Raritan Computer Home Security System Home Security System User manual

Category
Software
Type
User manual

This manual is also suitable for

Copyright © 2010 Raritan, Inc.
CCA-0K-v4.3-E
December 2009
255-80-5140-00
CommandCenter Secure Gateway
Administrators Guide
Release 4.3
This document contains proprietary information that is protected by copyright. All rights reserved. No
part of this document may be photocopied, reproduced, or translated into another language without
express prior written consent of Raritan, Inc.
© Copyright 2009 Raritan, Inc., CommandCenter®, Dominion®, Paragon® and the Raritan company
logo are trademarks or registered trademarks of Raritan, Inc. All rights reserved. Java® is a
registered trademark of Sun Microsystems, Inc. Internet Explorer® is a registered trademark of
Microsoft Corporation. Netscape® and Netscape Navigator® are registered trademarks of Netscape
Communication Corporation. All other trademarks or registered trademarks are the property of their
respective holders.
FCC Information
This equipment has been tested and found to comply with the limits for a Class A digital device,
pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection
against harmful interference in a commercial installation. This equipment generates, uses, and can
radiate radio frequency energy and if not installed and used in accordance with the instructions, may
cause harmful interference to radio communications. Operation of this equipment in a residential
environment may cause harmful interference.
VCCI Information (Japan)
Raritan is not responsible for damage to this product resulting from accident, disaster, misuse, abuse,
non-Raritan modification of the product, or other events outside of Raritan's reasonable control or not
arising under normal operating conditions.
iii
Contents
What's New in the CC-SG Administrators Guide xvi
Chapter 1 Introduction 1
Prerequisites..................................................................................................................................1
Terminology/Acronyms..................................................................................................................2
Client Browser Requirements........................................................................................................4
Chapter 2 Accessing CC-SG 5
Browser-Based Access via the CC-SG Admin Client....................................................................5
JRE Incompatibility..............................................................................................................6
Thick Client Access........................................................................................................................6
Install the Thick Client .........................................................................................................6
Use the Thick Client ............................................................................................................7
CC-SG Admin Client......................................................................................................................8
Chapter 3 Getting Started 10
Confirming IP Address.................................................................................................................10
Setting CC-SG Server Time ........................................................................................................10
Checking the Compatibility Matrix ...............................................................................................11
Checking and Upgrading Application Versions ...........................................................................11
Chapter 4 Configuring CC-SG with Guided Setup 13
Before You Use Guided Setup ....................................................................................................13
Associations in Guided Setup......................................................................................................14
Create Categories and Elements ......................................................................................14
Device Setup................................................................................................................................14
Discover and Add Devices ................................................................................................15
Creating Groups...........................................................................................................................16
Add Device Groups and Node Groups..............................................................................16
User Management .......................................................................................................................18
Add User Groups and Users .............................................................................................19
Chapter 5 Associations, Categories, and Elements 21
About Associations ......................................................................................................................21
Association Terminology ...................................................................................................21
Associations - Defining Categories and Elements............................................................21
Contents
iv
How to Create Associations ..............................................................................................22
Adding, Editing, and Deleting Categories and Elements.............................................................22
Add a Category..................................................................................................................22
Delete a Category..............................................................................................................23
Add an Element.................................................................................................................23
Adding Categories and Elements with CSV File Import..............................................................23
Categories and Elements CSV File Requirements ...........................................................24
Sample Categories and Elements CSV File......................................................................25
Import Categories and Elements.......................................................................................25
Export Categories and Elements.......................................................................................26
Chapter 6 Devices, Device Groups, and Ports 27
Viewing Devices...........................................................................................................................28
The Devices Tab................................................................................................................28
Device and Port Icons .......................................................................................................28
Port Sorting Options ..........................................................................................................29
Device Profile Screen........................................................................................................30
Topology View...................................................................................................................31
Right Click Options in the Devices Tab.............................................................................32
Searching for Devices..................................................................................................................32
Wildcards for Search .........................................................................................................32
Wildcard Examples............................................................................................................32
Discovering Devices ....................................................................................................................33
Adding a Device...........................................................................................................................34
Add a KVM or Serial Device..............................................................................................34
Add a PowerStrip Device...................................................................................................36
Add a Dominion PX Device...............................................................................................36
Editing a Device...........................................................................................................................37
Editing a PowerStrip Device or a Dominion PX Device...............................................................37
Adding Notes to a Device Profile.................................................................................................38
Adding Location and Contacts to a Device Profile ......................................................................38
Deleting a Device.........................................................................................................................39
Configuring Ports.........................................................................................................................39
Configure a Serial Port......................................................................................................39
Configure a KVM Port........................................................................................................40
Nodes Created by Configuring Ports.................................................................................40
Editing a Port ...............................................................................................................................41
Deleting a Port.............................................................................................................................42
Configuring a Blade Chassis Device Connected to KX2.............................................................42
Blade Chassis Overview....................................................................................................42
Add a Blade Chassis Device.............................................................................................43
Edit a Blade Chassis Device .............................................................................................46
Delete a Blade Chassis Device.........................................................................................47
Move a Blade Chassis Device to a Different Port .............................................................47
Restore Blade Servers Ports to Normal KX2 Ports.....................................................................47
Bulk Copying for Device Associations, Location and Contacts...................................................48
Device Group Manager................................................................................................................49
Device Groups Overview...................................................................................................49
Add a Device Group..........................................................................................................50
Edit a Device Group ..........................................................................................................53
Contents
v
Delete a Device Group......................................................................................................54
Adding Devices with CSV File Import..........................................................................................54
Devices CSV File Requirements.......................................................................................55
Sample Devices CSV File .................................................................................................58
Import Devices...................................................................................................................58
Export Devices...................................................................................................................59
Upgrading a Device .....................................................................................................................59
Backing Up a Device Configuration.............................................................................................60
Restoring Device Configurations.................................................................................................61
Restore a Device Configuration (KX, KSX, KX101, SX, IP-Reach)..................................61
Restore All Configuration Data Except Network Settings to a KX2, KSX2, or KX2-101
Device................................................................................................................................62
Restore Only Device Settings or User and User Group Data to a KX2, KSX2, or KX2-101
Device................................................................................................................................62
Restore All Configuration Data to a KX2, KSX2, or KX2-101 Device ...............................63
Save, Upload, and Delete Device Backup Files................................................................63
Copying Device Configuration.....................................................................................................64
Restarting a Device......................................................................................................................65
Pinging the Device.......................................................................................................................65
Pausing CC-SG's Management of a Device................................................................................65
Resuming Management...............................................................................................................65
Device Power Manager................................................................................................................66
Launching a Device's Administrative Page..................................................................................66
Disconnecting Users....................................................................................................................67
Special Access to Paragon II System Devices............................................................................67
Paragon II System Controller (P2-SC) ..............................................................................67
IP-Reach and UST-IP Administration................................................................................68
Chapter 7 Managed Powerstrips 69
Configuring Powerstrips that are Managed by Another Device in CC-SG..................................70
Configuring PowerStrips Connected to KX, KX2, KX2-101, KSX2, and P2SC...........................71
Add a PowerStrip Device Connected to a KX, KX2, KX2-101, KSX2, or P2SC Device...71
Move a KX, KX2, KX2-101, KSX2, or P2SC's PowerStrip to a Different Port...................71
Delete a PowerStrip Connected to a KX, KX2, KX2-101, KSX2, or P2SC Device...........72
Configuring PowerStrips Connected to SX 3.0 and KSX ............................................................72
Add a PowerStrip Connected to an SX 3.0 or KSX device ...............................................72
Delete a PowerStrip Connected to an SX 3.0 or KSX Device...........................................73
Change a PowerStrip's Device or Port Association (SX 3.0, KSX)...................................73
Configuring Powerstrips Connected to SX 3.1 ............................................................................74
Add a Powerstrip Connected to an SX 3.1 Device............................................................74
Move an SX 3.1's Powerstrip to a Different Port...............................................................75
Delete a PowerStrip Connected to an SX 3.1 Device.......................................................75
Configuring Outlets on a Powerstrip............................................................................................75
Chapter 8 Nodes, Node Groups, and Interfaces 77
Nodes and Interfaces Overview...................................................................................................77
About Nodes......................................................................................................................77
Node Names......................................................................................................................78
Contents
vi
About Interfaces.................................................................................................................78
Viewing Nodes.............................................................................................................................78
Nodes Tab.........................................................................................................................78
Node Profile.......................................................................................................................79
Node and Interface Icons ..................................................................................................81
Service Accounts.........................................................................................................................82
Service Accounts Overview...............................................................................................82
Add, Edit, and Delete Service Accounts............................................................................83
Change the Password for a Service Account....................................................................83
Assign Service Accounts to Interfaces..............................................................................84
Adding, Editing, and Deleting Nodes...........................................................................................85
Add a Node........................................................................................................................85
Nodes Created by Configuring Ports.................................................................................86
Edit a Node........................................................................................................................86
Delete a Node....................................................................................................................86
Adding Location and Contacts to a Node Profile.........................................................................87
Adding Notes to a Node Profile ...................................................................................................87
Configuring the Virtual Infrastructure in CC-SG ..........................................................................88
Terminology for Virtual Infrastructure................................................................................88
Virtual Nodes Overview.....................................................................................................89
Add a Control System with Virtual Hosts and Virtual Machines........................................89
Add a Virtual Host with Virtual Machines ..........................................................................91
Edit Control Systems, Virtual Hosts, and Virtual Machines...............................................94
Delete Control Systems and Virtual Hosts........................................................................95
Delete a Virtual Machine Node..........................................................................................96
Delete a Virtual Infrastructure............................................................................................96
Synchronizing the Virtual Infrastructure with CC-SG...................................................................96
Synchronize the Virtual Infrastructure ...............................................................................96
Enable or Disable Daily Synchronization of the Virtual Infrastructure...............................97
Reboot or Force Reboot a Virtual Host Node..............................................................................97
Accessing the Virtual Topology View...........................................................................................98
Connecting to a Node..................................................................................................................98
Pinging a Node ............................................................................................................................99
Adding, Editing, and Deleting Interfaces......................................................................................99
Add an Interface ................................................................................................................99
Edit an Interface ..............................................................................................................108
Delete an Interface ..........................................................................................................109
Bookmarking an Interface..........................................................................................................109
Configuring Direct Port Access to a Node.................................................................................110
Bulk Copying for Node Associations, Location and Contacts ...................................................110
Using Chat.................................................................................................................................111
Adding Nodes with CSV File Import ..........................................................................................112
Nodes CSV File Requirements........................................................................................113
Sample Nodes CSV File..................................................................................................122
Import Nodes...................................................................................................................122
Export Nodes...................................................................................................................123
Adding, Editing, and Deleting Node Groups..............................................................................124
Node Groups Overview...................................................................................................124
Add a Node Group...........................................................................................................124
Edit a Node Group...........................................................................................................128
Delete a Node Group.......................................................................................................128
Contents
vii
Chapter 9 Users and User Groups 129
The Users Tab...........................................................................................................................130
Default User Groups..................................................................................................................131
CC Super-User Group.....................................................................................................131
System Administrators Group..........................................................................................131
CC Users Group..............................................................................................................131
Adding, Editing, and Deleting User Groups...............................................................................132
Add a User Group............................................................................................................132
Edit a User Group............................................................................................................133
Delete a User Group........................................................................................................134
Limit the Number of KVM Sessions per User............................................................................135
Configuring Access Auditing for User Groups...........................................................................135
Adding, Editing, and Deleting Users..........................................................................................136
Add a User.......................................................................................................................136
Edit a User.......................................................................................................................137
Delete a User...................................................................................................................138
Assigning a User to a Group......................................................................................................139
Deleting a User From a Group...................................................................................................139
Adding Users with CSV File Import ...........................................................................................140
Users CSV File Requirements.........................................................................................140
Sample Users CSV File...................................................................................................144
Import Users....................................................................................................................144
Export Users....................................................................................................................145
Your User Profile........................................................................................................................145
Change your password....................................................................................................145
Change your name..........................................................................................................146
Change your default search preference..........................................................................146
Change the CC-SG default font size...............................................................................146
Change your email address.............................................................................................146
Change the CC-SG Super User's Username..................................................................147
Logging Users Out.....................................................................................................................147
Bulk Copying Users ...................................................................................................................148
Chapter 10 Policies for Access Control 149
Adding a Policy..........................................................................................................................150
Editing a Policy ..........................................................................................................................151
Deleting a Policy........................................................................................................................152
Support for Virtual Media...........................................................................................................153
Assigning Policies To User Groups...........................................................................................153
Chapter 11 Custom Views for Devices and Nodes 154
Types of Custom Views.............................................................................................................154
View by Category ............................................................................................................154
Filter by Node Group.......................................................................................................154
Filter by Device Group.....................................................................................................154
Contents
viii
Using Custom Views in the Admin Client ..................................................................................155
Custom Views for Nodes.................................................................................................155
Custom Views for Devices...............................................................................................157
Chapter 12 Remote Authentication 161
Authentication and Authorization (AA) Overview.......................................................................161
Flow for Authentication....................................................................................................161
User Accounts .................................................................................................................162
Distinguished Names for LDAP and AD....................................................................................162
Specify a Distinguished Name for AD.............................................................................162
Specify a Distinguished Name for LDAP.........................................................................162
Specify a Username for AD.............................................................................................163
Specify a Base DN ..........................................................................................................163
Specifying Modules for Authentication and Authorization .........................................................163
Establishing Order of External AA Servers................................................................................163
AD and CC-SG Overview..........................................................................................................164
Adding an AD Module to CC-SG...............................................................................................164
AD General Settings........................................................................................................165
AD Advanced Settings.....................................................................................................166
AD Group Settings...........................................................................................................167
AD Trust Settings ............................................................................................................168
Editing an AD Module................................................................................................................168
Importing AD User Groups ........................................................................................................169
Synchronizing AD with CC-SG..................................................................................................170
Synchronize All User Groups with AD.............................................................................171
Synchronize All AD Modules...........................................................................................172
Enable or Disable Daily Synchronization of All AD Modules...........................................172
Change the Daily AD Synchronization Time...................................................................173
About LDAP and CC-SG ...........................................................................................................173
Add an LDAP (Netscape) Module to CC-SG.............................................................................173
LDAP General Settings ...................................................................................................174
LDAP Advanced Settings................................................................................................174
Sun One LDAP (iPlanet) Configuration Settings.............................................................175
OpenLDAP (eDirectory) Configuration Settings..............................................................176
IBM LDAP Configuration Settings ...................................................................................176
About TACACS+ and CC-SG....................................................................................................177
Add a TACACS+ Module...........................................................................................................177
TACACS+ General Settings............................................................................................177
About RADIUS and CC-SG.......................................................................................................178
Add a RADIUS Module..............................................................................................................178
RADIUS General Settings...............................................................................................178
Two-Factor Authentication Using RADIUS......................................................................179
Chapter 13 Reports 180
Using Reports............................................................................................................................180
Sort Report Data..............................................................................................................180
Resize Report Column Width..........................................................................................180
View Report Details.........................................................................................................181
Contents
ix
Navigate Multiple Page Reports......................................................................................181
Print a Report...................................................................................................................181
Save a Report to a File....................................................................................................181
Purge a Report's Data From CC-SG...............................................................................182
Hide or Show Report Filters ............................................................................................182
Audit Trail Report.......................................................................................................................182
Error Log Report........................................................................................................................183
Access Report............................................................................................................................184
Availability Report......................................................................................................................184
Active Users Report...................................................................................................................185
Locked Out Users Report..........................................................................................................185
All Users Data Report................................................................................................................185
User Group Data Report............................................................................................................186
Device Asset Report..................................................................................................................186
Device Group Data Report ........................................................................................................187
Query Port Report......................................................................................................................187
Node Asset Report.....................................................................................................................188
Active Nodes Report..................................................................................................................189
Node Creation Report................................................................................................................189
Node Group Data Report...........................................................................................................190
AD User Group Report ..............................................................................................................190
Scheduled Reports ....................................................................................................................191
Upgrade Device Firmware Report.............................................................................................192
Chapter 14 System Maintenance 193
Maintenance Mode ....................................................................................................................193
Scheduled Tasks and Maintenance Mode......................................................................193
Entering Maintenance Mode......................................................................................................193
Exiting Maintenance Mode ........................................................................................................194
Backing Up CC-SG....................................................................................................................194
What is the difference between Full backup and Standard backup?..............................196
Saving and Deleting Backup Files.............................................................................................196
Save a Backup File..........................................................................................................196
Delete a Backup File .......................................................................................................196
Restoring CC-SG.......................................................................................................................197
Resetting CC-SG.......................................................................................................................198
Restarting CC-SG......................................................................................................................200
Upgrading CC-SG......................................................................................................................201
Clear the Browser's Cache..............................................................................................203
Clear the Java Cache......................................................................................................203
CC-SG Shutdown ......................................................................................................................203
Restarting CC-SG after Shutdown.............................................................................................204
Powering Down CC-SG.............................................................................................................204
Ending CC-SG Session .............................................................................................................205
Log Out of CC-SG...........................................................................................................205
Exit CC-SG......................................................................................................................205
Contents
x
Chapter 15 Advanced Administration 206
Configuring a Message of the Day ............................................................................................206
Configuring Applications for Accessing Nodes..........................................................................207
About Applications for Accessing Nodes.........................................................................207
Checking and Upgrading Application Versions...............................................................207
Older Version of Application Opens After Upgrading......................................................208
Add an Application...........................................................................................................208
Delete an Application.......................................................................................................209
Prerequisites for Using AKC............................................................................................209
Configuring Default Applications................................................................................................209
About Default Applications ..............................................................................................209
View the Default Application Assignments......................................................................210
Set the Default Application for an Interface or Port Type................................................210
Managing Device Firmware.......................................................................................................210
Upload Firmware .............................................................................................................210
Delete Firmware ..............................................................................................................211
Configuring the CC-SG Network................................................................................................211
About Network Setup.......................................................................................................211
About CC-SG LAN Ports.................................................................................................211
What is IP Failover mode? ..............................................................................................212
What is IP Isolation mode?..............................................................................................215
Recommended DHCP Configurations for CC-SG...........................................................217
Configuring Logging Activity......................................................................................................217
Purge CC-SG's Internal Log............................................................................................217
Configuring the CC-SG Server Time and Date .........................................................................218
Connection Modes: Direct and Proxy........................................................................................219
About Connection Modes................................................................................................219
Configure Direct Mode for All Client Connections...........................................................219
Configure Proxy Mode for All Client Connections...........................................................220
Configure a Combination of Direct Mode and Proxy Mode.............................................220
Device Settings..........................................................................................................................220
Enable AKC Download Server Certificate Validation Overview......................................222
Configuring Custom JRE Settings.............................................................................................223
Configuring SNMP.....................................................................................................................224
MIB Files..........................................................................................................................225
Configuring CC-SG Clusters......................................................................................................225
Requirements for CC-SG Clusters..................................................................................226
Access a CC-SG Cluster.................................................................................................226
Create a Cluster...............................................................................................................226
Configure Cluster Settings...............................................................................................227
Switch the Primary and Secondary Node Status ............................................................228
Recover a Cluster............................................................................................................228
Delete a Cluster...............................................................................................................229
Configuring a Neighborhood......................................................................................................229
What is a Neighborhood?................................................................................................229
Create a Neighborhood...................................................................................................230
Edit a Neighborhood........................................................................................................231
Refresh a Neighborhood .................................................................................................233
Delete a Neighborhood....................................................................................................233
Contents
xi
Security Manager.......................................................................................................................234
Remote Authentication....................................................................................................234
AES Encryption................................................................................................................234
Configure Browser Connection Protocol: HTTP or HTTPS/SSL.....................................236
Set the Port Number for SSH Access to CC-SG.............................................................236
Login Settings..................................................................................................................236
Configure the Inactivity Timer..........................................................................................239
Portal ...............................................................................................................................239
Certificates.......................................................................................................................241
Access Control List..........................................................................................................244
Notification Manager..................................................................................................................245
Configure an External SMTP Server...............................................................................245
Task Manager............................................................................................................................246
Task Types......................................................................................................................246
Schedule Sequential Tasks.............................................................................................247
Email Notifications for Tasks...........................................................................................247
Scheduled Reports..........................................................................................................247
Find and View Tasks.......................................................................................................247
Schedule a Task..............................................................................................................248
Schedule a Device Firmware Upgrade............................................................................250
Change a Scheduled Task..............................................................................................252
Reschedule a Task..........................................................................................................252
Schedule a Task that is Similar to Another Task.............................................................252
Delete a Task...................................................................................................................253
SSH Access to CC-SG ..............................................................................................................253
Get Help for SSH Commands .........................................................................................254
SSH Commands and Parameters...................................................................................255
Command Tips................................................................................................................257
Create an SSH Connection to a Serial-Enabled Device.................................................258
Use SSH to Connect to a Node via a Serial Out-of-Band Interface................................259
End SSH Connections.....................................................................................................260
Serial Admin Port.......................................................................................................................261
About Terminal Emulation Programs...............................................................................261
Finding Your CC-SG Serial Number................................................................................261
Web Services API......................................................................................................................262
CC-NOC.....................................................................................................................................263
Chapter 16 Diagnostic Console 264
Accessing Diagnostic Console ..................................................................................................264
Access Diagnostic Console via VGA/Keyboard/Mouse Port...........................................264
Access Diagnostic Console via SSH...............................................................................264
Status Console...........................................................................................................................265
About Status Console......................................................................................................265
Access Status Console....................................................................................................265
Status Console Information.............................................................................................266
Administrator Console ...............................................................................................................271
About Administrator Console...........................................................................................271
Access Administrator Console.........................................................................................271
Navigate Administrator Console......................................................................................273
Edit Diagnostic Console Configuration............................................................................274
Contents
xii
Edit Network Interfaces Configuration (Network Interfaces)...........................................275
Ping an IP Address..........................................................................................................276
Use Traceroute................................................................................................................277
Edit Static Routes............................................................................................................278
View Log Files in Diagnostic Console .............................................................................280
Restart CC-SG with Diagnostic Console.........................................................................283
Reboot CC-SG with Diagnostic Console.........................................................................284
Power Off CC-SG System from Diagnostic Console.......................................................285
Reset CC Super-User Password with Diagnostic Console.............................................286
Reset CC-SG Factory Configuration (Admin) .................................................................287
Diagnostic Console Password Settings...........................................................................289
Diagnostic Console Account Configuration.....................................................................291
Configure Remote System Monitoring ............................................................................293
Display Historical Data Trending Reports .......................................................................294
Display RAID Status and Disk Utilization........................................................................295
Perform Disk or RAID Tests............................................................................................296
Schedule Disk Tests........................................................................................................298
Repair or Rebuild RAID Disks.........................................................................................299
View Top Display with Diagnostic Console.....................................................................301
Display NTP Status .........................................................................................................301
Take a System Snapshot ................................................................................................303
Change the Video Resolution for Diagnostic Console....................................................304
Chapter 17 Power IQ Integration 305
Power Control of Power IQ IT Devices......................................................................................305
Configuring Power IQ Services .......................................................................................305
Configuring Power Control of Power IQ IT Devices........................................................306
Importing and Exporting Dominion PX Data from Power IQ .....................................................306
Import Power Strips from Power IQ.................................................................................307
Export Dominion PX Data to Use in Power IQ................................................................308
Appendix A Specifications for V1 and E1 310
V1 Model....................................................................................................................................310
V1 General Specifications...............................................................................................310
V1 Environmental Requirements.....................................................................................310
E1 Model....................................................................................................................................311
E1 General Specifications...............................................................................................311
E1 Environmental Requirements.....................................................................................311
Appendix B CC-SG and Network Configuration 313
Required Open Ports for CC-SG Networks: Executive Summary.............................................313
CC-SG Communication Channels.............................................................................................314
CC-SG and Raritan Devices............................................................................................315
CC-SG Clustering............................................................................................................315
Access to Infrastructure Services....................................................................................316
PC Clients to CC-SG.......................................................................................................316
PC Clients to Nodes........................................................................................................317
Contents
xiii
CC-SG and Client for IPMI, iLO/RILOE, DRAC, RSA.....................................................318
CC-SG and SNMP...........................................................................................................318
CC-SG Internal Ports.......................................................................................................319
CC-SG Access via NAT-enabled Firewall.......................................................................319
RDP Access to Nodes.....................................................................................................319
VNC Access to Nodes.....................................................................................................320
SSH Access to Nodes.....................................................................................................320
Remote System Monitoring Port......................................................................................320
Contents
xiv
Appendix C User Group Privileges 321
Appendix D SNMP Traps 330
Appendix E CSV File Imports 332
Common CSV File Requirements..............................................................................................333
Audit Trail Entries for Importing.................................................................................................334
Troubleshoot CSV File Problems ..............................................................................................335
Appendix F Troubleshooting 336
Appendix G Diagnostic Utilities 338
Memory Diagnostic....................................................................................................................338
Debug Mode ..............................................................................................................................339
CC-SG Disk Monitoring .............................................................................................................340
Appendix H Two-Factor Authentication 343
Supported Environments for Two-Factor Authentication...........................................................343
Two-Factor Authentication Setup Requirements.......................................................................343
Two-Factor Authentication Known Issues.................................................................................343
Appendix I FAQs 344
General FAQs............................................................................................................................344
Authentication FAQs..................................................................................................................346
Security FAQs............................................................................................................................347
Accounting FAQs.......................................................................................................................348
Performance FAQs....................................................................................................................348
Grouping FAQs..........................................................................................................................349
Interoperability FAQs.................................................................................................................350
Authorization FAQs....................................................................................................................350
User Experience FAQs..............................................................................................................350
Appendix J Keyboard Shortcuts 352
Appendix K Naming Conventions 353
User Information ........................................................................................................................353
Contents
xv
Node Information .......................................................................................................................353
Location Information ..................................................................................................................354
Contact Information....................................................................................................................354
Service Accounts.......................................................................................................................354
Device Information.....................................................................................................................354
Port Information .........................................................................................................................355
Associations...............................................................................................................................355
Administration............................................................................................................................355
Appendix L Diagnostic Console Bootup Messages 356
Index 357
xvi
The following sections have changed or information has been added to
the CommandCenter Secure Gateway Administrators Guide based on
enhancements and changes to the equipment and/or documentation.
Discover and Add Devices (on page 15)
Add User Gr
oups and Users (on page 19)
Add a KVM
or Serial Device (on page 34)
Devic
es CSV File Requirements (on page 55)
Add an Inter
face (on page 99)
Interface
s for In-Band Connections (on page 101)
DRAC 5 Con
nection Details (on page 101)
M
icrosoft RDP Connection Details (on page 102)
Java RDP Connec
tion Details (on page 102)
Interface
s for DRAC Power Control Connections (on page 103)
Interface
s for ILO Processor, Integrity ILO2 , and RSA Power
Control Connections (on page 103)
Interface
s for Power IQ Proxy Power Control Connections (on
page 105)
Node
s CSV File Requirements (on page 113)
Add a User
Group (on page 132)
Edit a User
Group (on page 133)
Limit the Nu
mber of KVM Sessions per User (on page 135)
Use
rs CSV File Requirements (on page 140)
IBM
LDAP Configuration Settings (on page 176)
Older Versio
n of Application Opens After Upgrading (on page
208)
Con
figuring the CC-SG Network (on page 211)
What is IP F
ailover mode? (on page 212)
What is IP Is
olation mode? (on page 215)
Requir
ements for CC-SG Clusters (on page 226)
Acc
ess a CC-SG Cluster (on page 226)
Switch th
e Primary and Secondary Node Status (on page 228)
Edit Network
Interfaces Configuration (Network Interfaces) (on
page 275)
Power Control of Power IQ IT Devices (on pa
ge 305)
Con
figuring Power IQ Services (on page 305)
What's New in the CC-SG
Administrators Guide
What's New in the CC-SG Administrators Guide
xvii
Configuring Power Control of Power IQ IT Devices (on page 306)
CC-SG Clustering (on page 315)
See the Rel
ease Notes for a more detailed explanation of the changes
applied to this version of the CommandCenter Secure Gateway.
1
The CommandCenter Secure Gateway (CC-SG) Administrators Guide
offers instructions for administering and maintaining your CC-SG.
This guide is intended for administrators who typically have all available
privileges.
Users who are not administrators should see Raritan's CommandCenter
Secure Gateway User Guide.
In This Chapter
Prerequisites..............................................................................................1
Terminology/Acronyms..............................................................................2
Client Browser Requi
rements....................................................................4
Prerequisites
Before configuring a CC-SG according to the procedures in this
document, see Raritan's CommandCenter Secure Gateway
Deployment Guide for more comprehensive instructions on deploying
Raritan devices that are managed by CC-SG.
Chapter 1
Introduction
Chapter 1: Introduction
2
Terminology/Acronyms
Terms and acronyms found in this document include:
Access Client - HTML-based client intended for use by normal access
users who need to access a node managed by CC-SG. The Access
Client does not allow the use of administration functions.
Admin Client - Java-based client for CC-SG useable by both normal
access users and administrators. It is the only client that permits
administration.
Associations - relationships between categories, elements of a category,
and ports or devices or both. For example, if you want to associate the
“Location” category with a device, create associations before adding
devices and ports in CC-SG.
Category - a variable that contains a set of values or elements. An
example of a Category is Location, which may have elements such as
“New York City,” “Philadelphia,” or “Data Center 1.” When you add
devices and ports to CC-SG, you will associate this information with
them. It is easier if you set up associations correctly first, before adding
devices and ports to them. Another example of a Category is “OS Type,”
which may have elements such as “Windows” or “Unix” or “Linux.”
CIM (Computer Interface Module) - hardware used to connect a target
server and a Raritan device. Each target requires a CIM, except for the
Dominion KX101, which is attached directly to one target and therefore
does not require a CIM. Target servers should be powered on and
connected to CIMs, and CIMs should be connected to the Raritan device
BEFORE adding the device and configuring ports in CC-SG. Otherwise,
a blank CIM name will overwrite the CC-SG port name. Servers must be
rebooted after connecting to a CIM.
Device Group - defined group of devices that are accessible to a user.
Device groups are used when creating a policy to control access to the
devices in the group.
Devices - Raritan products such as Dominion KX, Dominion KX II,
Dominion SX, Dominion KSX, IP-Reach, Paragon II System Controller,
and Paragon II UMT832 with USTIP that are managed by CC-SG. These
devices control the target servers and systems, or "nodes" that are
connected to them. Check the CC-SG Compatibility Matrix on the Raritan
Support web site for a list of supported devices.
Elements - values of a category. For example, the “New York City”
element belongs to the “Location” category, and the “Windows” element
belongs to the “OS Type” category.
  • Page 1 1
  • Page 2 2
  • Page 3 3
  • Page 4 4
  • Page 5 5
  • Page 6 6
  • Page 7 7
  • Page 8 8
  • Page 9 9
  • Page 10 10
  • Page 11 11
  • Page 12 12
  • Page 13 13
  • Page 14 14
  • Page 15 15
  • Page 16 16
  • Page 17 17
  • Page 18 18
  • Page 19 19
  • Page 20 20
  • Page 21 21
  • Page 22 22
  • Page 23 23
  • Page 24 24
  • Page 25 25
  • Page 26 26
  • Page 27 27
  • Page 28 28
  • Page 29 29
  • Page 30 30
  • Page 31 31
  • Page 32 32
  • Page 33 33
  • Page 34 34
  • Page 35 35
  • Page 36 36
  • Page 37 37
  • Page 38 38
  • Page 39 39
  • Page 40 40
  • Page 41 41
  • Page 42 42
  • Page 43 43
  • Page 44 44
  • Page 45 45
  • Page 46 46
  • Page 47 47
  • Page 48 48
  • Page 49 49
  • Page 50 50
  • Page 51 51
  • Page 52 52
  • Page 53 53
  • Page 54 54
  • Page 55 55
  • Page 56 56
  • Page 57 57
  • Page 58 58
  • Page 59 59
  • Page 60 60
  • Page 61 61
  • Page 62 62
  • Page 63 63
  • Page 64 64
  • Page 65 65
  • Page 66 66
  • Page 67 67
  • Page 68 68
  • Page 69 69
  • Page 70 70
  • Page 71 71
  • Page 72 72
  • Page 73 73
  • Page 74 74
  • Page 75 75
  • Page 76 76
  • Page 77 77
  • Page 78 78
  • Page 79 79
  • Page 80 80
  • Page 81 81
  • Page 82 82
  • Page 83 83
  • Page 84 84
  • Page 85 85
  • Page 86 86
  • Page 87 87
  • Page 88 88
  • Page 89 89
  • Page 90 90
  • Page 91 91
  • Page 92 92
  • Page 93 93
  • Page 94 94
  • Page 95 95
  • Page 96 96
  • Page 97 97
  • Page 98 98
  • Page 99 99
  • Page 100 100
  • Page 101 101
  • Page 102 102
  • Page 103 103
  • Page 104 104
  • Page 105 105
  • Page 106 106
  • Page 107 107
  • Page 108 108
  • Page 109 109
  • Page 110 110
  • Page 111 111
  • Page 112 112
  • Page 113 113
  • Page 114 114
  • Page 115 115
  • Page 116 116
  • Page 117 117
  • Page 118 118
  • Page 119 119
  • Page 120 120
  • Page 121 121
  • Page 122 122
  • Page 123 123
  • Page 124 124
  • Page 125 125
  • Page 126 126
  • Page 127 127
  • Page 128 128
  • Page 129 129
  • Page 130 130
  • Page 131 131
  • Page 132 132
  • Page 133 133
  • Page 134 134
  • Page 135 135
  • Page 136 136
  • Page 137 137
  • Page 138 138
  • Page 139 139
  • Page 140 140
  • Page 141 141
  • Page 142 142
  • Page 143 143
  • Page 144 144
  • Page 145 145
  • Page 146 146
  • Page 147 147
  • Page 148 148
  • Page 149 149
  • Page 150 150
  • Page 151 151
  • Page 152 152
  • Page 153 153
  • Page 154 154
  • Page 155 155
  • Page 156 156
  • Page 157 157
  • Page 158 158
  • Page 159 159
  • Page 160 160
  • Page 161 161
  • Page 162 162
  • Page 163 163
  • Page 164 164
  • Page 165 165
  • Page 166 166
  • Page 167 167
  • Page 168 168
  • Page 169 169
  • Page 170 170
  • Page 171 171
  • Page 172 172
  • Page 173 173
  • Page 174 174
  • Page 175 175
  • Page 176 176
  • Page 177 177
  • Page 178 178
  • Page 179 179
  • Page 180 180
  • Page 181 181
  • Page 182 182
  • Page 183 183
  • Page 184 184
  • Page 185 185
  • Page 186 186
  • Page 187 187
  • Page 188 188
  • Page 189 189
  • Page 190 190
  • Page 191 191
  • Page 192 192
  • Page 193 193
  • Page 194 194
  • Page 195 195
  • Page 196 196
  • Page 197 197
  • Page 198 198
  • Page 199 199
  • Page 200 200
  • Page 201 201
  • Page 202 202
  • Page 203 203
  • Page 204 204
  • Page 205 205
  • Page 206 206
  • Page 207 207
  • Page 208 208
  • Page 209 209
  • Page 210 210
  • Page 211 211
  • Page 212 212
  • Page 213 213
  • Page 214 214
  • Page 215 215
  • Page 216 216
  • Page 217 217
  • Page 218 218
  • Page 219 219
  • Page 220 220
  • Page 221 221
  • Page 222 222
  • Page 223 223
  • Page 224 224
  • Page 225 225
  • Page 226 226
  • Page 227 227
  • Page 228 228
  • Page 229 229
  • Page 230 230
  • Page 231 231
  • Page 232 232
  • Page 233 233
  • Page 234 234
  • Page 235 235
  • Page 236 236
  • Page 237 237
  • Page 238 238
  • Page 239 239
  • Page 240 240
  • Page 241 241
  • Page 242 242
  • Page 243 243
  • Page 244 244
  • Page 245 245
  • Page 246 246
  • Page 247 247
  • Page 248 248
  • Page 249 249
  • Page 250 250
  • Page 251 251
  • Page 252 252
  • Page 253 253
  • Page 254 254
  • Page 255 255
  • Page 256 256
  • Page 257 257
  • Page 258 258
  • Page 259 259
  • Page 260 260
  • Page 261 261
  • Page 262 262
  • Page 263 263
  • Page 264 264
  • Page 265 265
  • Page 266 266
  • Page 267 267
  • Page 268 268
  • Page 269 269
  • Page 270 270
  • Page 271 271
  • Page 272 272
  • Page 273 273
  • Page 274 274
  • Page 275 275
  • Page 276 276
  • Page 277 277
  • Page 278 278
  • Page 279 279
  • Page 280 280
  • Page 281 281
  • Page 282 282
  • Page 283 283
  • Page 284 284
  • Page 285 285
  • Page 286 286
  • Page 287 287
  • Page 288 288
  • Page 289 289
  • Page 290 290
  • Page 291 291
  • Page 292 292
  • Page 293 293
  • Page 294 294
  • Page 295 295
  • Page 296 296
  • Page 297 297
  • Page 298 298
  • Page 299 299
  • Page 300 300
  • Page 301 301
  • Page 302 302
  • Page 303 303
  • Page 304 304
  • Page 305 305
  • Page 306 306
  • Page 307 307
  • Page 308 308
  • Page 309 309
  • Page 310 310
  • Page 311 311
  • Page 312 312
  • Page 313 313
  • Page 314 314
  • Page 315 315
  • Page 316 316
  • Page 317 317
  • Page 318 318
  • Page 319 319
  • Page 320 320
  • Page 321 321
  • Page 322 322
  • Page 323 323
  • Page 324 324
  • Page 325 325
  • Page 326 326
  • Page 327 327
  • Page 328 328
  • Page 329 329
  • Page 330 330
  • Page 331 331
  • Page 332 332
  • Page 333 333
  • Page 334 334
  • Page 335 335
  • Page 336 336
  • Page 337 337
  • Page 338 338
  • Page 339 339
  • Page 340 340
  • Page 341 341
  • Page 342 342
  • Page 343 343
  • Page 344 344
  • Page 345 345
  • Page 346 346
  • Page 347 347
  • Page 348 348
  • Page 349 349
  • Page 350 350
  • Page 351 351
  • Page 352 352
  • Page 353 353
  • Page 354 354
  • Page 355 355
  • Page 356 356
  • Page 357 357
  • Page 358 358
  • Page 359 359
  • Page 360 360
  • Page 361 361
  • Page 362 362
  • Page 363 363
  • Page 364 364
  • Page 365 365
  • Page 366 366
  • Page 367 367
  • Page 368 368
  • Page 369 369
  • Page 370 370
  • Page 371 371
  • Page 372 372
  • Page 373 373
  • Page 374 374
  • Page 375 375
  • Page 376 376
  • Page 377 377
  • Page 378 378
  • Page 379 379
  • Page 380 380
  • Page 381 381
  • Page 382 382
  • Page 383 383
  • Page 384 384

Raritan Computer Home Security System Home Security System User manual

Category
Software
Type
User manual
This manual is also suitable for

Ask a question and I''ll find the answer in the document

Finding information in a document is now easier with AI