable RIP Select to enable Dynamic Routing Information Protocol RIP to assig...

Page 65: ...PSec tunnels using Encapsulated Security Payload ESP The SLC console manager supports host to host net to net host to net and roaming user tunnels Note To allow VPN tunnel access if the SLC firewall i...

Page 66: ...communicate via IPSec The first phase of the protocol authenticates the two hosts to each other and establishes the Internet Security Association Key Management Protocol Security Association ISAKMP SA...

Page 67: ...mote Host If RSA Public Key is selected for authentication enter the public key for the remote host Pre Shared Key If Pre Shared Key is selected for authentication enter the key Retype Pre Shared Key...

Page 68: ...only access to all statistics and configurable items provided by the SLC unit It provides read write access to a select set of functions for controlling the SLC device and device ports See the MIB def...

Page 69: ...ition that may be cause for concern in addition to error messages This is the default for all message types Info Saves informative message in addition to warning and error messages Debug Saves extrane...

Page 70: ...of outgoing emails The strings host and domain can be part of the email address they will be substituted with the actual hostname and domain The default is donotreply host domain Enable Logins Enable...

Page 71: ...s you can cause an idle connection to disconnect after a specified number of minutes Select Yes and enter a value of from 1 to 30 minutes Note You must reboot the unit before a change will take effect...

Page 72: ...P is a set of protocols for managing complex networks 1 Click the Services tab and select the SNMP option The following page displays Figure 7 2 Services SNMP 2 Enter the following Enable Agent Enable...

Page 73: ...nager for example a name optional Up to 20 characters Read Only A string that acs agent provides The default is public Read Write A string that acts like a password for an SNMP manager to access the r...

Page 74: ...P Address or Name phonehome enable disable phoneip IP Address portssh TCP Port rocommunity Read Only Community Name rwcommunity Read Write Community Name User Name SNMP v3 is secure and requires user...

Page 75: ...d SMB CIFS Use the Services NFS CIFS page if you want to save configuration and logging data onto a remote NFS server or export configuration by means of an exported CIFS share Mounting an NFS shared...

Page 76: ...to mount the remote directory The SLC unit creates the local directory automatically Read Write If enabled indicates that the SLC device can write files to the remote directory If you plan to log por...

Page 77: ...share which contains the system and device port logs set cifs one or more parameters Parameters eth1 enable disable eth2 enable disable state enable disable workgroup Windows workgroup Note The admin...

Page 78: ...ork 1 Click the Services tab and select the Secure Lantronix Network option The following page displays Figure 7 4 Services Secure Lantronix Network 2 Click a device IP Address in the column labeled I...

Page 79: ...column directly beside the port you would like to access A ssh or telnet popup window appears depending on what is clicked Figure 7 5 Telnet Session To configure how Secure Lantronix devices are sear...

Page 80: ...se devices Secure Lantronix Network Commands The following commands for the command line interface correspond to the web page entries described above To detect and view all SLC console manager or user...

Page 81: ...r example 172 19 255 255 would display all IP addresses that start with 172 19 Date and Time You can specify the current date time and time zone at the SLC console manager s location default or the SL...

Page 82: ...riate time zone Enable NTP Select the checkbox to enable NTP synchronization NTP is disabled by default Synchronize via Select one of the following Broadcast from NTP Server Enables the SLC console ma...

Page 83: ...eb Server The Web Server page allows the system administrator to Configure attributes of the web server View and terminate current web sessions Import a site specific SSL certificate Enable an iGoogle...

Page 84: ...dium security 128 bits or higher for the cipher By default the web uses High Medium Changing this option requires a reboot for the change to take effect Group Access If undefined any group can access...

Page 85: ...none eth1 eth2 ppp To terminate a web session admin web terminate Session ID To view the current sessions and their ID admin web show To import an SSL certificate or reset the web server certificate t...

Page 86: ...The Services Web Server page enables you to view and update SSL certificate information The SSL certificate consisting of a public private key pair used to encrypt HTTP data is associated with the web...

Page 87: ...drop down list select the method of importing the certificate SCP or SFTP The default is SCP Certificate Filename Filename of the certificate Key Filename Filename of the private key for the certific...

Page 88: ...gadgets and private gadgets The public gadgets are listed for import on iGoogle web pages The SLC gadget is a private gadget whose location is not publicly advertised To set up an SLC iGoogle gadget 1...

Page 89: ...display_value 10 minutes UserPref Content type url href http __UP_ip__ devstatus htm Module 2 On the iGoogle web page click the Add stuff link 3 On the new page click the Add feed or gadget link 4 In...

Page 90: ...y assigned for each device port 5 If a device port has an IP address assigned to it you can Telnet SSH or establish a raw TCP connection to the IP address For Telnet and SSH use the default TCP port n...

Page 91: ...e 91 Device Status The Devices Device Status page displays the status of the SLC console manager s ports and power outlets 1 Click the Devices tab and select the Device Status option The following pag...

Page 92: ...ports display on the left The list of ports 1 16 on the right includes the individual ports and their current mode Note For units with more ports click the buttons above the table to view additional...

Page 93: ...a number for connecting via Telnet Enter a number 1025 65528 that represents the first port The default is 2000 plus the port number For example if you enter 2001 subsequent ports are automatically a...

Page 94: ...ings page configure IP and data serial settings for individual ports and if the port connects to an external modem modem settings as well To open the Device Ports Settings page 1 You have two options...

Page 95: ...8 Device Ports SLC Console Manager User Guide 95 Figure 8 4 Device Ports Settings...

Page 96: ...B performed quickly but not simultaneously You would specify this value as x1bB which is hexadecimal x character 27 1B followed by a B View Port Log Seq The key sequence used to view the Port Log whil...

Page 97: ...so if Eth2 is connected and configured and Eth1 is not this feature will not work Web SSH Telnet Columns Number of columns in the Web SSH Telnet applet when this device port is accessed via the applet...

Page 98: ...ial out dial in dial back CBCP server CBCP client dial on demand dial in dial on demand dial back dial on demand or dial in host list For more information on the different dialing types see Modem Dial...

Page 99: ...e SLC console manager will retry the dial out portion of the dialing sequence if the first attempt to dial out fails Timeout Logins If you selected Text mode you can enable logins to time out after th...

Page 100: ...ord for Windows systems used for CHAP authentication May have up to 128 characters Enable NAT Select to enable Network Address Translation NAT for dial in and dial out PPP connections on a per modem d...

Page 101: ...port statistics for the device port The system automatically updates these values To reset them to zeros select the Zero port counters checkbox in the IP Settings section of the page Note Status and s...

Page 102: ...it or ServerTech CDU device This will default to a typical prompt for an SLP power manager or ServerTech CDU If you are unable to control the SLP unit or ServerTech CDU device verify that the prompt i...

Page 103: ...rTech CDU Restart SLP To restart the SLP device or ServerTech CDU select the checkbox Control Outlet For Tower A or Tower B select All Outlets or Single Outlet and the number of the outlet to be contr...

Page 104: ...databits 7 8 device none slp8 slp16 slp8exp8 slp8exp16 slp16exp8 slp16exp16 sensorsoft servertech dialbackretries 1 10 dialbackdelay PPP Dial back Delay dialinlist Host List for Dial in dialoutnumber...

Page 105: ...etin enable disable telnetport TCP Port timeoutlogins disable or 1 30 usesites enable disable webcolumns Web SSH Telnet Cols webrows Web SSH Telnet Rows To view the settings for one or more device por...

Page 106: ...A or number of expansion outlets settings for Tower B see below The outletcontrol parameters control individual outlets slp servertech outletstate outlet Outlet tower A B The outletstate parameter sho...

Page 107: ...f an external server the data received over the device port can be monitored at the command line interface with the connect listen command as follows To connect to a device port to monitor it connect...

Page 108: ...in the amount of overrun not in large blocks of memory NFS File Logging Data can be logged to a file on a remote NFS server Data logged locally to the SLC is limited to 256 Kbytes and may be lost in...

Page 109: ...log 02_Port 2_4 log 02_Port 2_5 log Email SNMP Notification The system administrator can configure the SLC console manager to send an email alert message indicating a particular condition detected in...

Page 110: ...t Clear Local Log Select the checkbox to clear the local log View Local Log Click this link to see the local log in text format Email Traps Select the checkbox to enable email and SNMP logging Email l...

Page 111: ...expressions for more information see http www codeforge com help GNURegularExpr html http www delorie com gnu docs regex regex html Email Delay A time limit of how long in seconds after the SLC unit d...

Page 112: ...file is reached the SLC console manager begins generating a new file USB PC Card Logging Select to enable USB PC Card logging A PC Card Compact Flash must be loaded into one of the PC Card slots of t...

Page 113: ...Max Size of Files locallogging enable disable name Device Port Name nfsdir Logging Directory nfslogging enable disable nfsmaxfiles Max of Files nfsmaxsize Size in Bytes sysloglogging enable disable u...

Page 114: ...he number of data bits The default is 8 data bits Stop Bits The number of stop bits that indicate that a byte of data has been transmitted From the drop down list select the number of stop bits The de...

Page 115: ...The SLC console manager cycles through the list until it successfully connects to one To add a host list 1 Click the Devices tab and select the Host Lists option The following page displays Group Acc...

Page 116: ...e click the Add Host List button To add hosts enter the following Host Parameters Host List Id Displays after a host list is saved Host List Name Enter a name for the host list Retry Count Enter the n...

Page 117: ...tton After the process completes a link back to the Device Ports Settings page displays To view or update a host list 1 In the Host Lists table select the host list and click the View Host List button...

Page 118: ...when the SLC unit connects to a host Host Name or IP address of the host Protocol Protocol for connecting to the host TCP SSH or Telnet Port Port on the host to connect to SLC console manager Escape...

Page 119: ...st Commands The following CLI commands correspond to the web page entries described above To configure a prioritized list of hosts to be used for modem dial in connections set hostlist add edit Host L...

Page 120: ...commands A user can create scripts at the web view scripts at the web and the CLI and utilize scripts at the CLI For a description of the syntax allowed in Interface Scripts see Interface Script Synt...

Page 121: ...diting New Scripts 3 Enter the following Scripts 4 In the User Rights section select the user Group to which NIS users will belong Script Name A unique identifier for the script Type Select Interface...

Page 122: ...and disable system logging SSH and Telnet logins SNMP and SMTP Secure Lantronix Network Right to view and manage Secure Lantronix units e g SLP Spider SLC and SLB units on the local subnet Date Time R...

Page 123: ...t at the CLI 1 To run an Interface Script on a device port for pattern recognition and action generation use the connect script Script Name deviceport Device Port or Name command 2 To run a Batch Scri...

Page 124: ...ondary Command One of the secondary commands defined in this section Quoted String A group of characters enclosed by double quote characters A quoted string may include any characters including space...

Page 125: ...secondary command A value generated via the format secondary command A value generated via the timestamp command unset This command removes the definition of a variable within a script Syntax unset v...

Page 126: ...commands have the same syntax expect string 1 command 1 string 2 command 2 string n command n where string x will either be a quoted string a variable reference or the reserved word timeout The comma...

Page 127: ...Determine if two strings are equal string first str needle str haystack Find and return the index of the first occurrence of str_needle in str_haystack string last str needle str haystack Find and re...

Page 128: ...ill only be used in combination with the set command to produce the value for a variable Syntax timestamp format where format is a quoted string format The format command is analogous to the C languag...

Page 129: ...TRUE Each command within the block must be a Primary command Syntax if Boolean expression command 1 command 2 command n The elseif command is used in association with an if command it must immediatel...

Page 130: ...rompt prompt send_user Already Logged r n Get hostname info send show network port 1 host r expect timeout send_user Time out Getting Hostname 1 r n return Domain Get Hostname from SLC set hostname st...

Page 131: ...rrent Time 21 16 43 show portcounter deviceport 7 n show portcounter deviceport 7 Device Port 7 Seconds since zeroed 1453619 Bytes input 0 Bytes output 0 Framing errors 0 Flow control errors 0 Overrun...

Page 132: ...___Batch Scripts__________Group Permissions_____________________________________ cli Adm ad nt sv dt lu ra um dp pc rs fc dr sn wb sk po do slb247glenn slb247glenn connect script monport deviceport 7...

Page 133: ...below then enable Use Sites for the modem Sites can be used with the following modem states dial in dial back CBCP Server dial on demand dial in dial on demand and dial back dial on demand For more in...

Page 134: ...r dial on demand sites This indicates the phone number to dial when the SLC console manager needs to send IP traffice for a dial on demand connection Dial out Login User ID for authentication when dia...

Page 135: ...deviceport Device Port or Name or none dialoutlogin User Login usbport U1 U2 dialoutpassword Password pccardslot upper lower allowdialback enable disable auth pap chap dialbacknumber Phone Number logi...

Page 136: ...o CHAP and c the Port is set to None or matches the port the modem is on If the remote peer requests PAP or CHAP authentication from the SLC unit the Remote Dial out Login and Remote Dial out Password...

Page 137: ...P Address setting Dial on demand The SLC console manager automatically dial outs and establishes a PPP connection when IP traffic destined for a remote network needs to be sent It will remain connecte...

Page 138: ...g out to establish a PPP connection when IP traffic destined for a remote network needs to be sent When either event occurs an incoming call or IP traffic destined for the remote network the other mod...

Page 139: ...ll be used to authenticate the login and password sent by the PPP peer and the site list will be searched for a site that a the Login CHAP Host matches the name that was authenticated b Authentication...

Page 140: ...s chapter applies only to SLC 02 part numbers Set Up of PC Card Storage To set up PC Card storage in the SLC console manager perform the following steps 1 Insert any of the supported PC cards into eit...

Page 141: ...lash is used for device port logging and saving restoring configurations Unmount Click the checkbox to eject the compact flash from the SLC console manager after unmounting it Warning If you eject a C...

Page 142: ...lantronix com slc into one of the PC card bays on the front of the SLC device You can do this before or after powering up the SLC console manager 2 Click the Devices tab and select the PC Card option...

Page 143: ...s dial in dial back dial on demand dial in dial on demand dial back dial on demand and CBCP server For more information see Sites on page 133 Group Access If undefined any group can access the modem t...

Page 144: ...ber of times the SLC or SLB unit will retry the dial out portion of the dialing sequence if the first attempt to dial out fails Baud The speed with which the device port exchanges data with the attach...

Page 145: ...the connection is inactive for a specified number of minutes The default is No This setting only applies to text mode connections PPP mode connections stay connected until either side drops the connec...

Page 146: ...t be enabled on the Network Settings page for NAT to work To enable click the IP Forwarding link to display the Network Settings page Dial out Number Phone number for dialing out to a remote system or...

Page 147: ...ults Upper PC Card Slot 2049 Lower PC Card Slot 2050 Range 1025 65535 Authenticate Checkbox and if selected the SLC console manager requires user authentication before granting access to the port Auth...

Page 148: ...e The Devices USB page has an USB Access checkbox USB Access is a security feature ensures that access to any USB device is disabled if the box is unchecked The SLC unit ignores any USB device plugged...

Page 149: ...gging and saving restoring configurations Unmount Enables ejecting the USB device Warning If you eject a USB device from the SLC console manager without unmounting it subsequent mounts may fail and yo...

Page 150: ...10 USB Port SLC Console Manager User Guide 150 Figure 10 3 Devices USB Modem 3 Enter the following fields...

Page 151: ...e of dial out connection PIN Enter PIN personal identification number for accessing the GSM GPRS card Retype PIN Re enter PIN personal identification number for accessing the GSM GPRS card PPP Compres...

Page 152: ...y control the modem Modem Timeout Timeout for all modem connections Select Yes default for the SLC console manager to terminate the connection if no traffic is received during the configured idle time...

Page 153: ...ication settings as outgoing connections dial on demand If this option is not selected then the dial on demand connections take their authentication settings from the DOD parameter settings If DOD Aut...

Page 154: ...mber determined by the server based on the login that is PAP or CHAP authenticated Service The available connection services for this modem port Telnet SSH or TCP Only one can be active at a time The...

Page 155: ...e 10 4 Firmware and Configurations Manage Files Top of Page Note At the bottom of the page shown in Figure 10 4 are the Delete Download and Rename options 2 To delete a file click the check box next t...

Page 156: ...B port For more information see Chapter 15 Command Reference set usb access set usb modem set usb storage mount set usb storage unmount set usb storage dir set usb storage fsck set usb storage rename...

Page 157: ...at various times Immediately These connections are always re established after reboot At a specified date and time These connections connect if the date and time have already passed After a specified...

Page 158: ...SH into the SLC They could also select text mode where using a terminal emulation program a user could dial into the SLC unit and connect to the command line interface Figure 11 2 Remote Access Server...

Page 159: ...rts The device ports on the SLC unit are connected to the console ports of the equipment that the user would like to manage To manage a specific piece of equipment the user can Telnet or SSH to a spec...

Page 160: ...nnections SLC Console Manager User Guide 160 Figure 11 5 Console Server Connection Configuration To create a connection 1 Click the Devices tab and select the Connections option The following page dis...

Page 161: ...seconds field Port The number of the device port you are connecting This device port must be connected to an external serial device and must not have command line interface logins enabled be connecte...

Page 162: ...r options this is the TCP UDP port number which is optional for Telnet out and SSH out but required for TCP Port and UDP Port Note If you select Device Port it must not have command line interface log...

Page 163: ...To configure initial timeout for outgoing connections connect global outgoingtimeout disable 1 9999 seconds Note This is not a TCP timeout To monitor a device port connect listen deviceport Device Po...

Page 164: ...o Execute tcp IP Address port TCP Port telnet IP Address or Name port TCP Port trigger now datetime chars udp IP Address port UDP Port Note If the trigger is datetime establish connection at a specifi...

Page 165: ...er authentication is enabled the local user sysadmin account is always available for login Authentication can occur using all methods in the order of precedence until a successful authentication is ob...

Page 166: ...m NFS LDAP Lightweight Directory Access Protocol A set of protocols for accessing information directories specifically X 500 based directory services LDAP runs over TCP IP or other connection oriented...

Page 167: ...ply Now that you have enabled one or more authentication methods you must configure them Authentication Commands The following command for the command line interface corresponds to the web page entrie...

Page 168: ...ccounts to authenticate users 1 Click the User Authentication tab and select the Local Remote Users option The following page displays Figure 12 2 User Authentication Local Remote Users The top of the...

Page 169: ...Complex Passwords Select to enable the SLC unit to enforce rules concerning the password structure e g alphanumeric requirements number of characters punctuation marks Disabled by default Complexity r...

Page 170: ...94967295 Note The UID must be unique If it is not SLC console manager automatically increments it Starting at 101 the SLC unit finds the next unused UID Listen Ports The device ports that the user may...

Page 171: ...ceport tcp or udp Break Sequence A series of 1 10 characters users can enter on the command line interface to send a break signal to the external device A suggested value is Esc B escape key then uppe...

Page 172: ...system and audit logging SSH and Telnet logins SNMP and SMTP Includes NFS and CIFS Secure Lantronix Network Right to view and manage Secure Lantronix units e g SLP Spider and SLC units on the local s...

Page 173: ...ick the Delete User button 3 Click the Apply button To change the sysadmin password 1 On the Local Remote Users page select sysadmin and click the Add Edit User button The Local Remote User Settings p...

Page 174: ...To delete a local user set localusers delete User Login To view settings for all users or a local user show localusers user User Login To block lock out a user s ability to log in set localusers lock...

Page 175: ...auth enable disable To configure attributes for users who log in by a remote authentication method set remoteusers add edit User Login parameters Parameters accessoutlets Outlet List breakseq 1 10 Cha...

Page 176: ...IS does not provide port permissions you can use this page to grant device port access to users who are authenticated through NIS All NIS users are members of a group that has predefined user rights a...

Page 177: ...ting allows the user to terminate the connect direct command on the command line interface when the endpoint of the command is deviceport tcp or udp Break Sequence A series of 1 10 characters users ca...

Page 178: ...SLB units on the local subnet Date Time Right to set the date and time Local Users Right to add or delete local users on the system Remote Authentication Right to assign a remote user to a user group...

Page 179: ...t a default custom menu for NIS users set nis custommenu Menu Name To view NIS settings show nis LDAP The system administrator can configure the SLC console manager to use LDAP to authenticate users a...

Page 180: ...od on the first User Authentication page If you want to set up this authentication method but not enable it immediately clear the checkbox Server The IP address or host name of the LDAP server Port Nu...

Page 181: ...ute used by the LDAP server for group membership This attribute may be use to search for a name ie msmith or a Distinguished Name ie uid msmith ou People dc lantronix dc com Select either Name or DN a...

Page 182: ...ecify this value as x1bA which is hexadecimal x character 27 1B followed by an A This setting allows the user to terminate the connect direct command on the command line interface when the endpoint of...

Page 183: ...local subnet Date Time Right to set the date and time Local Users Right to add or delete local users on the system Remote Authentication Right to assign a remote user to a user group and assign a set...

Page 184: ...port TCP Port Default is 389 server IP Address or Hostname state enable disable To set user group and permissions for LDAP users group default power admin To set permissions for LDAP users not already...

Page 185: ...authenticated through RADIUS are granted device port access through the port permissions on this page All RADIUS users are members of a group that has predefined user rights associated with it You can...

Page 186: ...you do not specify an optional port the SLC console manager uses the default RADIUS port 1812 Server 2 Secret Text that serves as a shared secret between a RADIUS client and the server SLC The shared...

Page 187: ...cify additional rights for the individual user Power Users This group has the same rights as Default Users plus Networking Date Time Reboot Shutdown and Diagnostics Reports Administrators This group h...

Page 188: ...and the number of the TCP port on the RADIUS server set radius server 1 2 host IP Address or Hostname secret Secret port TCP Port The default port is 1812 To set the number of seconds after which the...

Page 189: ...e right to clear group User group Valid values for the value string are default power and admin and any SLC or SLB custom group name If a custom group name is specified and it matches a current SLC cu...

Page 190: ...ork authentication protocol that provides strong authentication for client server applications by using secret key cryptography The system administrator can configure the SLC console manager to use Ke...

Page 191: ...e order of precedence on the User Authentication page Realm Enter the name of the logical network served by a single Kerberos database and a set of Key Distribution Centers Usually realm names are all...

Page 192: ...h is hexadecimal x character 27 1B followed by a B Enable for Dial back Select to grant a user dial back access Users with dial back access can dial into the SLC unit and enter their login and passwor...

Page 193: ...t power admin Remote Authentication Right to assign a remote user to a user group and assign a set of rights to the user SSH Keys Right to set SSH keys for authenticating users User Menus Right to cre...

Page 194: ...n of TACACS is to perform authentication for remote access The SLC console manager supports the TACACS protocol not the older TACACS or XTACACS protocols The system administrator can configure the SLC...

Page 195: ...ou enable TACACS here it automatically displays at the end of the order of precedence on the User Authentication page TACACS Servers 1 3 IP address or host name of up to three TACACS servers Secret Sh...

Page 196: ...the modem dials back on depends on this setting for the device port The user is either dialed back on a fixed number or on a number that is associated with the user s login specified here Data Ports...

Page 197: ...t tacacs group default power admin To set permissions for TACACS users not already defined by the user rights group set tacacs permissions Permission List where Permission List is one or more of nt sv...

Page 198: ...ns rather than their individual attributes and permissions The SLC device supports querying a LDAP server for groups that a LDAP user is a member of if any of the LDAP group names match a Custom Group...

Page 199: ...ion SLC Console Manager User Guide 199 Figure 12 9 User Authentication Group 2 Enter the following Group Name Enter a name for the group Listen Ports The ports users are able to monitor using the conn...

Page 200: ...llows the user to terminate the connect direct command on the command line interface when the endpoint of the command is deviceport tcp or udp Break Sequence A series of one to ten characters users ca...

Page 201: ...e saved with the SLC configuration and the administrator has the option of retaining the SSH keys during a reset to factory defaults The SLC device can also update the SSH RSA1 RSA and DSA host keys t...

Page 202: ...paste The name of the key is used to generate the name of the public key file that is exported for example keyname pub and the exported keys are organized by user and key name Once a key is generated...

Page 203: ...e 12 10 User Authentication SSH Keys 2 Enter the following Imported Keys SSH In Host User Associated with Key These entries are required in the following cases The imported key file does not contain t...

Page 204: ...y to the SLC If Copy Paste is selected the public key will be entered into the Filename Public Key field Filename Public Key The name of the file that was uploaded via HTTPS or to be copied via SCP or...

Page 205: ...vGmoEWBuBSu505lQHfL70ijxZWOEVTJGFqUQTSq8Ls3 v3lkUJEX5ln 2AlQx0F40I5wNEC0 m3d5QE FKc sysadmin DaveSLM 3 To delete the key click the Delete button Export via Select the method SCP FTP HTTPS or Cut and P...

Page 206: ...or import SSH RSA1 RSA And DSA host keys 1 On the User Authentication SSH Keys page click the SSH Server Host Keys link at the top right The following page displays the current host keys In the exampl...

Page 207: ...gin path Path to Copy Key bits 1024 2048 keyname SSH Key Name keyuser SSH Key User type rsa dsa Reset to Default Host Key Select the All Keys checkbox to reset all default key s or select one or more...

Page 208: ...ort type rsa1 rsa dsa via sftp scp pubfile Public Key File privfile Private Key File host IP Address or Name login User Login path Path to Key File To reset defaults for all or selected host keys set...

Page 209: ...r enters the number associated with the command Each command can also have a nickname associated with it which can be displayed in the menu instead of the command The commands showmenu Menu Name and r...

Page 210: ...12 User Authentication SLC Console Manager User Guide 210 Figure 12 12 User Authentication Custom Menus 2 In the lower section of the page enter the following...

Page 211: ...eplace the currently selected command nickname in the list The Unselect Command Nickname button can be used to unselect the currently selected command nickname in the list 4 To add more commands to th...

Page 212: ...ys a specified menu The special command returnmenu redisplays the parent menu if the current menu was displayed from a showmenu command The user with appropriate rights creates and manages custom user...

Page 213: ...itle return for none Menu1 Title Specify nickname for each command no y Enter each command up to 50 commands logout is always the last command Press return when the menu command set is complete Comman...

Page 214: ...____________________________________ Menu menu2 Title Menu2 Title Show Nicknames disabled Redisplay Menu disabled Command 1 connect direct deviceport 3 Nickname 1 none Command 2 connect direct devicep...

Page 215: ...help Enter 1 4 help Menu1 Title 1 connect Port 1 3 menu2 2 connect Port 2 4 log off Enter 1 4 3 Executing showmenu menu2 Enter 1 5 help Menu2 Title 1 connect direct deviceport 3 2 connect direct devi...

Page 216: ...ed for firmware updates Set up the location or method that will be used to save or restore configurations default FTP SFTP NFS CIFS PC card or USB Update the version of the firmware running on the SLC...

Page 217: ...13 Maintenance SLC Console Manager User Guide 217 Figure 13 1 Maintenance Firmware Config...

Page 218: ...Data Center Rack Cluster Set these fields to define the rack cluster the SLC device is located within a large data center The default for these fields is 1 Data Center Rack Set these fields to define...

Page 219: ...le on certain models of SLC or SLB units PC Card Slot Click to select the Upper Slot or Lower Slot if PC Card PC Cards are available on certain models of SLC or SLB units FTP SFTP TFTP Server The IP a...

Page 220: ...n list FTP Server The FTP server specified in the FTP SFTP TFTP section If you select this option select FTP or SFTP to transfer the configuration file NFS Mounted Directory Local directory of the NFS...

Page 221: ...local ftp sftp nfs cifs usb pccard nfsdir NFS Mounted Directory usbport U1 pccardslot upper lower savesshkeys enable disable savesslcert enable disable savescripts enable disable To restore a saved c...

Page 222: ...isplayed by admin ftp show admin firmware update ftp tftp sftp nfs usb pccard file Firmware File key Checksum Key nfsdir NFS Mounted Directory usbport U1 pccardslot upper lower To set the boot bank to...

Page 223: ...To copy the boot bank from the currently booted bank to the alternate bank for dual boot SLB SLC units admin firmware copybank To reboot the SLC admin reboot Note The front panel LCD displays the Rebo...

Page 224: ...bout firmware updates To set the FTP TFTP SFTP server used for firmware updates and configuration save restore admin ftp server IP Address or Hostname login User Login path Directory To view FTP setti...

Page 225: ...t u1 pccardslot upper lower To delete a saved configuration admin config delete Config Name location default cifs usb usbport u1 pccardslot upper lower To list the configurations saved to a location a...

Page 226: ...Network Services Authentication Device Ports Diagnostics General Software Level Select the alert level you want to view for the selected log Error Warning Info Debug Starting at Select the starting p...

Page 227: ...2 Click the Clear Log button to clear all log information System Log Command The following command for the command line interface corresponds to the web page entries described above To view the syste...

Page 228: ...in the log file contains a date time stamp user login and the action performed by the user The user may clear the log file and sort the log by date time user and command The audit log is saved through...

Page 229: ...nance Email Log page displays a log of all attempted emails The log file can be cleared from here The email log is saved through SLC unit reboots 1 Click the Maintenance tab and select the Email Log o...

Page 230: ...s Figure 13 7 Maintenance Diagnostics 2 Select Diagnostics from checklist one or more diagnostic methods you want to run or select All to run them all ARP Table Address Resolution Protocol ARP table u...

Page 231: ...ork connectivity test For UDP the number of times the string is sent is equal to the number of packets sent For TCP the number of times the string is sent may or may not be equal to the number of pack...

Page 232: ...LC unit To test a device port plug the cable into the device port and run this command The command sends the specified Kbytes to the device port and reports success or failure The test is performed at...

Page 233: ...ace diag nettrace one or more parameters Parameters ethport 1 2 host IP Address or Name numpackets Number of Packets protocol tcp udp icmp verbose enable disable To display information on the internal...

Page 234: ...wing page displays Figure 13 9 Maintenance Status Reports The top half of the page displays the status of each port power supply and power outlet Green indicates that the port connection or power supp...

Page 235: ...ow portstatus deviceport Device Port List or Name email Email Address You can optionally email the displayed information IP Routes Displays the routing table Connections Displays all active connection...

Page 236: ...can optionally email the displayed information To provide details e g endpoint parameters and trigger for a specific connection show connections connid Connection ID email Email Address You can optio...

Page 237: ...Emailed Log or Report To email a log to Lantronix Technical Support 1 Click the question mark icon on the upper right corner to access SLC console manager device and setup information as well as conta...

Page 238: ...Technical Support 2 Call Lantronix Tech Support with the contact information provided and obtain a case number 3 Press the Email Output button to send Lantronix Tech Support the log along with the ide...

Page 239: ...nt Currently the options are Receive Trap Temperature Over Under Limit for Sensorsoft devices Humidity Over Under Limit for Sensorsoft devices Device Port Data Drop Curent Over Threshold Note Certain...

Page 240: ...modem fwdseltrapmodem usbport U1 pccardslot upper lower nms SNMP NMS community SNMP Community oid SNMP Trap OID action emailalert emailaddress destination email address To update event definitions adm...

Page 241: ...screens include current time network settings console settings date and time release version location and custom user strings Enabling the Auto Scroll LCD Screens option enables scrolling through the...

Page 242: ...he 2 lines defined by the User Strings Line 1 and Line 2 fields By default these user strings are blank 4 Click Apply to save To configure the Keypad 1 Enter the following fields 2 Click Apply to save...

Page 243: ...n character sequence Login Banner The text to display on the command line interface after the user logs in May contain up to 1024 characters single quote and double quote characters are not supported...

Page 244: ...ide 244 Banner Commands The following CLI commands correspond to the Maintenance Banners page For more information see Chapter 15 Command Reference admin banner login admin banner logout admin banner...

Page 245: ...gure 14 1 SLC Console Manager This chapter includes three examples that use the SLC device The examples assume that the SLC console manager is connected to the network and has already been assigned an...

Page 246: ...disabled CHAP Host none Break Sequence x1bB CHAP Secret none Check DSR disabled NAT disabled Close DSR disabled Dial out Login none Dial out Password none Dial out Number none Dial back Number usernu...

Page 247: ...dial in by using the set deviceport command with the shown parameters 2 Configure the device port that is connected to the console port of the SUN UNIX server by using the baud and flowcontrol paramet...

Page 248: ...e When a connection is established between the device port and an outbound Telnet session users can access the SUN server as though directly connected to it See Chapter 11 Connections for more informa...

Page 249: ...9600 Telnet disabled Modem Mode text Data Bits 8 Telnet Port 2002 Timeout Logins disabled Stop Bits 1 SSH disabled Local IP negotiate Parity none SSH Port 3002 Remote IP negotiate Flow Control xon xo...

Page 250: ...ue can be one of the following set show connect diag pccard admin or logout The category value is a group of related parameters that you can configure or view Examples are ntp deviceport and network A...

Page 251: ...tate static ipaddr 122 3 10 1 mask 255 255 0 0 to se net po 1 st static ip 122 3 10 1 ma 255 255 0 0 Use the Tab key to automatically complete action category or parameter names Type a partial name an...

Page 252: ...ing of each section When the number of lines displayed by a command exceeds the size of the window the default is 25 the command output is halted until you are ready to continue To display the next li...

Page 253: ...dir Description Resets system resources and clears the temporary directory admin config copy Syntax admin config copy current Config Name location local nfs cifs pccard usb nfsdir NFS Mounted Director...

Page 254: ...Config Name location local ftp sftp nfs cifs pccard usb nfsdir NFS Mounted Directory usbport U1 pccardslot upper lower savesshkeys enable disable savesslcert enable disable savescripts enable disable...

Page 255: ...m the currently booted bank to the alternate bank for dual boot SLC console managers admin firmware show Syntax admin firmware show viewlog enable disable Description Lists the current firmware revisi...

Page 256: ...firmware updates and configuration save restore admin ftp show Syntax admin ftp show Description Displays FTP settings admin keypad Syntax admin keypad lock unlock Description Locks or unlocks the LC...

Page 257: ...hars Description Sets the strings displayed on the LCD user string screen admin lcd screens Syntax admin lcd screens zero or more parameters Parameters currtime 1 8 network 1 8 console 1 8 datetime 1...

Page 258: ...storage device admin memory swap add Size of Swap in MB usbport U1 Deletes the swap space from the SLC disk or an external storage device admin memory swap delete admin memory show admin quicksetup S...

Page 259: ...n Shutdown complete displays it is safe to power off the SLC console manager This command is not available on the Web page admin version Syntax admin version Description Displays current hardware and...

Page 260: ...t enable disable Description Enables or disables iGoogle Gadget web content admin web iface Syntax admin web iface none eth1 eth2 ppp Description Defines a list of network interfaces the web is availa...

Page 261: ...web show viewslmsessions enable disable Description Displays the current sessions and their ID Audit Log Commands show auditlog Syntax show auditlog command user clear email Email Address Description...

Page 262: ...r CLI Commands set cli scscommands Syntax set cli scscommands enable disable Commands info direct Device Port or Name version listen Device Port or Name reboot clear Device Port or Name poweroff telne...

Page 263: ...rminal automatically Note Settings are retained between CLI sessions for local users and users listed in the remote users list set history Syntax set history clear Description Clears the CLI commands...

Page 264: ...or characters or a character sequence enter the charxfer parameter and either the charcount or the charseq parameter connect direct Syntax connect direct endpoint Parameters deviceport Device Port or...

Page 265: ...Port or Name Description Connect an interface script to a Device Port and run it connect terminate Syntax connect terminate Connection ID List Description Terminates a bidirectional or unidirectional...

Page 266: ...email Email Address Description Displays connections and their IDs You can optionally email the displayed information The connection IDs are in the left column of the resulting table The connection I...

Page 267: ...nd Each command can also have a nickname associated with it which can be displayed in the menu instead of the command The commands showmenu Menu Name and returnmenu can be entered to display another m...

Page 268: ...able shownicknames enable disable title Menu Title The following list includes options which accept the CLEAR command Note CLEAR must be in all caps Description Changes a command within an existing cu...

Page 269: ...hrough the process of selecting a time zone Description Sets the local date time and local time zone one parameter at a time show datetime Syntax show datetime Description Displays the local date time...

Page 270: ...state outlet Outlet tower A B slp servertech envmon slp servertech infeedstatus slp servertech system Description Sends commands to or control a device connected to an SLC device port over the serial...

Page 271: ...dialoutlogin User Login dialoutnumber Phone Number dialoutpassword Password dodauth pap chap dodchaphost CHAP Host or User Name dodchapsecret CHAP Secret or User Password emaildelay Email Delay email...

Page 272: ...portlogseq 1 10 Chars remoteipaddr negotiate IP Address restartdelay PPP Restart Delay showlines disable 1 50 lines slmlogging enable disable slmnms NMS IP Address slmthreshold Threshold slmtime Time...

Page 273: ...ces such as SLP power manager and Sensorsoft see the help for set command The following list includes options which accept the CLEAR command Note CLEAR must be in all caps Description Configures a sin...

Page 274: ...ist or Name email Email Address Description Displays device port statistics and errors for one or more ports You can optionally email the displayed information show portcounters zerocounters Syntax sh...

Page 275: ...external xferdatasize Size In Kbytes to Transfer Default is 1 Kbyte Description Tests a device port by transmitting data out the port and verifying that it is received correctly A special loopback cab...

Page 276: ...on Verifies if the SLC console manager can reach a host over the network diag perfstat Syntax diag perfstat ethport 1 2 deviceport Device Port or Name Note You must specify an Ethernet Port or Device...

Page 277: ...gger response trigger is one of receivetrap templimit humidlimit or overcurrent response is one of action syslog action fwdalltrapseth fwdseltrapeth ethport 1 2 nms SNMP NMS community SNMP Community o...

Page 278: ...S oid SNMP Trap OID usbport U1 pccardslot upper lower emailaddress destination email address Description Edits event definitions admin events show Syntax admin events show Description Displays event d...

Page 279: ...rs must be removed from a group before it can be deleted show group Syntax show groups name Group Name members enable disable Description Displays all groups or a specific group The members of the gro...

Page 280: ...s a new host entry to a list or edit an existing entry set hostlist delete Syntax set hostlist delete Host List entry Host Number Description Deletes a host list or a single host entry from a host lis...

Page 281: ...state enable ruleset Ruleset Name Description Maps an IP filter to an interface set ip filter rules Syntax set ipfilter rules parameters Parameters add Ruleset Name delete Ruleset Name edit Ruleset N...

Page 282: ...status Syntax show ipfilter status all Ruleset Name Description Displays the IP filter status Kerberos Commands set kerberos Syntax set kerberos one or more parameters Parameters accessoutlets Outlet...

Page 283: ...who log in via the Web SSH Telnet or the console port show kerberos Syntax show kerberos Description Displays Kerberos settings LDAP Commands set ldap Syntax set ldap one or more parameters Parameter...

Page 284: ...disable The following list includes options which accept the CLEAR command Note CLEAR must be in all caps Description Configures the SLC console manager to use LDAP to authenticate users who log in v...

Page 285: ...the CLEAR command Note CLEAR must be in all caps Description Configures local accounts including sysadmin who log in to the SLC console manager by means of the Web SSH Telnet or the console port set l...

Page 286: ...k unlock User Login Description Allows or blocks a user login set localusers maxloginattempts Syntax set localusers maxloginattempts Number of Logins Description Sets the maximum number of login attem...

Page 287: ...t localusers reusehistory Number of Passwords Description Sets the number of passwords the user must use before reusing an old password The default is 4 set localusers state Syntax set localusers stat...

Page 288: ...SB or PC Card log files either for a specific Device Port or all log files in a PC Card or NFS location show log local Syntax show log local nfs pccard Device Port or Name parameters Parameters displa...

Page 289: ...iption Sets TCP Keepalive and IP Forwarding network parameters set network bonding Syntax set network bonding disabled active backup 802 3ad load balancing Description Configures ethernet bonding set...

Page 290: ...Syntax set network ipv6 enable disable Description Enables or disables IPv6 networking set network port Syntax set network port 1 2 parameters Parameters mode auto 10mbit half 100mbit half 10mbit ful...

Page 291: ...scription Displays the network host name of the SLC console manager show network port Syntax show network port 1 2 Description Displays Ethernet port settings and counters NFS and SMB CIFS Commands se...

Page 292: ...rs Parameters remdir NFS Share locdir Directory rw enable disable mount enable disable Note Specification of rmdir and locdir parameters are required Once specified the parameters do not need to be re...

Page 293: ...arports Port List custommenu Menu Name allowdialback enable disable dialbacknumber Phone Number dataports Port List domain NIS Domain Name escapeseq 1 10 Chars group default power admin listenports Po...

Page 294: ...chap baud 300 115200 Default is 9600 cbcpnocallback enable disable cbcptype admin user calleridcmd Modem Command String calleridlogging enable disable chaphost CHAP Host or User Name chapauth chaphost...

Page 295: ...lback ondemand dialinhostlist modemtimeout disable 1 9999 sec nat enable disable parity none odd even remoteipaddr negotiate IP Address restartdelay PPP Restart Delay service none telnet ssh tcp sshau...

Page 296: ...ard storage dir Syntax pccard storage dir upper lower Description Views a directory listing of a Compact Flash card pccard storage format Syntax pccard storage format upper lower filesystem ext2 fat D...

Page 297: ...fore ejecting the card show pccard Syntax show pccard Description Displays currently loaded PC cards with product information and settings show pccard storage Syntax show pccard storage Description Di...

Page 298: ...CLEAR command Note CLEAR must be in all caps Description Configures the SLC console manager to use RADIUS to authenticate users who log in via the Web SSH Telnet or the console port set radius server...

Page 299: ...ist where Permission List is one or more of nt sv dt lu ra sk um dp pc rs rc dr wb sn ad do ub po Note To remove a permission type a minus sign before the two letter abbreviation for a user right The...

Page 300: ...tatic enable disable version 1 2 both Note To delete a static route set the ipaddr mask and gateway to 0 0 0 0 Description Configures static or dynamic routing To delete a static route set the IP addr...

Page 301: ...rwise a script name must be specified for import Description Import a script set script rename Syntax set script rename interface batch name Script Name newname New Script Name Description Rename a sc...

Page 302: ...desyslog enable disable javabufsize Number of Lines javaterminal jws applet location Physical Location netlog off error warning info debug nms1 IP Address or Name nms2 IP Address or Name outgoingtelne...

Page 303: ...wing list includes options which accept the CLEAR command Note CLEAR must be in all caps Description Configures services system logging SSH and Telnet access SSH and Telnet timeout SNMP agent email SM...

Page 304: ...Mask restartdelay PPP Restart Delay routegateway Gateway cbcpnocallback enable disable nat enable disable To delete a site set site delete Site Name show site all names Site Name The following list in...

Page 305: ...keys of all previously created SSH keys set sshkey delete Syntax set sshkey delete one or more parameters Parameters keyhost SSH Key Host keyname SSH Key Name keyuser SSH Key User Description Deletes...

Page 306: ...file Public Key File privfile Private Key File host IP Address or Name login User Login path Path to Key File Description Imports an SLC host key set sshkey server reset Syntax set sshkey server reset...

Page 307: ...ameters Optionally emails the displayed information show sysstatus Syntax show sysstatus email Email Address Description To display the overall status of all SLC devices Optionally emails the displaye...

Page 308: ...tommenu Menu Name allowdialback enable disable dialbacknumber Phone Number dataports Port List encrypt enable disable escapeseq 1 10 Chars group default power admin listenports Port List permissions P...

Page 309: ...e Temperature Calibration in C or F cancel Syntax set temperature low Low Temperature in C high High Temperature in C Description Sets the acceptable range for the internal temperature sensor an SNMP...

Page 310: ...ne Number dialoutpassword Password dodauth pap chap dodchaphost CHAP Host or User Name dodchapsecret CHAP Secret or User Password restartdelay PPP Restart Delay flowcontrol none xon xoff rts cts inits...

Page 311: ...g of a thumb drive set usb storage rename Syntax set usb storage rename U1 file Filename newfile New Filename Description Renames a file on a thumb drive set usb storage copy Syntax set usb storage co...

Page 312: ...ve show usb Syntax show usb Description Displays currently attached USB devices with their product information and settings show usb storage Syntax show usb storage Description Display product informa...

Page 313: ...e Services do Device Port operations dt configure Date Time pc configure PC Cards lu configure Local Users um configure User Menus ra configure Remote Authentication methods dr view Diagnostics Report...

Page 314: ...g list includes options which accept the CLEAR command CLEAR must be in all caps Enter RSA public key or Pre Shared Key of remote host set vpn key Enter XAUTH password set vpn xauthpassword Display al...

Page 315: ...nd prompt Bootloader Commands Table A 1 User Commands help Lists and prints the command list and online help An alias for help boot Boot default runs bootcmd bootcheck Checks boot bank information boo...

Page 316: ...pies an image of the drive from the USB port or from the lower PCMCIA device to the internal CF card passwd Provides a new password for user admin The default password for user admin is admin User cus...

Page 317: ...frastructure with reference to how vulnerable the CAT 5 wiring is to tapping Factors Affecting Security External factors affect the security provided by the SLC device for example Telnet sends the log...

Page 318: ...ded power source Do not use adapter plugs or remove the grounding prong from the cord Only use a power cord with a voltage and current rating greater than the voltage and current rating marked on the...

Page 319: ...mounted units are installed in a closed or multi unit rack assembly they may require further evaluation by Certification Agencies The following items must be considered Do not install the unit in a ra...

Page 320: ...Only connect the network port to an Ethernet network that supports 10Base T 100Base T Only connect device ports to equipment with serial ports that support EIA 232 formerly RS 232C Only connect the c...

Page 321: ...Netzkabel von der Steckdose trennen ziehen Sie am Stecker und nicht am Kabel Das Netzkabel mu unter allen Umst nden an einer geeigneten sowie geerdeten Netzversorgung angeschlossen werden Benutzen Sie...

Page 322: ...nke oder hnliches F hren und sichern Sie die Anschlussverdrahtung so zu den Anschlussklemmen da sie vor hoher Beanspruchung und Besch digung gesch tzt ist Beim Anschlu des Ger tes mu eine leicht zug...

Page 323: ...nden sind Beachten Sie dieses besonders im Falle des Anschlusses an eine Steckdosenleiste oder wenn aus einem anderen Grund das Ger t nicht direkt an eine Steckdose angeschlossen wird Bevor Sie das SL...

Page 324: ...connector found on other manufacturers serial devices or re route the serial signals for connections to other devices that use RJ45 serial connectors Please check the cabling database on the Lantroni...

Page 325: ...Appendix E Adapters and Pinouts SLC Console Manager User Guide 325 Figure E 2 RJ45 Receptacle to DB25F DCE Adapter for the SLC Console Manager PN 200 2067A...

Page 326: ...Appendix E Adapters and Pinouts SLC Console Manager User Guide 326 Figure E 3 RJ45 Receptacle to DB9M DCE Adapter for the SLC Console Manager PN 200 2069A...

Page 327: ...ppendix E Adapters and Pinouts SLC Console Manager User Guide 327 Figure E 4 RJ45 Receptacle to DB9F DCE Adapter for the SLC Console Manager PN 200 2070A Use PN 200 2070A adapter with a PC serial port...

Page 328: ...to RJ45 Adapter for Netra Sun Cisco and SLP PNs 200 2225 and ADP010104 01 Note The cable ends of the ADP010104 01 are an RJ45 socket on one end and a RJ45 plug on the other instead of RJ45 sockets on...

Page 329: ...irectory information Modem State Parameters Dial in The SLC console manager waits for a peer to call the SLC unit to establish a text command line or PPP connection For text connections the user will...

Page 330: ...tiating the dial back The SLC device will dial and if the remote peer requests PAP or CHAP authentication provide the Dial out Login and Dial out Password as authentication tokens Once authenticated a...

Page 331: ...est the server use an administrator defined number to dial on callback Optionally some servers may also allow no callback as an option CBCP Server The SLC device waits for a client to call the SLC con...

Page 332: ...answering a call the modem should always be configured for manual answer not auto answer When answering a call the SLC console manager answers after the 2nd ring Any text or PPP connection can be term...

Page 333: ...rs can share files without having to install new software SNMP Simple Network Management Protocol A protocol that system administrators use to monitor networks and connected devices and to respond to...

Page 334: ...000 4 2 1995 Electro Static Discharge Test IEC61000 4 3 1996 Radiated Immunity Field Test IEC61000 4 4 1995 Electrical Fast Transient Test IEC61000 4 5 1995 Power Supply Surge Test IEC61000 4 6 1996 C...

Page 335: ...t has been tested and found compliant with the following standards Safety EN 60950 Emissions EN 55022 Class A Immunity EN 55024 RoHS Notice All Lantronix products in are China RoHS compliant and free...

Page 336: ...53 3990 Fax 949 453 3995 Table G 1 Lantronix Product Family Names and Toxic Hazardous Substances and Elements Product Family Name Toxic or hazardous Substances and Elements Lead Pb Mercur y Hg Cadmium...

Page 337: ...y isolated from any source Connected to reliable Earth ground The connector kit contains 6 pieces that make 2 complete 48VDC connectors as shown in Figure H 1 Figure H 1 Connector Kit Contents Caution...

Page 338: ...e connecting to the SLC console manager If the polarity is reversed you can damage the SLC internal power supply 5 Connect a Digital Volt OHM DVOM meter to the power source leads and verify the 48 VDC...

Page 339: ...onsole Manager User Guide 339 Figure H 5 DC Power Cord into the SLC Console Manager b Turn on your 48VDC power source c Turn on the power switch of the SLC console server 7 Follow the setup instructio...

Page 340: ...s appendix contains the following sections Installing Schema Support in Window AD Server Creating the SLC Schema Attribute Adding the Attribute to the Users Group in Windows Adding the Permissions to...

Page 341: ...e Manager User Guide 341 Figure I 1 Programs Window 3 Click Start Run mmc 4 Click OK Figure I 2 shows the window that displays Figure I 2 MMC Window 5 On the File menu click Add Remove Snap in Figure...

Page 342: ...gure I 3 Snap In Window 6 Under Available snap ins click Active Directory Schema Add OK Figure I 4 shows the directory that displays Figure I 4 Active Directory Schema 7 To save this console click Sav...

Page 343: ...lder in File name box type a name for the snap in and then click Save Figure I 6 shows the folder that displays Figure I 6 Administrative Tools Folder b Or to save the snap in to a location other than...

Page 344: ...onsole open it and right click on Attributes 2 Mouse over New and left click on Attribute Figure I 8 shows the window that displays Figure I 8 New Attribute Window 3 Click Continue on the Warning scre...

Page 345: ...ything for the description 7 Change the Syntax pull down menu to Unicode String 8 Click on OK Adding the Attribute to the Users Group in Windows 1 Highlight the Classes folder in the console tree on t...

Page 346: ...346 Figure I 11 User Class Window 3 Right click on a user and left click on Properties Figure I 12 shows the window that displays Figure I 12 Class User Properties Window 4 Under the Attributes tab c...

Page 347: ...r Guide 347 Figure I 13 User Properties Window 5 Find the secureLinxSLCPerms attribute highlight it and click on OK Figure I 14 Select Schema Object Window 6 Click on OK on the window underneath 7 Cli...

Page 348: ...e Individual User 1 Open ADSI Edit if you start typing adsi in the search line in Windows it should find it Figure I 15 shows the window that displays Figure I 15 ADSI Edit Window 2 Expand the console...

Page 349: ...lick on the user for whom you wish to configure permissions and left click on Properties Figure I 17 shows the Properties Window Figure I 17 Properties Window 4 Under the Attribute Editor tab scroll d...

Page 350: ...e values that you can use in the Value field that specify the user permissions are as follows rights data listen clear group escseq brkseq menu For rights you can enable the following fa Full Administ...

Page 351: ...t key sequence would escape you from a console session and send a break out the current session port respectively The default for each is x1bA esc A and x1bB esc B respectively The x in the default st...

Reviews:

No comments

Related manuals for SLC8

Brand: XDS Pages: 99

Brand: A-Link Pages: 6

Brand: dbx Pages: 2

SCSI PC Card REX-9530V

Brand: Ratoc Systems Pages: 30

Brand: Ubiquiti Pages: 3

Brand: Ubiquiti Pages: 22

Brand: Ublox Pages: 17

Brand: Vivotek Pages: 136

Brand: Qixiang Technology Pages: 16

Brand: Davey Pages: 18

Brand: Dataprobe Pages: 5

SinoCon C2000-C2-SHK0401-BB1

Brand: KonNad Pages: 12

Brand: WABCO Pages: 29

Brand: Atmel Pages: 2

Brand: sound4 Pages: 66

TeleMyo 2400T V2

Brand: Noraxon Pages: 52

Brand: ADLINK Technology Pages: 95

Brand: RouterBOARD Pages: 4

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands