manualshive.com logo in svg

Server Technology Sentry PT22, Инструкция по установке и эксплуатации, Страница: 54 / 74

Поделиться
Скачать
Server Technology Sentry PT22 Скачать руководство пользователя страница 54

LDAP 

The Sentry family of products supports Lightweight Directory Access Protocol (LDAP) Version 3.   This 
support enables authentication with LDAP servers; user accounts do not need to be individually created 
locally on each Sentry device.   

This allows administrators to pre-define and configure (in each Sentry product, and in the LDAP 
server) a set of necessary LDAP Groups, and access rights for each.  User’s access rights can then be 
assigned or revoked simply by making the user a member of one-or-more pre-defined Sentry LDAP 
Groups.  User accounts can be added, deleted, or changed in the LDAP server without any changes 
needed on individual Sentry products. 

Sentry 5.3b LDAP support has been tested in the following environments: 

 

Microsoft Active Directory (MSAD) 

 

Novell eDirectory (eDir) 

 

OpenLDAP 

LDAP Command Summary 

Command Description 

Set Authorder 

Specifies the authentication order for each new session attempt 

Set LDAP 

Enables/disables LDAP support 

Set LDAP HostIP 

Sets the IP address of the Directory Services server 

Set LDAP Port 

Sets the LDAP server port number 

Set LDAP Bind 

Specifies the LDAP bind request password type 

Set LDAP BindDN 

Specifies the user account Fully-Qualified Distinquished Name (FQDN) for binds 

Set LDAP BindPW 

Specifies the user account password for binds 

Set LDAP GroupAttr 

Specifies the user class distinguished name (DN) or names of groups a user is a 
member of 

Set LDAP GroupType 

Specifies the data type for the Set LDAP GroupAttr command 

Set LDAP UserBaseDN 

Sets the base distinguished name (DN) for the username search at login 

Set LDAP UserFilter 

Sets the filter used for the username search at login 

Show LDAP 

Displays LDAP configurations 

Set DNS 

Sets the IP address of the Domain Name server 

Ping 

Verifies proper DNS configuration by name resolution 

Show Network 

Displays network configuration information 

Create LDAPGroup 

Adds an LDAP group name 

Remove LDAPGroup 

Deletes an LDAP group name 

Add GrouptoLDAP 

Grants an LDAP group access to one or more groups 

Add OutlettoLDAP 

Grants an LDAP group access to one or all outlets 

Add PorttoLDAP 

Grants an LDAP group access to one or serial ports 

Delete GroupfromLDAP 

Removes access to one or more groups for an LDAP group 

Delete OutlettoLDAP  

Removes access to one or more outlets for an LDAP group 

Delete PortfromLDAP 

Removes access to one or more serial ports for an LDAP group 

Set LDAPGroup Access 

Sets the access level for an LDAP group 

Set LDAPGroup Envmon 

Grants or removes privileges to view input and environmental monitoring status 

List LDAPGroup 

Displays all accessible outlet/groups/ports for an LDAP group 

List LDAPGroups 

Displays privilege levels for all LDAP groups 

54

 

   Advanced Operations 

Sentry PT22 

 

 

 

Installation and Operations Manual 

Содержание Sentry PT22

Страница 1: ...Server Technology Solutions for the Data Center Equipment Cabinet Sentry Remote Power Manager PT22 Installation and Operations Manual 2005 Server Technology Inc All rights reserved...

Страница 2: ...blood pumps defibrillators arrhythmia detectors and alarms pacemakers hemodialysis systems peritoneal dialysis systems neonatal ventilator incubators ventilators for adults or infants anesthesia venti...

Страница 3: ...7 Connecting to the Power Source 7 Connecting Devices 7 Connecting to the Unit 8 CHAPTER 3 OPERATIONS 9 Interfaces 10 HTML Interface 11 Command Line Interface 22 CHAPTER 4 ADVANCED OPERATIONS 45 SSL...

Страница 4: ...the network settings 14 Create new administrative user account 15 Configure location and PT22 names 13 Configure sensor names 13 Configure new user account s 15 Remove the predefined Administrator 17...

Страница 5: ...ors for Serial RS 232 and Ethernet connection 3 Two mini RJ11 connectors for Temperature Humidity sensors A number is printed above each PT22 outlet These numbers may be used in commands that require...

Страница 6: ...codes and regulations In North American protection must have a 10 000A interrupt capacity Le circuit sp cialis doit avoir un disjoncteur ou une protection de fusible PT22s ont t con us sans disjoncteu...

Страница 7: ...2 Use a screwdriver to tighten the two screws on the retention bracket To connect to the power source Plug the male end of the power cord into the AC power source Connecting Devices To avoid the possi...

Страница 8: ...ork defaults to allow unit configuration out of the box through either Telnet or HTML IP address 192 168 1 254 Subnet Mask 255 255 255 0 Gateway 192 168 1 1 The local PC network connection must be con...

Страница 9: ...al Ports 15 Outlets 16 Groups 16 Users 17 FTP 18 SNTP 18 SNMP 18 LDAP 19 TACACS 19 Tools 21 Restart 21 Ping 21 COMMAND LINE INTERFACE 22 Logging In 22 Operations Commands 24 Administration Commands 28...

Страница 10: ...o issue a command that affects all outlets in a named group Usernames and Passwords The PT22 has one predefined administrative user account username password admn admn and supports a maximum of 128 de...

Страница 11: ...llowing sections describe each interface section page and their use Log User Navigation System Location Control Screen Figure 3 1 Example HTML page ging In Logging in through HTML requires directing t...

Страница 12: ...t user as well as the outlets for each group To select a group Select the group name from the drop down menu and press Select The page will refresh to display all outlets associated to the selected gr...

Страница 13: ...re allowed NOTE Spaces may be used for the location description only Creating a descriptive system location name Enter a descriptive name and press Apply Creating a descriptive unit name Click on the...

Страница 14: ...to enable or disable HTTP and SSL support configure the port number that the HTTP server watches and responds to selection of the method of authentication used and SSL access level For more informatio...

Страница 15: ...o 24 alphanumeric and other typeable characters ASCII 33 to 126 decimal spaces and colon characters are not allowed are allowed Press Apply NOTE Port names 1 thru 64 CONSOLE and MODEM are reserved sys...

Страница 16: ...t sequencing interval Enter the sequencing interval in seconds in the Sequence Interval field and press Apply Setting the outlet reboot delay Enter the reboot interval in seconds in the Reboot Delay f...

Страница 17: ...ps and serial ports On Only Partial access for control On status and Pass Thru of assigned outlets groups and serial ports View Only Partial access for status and Pass Thru of assigned outlets groups...

Страница 18: ...up and maintenance of SNTP support Setting the SNTP Server Address Enter the IP address in the primary and or secondary address field and press Apply SNMP The SNMP configuration page is used for setup...

Страница 19: ...word types see Setting the LDAP bind password type on page 55 Setting the search bind Distinguished Name DN Enter the fully qualified distinguished name FQDN in the Search Bind field and press Apply S...

Страница 20: ...e subsequent LDAP Group Edit page select Yes or No from the Environmental Monitoring drop down menu and press Apply Adding and Deleting outlet access Click on the Outlets link in the Access column for...

Страница 21: ...essed by the TACACS Privilege Level and press Apply Adding and Deleting outlet group access Click on the Groups link in the Access column for the associated TACACS Privilege Level On the subsequent LD...

Страница 22: ...mmand abbreviations A user must have administrative privileges to use the administration commands The following tables list and briefly describe each command Operations Command Summary Command Descrip...

Страница 23: ...an outlet Set Outlet RebootDelay Sets the reboot delay for all outlets Set Outlet SeqInterval Sets the sequencing interval for all outlets Set Outlet Wakeup Sets the wakeup state for an outlet Set Su...

Страница 24: ...try prompt type off followed by an outlet name and press Enter or Type off followed by a group name and press Enter or Type off all and press Enter Examples The following command turns off the outlet...

Страница 25: ...ay on off status of one or more outlets At the Sentry prompt type status followed by an outlet name and press Enter or Type status followed by a group name and press Enter or Type status and press Ent...

Страница 26: ...list groups Enter Groups ServerGroup_1 RouterGroup_1 Displaying outlets assigned to a group The List Group command displays outlets assigned to the specified group name To display outlets assigned to...

Страница 27: ...port Sentry connect modem Enter To disconnect from a serial device Type break and press Enter Displaying the status of the Environmental Monitor The Envmon command displays the status of the integrat...

Страница 28: ...reate user JaneDoe Enter Password Enter Verify New Password Enter For security password characters are not displayed Removing a user account The Remove User command removes a user account NOTE You may...

Страница 29: ...o User Sentry set user access user janedoe Enter Granting and removing input load viewing privileges The Set User Envmon command grants or removes input load viewing privileges to from a general or vi...

Страница 30: ...er access to a group To grant access for more than one group you must use multiple Add GroupToUser commands To grant group access to a user At the Sentry prompt type add grouptouser optionally followe...

Страница 31: ..._1 B1 WebServer_1 Groups ServerGroup_1 ServerGroup_2 More Y es N o Y Ports Port Port ID Name Console Console Modem Modem JaneDoe may access the following outlets groups and serial ports outlet A1 whic...

Страница 32: ...to On the Sentry will apply power to that outlet If set to Off the Sentry will not apply power to that outlet If set to Last the Sentry will apply the last known power state To set the wakeup state A...

Страница 33: ...Group names are not case sensitive Press Enter Example The following command creates group name ServerGroup_1 Sentry create group ServerGroup_1 Enter Removing a group name The Remove Group command rem...

Страница 34: ...Press Enter Example The following command adds the descriptive name Florida_HQ_1to the Environmental Monitor Sentry set envmon name a Florida_HQ_1 Enter Creating a descriptive temperature humidity sen...

Страница 35: ...timeout period The timeout period defines the maximum period of inactivity before automatically closing the Pass Thru session The valid range for the period parameter is 0 to 5 in minutes The default...

Страница 36: ...S0 3 S2 64 S12 50 C1 D2 Sentry set modem init2 AT E0 Q1 S0 3 S2 64 S12 50 C1 D2 Enter Displaying serial port information The Show Ports command displays information about all serial ports This informa...

Страница 37: ...ul login Displaying system configuration information The Show System command displays all system configuration information Firmware version NIC module serial number and MAC address Hardware revision c...

Страница 38: ...Enter Example The following command adds the descriptive name HQ_1_Infeed_A to the infeed on the Sentry Sentry set infeed name aa HQ_1_Infeed_A Enter Displaying Infeed information The Show Infeeds com...

Страница 39: ...and press Enter Example The following command sets the subnet mask to 255 0 0 0 Sentry set subnet 255 0 0 0 Enter Setting the gateway The Set Gateway command sets the IP address of the default gateway...

Страница 40: ...et Web configurations See Performing a warm boot on page 38 for more information Enabling and disabling HTTP support The Set HTTP command is used to enable or disable HTTP support To enable or disable...

Страница 41: ...additions The following commands are used to configure the Sentry for an FTP firmware upload See Appendix B Uploading Firmware for more information on initiating a FTP firmware upload Setting the FTP...

Страница 42: ...uration information FTP Host IP address FTP Host username and password Firmware filepath and filename To display FTP configuration information At the Sentry prompt type show ftp and press Enter Exampl...

Страница 43: ...n information At the Sentry prompt type show sntp and press Enter Example The following command displays the SNTP configuration information Sentry show sntp Enter SNTP Date Time GMT 2003 02 21 21 32 4...

Страница 44: ......

Страница 45: ...ical Specifications 47 SNMP 48 MIB OID and Support 48 Enabling and Setting up SNMP Support 48 SNMP Traps 50 Configuring Traps 51 LDAP 54 Enabling and Setting up LDAP Support 55 Configuring LDAP Groups...

Страница 46: ...ss Sets SSL access as optional or required Enabling and Setting up SSL Support NOTE A restart of the Sentry is required after setting or changing ANY SSL configurations See Performing a warm boot on p...

Страница 47: ...f the Sentry is required after setting or changing ANY SSH configurations See Performing a warm boot on page 38 for more information Enabling or disabling SSH support The Set SSH command is used to en...

Страница 48: ...cal support is available 8 30AM to 5 00 PM Pacific Time Monday Friday For SNMP Support email mibmaster servertech com Enabling and Setting up SNMP Support Sentry SNMP support must be enabled and confi...

Страница 49: ...the Getcomm community string At the Sentry prompt type set snmp getcomm followed by the string and press Enter Setting the Trap community string The Set SNMP Trapcomm command is used to set the commun...

Страница 50: ...eed Status traps Status Error Description On Infeed is on OffError x Infeed should be on but no current is sensed at the infeed NoComm x Communication to the infeed has been lost Outlet Status traps S...

Страница 51: ...ts the Infeed Load trap high limit Set Trap Outlet Change Enables or disables the Outlet Change trap Set Trap Outlet Status Enables or disables the Outlet Status trap Show Traps Displays trap configur...

Страница 52: ...Trap Infeed Loadhigh command is used to set the upper load limits for an input feed To set the infeed load limit At the Sentry prompt type set trap infeed loadhigh followed by the infeed name and a v...

Страница 53: ...ower Status ID Name Trap A Florida_HQ_1 ON More Y es N o y Input feed trap configuration Input Input Status Load High Feed ID Feed Name Trap Trap Thresh AA HQ_1_Infeed_A ON ON 255 A AB HQ_1_Infeed_B O...

Страница 54: ...sword for binds Set LDAP GroupAttr Specifies the user class distinguished name DN or names of groups a user is a member of Set LDAP GroupType Specifies the data type for the Set LDAP GroupAttr command...

Страница 55: ...and the Directory Services server s IP address Press Enter Example The following command sets the primary Directory Services server IP address to 98 76 54 32 Sentry set ldap hostip1 98 76 54 32 Enter...

Страница 56: ...t the Sentry prompt type set ldap bindpw and press Enter At the following prompt type the bind password and press Enter Setting the group membership attribute The Set LDAP GroupAttr command is used to...

Страница 57: ...ap userfilter and press Enter At the following prompt type the User Search Filter and press Enter Example The following sets the user search filter for MSAD to samaccountname Sentry set ldap userfilte...

Страница 58: ...r DNS NOTE LDAP requires the definition of at least one Domain Name server To display the DNS configuration information use the Show Network command as described on page 39 To set the DNS IP address A...

Страница 59: ...s access privilege level on page 17 To set the access level privilege for an LDAP group At the Sentry prompt type set ldapgroup access followed by admin user ononly or viewonly optionally followed by...

Страница 60: ...P command removes an LDAP group s access to one or all outlets You cannot remove access to any outlet for an administrative level group To delete outlet access for an LDAP group At the Sentry prompt t...

Страница 61: ...displays all accessible outlets outlet groups and serial ports for an LDAP group To display outlet outlet group and serial port access At the Sentry prompt type list ldapgroup optionally followed by a...

Страница 62: ...d Subtree search starting from User Search Base DN with User Search Filter MD5 Bind Authentication Process Sentry LDAP Server Client Access Granted Username groups access rights compared against Sentr...

Страница 63: ...o one or serial ports Delete GroupfromTACACS Removes access to one or more groups for a TACACS account Delete OutlettoTACACS Removes access to one or more outlets for a TACACS account Delete PortfromT...

Страница 64: ...ttempts authentication with the TACACS server and if unsuccessful with the local user database on the Sentry device The Remote Only method attempts authentication only with the TACACS server and if un...

Страница 65: ...e The following command grants input status viewing privileges to the TACACS account 5 Sentry set tacpriv envmon on 5 Enter Displaying the TACACS access privilege levels The List TacPrivs command disp...

Страница 66: ...Group_2 Sentry add grouptotacacs servergroup_1 5 Enter Sentry add grouptotacacs servergroup_2 5 Enter Deleting outlet group access for a TACACS account The Delete GroupFromTACACS command removes a TAC...

Страница 67: ...ype 1 TAC_PLUS_AUTHEN_TYPE_ASCII service 1 TAC_PLUS_AUTHEN_SVC_LOGIN user entered username port access path into the Sentry rem_addr Sentry3_xxxxxx xxxxxx is last six digits of MAC address data null N...

Страница 68: ...nds NOTE If the reset button is depressed and held for more than 15 seconds the reset will abort Appendix B Uploading Firmware You may upload new versions of firmware using File Transfer Protocol FTP...

Страница 69: ...odell Spannung Strom Spannung Anschlussstelle Zweigstromkreis Insgesamt PT22 H004 1 02 100 120V 50 60Hz A 16 B 16 C 16 D 16 100 120V 50 60Hz 16 n a A 16 B 16 C 16 D 16 208 240V 60Hz A 16 B 16 C 16 D 1...

Страница 70: ...5 Signal Ground 6 Data Set Ready DSR Output 7 Request to Send RTS Input 8 Clear to Send CTS Output Modem Port PT22s are equipped standard with a DB9 male RS 232C DTE Modem serial port This connector i...

Страница 71: ...erference Causing Equipment Regulations Cet appareil num rique de la classe A respecte toutes les exigencies du R glement sur le mat riel brouilleur du Canada European Union Notification Products with...

Страница 72: ...er Model Number or other identification markings altered removed or rendered illegible b has been damaged by or subject to improper installation or operation misuse accident neglect and or has been us...

Страница 73: ...question RMA s are valid for 30 days only from the issue date 2 Shipping charges for the return of the equipment to Server Technology shall be the responsibility of the customer For warranty repairs S...

Страница 74: ...onmental Monitoring Control Unit Pass Thru and Post On are trademarks of Server Technology Inc Other trademarks and trade names may be used in this document to refer to either the entities claiming th...

Отзывы:

Нет отзывов