manualshive.com logo in svg

Raritan Dominion KX, User Manual

The Raritan Dominion KX Quick Installation And Setup Manual is a must-have manual for setting up your KX product effortlessly. Simply download the manual for free from our website and unlock the full potential of your device. Get your hands on the manual now to start enjoying seamless installation and setup.

Share
Download
background image

48  

D

OMINION 

KX

 

U

SER 

M

ANUAL

 

 

Implementing RADIUS Remote Authentication 

Microsoft Active Directory can be used as source information for RADIUS authentication by installing the 
Windows server component 

Internet Authentication Server

If you choose RADIUS authentication protocol, complete the RADUIS fields as follows: 

 

Authentication Type:

 Click on the drop-down arrow to select either CHAP or PAP protocol. 

 

Server UDP Port / Custom UDP Port: 

Click on the drop-down arrow to select whether you 

would prefer using standard RADIUS TCP port 1812, the legacy RADIUS TCP port 1645, or 
type in your own user defined port in the 

Custom UDP Port 

field. 

 

Remote Accounting / Custom Accounting Port: 

Click on the check box to send 

authentication events to a RADIUS accounting server; if so, type the TCP port should be used 
for transmitting events in the 

Custom Accounting Port

 
Returning User Group Information via RADIUS 

When a RADIUS authentication attempt succeeds, Dominion KX determines the permissions for a given 
user based on the permissions of the user’s group.  

Your remote RADIUS server can provide these user group names by returning an attribute, implemented as 
a RADIUS 

FILTER-ID

. The 

FILTER-ID

 should be formatted as follows: 

Raritan:G{GROUP_NAME} 

where 

GROUP_NAME

 is a string, denoting the name of the group to which the user belongs. 

 
RADIUS Communication Exchange Specifications 

Dominion KX sends the following information to RADIUS server in an authentication query: 
 

A

TTRIBUTE

 

D

ATA

 

USER-NAME 

The user name entered at the login screen. 

USER-PASSWORD  In PAP mode, the encrypted password entered at the login 

screen. 

CHAP-PASSWORD  In CHAP mode, the CHAP protocol response computed from 

the password and the CHAP challenge data. 

NAS-IP-ADDRESS 

Dominion KX’s IP Address 

NAS-IDENTIFIER 

The Dominion KX unit name as configured in “Network 
Configuration” (see previous section). 

NAS-PORT-TYPE  The value ASYNC (0) for modem connections and 

ETHERNET (15) for network connections. 

NAS-PORT Always 

0. 

STATE 

If this request is in response to an ACCESS-CHALLENGE, 
the state data from the ACCESS-CHALLENGE packet will 
be returned. 

PROXY-STATE 

If this request is in response to an ACCESS-CHALLENGE, 
the proxy state data from the ACCESS-CHALLENGE packet 
will be returned. 

 

Summary of Contents for Dominion KX

Page 1: ...8 E mail sales asia raritan com http www raritan com tw Raritan Computer France 120 Rue Jean Jaures 93200 Levallois Perret France Tel 33 14 756 2039 Fax 33 14 756 2061 E mail sales france raritan com...

Page 2: ......

Page 3: ...minion IP Reach Paragon MasterConsole and their respective logos are trademarks or registered trademarks of Raritan Computer Inc PS 2 RS 6000 and PC AT are registered trademarks of International Busin...

Page 4: ...case combination in which they were created The default password raritan must be entered entirely in lowercase letters To ensure security change the default password as soon as possible Default IP Ad...

Page 5: ...emoving RRC From the Browser Cache 14 Optional Installing Standalone RRC Client 15 RRC Window Layout 16 RRC Navigator 17 Navigator Options 18 Creating New Profiles 18 Modifying Profiles 20 Deleting Pr...

Page 6: ...2 Dominion KX Diagnostic Console 52 Configuration Backup and Restore 53 Performance Settings 53 Time and Date 54 Chapter 5 Local Console Port Access 55 Local Port Functionality 55 Selecting Servers 56...

Page 7: ...ure 25 Add Keyboard Macro Window 27 Figure 26 Keyboard Macros Window 27 Figure 27 Minimize All Window Menu Option 28 Figure 28 Modify Connection Window 29 Figure 29 Settings Window 30 Figure 30 Exampl...

Page 8: ...gure 52 Local Server Display 56 Figure 53 Administrative Menu 57 Figure 54 Channel Configuration Menu 57 Figure 55 Network Settings Menu 58 Figure 49 Help Menu 58 Figure 56 System Information Window 5...

Page 9: ...dvanced features include 128 bit encryption remote power control dual Ethernet LDAP RADIUS Active Directory and syslog integration and Web management These features enable you to deliver higher uptime...

Page 10: ...2 DOMINION KX USER MANUAL Product Photos Figure 2 Dominion KX Front and Rear Panels Figure 3 Dominion KX Computer Interface Module DCIM...

Page 11: ...remote users On Screen display Centralized access security Integrated Power Control LED indicators for power network activity and remote user status Integrated KVM Over IP Remote Access Cross platform...

Page 12: ...le consisting of a keyboard mouse and multi sync VGA monitor directly attached to Dominion KX to control target servers locally directly at the rack not through the network CIM Computer Interface Modu...

Page 13: ...should be configured with desktop backgrounds set to a predominantly solid plain light colored graphic The desktop background need not be completely solid but desktop backgrounds featuring photos or c...

Page 14: ...on KX at a standard VESA resolution and refresh rate Each Linux target server should also be set so the blanking times are within 40 of VESA standard values To check for these parameters 1 Go to the X...

Page 15: ...r use with Dominion KX Apple Macintosh Settings For target servers running an Apple Macintosh operating system no specific mouse setting is required However when using Dominion KX to access and contro...

Page 16: ...Local Access Console Ports optional For convenient access to target servers while at the rack use Dominion KX s Local Access Console ports Attach a multisync VGA monitor mouse and keyboard to the por...

Page 17: ...port to rename and press the ENTER key When the cursor changes to a green color assign a name up to 20 characters to identify the server connected to that port Press ENTER to complete the change 7 Pr...

Page 18: ...ork access to Dominion KX 2 If you are using Windows NT 2000 XP or 2003 ensure that you are not a restricted user 3 Launch Microsoft Internet Explorer ensure that your Internet Explorer security setti...

Page 19: ...rs will align Should you experience difficulty with mouse synchronization please refer to the section Configuring Target Servers at the beginning of this chapter The RRC Navigator displays any known R...

Page 20: ...12 DOMINION KX USER MANUAL...

Page 21: ...Microsoft Internet Explorer documentation for details regarding these settings Note Microsoft Windows 2000 Microsoft Windows XP and Microsoft Windows 2003 restrict certain types of users from downloa...

Page 22: ...rowser cache for any reason follow the standard procedure as proscribed by your web browser software Directions for Internet Explorer v6 0 1 If you have used RRC recently exit and restart Internet Exp...

Page 23: ...KX Release you will be using 4 The entry for the standalone RRC client is a zip file which contains the release notes and the Installer for Standalone RRC Check the release notes for the latest infor...

Page 24: ...out RRC functions are grouped into five general sections on the screen Each section will be discussed in detail further in this chapter Figure 12 RRC Screen Components RRC Navigator RRC Menu Bar Remot...

Page 25: ...see next section Creating New Profiles for additional information Profiled Devices will be identified in the RRC navigator by the Description field in the profile Automatically identified devices wil...

Page 26: ...thod is the only method of connecting to a Raritan Device configured to use DHCP IP addressing Creating New Profiles Create a connection profile to store important information about your Raritan devic...

Page 27: ...efault unit name for each Dominion KX produced is Dominion KX To change the default name on a Dominion KX unit and institute a unique name please see Chapter 4 For a Dial Up Connection enter the diali...

Page 28: ...create the connection Modifying Profiles To modify a profile in RRC select the device in the RRC Navigator and right click on it Select Modify Profile from the shortcut menu When modifying a device p...

Page 29: ...Profiles section in this chapter to create a new connection profile for your Dominion KX If you are having problems connecting to a Raritan device be sure to check the following Username Password Rari...

Page 30: ...Alt A Forces refresh of video settings resolution refresh rate Enter On Screen Menu N A Not applicable for Dominion KX Used by RRC with other Raritan products Exit On Screen Menu ESC Not applicable f...

Page 31: ...data encryption the Security Indicator is represented on the Status Bar as an open lock When SSL authentication data encryption or SSL authentication SSL encryption is selected the Security Indicator...

Page 32: ...ou were physically located next to the server Single Mouse Mode Dual Mouse Mode When remotely viewing a target server that uses a pointing device you will see two mouse pointers in the Remote Desktop...

Page 33: ...Area mode removes toolbars status bars and the RRC Navigator in order to maximize your screen space Use this mode to focus on a target KVM Server especially when the target video resolution is equal t...

Page 34: ...you were to physically press the Ctrl Alt Delete keys while using RRC the command would first be intercepted by your own PC due to the structure of the Windows operating system instead of sending the...

Page 35: ...le select two keys the Windows key and the letter D key d In the Keys to Release field select each key for which you would like to emulate key releases in the order by which they are to be released Cl...

Page 36: ...Bar Activation When you create a macro it appears under the Keyboard menu From the Keyboard menu click on the name of your keyboard macro Figure 27 Minimize All Window Menu Option Hot Key Activation...

Page 37: ...eed and not use more than the bandwidth that is available Dominion KX detects available bandwidth automatically but you can adjust this use Color Depth Dominion KX can dynamically adapt the color dept...

Page 38: ...ion described in the next section or by manually forcing Dominion KX to auto detect the video settings on the Video menu click Auto sense Video Settings However it is useful to understand the settings...

Page 39: ...son when any one color s gain slide is moved and all the offset slide adjusters move in unison when any one color s offset slide is moved Best Possible Video Mode Dominion KX will perform the full Aut...

Page 40: ...the Tools menu click Save Activity Log to download a detailed activity log for troubleshooting purposes On the Tools menu click Save Diagnostic Log to download a detailed diagnostic log for viewing r...

Page 41: ...the IP Address assigned to your Dominion KX unit factory default 192 168 0 192 Your browser will prompt you to grant permission to retrieve and launch Dominion KX Manager a signed Java applet After y...

Page 42: ...is shown in this field Available indicates that no one is currently viewing the target Busy indicates that a user is currently using the target and Unavailable indicates that a configured target has b...

Page 43: ...as a whole Dominion KX allows you to create ACLs for each user group for example you can create a user group Outsourced Vendors that is permitted to access Dominion KX only from a given IP address ran...

Page 44: ...ritan recommends this option SSL authentication SSL data encryption Secures user names and passwords and provides high level security for KVM data 128 bit Secure Sockets Layer SSL protocol provides a...

Page 45: ...ore information on remote authentication Enable Multiple Logins When this rule is selected a given username password combination can be connected into Dominion KX from multiple client workstations at...

Page 46: ...ssions for all users in a group at once instead of managing permissions on a user by user basis User information helps in authenticating users accessing Dominion KX Upon successful authentication Domi...

Page 47: ...ger for example if you check the box before Manage user accounts the members in this group can create new user accounts in KX Manager Several administration functions are available within RRC and from...

Page 48: ...st Window Important Please note that ACL rules are evaluated in the order that they are listed 5 Click OK to save Group properties or Cancel to close the window without saving Moving Users between Gro...

Page 49: ...existing user select the user that you wish to delete right click on the user icon and select Delete User Remote Authentication Introduction Note to CommandCenter Users If you plan to configure Domin...

Page 50: ...or external authentication Dominion KX first checks its own internal user database for that username If the username is not found in the Dominion KX internal database the request is forwarded to the e...

Page 51: ...owed Permissions determined by internal user group Internal lookup of user group External authentication server configured Login denied External authentication query Valid username password Login deni...

Page 52: ...authentication server If you choose LDAP authentication protocol complete the LDAP fields as follows Use Secure LDAP Apply this rule to enables LDAP S which ensures that all authentication requests an...

Page 53: ...he Registry Key 1 Right click the Active Directory Schema root node in the left pane of the window and then click Operations Master 2 Click on the check box before The Schema may be modified on this D...

Page 54: ...lick OK 8 Click OK Updating the Schema Cache 1 Right click Active Directory Schema in the left pane of the window and select Reload the Schema from the shortcut menu 2 Minimize the Active Directory Sc...

Page 55: ...tive Tools and then click Active Directory Users and Computers Click on the Specific User Name to select it 2 Right click on the Specific User Name and click Raritan KX User Group A small VBScript app...

Page 56: ...permissions of the user s group Your remote RADIUS server can provide these user group names by returning an attribute implemented as a RADIUS FILTER ID The FILTER ID should be formatted as follows R...

Page 57: ...US server during authentication will be sent in each accounting request CLASS Any CLASS attributes returned by the RADIUS server during authentication will be sent in each accounting request ACCT AUTH...

Page 58: ...inion channels Once assigned the power management function will be available in RRC Setup Preparation You will need a power strip and the P2CIM PWR Computer Interface Module CIM The CIM is included wi...

Page 59: ...er icon and click Properties The Properties PC window appears Figure 46 Associating a Target with a Power Outlet 4 Click on one of the Power Strip cells in the table and a list of available power stri...

Page 60: ...view the device type that is plugged into that outlet either an associated Paragon Target or a non associated Appliance and delete any previously made associations Figure 47 Power Strip View Window Re...

Page 61: ...and then click Performance The Performance Settings window appears Figure 49 Performance Settings Window 2 Pause Video Stream for Idle Users Click on the drop down arrow to pause the flow of video dat...

Page 62: ...X to synchronize its internal clock with an external time server using SNTP a Enter the IP address of the primary and secondary SNTP server to which Dominion KX should synchronize in the Primary Serve...

Page 63: ...and mouse access other USB devices such as external drives scanners etc should not be connected to these ports Simultaneous Users The Dominion KX Local Console Port provides an independent access pat...

Page 64: ...be sorted and displayed by two different parameters Select by Channel Press F2 while in the OSD to display your servers listed in numerical order as determined by the physical Dominion KX server port...

Page 65: ...sign names to the servers connected to Dominion KX from the Local Console Port while you are physically located next to the servers themselves 1 Log on to Dominion KX as a user with administrative pri...

Page 66: ...use numerical keys as well as the and arrow keys to change values 4 Press S to save changes and then press ESC to exit the menu Important Dominion KX must be rebooted for new network settings to take...

Page 67: ...23mm DCIM USB 0 2 lbs 09kg 1 3 x 3 0 x 0 6 33 02mm x 76 19mm x 15 23mm 0 2 lbs 09kg 7 2 x 9 x 0 6 182 88mm x 228 6mm x 15 23mm DCIM SUSB 0 2 lbs 09kg 1 3 x 3 0 x 0 6 33 02mm x 76 19mm x 15 23mm 0 2 l...

Page 68: ...the optional capability to synchronize its internal clock to a central time server This function requires the use of UDP Port 123 the standard for SNTP but can also be configured to use any port of y...

Page 69: ...rPC running Windows Linux Solaris Novell etc State independent Agent less Dominion KX does not require the managed server OS to be up and running nor does it require any special software to be install...

Page 70: ...vironment of v1 4 x or later installed What is the file size of the applet used to access Dominion KX How long does it take to retrieve The applet used to accessed Dominion KX is approximately 1 4MB i...

Page 71: ...The table below summarizes some use cases and the required bandwidth utilization at Dominion KX s default settings on a 10Mbit s network Idle Windows Desktop 0 Mbps Move Cursor Around Desktop 0 18Mbps...

Page 72: ...k port with the same IP address ensuring that your server operations are not disrupted Note that Automatic Failover is disabled by default Can Dominion KX be rack mounted Yes Dominion KX ships standar...

Page 73: ...Dominion KX s Web browser capability No Dominion KX is a completely self sufficient appliance After assigning an IP address to Dominion KX it is ready to use with Web browser and authentication capab...

Page 74: ...r more reliable than that found in lower end KVM switches it incorporates more than 15 years of experience has been deployed to millions of servers worldwide Are there any agents that must be installe...

Page 75: ...ation as those accessing remotely This means that If you have configured Dominion KX to interact with an external RADIUS LDAP or Active Directory server users attempting to access the local port will...

Page 76: ...gs such that the server does not restart after losing and regaining power See your server user manual for more details What type of power strips does Dominion KX support Dominion KX can support any se...

Page 77: ...annot guarantee the interoperability of any particular third party analog KVM switch Contact Raritan technical support for further information Raritan s Paragon and Paragon II analog switches are IP e...

Page 78: ...Java Runtime Environment 1 4 x or later installed Besides the initial setting of Dominion KX s IP address everything about the solution can be completely set up over the network In fact using a crosso...

Page 79: ...tive username and password of admin raritan all lower case as soon as the unit is connected to the network I changed and subsequently forgot Dominion KX s administrative password can you retrieve it f...

Page 80: ...72 DOMINION KX USER MANUAL 255 80 6040...

Reviews:

No comments

Related manuals for Dominion KX

TAMS 1800 Series Installation & Operation Manual preview
1800 Series
Brand: TAMS Pages: 28
Ubisys S1 Reference Manual preview
S1
Brand: Ubisys Pages: 40
Cabletron Systems SEHI100TX-22 User Manual preview
SEHI100TX-22
Brand: Cabletron Systems Pages: 88
D-Box HaptiSync Hub User Manual preview
HaptiSync Hub
Brand: D-Box Pages: 27
hager EMN005 User Instructions preview
EMN005
Brand: hager Pages: 2
hager HIC4 A Series Quick Start preview
HIC4 A Series
Brand: hager Pages: 4
hager EGN100 Manual preview
EGN100
Brand: hager Pages: 2
Cudy GS1016 Quick Installation Manual preview
GS1016
Brand: Cudy Pages: 2
Waters Network Systems GS1016 Operating Manual preview
GS1016
Brand: Waters Network Systems Pages: 12
Velleman HQ-Power VMS4 Manual preview
HQ-Power VMS4
Brand: Velleman Pages: 5
Eaton STS 2000A Installation And Operation Manual preview
STS 2000A
Brand: Eaton Pages: 120
Black Box SW540A-R3 Manual preview
SW540A-R3
Brand: Black Box Pages: 31
Lantech IPES-2208CA User Manual preview
IPES-2208CA
Brand: Lantech Pages: 146
Kramer KIT-401 Quick Start Manual preview
KIT-401
Brand: Kramer Pages: 4
SICK 8026014 Operating Instructions Manual preview
8026014
Brand: SICK Pages: 64
Greengate VNLW-P-1001-MV-N-W Installation Instructions Manual preview
VNLW-P-1001-MV-N-W
Brand: Greengate Pages: 2
SWEEX KS001 Manual preview
KS001
Brand: SWEEX Pages: 4
VXI Tuffset 200302F User Manual preview
Tuffset 200302F
Brand: VXI Pages: 2

Brands by name

Popular brands

Load more brands