Avocent Cyclades ACS Скачать руководство пользователя страница 22 | Manualshive

Страница: 22 / 212

background image

6

Cyclades ACS Advanced Console Server Installation, Administration and User Guide

VPN

The console server administrator can set up VPN connections to establish an encrypted
communication between the console server and a host on a remote network. The encryption creates
a security tunnel for dedicated communications.

You can use the VPN features on the console server to create a secure connection between the
console server every machine on the subnet at the remote location or between the console server
and a single remote host.

To set up a security gateway, install IPSec on any machine performing networking over IP,
including routers, firewall machines, application servers and end-user machines.

The ESP and AH authentication protocols are supported. RSA Public Keys and Shared Secret
are supported.

For detailed information and procedures to configure a VPN connection, see

VPN Connections

on

page 91.

Packet Filtering

The administrator can configure the device to filter packets like a firewall. IP filtering is controlled
by chains and rules.

Structure of IP filtering

The Firewall Configuration form in the Web Manager is structured on two levels:

•

The view table of the Firewall Configuration form containing a list of chains.

•

The chains which contain the rules controlling filtering.

OTP/Local

Uses the local password if the OTP password fails.

Radius

Authentication is performed using a Radius authentication server.

Radius/Local

Radius authentication is tried first, switching to Local if unsuccessful.

RadiusDownLocal

Local authentication is performed only when the Radius server is down.

Authentication is performed using a authentication server.

/Local

authentication is tried first, switching to Local if unsuccessful.

DownLocal

Local authentication is tried only when the server is down.

Table 1.4: Authentication Methods Supported (Continued)

Authentication Type

Definition

«
...
20
21
22
23
24
...
»

Содержание Cyclades ACS

Страница 1: ...Installation Administration User Guide Cyclades ACS...

Страница 2: ...rect the problem at his or her own expense Notice about FCC Compliance for All Cyclades ACS Advanced Console Server Models To comply with FCC standards the Cyclades ACS advanced console server require...

Страница 3: ...and User Guide Avocent the Avocent logo The Power of Being There and Cyclades are registered trademarks of Avocent Corporation or its affiliates All other marks are the property of their respective o...

Страница 4: ...lated dangerous voltage within the product s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons Power On This symbol indicates the principal on off switch...

Страница 5: ...s 7 SNMP 8 Notifications Alarms and Data Buffering 9 Syslog servers 9 Managing Users of Connected Devices 9 Configuring access to connected devices 10 ACS Console Server and Power Management 10 Config...

Страница 6: ...ver 25 Connect to serial ports 25 Connection protocols for serial ports 26 IPDU Power Management 27 Outlets Manager 27 View IPDU info 28 IPDU Multi Outlet Ctrl 29 Security 31 Chapter 4 Web Manager for...

Страница 7: ...tings 78 Syslog 81 PCMCIA Management 82 VPN Connections 91 SNMP 95 Firewall Configuration 99 Host Table 108 Static Routes 108 Chapter 8 Security Menu and Forms 113 Users and Groups 113 Active Ports Se...

Страница 8: ...r Guide Time Date 164 Boot Configuration 166 Backup Configuration 168 Upgrade Firmware 170 Reboot 171 Online Help 171 Appendices 175 Appendix A Technical Specifications 175 Appendix B Safety Regulator...

Страница 9: ...xpert Mode 38 Figure 5 1 Administrator Physical Ports Factory Settings 41 Figure 5 2 Wizard Step 1 Security Profile Form 42 Figure 5 3 Custom Security Profile Dialog Box 43 Figure 5 4 Wizard Step 2 Ne...

Страница 10: ...Network Syslog 81 Figure 7 4 Expert Network PCMCIA Management 82 Figure 7 5 PCMCIA Card Type by Slot 83 Figure 7 6 Expert PCMCIA CompactFlash Hard Disk Configuration Dialog Box 88 Figure 7 7 Expert PC...

Страница 11: ...urity Security Profile 124 Figure 8 9 Expert Physical Ports Default Factory Settings 127 Figure 8 10 Serial Ports Protocol Incompatibility Dialog Box 127 Figure 8 11 Custom Security Profile Dialog Box...

Страница 12: ...x Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 13: ...g Cyclades IPDUs 21 Table 3 1 Common Screen Information 24 Table 3 2 Java Applet Buttons for Connecting to the Console Server 25 Table 3 3 Available Serial Port Protocols 26 Table 3 4 Regular User Out...

Страница 14: ...orm Icons 71 Table 7 1 Expert Network Menu Descriptions 77 Table 7 2 Network Host Setting Field Defintions 79 Table 7 3 Modem Dialog Box Fields 84 Table 7 4 ISDN Dialog Box Fields 85 Table 7 5 GSM Dia...

Страница 15: ...enu and Fields 140 Table 9 12 Expert Authentication Methods and Fallback Mechanisms 141 Table 9 13 List of Authentication Method Procedures 142 Table 9 14 Data Buffering Form Fields 143 Table 9 15 Exp...

Страница 16: ...yclades ACS Advanced Console Server Installation Administration and User Guide Table 10 9 Expert Upgrade Firmware Form Fields 170 Table 1 1 Technical Specifications for the ACS Console Server Hardware...

Страница 17: ...d slots Figure 1 1 Front of the ACS Console Server with PCMCIA Card Slots ACS4 shown The following figure shows the back of an ACS16 with its Serial Ethernet and Console ports Figure 1 2 Back of the A...

Страница 18: ...t or admin user can have an active CLI or Web Manager session A second root or admin user must abort the session or close the other user s session CAUTION If there are cron jobs running through automa...

Страница 19: ...access to the connected servers or devices using the Web Manager Types of Users The ACS console server supports the following user account types The root user who can manage the console server and its...

Страница 20: ...ile Table 1 1 Security Profile Availability Access to the Console Server Secure Moderate Open Default Telnet P sshv1 P P P sshv2 P P P P Allow SSH root access P P P HTTP P P P HTTPS P P P P HTTP redir...

Страница 21: ...ion Kerberos Authentication is performed using a Kerberos server Kerberos Local Kerberos authentication is tried first switching to Local if unsuccessful KerberosDownLocal Local authentication is perf...

Страница 22: ...PN connection see VPN Connections on page 91 Packet Filtering The administrator can configure the device to filter packets like a firewall IP filtering is controlled by chains and rules Structure of I...

Страница 23: ...hen you add or edit a rule you can define any of the options described in the following table Flag any of the above elements with Inverted to perform target action on packets not matching any criteria...

Страница 24: ...e selected additional options are available For detailed information on LOG target options see LOG target on page 104 For detailed information on REJECT target options see REJECT target on page 105 SN...

Страница 25: ...nsole server Facility numbers are used on the syslog server for handling messages generated by multiple devices Facility numbers for syslog messages Each syslog server has seven local facility numbers...

Страница 26: ...PMI commands Authorized users can also perform IPMI power management of serially connected devices The console server uses IPMI V1 5 Remote power management of devices plugged into a Cyclades IPDU con...

Страница 27: ...the console server An authorized user with administrative privileges can perform IPDU and IPMI power management A regular user with permissions to the connected devices can perform IPDU power manageme...

Страница 28: ...from the console server command line ACS console server administrators can use the ipmitool command to manage power on IPMI devices while logged into the console server with administrative rights The...

Страница 29: ...rver to a power source The destination country is used to determine which type of cord is shipped based on the country s standard power outlet Talk with an Avocent sales representative if you have spe...

Страница 30: ...s Mounting the console server You can mount the ACS console server on a wall rack or cabinet or place it on a desktop or other flat surface Two brackets are supplied with six hex screws for attaching...

Страница 31: ...or ACS16 and ACS32 models with single or dual DC power supplies make sure you use shielded cables when connecting devices to the serial ports Shielded cables are required to comply with NEBS Level 3 c...

Страница 32: ...is off To power up connected devices Turn on the power switches of the connected devices only after you have completed the physical connection to the console server Performing basic network configurat...

Страница 33: ...ept the default hostname otherwise enter your own hostname Hostname CAS fremont_branch_console server 4 Press Enter to keep DHCP enabled or enter n to specify a static IP address for console server By...

Страница 34: ...P address at your site By default the console server uses the IP address provided by the DHCP server If your network does not use DHCP then the console server defaults to 192 168 160 10 Selecting a se...

Страница 35: ...Methods of Accessing the Web Manager You can access the Web Manager using either DHCP or the default IP address NOTE Accessing the Web Manager using either DHCP or the default IP address requires add...

Страница 36: ...ole server has two PCMCIA card slots You can insert and configure one card in each of the slots To see a list of supported PCMCIA cards go to http www cyclades com and follow the links Products Cyclad...

Страница 37: ...e connected the desired number of Cyclades IPDUs Table 2 3 Tasks related to connecting Cyclades IPDUs Task Where Documented Configure serial ports for power management protocol To configure a serial p...

Страница 38: ...22 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 39: ...re users and ports An authorized user can access connected devices through the Web Manager to troubleshoot maintain recycle powerand reboot connected devices To log into the Web Manager 1 Connect your...

Страница 40: ...ddle changes according to which menu option is selected The following table illustrates the functions common to all the forms Table 3 1 Common Screen Information Form Area Purpose logout Click to log...

Страница 41: ...efined aliases only for ports you have permission to access Port access requirements When you connect to a serial port to access a server or another device access rights to the specific serial port on...

Страница 42: ...a shell enter the following command telnet hostname IP_address TCP_port_number To close a Telnet session Enter the Telnet hotkey defined for the client The default is Ctrl and q to quit To use SSH to...

Страница 43: ...gement If you have permission to manage power on one or more outlets of the power management appliance the Outlets Manager form displays The form shows separate entries for each serial port configured...

Страница 44: ...Buttons Button or icon Purpose Edit Lets you edit an outlet name and the power up interval Cycle Turn power briefly off and then on again Lighted yellow bulb Unlit gray bulb Turn power on Turn power...

Страница 45: ...s exceeded ON Number of Outlets Total number of outlets on all connected IPDUs 8 Over Current Protection Whether over current protection is enabled to prevent outlets from being turned on if the curre...

Страница 46: ...to display the status of each outlet but cannot be used to control the individual outlets NOTE Only one outlet needs to be powered on or unlocked for the entire group to be considered ON or unlocked...

Страница 47: ...ge your password 1 Select the Security option from the menu panel The Security form appears 2 Enter your current password in the Current Password field 3 Enter the new password in the New Password and...

Страница 48: ...32 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 49: ...rs Common Tasks for ACS Console Server Administrators The following table shows some of the common tasks that are performed by an administrator and references to more information about performing the...

Страница 50: ...on page 117 Configure packet filtering Firewall Configuration on page 99 Table 4 1 Administrator Common Administrative Tasks Continued Task Where documented Table 4 2 Description of Administrator Web...

Страница 51: ...The Login page displays 2 Log in as root and type in the root password The default password is tslinux Table 4 3 Administrator Options for Trying Saving and Restoring Configuration Change Task Action...

Страница 52: ...appear Overview of Administrative Modes The console server Web Manager operates in one of two modes Wizard or Expert NOTE If you select Wizard the mode button will read Expert If you select Expert the...

Страница 53: ...nterface when you switch between the two modes is the addition of a top menu bar in the Expert mode to support more detailed and customized configuration In Expert mode the top menu bar contains the p...

Страница 54: ...38 Cyclades ACS Advanced Console Server Installation Administration and User Guide Figure 4 3 Example of Web Manager Form in Expert Mode...

Страница 55: ...the recommended security level This profile enables sshv1 sshv2 HTTP HTTPS Telnet SSH and Raw connections to the Serial Ports In addition ICMP and HTTP redirection to HTTPS are enabled Authentication...

Страница 56: ...ecure Moderate Open Default Telnet 3 sshv1 3 3 3 sshv2 3 3 3 3 Allow SSH root access 3 3 3 HTTP 3 3 3 HTTPS 3 3 3 3 HTTP redirection to HTTPS 3 3 Table 5 2 Wizard Serial Port Enabled Services for Each...

Страница 57: ...th the new firmware In this situation the console server was already in use and certain configuration parameters were saved in the Flash memory In this case the console server automatically retrieves...

Страница 58: ...r and login as an administrator 2 Review the Security Advisory and click the Close button NOTE Your browser s pop up blocker must be disabled to see the Advisory 3 The Web Manager is automatically red...

Страница 59: ...er dialog box is displayed Click OK to continue 6 Select apply changes at the bottom of the Web Manager form to save the configuration to Flash The Web Manager restarts 7 Log in after Web Manager rest...

Страница 60: ...form is displayed By default DHCP is active NOTE If DHCP is enabled a local DHCP server assigns console server a dynamic IP address that can change The administrator chooses whether or not to use DHC...

Страница 61: ...tor can enable ports and assign specific users to individual ports through the Expert mode The following table lists the parameters with the available options and a brief description for each Table 5...

Страница 62: ...is required check the Authentication Required checkbox to enable or leave it unchecked to disable 3 Select apply changes to save configuration to Flash 4 Select the Next button or proceed to the next...

Страница 63: ...ut the ability to change the configuration of the console server By default any user can access any port as long as a valid user ID and password are used Figure 5 7 Wizard Step 4 Access The Access for...

Страница 64: ...rom the Group pull down menu Table 5 5 Wizard Add User Dialog Field Names and Definitions Field name Definition User Name The user name for the account being added Password and Repeat Password The pas...

Страница 65: ...d the console server s IP address For security reasons change the root password from the default tslinux as soon as possible 1 Select Step 3 Access The Access form displays 2 Select the name of the us...

Страница 66: ...ollowing figure shows the form when Enable Data Buffering is checked and the Destination is set to Local Figure 5 10 Wizard Step 5 Data Buffering Local The following figure shows the form when the dat...

Страница 67: ...a comes in Circular buffering requires the administrator to set up processes to examine the data during the timeframe before the data is overwritten by new data File Size Bytes For Local Destination S...

Страница 68: ...mount point directory s pathname is var adm acslogs enter var adm acslogs in the field NOTE The NFS server must already be configured with the mount point shared exported and the shared directory from...

Страница 69: ...add a syslog server This procedure assumes you have the IP address of the syslog server and the facility number for messages coming from the console server 1 Select Step 6 System Log The System Log f...

Страница 70: ...54 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 71: ...button displays at the lower left of the screen you are in Expert mode Overview of menus and forms Figure 6 1 shows a typical Wizard mode screen The top menu bar contains the primary commands and the...

Страница 72: ...and Security Applications Network Security Connect IPDU Power Management Outlets manager View IPDUs info Users Manager form Configuration Software Upgrade form for the IPDU IPDU Power Management IPMI...

Страница 73: ...t displays a Java applet running an SSH session similar to the following figure Table 6 3 Expert Applications Menu Menu Selection Use this menu to Where Documented Connect Connect to the console serve...

Страница 74: ...plays a Java applet with a connection protocol for which the serial port is configured If authentication is in effect for the port you need to supply a user name and password to log into the device To...

Страница 75: ...9 View IPDUs info on page 61 Users Manager form on page 63 Configuration on page 64 Software Upgrade form for the IPDU on page 66 NOTE Using the IPDU power management forms you can manage the power to...

Страница 76: ...s turned on before another outlet can be turned on To view status lock unlock rename or cycle power outlets 1 Go to Applications IPDU Power Mgmt Outlets Manager The Outlets Manager form appears 2 To s...

Страница 77: ...al port which is configured under Ports Physical Ports select Serial Port number Modify Selected Ports Power Management tab v Enable Power Management on this port Outlet number s 6 Click OK 7 Click th...

Страница 78: ...A IPDUs daisy chained through Serial Port 1 Buzzer Whether a buzzer has been configured to sound when a specified alarm threshold has reached ON when the buzzer is configured Syslog Whether syslogging...

Страница 79: ...users listed for a dual IPDU power management appliance The IPDU is connected to serial port 1 which is configured for power management Figure 6 5 IPDU Power Mgmt Users Manager If more than one seria...

Страница 80: ...pears 4 To add a new user click Add The Add Edit User x Outlets dialog box appears 5 In the Add Edit User x Outlets dialog box perform the following steps as needed a Enter the user name in the User f...

Страница 81: ...Mgmt Configuration NOTE The number of amps shown in the Master Unit and Slave units if available pull down menu varies according to the model of the connected IPDU Figure 6 8 shows number 15 for two...

Страница 82: ...es IPDU software into the console server s tmp directory with the filename pmfirmware Clicking the Refresh button checks for a more recent version of the PM firmware in the tmp pmfirmware file If the...

Страница 83: ...e following form used for managing power on a group of outlets that provide power to a multi power supply server or device connected to a serial port Figure 6 10 Expert Applications IPDU Multi Outlet...

Страница 84: ...sed to control the individual outlets Figure 6 12 Expert Applications Multi Outlet Control Icons The icons in the first line of each group are described in the following table NOTE The Cycle button op...

Страница 85: ...to the group name To lock or unlock a group of outlets in the same power state Use these instructions if all of the outlets in a group are either locked or unlocked 1 Go to Applications IPDU Multi Out...

Страница 86: ...mperature voltage and errors On the IPMI Power Mgmt form under Applications you can enable and perform power management of devices that have IPMI controllers If no IPMI devices have been added only th...

Страница 87: ...escribes the icons available from the IPMI Power Mgmt form Table 6 8 Expert IPMI Information Field Name Description Device Alias Optional IP Address IP address of the device on the network Authenticat...

Страница 88: ...e f Enter a password for administering the remote device in the Password field and go to Step 5 4 To edit the configuration for a device click the Edit button on the line with the device s name and ma...

Страница 89: ...gure a user for IPDU power management while connected to a serial port The following procedure allows a user to perform power management for a device while connected to the device through one of the c...

Страница 90: ...trl key NOTE The default IPMI hotkey is I The hexadecimal code for the Ctrl I is the same as the keyboard s Tab key You can choose to change the default IPMI hotkey 3 Select the name of the previously...

Страница 91: ...gure 6 19 Expert Terminal Profile Menu Example The command menu appears when the terminal is powered on To create a menu for a local server terminal 1 Go to Applications Terminal Profile Menu The Term...

Страница 92: ...76 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 93: ...veral PCMCIA cards including modem ISDN GSM CDMA wireless LAN Ethernet LAN CompactFlash and IDE drives for data buffer storage For the list of supported cards point your browser to and follow the link...

Страница 94: ...Host Settings When you select Network Host Settings the following form appears Figure 7 1 Expert Network Host Settings DHCP Enabled If the DHCP is not enabled then other options appear on the form as...

Страница 95: ...figuring a second IP address the unit will be available for more than one network Network Mask The 32 bit number used to group IP addresses together or to indicate the range of IP addresses for a subn...

Страница 96: ...Specify the network mask of the secondary IP in the Secondary Network Mask field e Specify the desired maximum transmission unit in the Maximum Transmission Unit field 5 Under DNS Service specify or...

Страница 97: ...ges The Syslog form allows you to perform the following Specify one or more syslog servers to receive syslog messages related to ports Specify rules for filtering messages The top field on the form CA...

Страница 98: ...o Network Syslog in Expert mode The Syslog form appears 2 Select a facility number for messages generated by serial ports by selecting the number from the CAS Ports Facility pull down menu 3 Select a...

Страница 99: ...http www cyclades com and follow the links to Products Cyclades ACS Advanced Console Servers PC Cards List To configure a PCMCIA card 1 Go to Network PCMCIA Management The PCMCIA Management form appea...

Страница 100: ...click the PPP checkbox additional fields for a local and remote IP address and a Call Back checkbox appear If you enable Call Back the Phone Number field appears on the Slot dialog box To configure a...

Страница 101: ...an ISDN PCMCIA card When you select ISDN from the pull down menu the ISDN dialog box appears The following table provides a brief description of the fields available in the ISDN dialog box To configur...

Страница 102: ...e following table provides a brief description of the fields available in the GSM dialog box To configure a GSM PCMCIA card 1 Install the GSM card and select GSM from the pull down menu on the PCMCIA...

Страница 103: ...The following table provides a brief description of the fields available in the Ethernet dialog box To configure an Ethernet PCMCIA card 1 Install the Ethernet card and select Ethernet from the pull...

Страница 104: ...dialog box 2 Click the Enable checkbox The Use for data buffering checkbox appear on the Slot dialog box 3 If desired uncheck the Use for data buffering checkbox Default is checked 4 Click OK 5 Click...

Страница 105: ...Net ESSID field enter the SSID for communicating with others in your network 5 In the Channel field enter a channel number 6 Click the Encrypted checkbox if an encrypted data communication is required...

Страница 106: ...e CDMA card you are using 5 In the Additional Initialization field enter additional parameters if required by the card 6 To enable call back perform the following Table 7 9 CDMA Dialog Box Fields Fiel...

Страница 107: ...nder the Card Type column 3 Click apply changes 4 Physically remove the card from the PCMCIA slot VPN Connections Virtual Private Network VPN enables a secured communication between the console server...

Страница 108: ...u must also specify a NextHop IP address The next hop for the remote or right host is the IP address of the router to which the remote host or gateway running IPSec sends packets when delivering them...

Страница 109: ...eys or Shared Secret ID This is the hostname that a local system and a remote system use for IPSec negotiation and authentication It can be a fully qualified domain name preceded by For example hostna...

Страница 110: ...ol pull down menu 9 Select Shared Secret or RSA Public Keys from the Authentication Method pull down menu 10 Set up the right and left hosts by doing the following steps a Enter the fully qualified do...

Страница 111: ...gement Protocol SNMP is a set of protocols for managing complex networks SNMP works by sending messages called protocol data units PDUs to different parts of a network SNMP compliant devices agents st...

Страница 112: ...inistration and Users Guide Figure 7 10 Expert Network SNMP You can use this form to enable notifications about significant events or traps from console server to an SNMP management application such a...

Страница 113: ...of the console server s administrator for example acs_admin cyclades com SysLocation The physical location of the console server Community SNMP v1 and v2 only A Community defines an access environmen...

Страница 114: ...configuration list and click the Edit button b To edit an SNMPv3 entry select an entry from the SNMPv3 Configuration list and click the Edit button The New Modify SNMP Daemon Configuration dialog box...

Страница 115: ...in the network Selecting Network Firewall Configuration displays the form shown in the following figure Figure 7 13 Expert Network Firewall Configuration You can use the Firewall Configuration form t...

Страница 116: ...n is selected for editing an error message is displayed If this message appears click OK to continue Figure 7 15 Firewall Configuration User defined Chain Message Delete button If one of the user defi...

Страница 117: ...for chain_name Form The buttons shown in the following figure appear at the bottom of the form Figure 7 18 Firewall Configuration Edit Rules for chain_name Buttons Pressing the Add button opens the Ad...

Страница 118: ...slating the source or the destination IP address or sending the packet to another user defined chain Source or destination IP and mask If you add a value in the Source IP field incoming packets are fi...

Страница 119: ...nge of IP address can be specified by adding a second port number in the to field TCP packets are filtered for for the range of specified IP addresses TCP Flags The TCP flags cause packets to be filte...

Страница 120: ...Menu Options The following table defines the fields in the above figure LOG target If you select LOG from the Target field the fields and menus shown in the following figure appear in the LOG Options...

Страница 121: ...in the pull down menu Log Prefix The prefix is included in the log entry TCP Sequence Includes the TCP sequence in the log TCP Options Includes TCP options in the log IP Options Includes IP options i...

Страница 122: ...ist NOTE Spaces are not allowed in the chain name 5 Add one or more rules to finish as described in To add a rule on page 107 To edit a chain Perform this procedure if you wish to change the policy fo...

Страница 123: ...The Add Rule dialog box appears 4 Configure the rule as desired For definitions of the fields in this form see Firewall Configuration on page 99 5 Click OK 6 Click apply changes To edit a rule 1 Go to...

Страница 124: ...a host select the host IP address from the list and click the Edit button 3 To add a host click the Add button The host table dialog box appears 4 Enter the new or modified host address in the IP Addr...

Страница 125: ...following figure Figure 7 28 Expert Static Routes Add and Edit Dialog Boxes Default Route The example shows the fields and menus that appear when the Default route type is selected from the Route pul...

Страница 126: ...c Routes Add and Edit Dialog Boxes Host Route The following table describes the fields that appear when you select a routing type from the New Modify Route dialog boxes Table 7 17 Routing Type Fields...

Страница 127: ...Network IP field b Enter the netmask of the destination network in the Network Mask field 4 If you selected Host type the IP address of the destination host in the Host IP field 5 Select Gateway or In...

Страница 128: ...112 Cyclades ACS Advanced Console Server Installation Administration and Users Guide...

Страница 129: ...st The two groups to which you can assign a user are Admin Read Write Access Regular User Limited Read Write Access CAUTION There is only one root user for the initial setup of the console server by t...

Страница 130: ...ty Users and Groups The Users and Groups form displays 2 Click Add The Add User dialog box displays 3 Enter the name in the User Name field 4 Enter the password in the Password and Repeat Password fie...

Страница 131: ...New Password field and enter it again in the Repeat New Password field 5 Click OK 6 Click apply changes To add a group 1 Go to Security Users and Groups The Users and Groups form displays 2 Under the...

Страница 132: ...such as CPU usage for a specific client JCPU processes and PCPU processing time The Kill Sessions and Refresh buttons either end or refresh the selected session The following table defines the active...

Страница 133: ...authentication servers that are configured for logins either to the console server or to the serial ports Configuring authentication for console server logins The default authentication method for th...

Страница 134: ...he console server for both types of authentication servers The administrator completes the appropriate form through the Web Manager Expert Security Authentication to setup an authentication server for...

Страница 135: ...orization is enabled the authorization level of users trying to access the console server or its ports using TACACS authentication is checked Users with administrator privileges have administrative ac...

Страница 136: ...al or LDAPDownLocal Before starting this procedure you will need the following information from the LDAP server administrator The distinguished name of the search base The LDAP domain name Whether to...

Страница 137: ...in LDAP User Name LDAP Password and LDAP Login Attribute fields 7 Click apply changes The changes are stored in etc ldap conf on the console server Group Authorization on LDAP Group information retrie...

Страница 138: ...ntry for the console server if none exists and an entry for the Kerberos server a Click Add The New Modify Host dialog appears b Enter the address in the IP Address field c Enter the name in the Name...

Страница 139: ...the form according to your local setup of the Kerberos server 10 Click apply changes To configure a NIS authentication server Perform the following procedure to configure a NIS authentication server w...

Страница 140: ...ts of a set of parameters that can be configured in order to have more control over the services that are active at any time Pre defined security profiles There are three pre defined security profiles...

Страница 141: ...d Custom security profile The Custom Security Profile opens up a dialog box to allow custom configuration of individual protocols or services NOTE By default a number of protocols and services are ena...

Страница 142: ...he system is restarting with the new firmware In this situation the console server was already in use and certain configuration parameters were saved in the flash memory In this case the console serve...

Страница 143: ...to access Expert Ports Physical Ports Figure 8 10 Serial Ports Protocol Incompatibility Dialog Box To select or configure a security profile The following procedure assumes you have installed a new co...

Страница 144: ...restarts in order for the changes to take effect 5 Select apply changes to save the configuration to Flash The console server Web Manager restarts 6 Login after Web Manager restarts 7 The Web Manager...

Страница 145: ...enerate a self signed certificate and replace the console server generated certificate The procedures to configure a self signed digital certificate is documented in the Cyclades ACS Advanced Console...

Страница 146: ...130 Cyclades ACS Advanced Console Server Installation Administration and Users Guide...

Страница 147: ...key or non contiguous ports by using the Ctrl key on your keyboard You can Enable Selected Ports or Disable Selected Ports by pressing the corresponding button You can select the Modify All Ports butt...

Страница 148: ...vate and assign specific users to individual physical ports 4 Click apply changes General form Under Ports Physical Ports in Expert Mode if you select one or more ports from the ports list and click t...

Страница 149: ...profile connection protocols When a serial port is connected to the console port on a device a CAS profile must be defined for the serial port Selecting the appropriate connection protocol on the Por...

Страница 150: ...Serial Port is Connected to Device Console Port Protocol Name Result Console Telnet Authorized users can use Telnet to connect to the console of the connected device Console SSH Authorized users can...

Страница 151: ...d bin menush in the Web Manager Ports Physical Ports Access form SSHv2 Dedicates a server terminal connected to the selected serial port to access a server using the SSHv2 protocol When the attached t...

Страница 152: ...e connected devices on page 139 5 To further configure the serial port s connection protocol For user access and authentication methods see Access on page 140 For TCP Port number and other port config...

Страница 153: ...ld enter the menu shell command for example bin menush to build a custom menu for the TS profile 6 To customize a menu shell go to Web Manager Applications Terminal Profile Menu form For more informat...

Страница 154: ...ction Protocol pull down menu PPP No Auth PPP SLIP or CSLIP 4 If you wish to change any of the other current settings see To configure serial port settings to match the connected devices on page 139 5...

Страница 155: ...the selected access method is SSH or SSH and Telnet 8 If finished click Done 9 Click apply changes To associate an alias to a serial port An alias can be associated to a port when it is individually s...

Страница 156: ...efore the user or group name For example to explicitly deny access to a user called noadmin and enable access only to a single user called johnd you would enter the following noadmin johnd Successive...

Страница 157: ...e defined in case the first authentication level fails The following table describes the authentication methods and fallback mechanisms Table 9 12 Expert Authentication Methods and Fallback Mechanisms...

Страница 158: ...authentication server Radius Local Radius authentication is tried first switching to Local if unsuccessful RadiusDownLocal Local authentication is performed only when the Radius server is down TACACS...

Страница 159: ...System Log or Expert Network Syslog to set up a syslog server The following figure shows both checkboxes Enable Data Buffering and Buffer to Syslog and the Local destination selected The following ta...

Страница 160: ...fer files to be stored remotely make sure that a system administrator has already configured an NFS server and shared the mount point NFS File Path Remote Destination The path for the mount point of t...

Страница 161: ...Ports in Expert Mode after you select one or more serial ports and click the Modify Port s you can select the Multi User form from the tabbed menu The Multi User form appears The Multi User form enabl...

Страница 162: ...ply changes Power Management Under Ports Physical Ports in Expert Mode after you select one or more serial ports and click the Modify Port s you can select the Power Management form from the tabbed me...

Страница 163: ...le IPMI on this port Check mark to enable IPMI on the selected port s IPMI Key available only if IPMI is enabled The key sequence which the authorized user s can use to perform IPMI power management T...

Страница 164: ...as as in 1 2 3 4 To configure a serial port for IPDU power management 1 Go to Ports Physical Ports select a port or ports to modify click the appropriate Modify Ports button and the Power Management t...

Страница 165: ...he administrator of the device connected to this serial port uses this hotkey to bring up the IPMI power management screen c Select the name of the IPMI device from the IPMI Server pull down menu 2 Cl...

Страница 166: ...he number of serial ports that the console server unit has For example a console server unit with 8 serial ports have TCP port numbers 7001 through 7008 Port IP Alias A name alias for the IP of the se...

Страница 167: ...d 9 Specify stty options if desired in the STTY Options field 10 To change the break interval enter a new number in the Break Interval field 11 To change the break sequence enter a new sequence in the...

Страница 168: ...change the keep alive interval enter another number in the TCP Keep alive Interval field 5 To change the idle timeout interval enter another value in the Idle Timeout field 6 Specify stty options if d...

Страница 169: ...one IP address NOTE Clustering only works for ports that are configured as CAS profile You can use one console server as the master to control other console servers as Slaves The ports on the Slave u...

Страница 170: ...nit Choices are 1 4 8 16 32 and 48 First Local Port Number The first unallocated port number for the Slave For example if the master unit has 16 ports ports 1 16 are allocated The First Local Port Num...

Страница 171: ...rts that you wish to assign as Slaves Choices are 1 4 8 16 32 and 48 3 Enter the First Local Port Number This is the first port number on the master 4 Enter the Local IP address This is the IP address...

Страница 172: ...to assign a name or alias to the Slave ports in the cluster Use a naming convention for effective management of the console server and the connected devices on your network Ports Status Selecting Por...

Страница 173: ...to this form The information on this page gets updated when you click the Refresh button Table 9 20 Expert Port Status Read Only Form Column Name Description Port The serial port number Alias Displays...

Страница 174: ...cy of transmitted characters Parity is usually not used but can be odd or even A None parity means that data has not exchanged Break An out of band signal on an RS 232 serial port that involves making...

Страница 175: ...formation Parameters System Information Kernel Version Current Date Up Time Power Supply State CPU Information CPU Type Clock Speed Revision Bogomips Memory Information MemTotal MemFree Buffers Cached...

Страница 176: ...rm trigger actions and specify how to handle them Different fields appear on the dialog boxes depending on whether Email Pager or SNMP Trap notification have been selected from the Notifications form...

Страница 177: ...existing notification select it from the pull down list and proceed 4 Enter or change the recipient for the notification email in the To field 5 Enter or change the sender email address in the From f...

Страница 178: ...ent in the Text field 6 Enter or change the Short Message Services SMS username the SMS server s IP address or name and the SMS port number in the SMS User Name SMS Server and SMS Port fields respecti...

Страница 179: ...ge the number in the OID Type Value field 5 Accept the trap number or select a new one from the Trap Number pull down menu 6 Enter a community in the Community field 7 Enter the IP address of the SMTP...

Страница 180: ...rt alarm notification 1 Go to Administration Notifications in Expert mode 2 Enable the checkbox for Notification Alarm for Data Buffering 3 Select Email Pager or SNMP Trap from the pull down menu 4 Cl...

Страница 181: ...xpert mode The Time Date form displays 2 Select a timezone from the Timezone pull down list 3 Select Enable from the Network Time Protocol pull down menu When NTP is enabled the following form is disp...

Страница 182: ...ter the daylight savings time DST acronym of your choice in the DST Acronym field 3 Enter the number of hours and minutes HH MM format the clock will be reset at the beginning of the daylight savings...

Страница 183: ...or a DHCP assigned IP address to the console server Watchdog Timer Whether the watchdog timer is active or inactive If the watchdog timer is active the console server reboots if the software crashes U...

Страница 184: ...ert mode displays the Backup Configuration form The Type pull down menu options on this form are FTP and Storage Device If Storage Device is selected the storage device can be either a CompactFlash or...

Страница 185: ...ation Backup Config in Expert mode 1 Select Storage Device from the Type pull down menu 2 To backup a copy of the current configuration files select Default Configuration and press the Save button 3 T...

Страница 186: ...nding on the version you are upgrading from The following table describes the fields in the Upgrade Firmware form Table 10 9 Expert Upgrade Firmware Form Fields Field Menu Name Definition Type FTP is...

Страница 187: ...Clicking the Reboot button reboots the console server To reboot the console server 1 Go to Administration Reboot in Expert mode 2 Click the Reboot button A confirmation dialog box displays 3 Click OK...

Страница 188: ...e help acs v_2 6 1h is the location specified in the field It is recommended that the console server administrator reconfigure this path to use a local server The console server administrator can chan...

Страница 189: ...173 The following example would work for a web server named remoteadmin http www remoteadmin com online help The software adds the name of the acs directory to the URL prefix and launches the online...

Страница 190: ...174 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 191: ...A GPRS GSM V 90 modems ISDN Power Internal 100 240VAC 50 60 Hz Optional Dual entry redundant power supplies 48VDC option available Operating Temperature 50 F to 112 F 10 C to 44 C Storage Temperature...

Страница 192: ...jar dentro del Cyclades ACS Advanced Console Server on page 182 Safety and environmental guidelines for rack mounting the console server NOTE Each heading and its contents in this section is also prov...

Страница 193: ...e Belastung Circuit overloading Consideration should be given to the connection of the equipment to the supply circuit and the effect that overloading of circuits might have on overcurrent protection...

Страница 194: ...power source The cable is equipped with a three prong plug to help ensure proper grounding Do not use adaptor plugs or remove the grounding prong from the cable If you have to use an extension cable u...

Страница 195: ...18 AWG bzw 0 75mm2 verwenden Bitte nur freigegebene zweipolige aber einfach ausl sende und f r Gleichstrom zugelassene Sicherungsautomaten einsetzen NEBS certification The models ACS16 and ACS32 DC p...

Страница 196: ...orking around printed circuit boards Treat all assemblies components and interface connections as static sensitive Avoid working in carpeted areas and Keep body movement to a minimum while removing or...

Страница 197: ...n a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the Installation and Service Manual may cause harmful i...

Страница 198: ...clades Corporation IMPORTANTE No empuje ning n tipo de objeto en los compartimientos del Cyclades ACS advanced console server Hacer esto podr a ocasionar un incendio o causar un corto circuito dentro...

Страница 199: ...issue should develop follow the steps below for the fastest possible service To resolve an issue 1 Check the pertinent section of this manual to see if the issue can be resolved by following the proce...

Страница 200: ...184 Cyclades ACS Advanced Console Server Installation Administration and User Guide...

Страница 201: ...on boot 93 active ports sessions 116 add rule 7 adding a group 114 a user 114 users 19 admin 113 administering users 9 administrative modes overview of 36 administrator forms common features of 34 adm...

Страница 202: ...S profile console access server 133 cat5 14 CDMA 2 CDMA PCMCIA cards configuring 90 Certificate for HTTP Security 128 certification NEBS 179 chain 7 channel 89 CLI configuring ports for power manageme...

Страница 203: ...fering 9 143 Destination 51 File Size 51 Local files 51 Mode 51 NFS File Path 51 Remote server 51 time stamp 51 144 data size 46 data buffering events 160 daylight savings time 166 default IPaddress 2...

Страница 204: ...users 113 GSM 2 GSM PCMCIA cards configuring 86 H hard disk IDE 83 host name 79 host settings 78 host table 108 host to connect 151 hotkey 145 http 4 40 125 http redirection to https 4 40 125 https 4...

Страница 205: ...17 M management information base MIB 95 163 management IPDU power 59 mapping Expert mode menus and forms 56 master 153 maximum detected 62 63 menus and forms mapping Expert mode 56 methods of accessin...

Страница 206: ...overrun 158 overview of administrative modes 36 P packet filtering on ACS 6 pager notification 162 parity 46 158 PCMCIA cards configuring CDMA 90 configuring compact flash 87 configuring CompactFlash...

Страница 207: ...ion 93 connection 26 45 ICMP 8 modem connection 136 power management connection 136 terminal server TS profile connection 134 UDP 8 pu interval 30 Q quickstart guide 13 R raccess 119 raccess authoriza...

Страница 208: ...d date 165 settings host 78 shell 48 shipping box contents 13 simple network management protocol SNMP 95 slave 153 SLIP 136 SMS 162 SMTP 161 sniff mode 145 SNMP 4 8 40 95 126 SNMP trap notification 16...

Страница 209: ...t the ACS 171 to set the time and date 165 to upgrade the ACS s firmware 171 to view system information 160 trap notification SNMP 163 trap number 163 trigger alarm 161 TS profile connection protocols...

Страница 210: ...ections 91 W watchdog timer 167 web manager 2 logging into 35 other methods of accessing 19 power management 11 prerequisites for using 3 windows EMS 150 wireless LAN PCMCIA cards configuring 88 wiz c...

Страница 211: ......

Страница 212: ...et 15 01 Amara Corporate Tower Singapore 079027 Tel 656 227 3773 Fax 656 223 9155 Avocent Canada 20 Mural Street Unit 5 Richmond Hill Ontario L4B 1K3 Canada Tel 1 877 992 9239 Fax 1 877 524 2985 Avoce...

Отзывы:

Нет отзывов

Похожие инструкции для Cyclades ACS

Бренд: IBM Страницы: 128

Бренд: IBM Страницы: 44

SCHROFF 11850-016

Бренд: nvent Страницы: 18

Бренд: Hawking Страницы: 40

Бренд: GlobalTime Electronic Страницы: 19

System x3650 M5

Бренд: IBM Страницы: 1010

Бренд: Acard Страницы: 43

Бренд: MRV Communications Страницы: 65

Firepower Management Centers

Бренд: Cisco Страницы: 20

Бренд: Cisco Страницы: 34

MCS-7825-H1-IPC1

Бренд: Cisco Страницы: 54

Бренд: Cisco Страницы: 62

Бренд: Cisco Страницы: 10

KIN-UCSM5-1RU-K9

Бренд: Cisco Страницы: 22

Бренд: Cisco Страницы: 3

Cisco MeetingPlace Express

Бренд: Cisco Страницы: 20

Бренд: Cisco Страницы: 88

Бренд: Cisco Страницы: 14

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды