ProSum Prima IP-16 Скачать руководство пользователя | Manualshive

Страница: 26 / 92

background image

- 20 -

2.7

Security Settings

There are altogether nine (3 x 3) possible combinations of Viewer Security Password Policies that
are available for a flexible adaptation to your security needs. The administrator can choose an optimized
combination of user password policy and SSL/PKI Authentication according to his security and convenience
concerns.

User Password Policy

No

password

Global

Password

User-specific

Password

No SSL-No PKI N – N – N

G – N – N

U – N - N

SSL – No PKI N – S – N

G – S – N

U – S - N

SSL / PKI

Authentication

SSL - PKI N – S – P

G – S – P

U – S - P

G – Global Password U – User-specific Password

S – 256-bit SSL Encryption

P – 1024-bit PKI Authentication

N – Not available

Open the Security page of the PRIMA IP web management interface.

2.7.1 Select a User Password Policy

PRIMA IP offers three types of password policies.

1.

No Password

2.

Global Password

3.

User Password

No Password:

the viewer does not prompt you for any password. Anyone who has a viewer and passes the

security level check of the viewer can establish the connection.

Global Password:

the viewer prompts you for a global password, which is used by all who want to make

viewer connections to PRIMA IP.

User Password:

the viewer prompts you with user-specific password. With this setting, each login user is

checked against his or her corresponding password before allowing viewer connection.

Click Store Settings to validate your selection. Go to the Apply Setting page and click the Restart Server
button to apply your settings.

2.7.2 Select a Security Level for Viewer Connection

There are three security levels for choice:

•

Level 1: No encryption (No SSL)

•

Level 2: 256-bit encryption, no user certificate required for user authentication

•

Level 3: 256-bit encryption, user certificate required for authentication (PKI)

Security level 1:

provides no security and must be reserved for internal LAN connections.

Security level 2:

provides usual secure SSL connection with encryption for mouse, keyboard, and video, but

uses no PKI-authentication. The viewer identifies that PRIMA IP is a PRIMA IP device and everything is
encrypted with an ephemeral 256-bit key. The user authentication is based on a user name and password. It is
the recommended default security level. It is flexible because you can connect to PRIMA IP from any
computer, provided you know your user name and password.

«
...
24
25
26
27
28
...
»

Содержание Prima IP-16

Страница 1: ...Prima IP 8 and Prima IP 16 8 port and 16 port KVM Switches over IP User Manual Revision 1 51 23 08 2007...

Страница 2: ...the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with this User Guide may cause h...

Страница 3: ...OR CONNECTIONS TO PRIMA IP 13 2 3 1 Turn off mouse acceleration and Snap to option 13 2 4 MORE TIPS FOR SERVER DESKTOP CONFIGURATION 15 2 4 1 Configure Display Resolution on your Server 15 2 4 2 Turn...

Страница 4: ...RVER MAIN SETTING KVM SERVER MAIN SETTINGS 52 4 9 1 Video Quality 52 4 9 2 Scanning 53 4 10 KVM SERVER VIEWER CONNECTION VIDEO SERVER NAME AND KEYBOARD TYPE SETTINGS 54 4 11 KVM SERVER COMPUTERS PORT...

Страница 5: ...n Menu 82 5 3 2 OSD Setup Menu 83 5 4 LOCAL CONSOLE OPERATIONS 84 5 4 1 Select PC 84 5 4 2 Next Lower Channel 85 5 4 3 Next Higher Channel 85 5 4 4 Next Lower Bank when daisy chained 85 5 4 5 Next Hig...

Страница 6: ......

Страница 7: ...GUI applications and daily maintenance routines such as power cycling power control unit required All these could be nicely done either on local console or using a thin client software viewer on any...

Страница 8: ...ence The Prima IP distinguishes itself among its peer products not only in its stability and durable performance but also in its industry standard security features such as full 1024 bit PKI Authentic...

Страница 9: ...tions 1 2 2 TCP IP remote connection SSL encrypted Web Management Interface for all settings and upgrade backup features Support Telnet session and FTP service disabled by default for more security 1...

Страница 10: ...emote LDAP or RADIUS server 3 user privileges SUPERADMIN to access complete set of management features and user features including Power ON OFF remote servers ADMIN partial set of management and all u...

Страница 11: ...e Internet even when bandwidth availability is limited 1 3 1 LAN WAN Configurations The Prima IP KVM switch enables local and remote access of the connected computers servers behind anytime anywhere F...

Страница 12: ...Power Control Device 1 3 3 PPP connections The Prima IP KVM switch can serve as either a PPP client or a PPP server to support PPP connection The Prima IP offers a second backup connection over modem...

Страница 13: ...is lit as solid orange when the current digital link is running on 100Mbps speed The Link Act LED gives off solid green light when a network link is established and flashes whenever network transmiss...

Страница 14: ...nnect the serial console cable for advanced console management of Prima IP unit via a serial terminal emulation utility such as Windows HyperTerminal or Minicom on Linux Unix Serial Port 2 RJ 12 The s...

Страница 15: ...all male or the Combo free USB PS 2 KVM cable The Combo free USB PS 2 KVM cable is highly recommended for your convenience 2 A monitor with a standard D sub 15 pin video connector HDB 15 that you have...

Страница 16: ...10 Figure 11 The Combo free USB PS 2 KVM cable Figure 12 The Daisy chain Cable M HDB15 to HDB15 F Figure 13 The Daisy chain Terminator...

Страница 17: ...PS 2 interfaces might not recognize the PS 2 keyboard and mouse later USB computers do not have this limitation Figure 14 Prima IP configuration Single server mode Step 4 Make sure at least the PS 2 c...

Страница 18: ...PS 2 computer add one USB to PS 2 adapter to the USB connector and you ll have a PS 2 connector for mouse DO NOT try to connect both USB connector and PS 2 keyboard connector to a computer at the same...

Страница 19: ...n off mouse acceleration and Snap to option Windows XP Platform Access Control Panel Mouse On the Mouse Properties tab select the Pointer Options page Adjust the pointer speed slide bar to the exact m...

Страница 20: ...eleration option please uncheck it If there is no mouse acceleration available on the setting page you can adjust the mouse speed slide bar to either x1 or the slowest position such as on Linux platfo...

Страница 21: ...fy the display factor before connection to Prima IP we suggest you use more standard display modes such as 800 x 600 60Hz 1024 x 768 60Hz etc For the suggested display modes please refer to the follow...

Страница 22: ...across bandwidth limited environment one should preferably adopt a server desktop which should be as plain as a color background with a solid and light colored graphics Complex patterns or color grad...

Страница 23: ...ing in you will see the Prima IP Web Browser Management Interface Step 4 Go to the LAN TCP IP page on the Prima IP Management Interface and modify your IP settings Refer to Section 4 6 Main TCP IP Set...

Страница 24: ...used for viewer connection Port base 8 used for secure browser connection However if you intend to use your own port base setting access the Web Management interface and configure the port base For e...

Страница 25: ...und in which port_base 5970 is the Prima IP viewer connection port port_base 8 5978 is the browser SSL connection port port_base 9 5979 is for viewer internal communication etc For example Router inte...

Страница 26: ...r a global password which is used by all who want to make viewer connections to PRIMA IP User Password the viewer prompts you with user specific password With this setting each login user is checked a...

Страница 27: ...high security to keep your servers safe from unauthorized entries and or network sniffers If you choose to implement the PKI authentication feature select Level 3 viewer security connection on the Sec...

Страница 28: ...e to your certificate files Step 3 Click Upload to upload the root certificate to PRIMA IP After the uploading is completed you can see the prompt page for reboot Click Reboot and wait until PRIMA IP...

Страница 29: ...you have obtained from your CA It is required only if you select level 3 viewer security clientpwd if you use the default set of certificates provided on PRIMA IP CD ROM 3 User Name and Password as y...

Страница 30: ......

Страница 31: ...er that will connect to PRIMA IP After installation a desktop icon will be created on your client desktop Figure 16 Download Page 3 1 2 Java Viewer Before you can use the java viewer you should first...

Страница 32: ...re separate certificate importation to get the job done If you plan to use both viewers on the same machine you will have to import the certificate twice once with each viewer certificate utility 3 2...

Страница 33: ...LAN High video quality for viewer connection over LAN No Compression Best Video Quality with no compression but poor performances Local Cursor Shape No cursor Local cursor invisible on PRIMA IP Viewe...

Страница 34: ...ing the Global Password policy setting Default global password 123456 If you are using the Level 3 security setting that requires installation of certificates for PKI authentication For details please...

Страница 35: ...e or even the No Compression scheme which requires much more bandwidth or there is a network bottleneck somewhere in between PRIMA IP and your client desktop For more details please refer to Section 3...

Страница 36: ...IP server the viewer on that specific client computer will use the saved connection parameters as well as the password but not the private path phrase which is not saved since it is used by secured P...

Страница 37: ...er windows 3 6 1 Changing the Viewer Size to Full Screen Win32 Viewer only 3 A message box appears to remind you how to exit the full screen mode To exit the full screen mode hit Ctrl Esc to bring up...

Страница 38: ...Click OK to scale the window to half size 3 6 3 Centralizing the control of your remote servers If you have multiple PRIMA IP units installed in a distributed manner among your global branch offices...

Страница 39: ...t time that is used to transmit a video refresh Shared This is a shared session that allows other authorized users to login Not shared This indicates a non shared session that blocks others from subse...

Страница 40: ...always on top of your screen once the PRIMA IP viewer connection is successfully made On the box you can see the computer icons together with the computer names you have already specified for each of...

Страница 41: ...Opening the Viewer Menu The Quick Menu of PRIMA IP s Win32 viewer can be evoked by clicking the program icon on the leftmost of the title bar or right clicking anywhere on the title bar To open the J...

Страница 42: ...mbo box View Computer ICONs Open the Select Computer box for computer selection by clicking icons Adjust Screen Fine tune the screen area by pixel shifts Connection options Open the Connection Options...

Страница 43: ...ill be asked for every time when you login under Level 3 security setting Screen Refresh Force updating of the viewer screen output Full Screen Change the viewer screen to Full Screen mode Only the Wi...

Страница 44: ...ves high quality always on the expense of video response speed on the viewer screen 2 The transitional effect of Windows XP is enabled The transition effects of menu will cause refreshing problems in...

Страница 45: ...et enabled please check the option click Submit button and then go to Apply Settings page to click the Apply Settings button to restart PRIMA IP with new setting 2 When the viewer connection is made s...

Страница 46: ...be up and running Then try to make the viewer connection again to see if it is brought back to normal function again A cold boot of PRIMA IP is always a last resort to bring the PRIMA IP back just try...

Страница 47: ...ess port_number https 61 222 144 195 5908 Remember that it is a secure SSL encrypted connection so you should type https instead of the usual http Otherwise the connection will not be established The...

Страница 48: ...s All functions ADMIN Partial access see table below All functions USER No access except the Download page No power on off feature Note Only SUPERADMIN users can manage user accounts PRIMA IP Browser...

Страница 49: ...ter you must first install the Java Runtime Environment JRE which is freely available from Sun at http www java com It is recommended to get JRE 5 0 or higher On Windows machines a simple double mouse...

Страница 50: ...the Prima IP and every hour Internet Time This option Synchronize with an Internet Time Server NTP is for the automatic time synchronization of Prima IP with an available timeserver on the Internet Yo...

Страница 51: ...No change you have made on this page will apply until you hit Apply Settings Restart Servers 4 5 1 Certificates and Keys Certificates are only needed if you intend to implement full PKI authentication...

Страница 52: ...word is serverpwd However if you use your own set of certificates as you should do for a real secure installation you must set the correct server certificate password you got from the Certificate Auth...

Страница 53: ...ly the port number that Prima IP uses for viewer connection port base 8 is the exact port number you will use for secure http connection for the browser After you have made the port base modification...

Страница 54: ...PPP Modes There are three PPP options for selection PPP Disabled by default PPP Server mode for connection request from a peer computer PPP Client mode for dial in connection to a PPP server your ISP...

Страница 55: ...y the modem connection speed The Prima IP supports a high speed serial connection up to 1 Mbps Megabits per second Note the modem connection speed is NOT the PPP connection speed which depends on the...

Страница 56: ...e the modem connection speed is NOT the PPP connection speed which depends on the modem technology For example even if the modem connection speed is 115 200 bps a 56K modem will provide only a 56 000...

Страница 57: ...for the profile of each session To record the statistics of the video server and port switching activity by PRIMA IP remote users you should check this option to print statistics to the server log fi...

Страница 58: ...idth availability However there is always a trade off between video quality and response speed when under limited network bandwidth availability High Quality Low Speed Light Filter This level is recom...

Страница 59: ...se event before it switches to the next connected PC Performing the NumLock Test While Scanning The NumLock test is a way to detect whether a computer is still responding to keyboard action If you che...

Страница 60: ...he Prima IP according to the real keyboard you are using on the remote login client Choosing the correct keyboard layout for your keyboard is very important since some key codes are represented by dif...

Страница 61: ...you are running the Java viewer on Mac OS you might find that the default mouse resynchronization sequence CTLR CTLR Home does not work That is because the Right Control key on Mac keyboard sends out...

Страница 62: ...r some computers After you have made all modifications click Store Settings to save your settings and then hit Apply Settings Restart Servers to validate these new settings No change you have made on...

Страница 63: ...ption adjustment to restart when power is coming back Otherwise they will not restart without a push of the computer power button Usually you should enable the Power Loss Restart option on your comput...

Страница 64: ...cript Simple Users Can Control Power Check this box if you want that simple users be able to power on and power off the computers Power Device Login Depending on the Serial Power control device you us...

Страница 65: ...ing If you want to wait for a prompt that starts with a hash character you would have to write something like this Now wait for the prompt and send logout logout ESCAPE SEQUENCES The expect and reply...

Страница 66: ...is from 1 x to 20 x for your selection When you move your mouse slowly PRIMA IP does not apply any acceleration When you move your mouse quickly PRIMA IP multiplies the mouse movements per Acceleratio...

Страница 67: ...validate these new settings No change you have made on this page will apply until you hit Apply Settings Restart Servers Use the drop down box to select a video mode from the video mode database Each...

Страница 68: ...he visible part of the screen Total Height specify the total height of the screen active hidden Vsync Start specify where the vertical synchronization should start with reference to the top of the pag...

Страница 69: ...ons or to create a new user entry After you have made necessary modifications remember to hit the Store User button to save it into the user account database No change you have made on this page will...

Страница 70: ...x x KVM Server Computers x x KVM Server Power Control x x KVM Server Local Console x x KVM Server Video Mode database x x Users local database x Users User Groups Users Remote Authent Servers x Users...

Страница 71: ...dentifies users at connection time retrieves their group and applies the group properties Note The user at local console is slightly different When the local user authentication applies see Local Cons...

Страница 72: ...this box to allow users belonging to this group to manually power on and power off the computers they can access through the viewers Note that you must use a power control device for that See the Powe...

Страница 73: ...y until you hit Apply Settings Restart Servers Authentication Server Type Here you can select whether you want to disable or enable the remote server authentication by LDAP or RADIUS server Before you...

Страница 74: ...hould contact your LDAP server administrator 4 17 2 RADIUS Server Port Enter here the port number used in RADIUS authentication By default it is set to port 1812 RADIUS Server IP address of the RADIUS...

Страница 75: ...nge you have made on this page will apply until you hit Apply Settings Restart Servers Enable RADIUS Accounting Check this box to make PRIMA IP send RADIUS accounting messages to the accounting server...

Страница 76: ...h button for current information on connected users Important Note Only when you have selected your password policy to be User Password policy will the currently connected users be registered and show...

Страница 77: ...tings Restart Servers Email from Sender email address used by the Prima IP for alarm emails for example myemail myaddress any It must be accepted by the SMTP server This email address can help identif...

Страница 78: ...made on this page will apply until you hit Apply Settings Restart Servers Primary Manager Specify here the IP address of the Primary SNMP manager device on your network Secondary Manager Specify here...

Страница 79: ...n select which action Prima IP must do when it detects an event This page is NOT the place where you can specify how the action is to be implemented To do so refer to SNMP Traps Email Alarms and Compu...

Страница 80: ...rm option Next specify what type s of screen resolution you will regard as Blue Screen 600 x 400 or 600 x 480 and subsequently select Restart Computer Send an Email or Send an SNMP trap as action to d...

Страница 81: ...version page shows the current resident software and firmware version information Here you can check the Linux kernel version the time it is built together with the software application and KVM firmw...

Страница 82: ...ade patch to keep your PRIMA IP most up to date When you receive the upgrade file you must first copy it to a local computer Then use the PRIMA IP s web management interface to perform the update acro...

Страница 83: ...latest firmware version Note The Prima IP upgrade file must have a name such as kvmfirm xx xx xx for example kvmfirm 06 07 29 Note The Prima IP upgrade file is of an accumulative nature which means th...

Страница 84: ...ation To back up the configuration file Click the Backup button It creates automatically a configuration file named kconfig yyyymmdd tgz with a timestamp in it Choose the location for saving your conf...

Страница 85: ...cases you do not need to use this Reboot button to restart your Prima IP from ground level up Normally you should use the Apply Settings button on the Apply Settings page for almost all the cases of...

Страница 86: ...t all current viewer connections Note In addition to the Restart Servers button the Prima IP also provides a Reboot button on Maintenance Reboot page You can use this Reboot button only when the Resta...

Страница 87: ...rol commands start with two consecutive Scroll Lock keystrokes done within 2 seconds followed by one or several command keys Hotkey Control Command ScrLk ScrLk Command keys In most cases it will take...

Страница 88: ...recommend you use the web management interface to name the computers instead of the OSD because computer names can be 32 character wide when using the web management The computer names that have been...

Страница 89: ...the Enter key to select and the Insert key to edit There are OSD operation tips for your reference on the bottom part of the OSD menu 5 3 2 OSD Setup Menu Figure 22 OSD Main Menu Auto Logout Specify...

Страница 90: ...configuration of multiple daisy chained Prima KVM switches to select bank 3 port 7 you must press the following keystrokes Select PC Even when using Prima IP alone to select port 7 you must first pre...

Страница 91: ...Higher Channel 5 4 3 1 Hotkeys Next higher channel Yes makes go to higher channel 5 4 3 2 OSD Select the corresponding OSD menu option 5 4 4 Next Lower Bank when daisy chained 5 4 4 1 Front Panel Butt...

Страница 92: ...select the OSD Title Bar Position to be on either the left or right side of the screen Use cursor keys to navigate to the OSD Title Bar option on the OSD Setup Menu and then hit Enter to select and c...

Отзывы:

Нет отзывов

Похожие инструкции для Prima IP-16

Бренд: Kramer Страницы: 8

DSR Series DSR1030

Бренд: Avocent Страницы: 8

Бренд: N-Tron Страницы: 196

kontron KSwitch D4 MF

Бренд: S&T Страницы: 100

Бренд: Ruby Tech Страницы: 254

SI1P-SH-DVI-UCAC

Бренд: Black Box Страницы: 16

Бренд: Uniclass Страницы: 2

Бренд: Comm-Tec Страницы: 48

Бренд: Lightwave Страницы: 53

MISCOM7220G-4GF-16GT

Бренд: Maiwe Страницы: 6

Бренд: CAMBRIONIX Страницы: 37

Бренд: Clas Ohlson Страницы: 5

OpenGear DSS-8224

Бренд: Ross Страницы: 47

Бренд: Comprehensive Страницы: 12

R-TEC Automation RTMWSR15C

Бренд: Rowley Страницы: 10

Бренд: Labgear Страницы: 8

Бренд: Edimax Страницы: 8

TK-423K - USB/PS/2 KVM Switch

Бренд: TRENDnet Страницы: 14

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды