Raritan DKSXII-V2.3.0-0D-E User Manual

Raritan computer switch user manual

page of 362

/ 362
Contents
Table of Contents
Bookmarks

Table of Contents

Quick Links

Download this manual

Dominion KSX II

User Guide

Release 2.3.0

DKSXII-v2.3.0-0D-E

December 2010

255-62-4030-00

Table of Contents

Need help?

Do you have a question about the DKSXII-V2.3.0-0D-E and is the answer not in the manual?

Questions and answers

Summary of Contents for Raritan DKSXII-V2.3.0-0D-E

Page 2 This document contains proprietary information that is protected by copyright. All rights reserved. No part of this document may be photocopied, reproduced, or translated into another language without express prior written consent of Raritan, Inc. © Copyright 2010 Raritan, Inc. All third-party software and hardware mentioned in this document are registered trademarks or trademarks of and are the property of their respective holders.
Page 3: Table Of Contents
Contents Chapter 1 Introduction KSX II Overview ... 2 What's New in Help ... 4 KSX II Help ... 5 Related Documentation ... 5 KSX II Client Applications ... 5 Virtual Media ... 6 Product Photos ... 6 Product Features ... 7 Hardware ...
Page 4 Contents Connection Information ... 60 Keyboard Options ... 60 Video Properties ... 63 Mouse Options... 69 VKC Virtual Media ... 74 Smart Cards ... 75 Tool Options ... 76 View Options ... 79 Help Options ... 80 Active KVM Client (AKC) ... 80 Overview ...
Page 5 Adding a New User Group ... 114 Modifying an Existing User Group ... 119 Users ... 120 User List ... 120 Adding a New User ... 121 Modifying an Existing User ... 122 Logging a User Off (Force Logoff) ... 122 Authentication Settings ...
Page 6 Contents Encryption & Share ... 193 Enabling FIPS 140-2 ... 196 Configuring IP Access Control ... 198 SSL Certificates ... 200 Security Banner ... 202 Chapter 10 Maintenance Maintenance Features (Local/Remote Console) ... 204 Audit Log ... 205 Device Information ... 206 Backup and Restore ...
Page 7 CLI Prompts ... 234 CLI Commands ... 234 Security Issues ... 235 Target Connections and the CLI ... 235 Setting Emulation on a Target ... 235 Port Sharing Using CLI ... 236 Administering the KSX II Console Server Configuration Commands ... 236 Configuring Network ...
Page 8 Contents Resetting the KSX II Using the Reset Button ... 254 Chapter 14 Modem Configuration Certified Modems for UNIX, Linux and MPC ... 256 Low Bandwidth KVM Settings ... 257 Client Dial-Up Networking Configuration ... 258 Windows 2000 Dial-Up Networking Configuration ... 258 Windows Vista Dial-Up Networking Configuration ...
Page 9 Setting the Registry to Permit Write Operations to the Schema ... 295 Creating a New Attribute ... 295 Adding Attributes to the Class ... 296 Updating the Schema Cache ... 298 Editing rciusergroup Attributes for User Members ... 298 Appendix C Informational Notes Overview ...
Page 10 Contents Appendix D FAQs General Questions ... 315 Serial Access ... 317 Universal Virtual Media ... 322 USB Profiles ... 323 IPv6 Networking ... 325 Remote Access ... 326 Ethernet and IP Networking ... 328 Servers ... 332 Blade Servers ... 332 Installation ...
Page 11: Chapter 1 Introduction
Chapter 1 Introduction In This Chapter KSX II Overview ... 2 What's New in Help ... 4 KSX II Help ... 5 KSX II Client Applications ... 5 Virtual Media ... 6 Product Photos ... 6 Product Features ... 7 External Product Overview ...
Page 12: Ksx Ii Overview
Chapter 1: Introduction KSX II Overview Raritan's Dominion KSX II is an enterprise-class, secure digital device that provides a single integrated solution for remote KVM (keyboard, video, mouse) server access and serial device management, as well as power control from anywhere in the world from a web browser. At the rack, the KSX II provides control of all KVM server and serial targets from a single keyboard, monitor, and mouse.
Page 13 Diagram key Cat5 cable Computer Interface Module (CIM) KSX II Remote KVM and serial devices Modem access Remote (network) access Chapter 1: Introduction Remote virtual media USB drive(s) Rack PDU (power strip) Local access IP LAN/WAN PSTN...
Page 14: What's New In Help
Chapter 1: Introduction What's New in Help The following information has been added based on enhancements and changes to the equipment and/or user documentation.             Please see the release notes for a more detailed explanation of the changes applied to the device and this version of the help.
Page 15: Ksx Ii Help
KSX II Help The KSX II help provides information on how to install, set up, and configure the KSX II. It also includes information on accessing target servers and power strips, using virtual media, managing users and security, and maintaining and diagnosing the KSX II. A PDF version of the help can be downloaded from the Firmware and Documentation page http://www.raritan.com/support/firmware-and-documentation/...
Page 16: Virtual Media
Chapter 1: Introduction Virtual Media All KSX II models support virtual media. The benefits of virtual media - mounting of remote drives/media on the target server to support software installation and diagnostics - are now available in all of the KSX II models.
Page 17: Product Features
KSX II 144 and 188 Product Features Hardware  KVM and serial remote access over IP  1U rack-mountable; brackets included  DKSX2-144 - 4 serial/4 KVM server ports  DKSX2-188 - 8 serial/8 KVM server ports  1 KVM channel shareable by 8 users, multiple serial users. ...
Page 18: Software
Chapter 1: Introduction Software               External Product Overview The following diagram indicates the external components of the KSX II. Note that the KSX II 144 will have 4 KVM ports and 4 serial ports as compared to the KSX II 188 used in the diagram, which has 8 KVM ports and 8 serial ports.
Page 19 Chapter 1: Introduction Item Description USB port Remote indicator light LAN1 and LAN2 indicator lights Power indicator light...
Page 20 Chapter 1: Introduction Item Description AC power cord plug Power Control information. Power on/off switch LAN 3 port Note: The LAN 3 port is reserved for future use. LAN1 and LAN2 ports Step 3: Connect the Equipment additional information. Admin port Step 3: Connect the Equipment additional information.
Page 21: Terminology
Chapter 1: Introduction Terminology This manual uses the following terminology for the components of a typical KSX II configuration:...
Page 22 Chapter 1: Introduction Diagram key TCP/IP IPv4 and/or IPv6 KVM (Keyboard, Video, Mouse) UTP Cable (Cat5/5e/6) KSX II Local Access Console Local User - an optional user console (consisting of a keyboard, mouse, and multi-sync VGA monitor) attached directly to the KSX II to control KVM target servers and serial targets locally (directly at the rack, not through the network).
Page 23: Package Contents
Diagram key serial port connected remotely via KSX II. Routers Dominion PX Rack PDU (Power Strip) Raritan rack PDUs accessed remotely via the KSX II. Package Contents Each KSX II ships as a fully-configured stand-alone product in a standard 1U 19" rackmount chassis. Each KSX II device ships with the following contents: Amount included...
Page 24: Chapter 2 Installation And Configuration
Chapter 2 Installation and Configuration In This Chapter Overview ... 14 Default Login Information ... 14 Getting Started ... 15 Overview This section provides a brief overview of the installation process. Each step is further detailed in the remaining sections of this chapter. To install and configure the KSX II: ...
Page 25: Getting Started
Getting Started Step 1: Configure KVM Target Servers KVM target servers are the computers that will be accessed and controlled via the KSX II. Before installing the KSX II, configure all KVM target servers to ensure optimum performance. This configuration applies only to KVM target servers, not to the client workstations (remote PCs) used to access the KSX II remotely.
Page 26 Chapter 2: Installation and Configuration Operating System Mouse and Video Settings This section provides video mode and mouse information specific to the operating system in use on the target server. Windows XP, Windows 2003 and Windows 2008 Settings 1. Configure the mouse settings: 2.
Page 27 Windows Vista Settings To configure KVM target servers running Windows Vista operating system: 1. Configure the mouse settings: a. Choose Start > Settings > Control Panel > Mouse. b. Select "Advanced system settings" from the left navigation panel. The System Properties dialog opens. c.
Page 28 Chapter 2: Installation and Configuration 2. Disable animation and fade effects: 3. Click OK and Close the Control Panel. Windows 2000 Settings 1. Configure the mouse settings: 2. Disable transition effects:  Set the mouse motion speed setting to exactly the middle speed.
Page 29  Deselect the "Use the following transition effect for menus and tooltips" option. 3. Click OK and close the Control Panel. Linux Settings (Red Hat 4) Note: The following settings are optimized for Standard Mouse mode only. To configure KVM target servers running Linux interface): 1.
Page 30 Chapter 2: Installation and Configuration SUSE Linux 10.1 Settings Note: Do not attempt to synchronize the mouse at the SUSE Linux prompt. You must be connected to the target server to synchronize the mouse cursors. 1. Choose Desktop > Control Center. The Desktop Preferences dialog 2.
Page 31 Tip: If you do not want to be prompted upon log out, follow these procedures instead. To make your settings permanent in Linux (no prompt): 1. Choose Desktop > Control Center > System > Sessions. 2. Click the Session Options tab. 3.
Page 32 Chapter 2: Installation and Configuration 3. KVM target servers running the Solaris operating system must output 1. Issue the Stop+A command to drop to bootprom mode. 2. Issue the following command to change the output resolution: setenv 3. Issue the boot command to reboot the server. You can also contact your Raritan representative to purchase a video output adapter: If you have:...
Page 33 4. Set the Threshold slider to 1.0. 5. Click OK. Accessing the Command Line 1. Right click. 2. Choose Tools > Terminal. A terminal window opens. (It is best to be at the root to issue commands.) Video Settings (POST) Sun systems have two different resolution settings: a POST resolution and a GUI resolution.
Page 34: Step 2: Configure Network Firewall Settings
Chapter 2: Installation and Configuration IBM AIX 5.3 Settings Follow these steps to configure KVM target servers running IBM 5.3. 1. Go to Launcher. 2. Choose Style Manager. 3. Click Mouse. The Style Manager - Mouse dialog appears. 4. Use the sliders to set the Mouse acceleration to 1.0 and Threshold to 5.
Page 35: Step 3: Connect The Equipment
To take advantage of the KSX II: The firewall must allow Web-access capabilities Automatic redirection of HTTP requests to HTTPS (so the more common “http://xxx.xxx.xxx.xxx” can be used instead of “https://xxx.xxx.xxx.xxx”) Network Settings (on page 135) for additional information about designating another discovery port.
Page 36 By default, only LAN1 is active and the automatic failover is disabled. When enabled, if the KSX II internal network interface or the network switch to which it is connected becomes unavailable, LAN2 will be enabled using the same IP address.
Page 37 UTP (Cat5/5e/6) cable, connect the CIM to an available server port on the back of your KSX II device. Note: The DCIM-USB G2 provides a small slide switch on the back of the CIM. Move the switch to P for PC-based USB target servers. Move the switch to S for Sun USB target servers.
Page 38 Chapter 2: Installation and Configuration E. Rack PDU (Power Strip) 1. Plug one end of a Cat5 cable into the Serial port on the front of the 2. Connect the other end of the Cat5 cable to either the Power Ctrl. 1 or 3.
Page 39 Diagram key KSX II KSX II Power Ctrl. 1 Port or Power Ctrl. 2 Port F. Serial Target Ports To connect a serial target to the KSX II, use a Cat5 cable with an appropriate serial adapter. The following table lists the necessary KSX II hardware (adapters and/or cables) for connecting the KSX II to common vendor/model combinations.
Page 40: Step 4: Configure The Ksx Ii
The KSX II ships with a default password. The first time you start the KSX II you are required to change that password. 1. Power on the KSX II using the power switch(s) at the back of the 2. Once the unit has booted, the KSX II Local Console is visible on the 3.
Page 41 5. Click Apply. 6. You will receive confirmation that the password was successfully changed. Click OK. The Port Access page is displayed. Note: The default password can also be changed from the Raritan Multi-Platform Client (MPC). For more information, refer to Changing a Password.
Page 42 Chapter 2: Installation and Configuration 5. Select Obtain DNS Server Address Automatically if DHCP is 6. If Use the Following DNS Server Addresses is selected, regardless 7. When finished, click OK. Your KSX II device is now network a. Select the IPv6 checkbox to activate the fields in the section. b.
Page 43: Valid Special Characters For Target Names
LAN Interface Settings (on page 138) for information in configuring this section of the Network Settings page. Note: In some environments, the default LAN Interface Speed & Duplex setting Autodetect (autonegotiator) does not properly set the network parameters, which results in network issues. In these instances, setting the KSX II LAN Interface Speed &...
Page 44 Chapter 2: Installation and Configuration Character < Configuring Direct Port Access via Telnet, IP Address or SSH The information in this topic is specific to enabling direct port access for serial targets. Use the Enable Direct Port Access via URL option on the Device Services page to enable direct port access for a KVM/serial port connect to the KSX II.
Page 45 Configure the SSH TCP port as "7888". Once this is done, connection to the target can be done by using “ssh –l <login> <KSX II device IP address> -p 7888”. 3. Click OK to save this information. Once you have created the direct port access, it can be connected in a client application such as PuTTY.
Page 46 Chapter 2: Installation and Configuration Note to CC-SG Users Note to CC-SG Users If you are using the KSX II in a CC-SG configuration, perform the installation steps, and when finished, consult the CommandCenter Secure Gateway User Guide, Administrator Guide, or Deployment Guide to proceed (all found on Raritan's website, www.raritan.com, under Support).
Page 47: Step 5 (Optional): Configure Keyboard Language
Del key on your keyboard. The Caps Lock light starts to blink, indicating that the CIM is in Layout Code Change mode. The text window displays: Raritan Computer, Inc. Current keyboard layout code = 22h (US5 UNIX). 3. Type the layout code desired (for example, 31 for the Japanese keyboard).
Page 48: Chapter 3 Working With Target Servers
Chapter 3 Working with Target Servers In This Chapter Interfaces ... 38 Proxy Server Configuration for use with KSX II, MPC, VKC and AKC ... 52 Virtual KVM Client (VKC) ... 53 Active KVM Client (AKC) ... 80 Multi-Platform Client (MPC) ... 82 Raritan Serial Console (RSC)...
Page 49: Ksx Ii Local Console: Ksx Ii Devices
The following sections of the user guide contain information about using specific interfaces to connect to the KSX II and manage targets:  KSX II Local Console Interface: KSX II Devices Local Console: KSX II Devices" on page 39)  KSX II Remote Console Interface ...
Page 50: Ksx Ii Remote Console Interface
Chapter 3: Working with Target Servers KSX II Remote Console Interface The KSX II Remote Console is a browser-based graphical user interface that allows you to log in to KVM target servers and serial targets connected to the KSX II and to remotely administer the KSX II. The KSX II Remote Console provides a digital connection to your connected KVM target servers.
Page 51 Depending on your browser and security settings, you may see various security and certificate warnings. It is necessary to accept these warnings to launch the KSX II Remote Console. You can reduce the number of warning messages during subsequent log ins by checking the following options on the security and certificate warning messages: ...
Page 52 Chapter 3: Working with Target Servers Interface and Navigation KSX II Console Layout Both the KSX II Remote Console and the KSX II Local Console interfaces provide an HTML (web-based) interface for configuration and administration, as well as target server list and selection. The options are organized into various tabs.
Page 53 Left Panel The left panel of the KSX II interface contains the following information. Note that some information is conditional and will only be displayed if you are a certain of user, are using certain features, and so on. This conditional information is noted here.
Page 54 Chapter 3: Working with Target Servers Information Connected Users Online Help - User Guide Favorite Devices FIPS Mode Description When displayed? The users, identified by Always their username and IP address, who are currently connected to the KSX II. Links to online help. Always Managing Favorites Always...
Page 55 Port Access Page After successfully logging on to the KSX II Remote Console, the Port Access page appears. This page lists all of the KSX II ports, the connected KVM target servers, and their status and availability. The Port Access page provides access to the KVM target servers connected to the KSX II.
Page 56 Chapter 3: Working with Target Servers 3. Click View by Port, View by Group or View by Search to switch 4. Click the Port Name of the target server you want to access. The 5. Choose the desired menu command from the Port Action Menu.
Page 57  Power On - Powers on the target server through the associated outlet. This option is visible only when there are one or more power associations to the target.  Power Off - Powers off the target server through the associated outlets.
Page 58 Chapter 3: Working with Target Servers Managing Favorites A Favorites feature is provided so you can organize and quickly access the devices you use frequently. The Favorite Devices section is located in the lower left side (sidebar) of the Port Access page and provides the ability to: ...
Page 59 Note: Both IPv4 and IPv6 addresses are supported. Manage Favorites Page To open the Manage Favorites page:  Click the Manage button in the left panel. The Manage Favorites page appears and contains the following: Use: Favorites List Discover Devices - Local Subnet Discover Devices - KSX II Subnet Discover the Raritan devices on Add New Device to Favorites Favorites List Page...
Page 60 Chapter 3: Working with Target Servers 3. Click Refresh. The list of devices on the local subnet is refreshed. 1. Select the checkbox next to the device name/IP address. 2. Click Add. Tip: Use the Select All and Deselect All buttons to quickly select all (or deselect all) devices in the remote console subnet.
Page 61 Adding, Deleting and Editing Favorites To add a device to your favorites list: 1. Choose Manage > Add New Device to Favorites. The Add New Favorite page appears. 2. Type a meaningful description. 3. Type the IP Address/Host Name for the device. 4.
Page 62: Proxy Server Configuration For Use With Ksx Ii, Mpc, Vkc And Akc
Chapter 3: Working with Target Servers Proxy Server Configuration for use with KSX II, MPC, VKC and AKC When the use of a Proxy Server is required, a SOCKS proxy must also be provided and configured on the remote client PC. Note: If the installed proxy server is only capable of the HTTP proxy protocol, you will not be able to connect.
Page 63: Virtual Kvm Client (Vkc)
start javaw -Xmn128M -Xmx512M -XX:MaxHeapFreeRatio=70 -XX:MinHeapFreeRatio=50 -Dsun.java2d.noddraw=true -DsocksProxyHost=192.168.99.99 -DsocksProxyPort=1080 -classpath .\sdeploy.jar;.\sFoxtrot.jar;.\jaws.jar;.\sMpc.jar com.raritan.rrc.ui.RRCApplication %1 Virtual KVM Client (VKC) Please note this client is used by various Raritan products. As such, references to other products may appear in this section of help since they are shared between products.
Page 64: Toolbar
Chapter 3: Working with Target Servers Toolbar Note: The KX II-101 VKC interface is different from the other Dominion KX products. See VKC Toolbar for the KX II-101. Button Button Description Name Connection Opens the Modify Connection Properties dialog Properties from which you can manually adjust bandwidth options (such as connection speed, color depth, and so forth).
Page 65: Switching Between Kvm Target Servers
2. Click the port name of the target you want to access. The Port Action menu appears. 3. Choose Switch From in the Port Action menu. The Virtual KVM Client window switches to the new target server you selected. Power Controlling a Target Server Note: These features are available only when you have made power associations.
Page 66: Disconnecting Kvm Target Servers
Chapter 3: Working with Target Servers 1. From the KSX II Remote Console, click the Port Access tab to open 2. Click the port name of the appropriate target server. The Port Action 3. Choose Power Off. A confirmation message appears. Disconnecting KVM Target Servers Note: This item is not available on the KSX II Local Console.
Page 67 After you have connected to a target server, you can change the USB profile as necessary. By default, the profiles that appear under the USB Profile menu in the VKC are those that you are most likely to use. These profiles have been preselected by the administrator for use with the connected target server, based on your operational requirements.
Page 68: Connection Properties
Chapter 3: Working with Target Servers Connection Properties The dynamic video compression algorithms maintain KVM console usability under varying bandwidth constraints. The devices optimize KVM output not only for LAN use, but also for WAN use. These devices can also control color depth and limit video output, offering an optimal balance between video quality and system responsiveness for any bandwidth.
Page 69  100 Mb Ethernet  10 Mb Ethernet  1.5 Mb (MAX DSL/T1)  1 Mb (Fast DSL/T1)  512 Kb (Medium DSL/T1)  384 Kb (Slow DSL/T1)  256 Kb (Cable)  128 Kb (Dual ISDN)  56 kb (ISP Modem) ...
Page 70: Connection Information
Chapter 3: Working with Target Servers Connection Information  The following information is displayed about the current connection:             Keyboard Options Keyboard Macros Keyboard macros ensure that keystroke combinations intended for the target server are sent to and interpreted only by the target server.
Page 71 Building a Keyboard Macro To build a macro: 1. Click Keyboard > Keyboard Macros. The Keyboard Macros dialog appears. 2. Click Add. The Add Keyboard Macro dialog appears. 3. Type a name for the macro in the Keyboard Macro Name field. This name will appear in the Keyboard menu after it is created.
Page 72 Chapter 3: Working with Target Servers 10. Click Close to close the Keyboard Macros dialog. The macro will now Running a Keyboard Macro Once you have created a keyboard macro, execute it using the keyboard macro you assigned to it or by choosing it from the Keyboard menu. Run a Macro from the Menu Bar When you create a macro, it appears under the Keyboard menu.
Page 73: Video Properties
5. Click OK. To remove a macro: 1. Choose Keyboard > Keyboard Macros. The Keyboard Macros dialog appears. 2. Choose the macro from among those listed. 3. Click Remove. The macro is deleted. Hot-key combinations that coincide with blade chassis switching key sequences will not be sent to blades housed in those chassis.
Page 74 Chapter 3: Working with Target Servers Auto-Sense Video Settings The Auto-sense Video Settings command forces a re-sensing of the video settings (resolution, refresh rate) and redraws the video screen. Note: VKC for the KX II-101 uses an icon set that differs from the icon set used in VKC for other Dominion KX products.
Page 75 The device can filter out the electrical interference of video output from graphics cards. This feature optimizes picture quality and reduces bandwidth. Higher settings transmit variant pixels only if a large color variation exists in comparison to the neighboring pixels. However, setting the threshold too high can result in the unintentional filtering of desired screen changes.
Page 76 Chapter 3: Working with Target Servers 5. Click OK to apply the settings and close the dialog. Click Apply to  Best possible video mode The device will perform the full Auto Sense process when switching targets or target resolutions. Selecting this option calibrates the video for the best image quality.
Page 77 Chapter 3: Working with Target Servers Note: Some Sun background screens, such as screens with very dark borders, may not center precisely on certain Sun servers. Use a different background or place a lighter colored icon in the upper left corner of the screen.
Page 78 Chapter 3: Working with Target Servers Using Screenshot from Target You are able to take a screenshot of a target server using the Screenshot from Target server command. You can then save this screenshot to a file location of your choosing as a bitmap, JPEG or PNG file.
Page 79: Mouse Options
Changing the Maximum Refresh Rate If the video card you are using on the target uses custom software and you are accessing the target through MPC or VKC, you may need to change the maximum refresh rate of the monitor in order for the refresh rate to take effect on the target.
Page 80 Chapter 3: Working with Target Servers Mouse Pointer Synchronization When remotely viewing a target server that uses a mouse, you will see two mouse cursors: one belonging to your remote client workstation and the other belonging to the target server. When the mouse pointer lies within the Virtual KVM Client target server window, mouse movements and clicks are directly transmitted to the connected target server.
Page 81 Additional Notes for Intelligent Mouse Mode  Be sure that there are no icons or applications in the upper left section of the screen since that is where the synchronization routine takes place.  Do not use an animated mouse. ...
Page 82 Chapter 3: Working with Target Servers Intelligent Mouse Mode In Intelligent Mouse mode, the device can detect the target mouse settings and synchronize the mouse cursors accordingly, allowing mouse acceleration on the target. Intelligent mouse mode the default for non-VM targets.
Page 83 Please note that mouse configurations will vary on different target operating systems. Consult your OS guidelines for further details. Also note that intelligent mouse synchronization does not work with UNIX targets. Absolute Mouse Mode In this mode, absolute coordinates are used to keep the client and target cursors in sync, even when the target mouse is set to a different acceleration or speed.
Page 84: Vkc Virtual Media
Chapter 3: Working with Target Servers 2. Click the Single/Double Mouse Cursor button in the toolbar. To exit single mouse mode: 1. Press Ctrl+Alt+O on your keyboard to exit single mouse mode. VKC Virtual Media See the chapter on Virtual Media (on page 90) for complete information about setting up and using virtual media.
Page 85: Smart Cards
OS. When the KVM session is terminated, either because it has been closed or because you switch to a new target, the smart card reader will be automatically unmounted from the target server.
Page 86: Tool Options
Chapter 3: Working with Target Servers To update the smart card in the Select Smart Card Reader dialog:  Click Refresh List if a new smart card reader has been attached to the client PC. To send smart card remove and reinsert notifications to the target: ...
Page 87  US/International  French (France)  German (Germany)  Japanese  United Kingdom  Korean (Korea)  French (Belgium)  Norwegian (Norway)  Portuguese (Portugal)  Danish (Denmark)  Swedish (Sweden)  German (Switzerland)  Hungarian (Hungary)  Spanish (Spain) ...
Page 88 Chapter 3: Working with Target Servers 8. Use Select From Detected Monitors to select from a list of target 9. Click OK. Keyboard Limitations Slovenian Keyboards The < key does not work on Slovenian keyboards due to a JRE limitation. Language Configuration on Linux Because the Sun JRE on Linux has problems generating the correct Key Events for foreign-language keyboards configured using System...
Page 89: View Options
Note: The Keyboard Indicator should be used on Linux systems using Gnome as a desktop environment. View Options View Toolbar You can use the Virtual KVM client with or without the toolbar display. To toggle the display of the toolbar (on and off): ...
Page 90: Help Options
Chapter 3: Working with Target Servers Help Options About Raritan Virtual KVM Client This menu command provides version information about the Virtual KVM Client, in case you require assistance from Raritan Technical Support. 1. Choose Help > About Raritan Virtual KVM Client. 2.
Page 91: Akc Supported .Net Framework, Operating Systems And Browsers
Internet Explorer 6 or later If you attempt to open AKC from a browser other than IE 6 or later, you will receive an error message instructing you to check your browser and to switch to Internet Explorer. Chapter 3: Working with Target Servers...
Page 92: Prerequisites For Using Akc
Chapter 3: Working with Target Servers Prerequisites for Using AKC In order to use AKC:   Enable AKC Download Server Certificate Validation If the device (or CC-SG) administrator has enabled the Enable AKC Download Server Certificate Validation option:  ...
Page 93: Raritan Serial Console (Rsc)
1. To open MPC from a client running any supported browser, type http://IP-ADDRESS/mpc into the address line, where IP-ADDRESS is the IP address of your Raritan device. MPC will open in a new window. Note: The Alt+Tab command will toggle between windows only on the local system.
Page 94: Opening Rsc From The Remote Console
Chapter 3: Working with Target Servers Opening RSC from the Remote Console 1. Select the Port Access tab. 2. Click the name of the serial port you want to access for the RSC. 3. If you're using Dominion DSX: Note: You can download the standalone Raritan Serial Console from the Raritan website (www.raritan.com) on the Support page.
Page 95 2. Enter the device's IP address, account information, and the desired target (port). 3. Click Start. RSC opens with a connection to the port. Note: If you experience unrecognized characters or blurry pages in the RSC window due to localization support, try changing the font to Courier New.
Page 96: Overview
Chapter 4 Rack PDU (Power Strip) Outlet Control In This Chapter Overview ... 86 Turning Outlets On/Off and Cycling Power ... 87 Overview The KSX II allows you to control Raritan PX and RPC series rack PDU (power strip) outlets. Once a PX or RPC series is setup and then attached to the KSX II, the rack PDU and its outlets can be controlled from the Powerstrip page in the KSX II interface.
Page 97: Turning Outlets On/Off And Cycling Power
Initially, when you open the Powerstrip page, the power strips that are currently connected to the KSX II are displayed in the Powerstrip drop-down. Additionally, information relating to the currently selected power strip is displayed. If no power strips are connected to the KSX II, a message stating "No powerstrips found"...
Page 98 Chapter 4: Rack PDU (Power Strip) Outlet Control 5. Click OK to close the Power On confirmation dialog. The outlet will 1. Click Off. 2. Click OK on the Power Off dialog. 3. Click OK on the Power Off confirmation dialog. The outlet will be 1.
Page 99 2. Click OK. The outlet will then cycle (note that this may take a few seconds). 3. Once the cycling is complete the dialog will open. Click OK to close the dialog. Chapter 4: Rack PDU (Power Strip) Outlet Control...
Page 100: Chapter 5 Virtual Media
Chapter 5 Virtual Media In This Chapter Overview ... 91 Prerequisites for Using Virtual Media ... 94 Using Virtual Media via VKC and AKC in a Windows Environment ... 95 Using Virtual Media ... 96 File Server Setup (File Server ISO Images Only) ... 98 Connecting to Virtual Media ...
Page 101: Overview
Overview Virtual media extends KVM capabilities by enabling KVM target servers to remotely access media from a client PC and network file servers. With this feature, media mounted on a client PC and network file servers is essentially "mounted virtually" by the target server. The target server can then read from and write to that media as if it were physically connected to the target server itself.
Page 102 Chapter 5: Virtual Media...
Page 103 Diagram key Desktop PC KSX II Target server CD/DVD drive USB mass storage device PC hard drive Remote file server (ISO images) Chapter 5: Virtual Media...
Page 104: Prerequisites For Using Virtual Media
Chapter 5: Virtual Media Prerequisites for Using Virtual Media With the virtual media feature, you can mount up to two drives (of different types) that are supported by the USB profile currently applied to the target. These drives are accessible for the duration of the KVM session.
Page 105: Using Virtual Media Via Vkc And Akc In A Windows Environment
Using Virtual Media via VKC and AKC in a Windows Environment Windows XP privileges vary from those of the Windows Vista the Windows 7 When enabled in Vista or Windows 7, User Access Control (UAC) will provide the lowest level of rights and privileges a user needs for an application.
Page 106: Using Virtual Media
Chapter 5: Virtual Media Using Virtual Media With the KSX II virtual media feature, you can mount up to two drives (of different types). These drives are accessible for the duration of the KVM session. For example, you can mount a specific CD-ROM, use it, and then disconnect it when you are done.
Page 107 Target Server  KVM target servers must support USB connected drives.  KVM target servers running the Windows 2000 must have all of the recent patches installed. 1. USB 2.0 ports are both faster and preferred.. 2. If you plan to access file server ISO images, identify those file servers and images through the KSX II Remote Console File Server Setup page.
Page 108: File Server Setup (File Server Iso Images Only)
Chapter 5: Virtual Media File Server Setup (File Server ISO Images Only) Note: This feature is only required when using virtual media to access file server ISO images. ISO9660 format is the standard supported by Raritan. However, other CD-ROM extensions may also work. Note: SMB/CIFS support is required on the file server.
Page 109 Chapter 5: Virtual Media Note: You cannot access a remote ISO image via virtual media using an IPv6 address due to technical limitations of third-party software used by the by the KX, KSX or KX101 G2 device. ® Note: If you are connecting to a Windows 2003 server and attempt to load an ISO image from the server, you may receive an error stating "Virtual Media mounting on port failed.
Page 110: Connecting To Virtual Media
Chapter 5: Virtual Media Connecting to Virtual Media Local Drives This option mounts an entire drive, which means the entire disk drive is mounted virtually onto the target server. Use this option for hard drives and external drives only. It does not include network drives, CD-ROM, or DVD-ROM drives.
Page 111: Conditions When Read/Write Is Not Available
WARNING: Enabling Read/Write access can be dangerous! Simultaneous access to the same drive from more than one entity can result in data corruption. If you do not require Write access, leave this option unselected. 4. Click Connect. The media will be mounted on the target server virtually.
Page 112 Chapter 5: Virtual Media 2. For internal and external CD-ROM or DVD-ROM drives: 3. For ISO images: 4. For remote ISO images on a file server: Note: If you are working with files on a Linux command after the files are copied using virtual media in order to view the copied files.
Page 113: Disconnecting Virtual Media
Disconnecting Virtual Media To disconnect the virtual media drives:  For local drives, choose Virtual Media > Disconnect Drive.  For CD-ROM, DVD-ROM, and ISO images, choose Virtual Media > Disconnect CD-ROM/ISO Image. Note: In addition to disconnecting the virtual media using the Disconnect command, simply closing the KVM connection closes the virtual media as well.
Page 114: Overview
Chapter 6 USB Profiles In This Chapter Overview ... 104 CIM Compatibility ... 105 Available USB Profiles ... 105 Selecting Profiles for a KVM Port ... 111 Overview To broaden the KSX II's compatibility with different KVM target servers, Raritan provides a standard selection of USB configuration profiles for a wide range of operating system and BIOS-level server implementations.
Page 115: Cim Compatibility
CIM Compatibility In order to make use of USB profiles, you must use a D2CIM-VUSB or D2CIM-DVUSB with updated firmware. A VM-CIM that has not had its firmware upgraded will support a broad range of configurations (Keyboard, Mouse, CD-ROM, and Removable Drive) but will not be able to make use of profiles optimized for particular target configurations.
Page 116 Chapter 6: USB Profiles USB profile BIOS DellPowerEdge Keyboard Only BIOS ASUS P4C800 Motherboard Description Restrictions:  USB bus speed limited to full-speed (12 MBit/s)  No virtual media support Dell PowerEdge BIOS Access (Keyboard Only) Use this profile to have keyboard functionality for the Dell PowerEdge BIOS when using D2CIM-VUSB.
Page 117 USB profile BIOS Generic ™ ® BIOS HP Proliant DL145 ® BIOS HP Compaq DC7100/DC7600 BIOS IBM ThinkCentre Lenovo IBM BladeCenter H with Advanced Management Chapter 6: USB Profiles Description BIOS Generic Use this profile when Generic OS profile does not work on the BIOS. WARNING: USB enumeration will trigger whenever virtual media is connected or disconnected.
Page 118 Chapter 6: USB Profiles USB profile Module BIOS Lenovo ThinkPad T61 & X61 BIOS Mac Generic HP Proliant DL360/DL380 G4 (HP SmartStart CD) HP Proliant DL360/DL380 G4 (Windows 2003 Description D2CIM-DVUSB is connected to the Advanced Management Module. Restrictions:  Virtual CD-ROM and disk drives cannot be used simultaneously BIOS Lenovo ThinkPad T61 and X61...
Page 119 USB profile Installation) ® Linux ® MAC OS X (10.4.9 and later) Mac OS-X, version 10.4.9 and later RUBY Industrial Mainboard (AwardBIOS) Supermicro Mainboard Phoenix (AwardBIOS) Chapter 6: USB Profiles Description Use this profile for the HP Proliant DL360/DL380 G4 series server when installing Windows 2003 Server without the help of HP SmartStart CD.
Page 120 Chapter 6: USB Profiles USB profile Suse 9.2 Troubleshooting 1 Troubleshooting 2 Troubleshooting 3 Description Restrictions:  Virtual CD-ROM and disk drives cannot be used simultaneously SuSE Linux 9.2 Use this for SuSE Linux 9.2 distribution. Restrictions:  Absolute mouse synchronization™ not supported ...
Page 121: Selecting Profiles For A Kvm Port
USB profile Use Full Speed for Virtual Media CIM Selecting Profiles for a KVM Port The KSX II comes with a set of USB profiles that you can assign to a KVM port based on the characteristics of the KVM target server it connects to.
Page 122: Mouse Modes When Using The Mac Os-X Usb Profile With A Dcim-Vusb
Boot menu. The mouse will not respond at this point. The mouse will respond. Note: Mouse speed may be slow while in Single Mouse mode. system, exit Single Mouse mode and switch back to Absolute Mouse mode for better mouse performance. ®...
Page 123: Chapter 7 User Management
Chapter 7 User Management In This Chapter User Groups ... 113 Users ... 120 Authentication Settings ... 123 Changing a Password ... 134 User Groups The KSX II stores an internal list of all user and group names to determine access authorization and permissions. This information is stored internally in an encrypted format.
Page 124: User Group List
Chapter 7: User Management User Group List User groups are used with local and remote authentication (via RADIUS or LDAP/LDAPS). It is a good idea to define user groups before creating individual users since, when you add a user, you must assign that user to an existing user group.
Page 125 The Group page is organized into the following categories: Group, Permissions, Port Permissions, and IP ACL. 2. Type a descriptive name for the new user group into the Group Name field (up to 64 characters). 3. Set the permissions for the group. Select the checkboxes before the permissions you want to assign to all of the users belonging to this group.
Page 126 Chapter 7: User Management 3. Select the appropriate permissions. 4. Click OK. Note: See Alternate RADIUS Authentication Settings for information on additional settings if you are using Alternate RADIUS Authentication. Permissions Important: Selecting the User Management checkbox allows the members of the group to change the permissions of all users, including their own.
Page 127 Permission Description Management authentication (LDAP/LDAPS/RADIUS), login settings Port Permissions For each server port, you can specify the access type the group has, as well as the type of port access to the virtual media and the power control. Please note that the default setting for all permissions is Deny. Port access Option Description...
Page 128 Chapter 7: User Management Group-Based IP ACL (Access Control List) Important: Exercise caution when using group-based IP access control. It is possible to be locked out of your KSX II if your IP address is within a range that has been denied access. This feature limits access to the KSX II device by users in the selected group to specific IP addresses.
Page 129: Modifying An Existing User Group
4. Click Insert. If the rule number you just typed equals an existing rule number, the new rule is placed ahead of the exiting rule and all rules are moved down in the list. To replace a rule: 1. Specify the rule number you want to replace. 2.
Page 130: Users
Chapter 7: User Management 4. Set the IP ACL (optional). This feature limits access to the KSX II 5. Click OK. Important: If you delete a group with users in it, the users are automatically assigned to the <unknown> user group. Tip: To determine the users belonging to a particular group, sort the User List by User Group.
Page 131: Adding A New User
Adding a New User It is a good idea to define user groups before creating KSX II users because, when you add a user, you must assign that user to an existing user group. Refer to Adding a New User Group information.
Page 132: Modifying An Existing User
Chapter 7: User Management Modifying an Existing User 1. Open the User List page by choosing User Management > User List. 2. Locate the user from among those listed on the User List page. 3. Click the user name. The User page opens. 4.
Page 133: Authentication Settings
Authentication Settings Authentication is the process of verifying that a user is who he says he is. Once a user is authenticated, the user's group is used to determine his system and port permissions. The user's assigned privileges determine what type of access is allowed. This is called authorization. When the KSX II is configured for remote authentication, the external authentication server is used primarily for the purposes of authentication, not authorization.
Page 134: Implementing Ldap/Ldaps Remote Authentication
Chapter 7: User Management Implementing LDAP/LDAPS Remote Authentication Lightweight Directory Access Protocol (LDAP/LDAPS) is a networking protocol for querying and modifying directory services running over TCP/IP. A client starts an LDAP session by connecting to an LDAP/LDAPS server (through the default TCP port is 389). The client then sends operation requests to the server, and the server sends responses in turn.
Page 135 9. In the User Search DN field, enter the Distinguished Name of where in the LDAP database you want to begin searching for user information. Up to 64 characters can be used. An example base search value might be: cn=Users,dc=raritan,dc=com. Consult your authentication server administrator for the appropriate values to enter into these fields.
Page 136 Chapter 7: User Management 13. Select the Enable Secure LDAP checkbox if you would like to use 14. The default Port is 389. Either use the standard LDAP TCP port or 15. The default Secure LDAP Port is 636. Either use the default port or 16.
Page 137: Returning User Group Information From Active Directory Server
18. The KSX II provides you with the ability to test the LDAP configuration from the Authentication Settings page due to the complexity sometimes encountered with successfully configuring the LDAP server and KSX II for remote authentication. To test the LDAP configuration, enter the login name and password in the "Login for testing"...
Page 138: Important Notes
Chapter 7: User Management 4. From the KSX II, enable and configure your AD server properly. See Important Notes:      Implementing RADIUS Remote Authentication Remote Authentication Dial-in User Service (RADIUS) is an AAA (authentication, authorization, and accounting) protocol for network access applications.
Page 139 8. The Timeout is recorded in seconds and default timeout is 1 second, but can be changed as required. The timeout is the length of time the KSX II waits for a response from the RADIUS server before sending another authentication request. 9.
Page 140 Chapter 7: User Management  CHAP - With CHAP, authentication can be requested by the server at any time. CHAP provides more security than PAP.
Page 141: Returning User Group Information Via Radius
Returning User Group Information via RADIUS When a RADIUS authentication attempt succeeds, the KSX II determines the permissions for a given user based on the permissions of the user's group. Your remote RADIUS server can provide these user group names by returning an attribute, implemented as a RADIUS FILTER-ID.
Page 142 Chapter 7: User Management Attribute Log out Accounting-Request(4) Acct-Status (40) NAS-Port-Type (61) NAS-Port (5) NAS-IP-Address (4) User-Name (1) Acct-Session-ID (44) Data Stop(2) - Stops the accounting VIRTUAL (5) for network connections. Always 0. The IP address for the KSX II. The user name entered at the login screen.
Page 143: User Authentication Process
Chapter 7: User Management User Authentication Process Remote authentication follows the process specified in the flowchart below:...
Page 144: Changing A Password
Chapter 7: User Management Changing a Password 1. Choose User Management > Change Password. The Change 2. Type your current password in the Old Password field. 3. Type a new password in the New Password field. Retype the new 4. Click OK. 5.
Page 145: Chapter 8 Device Management
Chapter 8 Device Management In This Chapter Network Settings ... 135 Device Services ... 140 Configuring Modem Settings ... 147 Configuring Date/Time Settings ... 148 Event Management ... 149 Configuring Ports ... 155 Port Keywords ... 186 Port Group Management ... 188 Network Settings Use the Network Settings page to customize the network configuration (for example, the IP address, discovery port, and LAN interface...
Page 146: Network Basic Settings
Chapter 8: Device Management Network Basic Settings These procedures describe how to assign an IP address on the Network Settings page. For complete information about all of the fields and the operation of this page, see Network Settings. 1. Choose Device Settings > Network. The Network Settings page 2.
Page 147 d. Enter the Gateway IP Address. e. Link-Local IP Address. This address is automatically assigned to the device. It is used for neighbor discovery or when no routers are present. Read-Only Zone ID. This identifies the device with which the address is associated.
Page 148: Lan Interface Settings
Chapter 8: Device Management this section of the Network Settings page. Note: In some environments, the default LAN Interface Speed & Duplex setting Autodetect (autonegotiator) does not properly set the network parameters, which results in network issues. In these instances, setting the KSX II LAN Interface Speed &...
Page 149  Autodetect (default option)  10 Mbps/Half - Both LEDs blink  10 Mbps/Full - Both LEDs blink  100 Mbps/Half - Yellow LED blinks  100 Mbps/Full - Yellow LED blinks  1000 Mbps/Full (gigabit) - Green LED blinks ...
Page 150: Device Services
Chapter 8: Device Management Device Services The Device Services page allows you to configure the following functions:        Enabling Telnet If you wish to use Telnet to access the KSX II, first access the KSX II from the CLI or a browser.
Page 151: Http And Https Port Settings
HTTP and HTTPS Port Settings You are able to configure HTTP and/or HTTPS ports used by the KSX II. For example, if you are using the default HTTP port 80 for another purpose, changing the port will ensure the KSX II does not attempt to use it.
Page 152: Enabling Direct Port Access Via Url
Chapter 8: Device Management Enabling Direct Port Access via URL Direct port access allows users to bypass having to use the device's Login dialog and Port Access page. This feature also provides the ability to enter a username and password directly and proceed to the target if the username and password is not contained in the URL.
Page 153: Configuring Direct Port Access Via Telnet, Ip Address Or Ssh
3. Click OK. Configuring Direct Port Access via Telnet, IP Address or SSH The information in this topic is specific to enabling direct port access for serial targets. Use the Enable Direct Port Access via URL option on the Device Services page to enable direct port access for a KVM/serial port connect to the KSX II.
Page 154 Chapter 8: Device Management Configure the Telnet TCP Port as "7770". Once this is done, connection to the target can be done using "telnet <KSX II device IP address> 7770".  Direct Port Access via SSH Port: Configure the SSH TCP port as "7888". Once this is done, connection to the target can be done by using “ssh –l <login>...
Page 155 Chapter 8: Device Management Once you have created the direct port access, it can be connected in a client application such as PuTTY. Following is an example of how the direct port access information would appear in PuTTY. Note that PuTTY is not the only client application that can be used.
Page 156: Enabling The Akc Download Server Certificate Validation
Chapter 8: Device Management Enabling the AKC Download Server Certificate Validation If you are using the AKC client, you can choose to use the Enable AKC Download Server Certificate Validation feature or opt not to use this feature. Option 1: Do Not Enable AKC Download Server Certificate Validation (default setting) If you do not enable AKC Download Server Certificate Validation, all Dominion device users and CC-SG Bookmark and Access Client users...
Page 157: Configuring Modem Settings
3. Click OK. Configuring Modem Settings To configure modem settings: 1. Click Device Settings > Modem Settings to open the Modem Settings page. 2. Check Enable Modem, if needed. 3. Enter the PPP server IP address. The internet address assigned to the KSX II when a connection is established via dial-up.
Page 158: Configuring Date/Time Settings
Chapter 8: Device Management Configuring Date/Time Settings Use the Date/Time Settings page to specify the date and time for the KSX II. There are two ways to do this:   1. Choose Device Settings > Date/Time. The Date/Time Settings page 2.
Page 159: Event Management
Chapter 8: Device Management 6. Click OK. Event Management The KSX II Event Management feature allows you enable and disable the distribution of system events to SNMP Managers, the Syslog and the audit log. These events are categorized, and for each event you can determine whether you want the event sent to one or several destinations.
Page 160: Configuring Event Management Settings
Chapter 8: Device Management Configuring Event Management Settings SNMP Configuration Simple Network Management Protocol (SNMP) is a protocol governing network management and the monitoring of network devices and their functions. KSX II offers SNMP Agent support through Event Management. 1. Choose Device Settings > Event Management - Settings. The Event 2.
Page 161 4. Type the Agent Community String (the device's string). An SNMP community is the group that devices and management stations running SNMP belong to. It helps define where information is sent. The community name is used to identify the group. The SNMP device or agent may belong to more than one SNMP community.
Page 162: Configuring Event Management - Destinations
Chapter 8: Device Management Configuring Event Management - Destinations System events, if enabled, can generate SNMP notification events (traps), or can be logged to syslog or audit log. Use the Event Management - Destinations page to select which system events to track and where to send this information.
Page 163 SNMP Trap Configuration SNMP provides the ability to send traps, or notifications, to advise an administrator when one or more conditions have been met. The following table lists the KSX II SNMP traps: Trap name Description cimConnected A CIM is plugged into to the KSX II port. cimDisconnected A CIM is either unplugged from the KSX II port or powered-off.
Page 164 Chapter 8: Device Management Trap name networkParameterChanged passwordSettingsChanged portConnect portConnectionDenied portDisconnect portStatusChange powerNotification powerOutletNotification rebootCompleted rebootStarted securityViolation startCCManagement securityBannerChanged securityBannerAction setDateTime setPIPSMode bladeChassisCommError stopCCManagement sxPortAlert userAdded Description network. A change has been made to the network parameters. Strong password settings have changed.
Page 165: Configuring Ports
Trap name userAuthenticationFailure userConnectionLost userDeleted userLogin userLogout userModified userPasswordChanged userSessionTimeout vmImageConnected vmImageDisconnected Configuring Ports The Port Configuration page displays a list of the KSX II ports. Ports connected to KVM target servers (blades and standard servers) and rack PDUs (power strips) are displayed in blue and can be edited. For ports with no CIM connected or with a blank CIM name, a default port name of Dominion_KSX2_Port# is assigned, where Port# is the number of the KSX II physical port.
Page 166 Chapter 8: Device Management 2. Click the Port Name for the port you want to edit.  Port Name - The name assigned to the port. A port name displayed in black indicates that you cannot change the name and that the port cannot be edited; port names displayed in blue can be edited.
Page 167 Chapter 8: Device Management  For serial ports, the Port page for serial ports is opened.
Page 168: Power Control
Chapter 8: Device Management Power Control Power control is configured on the Port page. The Port page opens when you select a port that is connected to a target server from the Port Configuration page. From the Port page, you can make power associations and change the port name to something more descriptive.
Page 169 Assigning a Name to the PX The Port page opens when you select a port on the Port Configuration page. The port appears on this page when connected to a Raritan remote rack PDU (power strip). The Type and the Name fields are prepopulated.
Page 170: Target Settings
Chapter 8: Device Management 1. Select the appropriate rack PDU from the Power Strip Name 2. For that rack PDU, select the appropriate outlet from the Outlet 3. From the Outlet Name drop-down list, select None. 4. Click OK. The rack PDU/outlet association is removed and a Target Settings 1.
Page 171: Configuring Blade Chassis
Configuring Blade Chassis In addition to standard servers and rack PDUs (power strips), you can control blade chassis that are plugged into a Dominion device port. Up to eight blade chassis can be managed at a given time. As with standard servers, blade chassis are autodetected once they are connected.
Page 172 Chapter 8: Device Management The use of hot key sequences to switch KVM access to a blade chassis is also supported. For blade chassis that allow users to select a hot key sequence, those options will be provided on the Port Configuration page.
Page 173 5. Select Generic from the Blade Server Chassis Model drop-down. 6. Configure the blade chassis as applicable. a. Switch Hot Key Sequence - Define the hot key sequence that will be used to switch from KVM to the blade chassis. The Switch Hot Key Sequence must match the sequence used by the KVM module in the blade chassis.
Page 174 Chapter 8: Device Management 10. USB profile information does not apply to a generic configuration. 11. In the Target Settings section, select 720x400 Compensation if you 12. Select 'Use international keyboard for scan code set 3' if connecting 13. Click OK to save the configuration. Dell Blade Chassis Configuration CIMs for Blade Chassis Recommended Blade Chassis Configurations...
Page 175 Switch Hot Key Sequence - Select the hot key sequence that will be used to switch from KVM to the blade server. The Switch Hot Key Sequence must match the sequence used by the KVM module in the blade chassis.
Page 176 To configure a Dell PowerEdge 1855/1955: Configure the blade chassis as applicable. a. Switch Hot Key Sequence - Select the hot key sequence that will be used to switch from KVM to the blade server. Blade Chassis...
Page 177 b. Maximum Number of Slots - The default maximum number of slots available on the blade chassis is automatically entered. c. Administrative Module Primary IP Address/Host Name - Not applicable. d. Port Number - The default port number for the blade chassis is 22.
Page 178 The KSX II only supports auto-discovery for AMM[1]. a. Switch Hot Key Sequence - Predefined. b. Maximum Number of Slots - The default maximum number of slots available on the blade chassis is automatically entered.
Page 179 d. Port Number - The default port number for the blade chassis is 22. Change the port number if applicable. Required for auto-discovery mode e. Username - Enter the username used to access the blade chassis. Required for auto-discovery mode Password - Enter the password used to access the blade chassis.
Page 180 To configure a IBM BladeCenter (Other): available. Configure the blade chassis as applicable. a. Switch Hot Key Sequence - Select the hot key sequence that will be used to switch from KVM to the blade server. b. Administrative Module Primary IP Address/Host Name - Enter the primary IP address for the blade chassis.
Page 181 4. In the Blade Chassis Managed Links section of the page, you are able to configure the connection to a blade chassis web browser interface if one is available. Click the Blade Chassis Managed Links icon page. The first URL link is intended for use to connect to the blade chassis Administration Module GUI.
Page 182 Chapter 8: Device Management Tips for Adding a Web Browser Interface You can add a Web Browser Interface to create a connection to a device with an embedded web server. A Web Browser interface can also be used to connect to any web application, such as the web application associated with an RSA, DRAC or ILO Processor card.
Page 183 HP Blade Chassis Configuration (Port Group Management) The KSX II supports the aggregation of ports connected to certain types of blades into a group representing the blade chassis. Specifically, HP ® BladeServer blades and Dell PowerEdge Dell PowerEdge 1855/1955 is connected from each individual blade to a port on the KSX II.
Page 184 Chapter 8: Device Management 3. Enter a Port Group Name. The port group name is not case sensitive 4. Select the Blade Server Group checkbox. 5. Click on a port in the Available box in the Select Ports for Group 6.
Page 185 To delete a port group: 1. Click on the Port Group Management page, select the checkbox of the port group you want to delete. 2. Click the Delete button. 3. Click OK on the warning message. Supported Blade Chassis Models This table contains the blade chassis models that are supported by the KSX II and the corresponding profiles that should be selected per chassis model when configuring them in the KSX II application.
Page 186 Both modules enable you to connect a PS/2-compatible keyboard, mouse and video monitor to the system (using a custom cable provided with the system). Source: Dell PowerEdge 1955 Owner's Manual Dell PowerEdge The KVM Switch Module (iKVM) is Integrated DCIM-PS2 DCIM-USBG2 D2CIM-VUSB D2CIM-DVUSB Recommended CIM(s) ...
Page 187 Blade chassis Connection method M1000e with this chassis. The iKVM is compatible with the following peripherals:  USB keyboards, USB pointing devices  VGA monitors with DDC support. Source: Dell Chassis Management Controller, Firmware Version 1.0, User Guide ® BladeSystem The HP c-Class Blade SUV Cable enables you c3000 to perform blade chassis administration,...
Page 188 Chapter 8: Device Management Blade chassis Connection method one Advanced Management Module. In contrast to the standard BladeCenter chassis, the KVM module and the Management Module in the BladeCenter T chassis are separate components. The front of the Management Module only features the LEDs for displaying status.
Page 189 Blade chassis Required/recommended action Slot, not by Name. iKVM may not work correctly if this is not done.  Do not designate any slots for scan operations in the iKVM GUI Setup Scan menu. iKVM may not work correctly otherwise. ...
Page 190 Chapter 8: Device Management Blade chassis IBM KX2 Virtual Media Note: All IBM BladeCenters that use AMM must use AMM firmware version BPET36K or later to work with the KSX II. Note: In the case of IBM Blade Center Models E and H, the KSX II only supports auto-discovery for AMM[1] as the acting primary management module.
Page 191: Configuring Usb Profiles (Port Page)
Configuring USB Profiles (Port Page) You choose the available USB profiles for a port in the Select USB Profiles for Port section of the Port page. The USB profiles chosen in the Port page become the profiles available to the user in VKC when connecting to a KVM target server from the port.
Page 192 Chapter 8: Device Management  2. Click Add. The selected profiles appear in the Selected list. These are the profiles that can be used for the KVM target server connected to the port. To specify a preferred USB profile: 1. After selecting the available profiles for a port, choose one from the Preferred Profile for Port menu.
Page 193: Configuring Ksx Ii Local Port Settings
2. Click Remove. The selected profiles appear in the Available list. These profiles are no longer available for a KVM target server connected to this port. To apply a profile selection to multiple ports: 1. In the Apply Selected Profiles to Other Ports section, select the Apply checkbox for each KVM port you want to apply the current set of selected USB profiles to.
Page 194 Double Click Left Ctrl key Press the left Ctrl key twice quickly connect to a target and switch to another target. You can then use the hot key to disconnect from the target and return to the local port GUI. The connect key works for both standard servers and blade chassis.
Page 195 a. Select the Power Save Mode checkbox. b. Set the amount of time (in minutes) in which Power Save Mode will be initiated. 8. Choose the resolution for the KSX II Local Console from the drop-down list. The browser will be restarted when this change is made.
Page 196: Port Keywords
Chapter 8: Device Management Port Keywords Port keywords work as a filter. If a keyword is detected, a corresponding message be logged in a local port log and a corresponding trap will be sent via SNMP (if configured). Defining keywords guarantees that only messages that contain those keywords are logged for the local port.
Page 197 2. Define a keyword for the first time, by clicking the Add button on the Port Keyword List page. The Add Keyword page will then open. Follow steps 3 - 5 to create new keywords. 3. Type a keyword in the Keyword field and then click the Add button. The keyword will be added to the page directly under the Keyword field and will appear on the Port Keyword List page once OK is selected.
Page 198: Port Group Management
Chapter 8: Device Management Port Group Management This function is specific to HP blade chassis configuration. See Blade Chassis Configuration (Port Group Management) 173). (on page...
Page 199: Security Settings
Chapter 9 Security Management In This Chapter Security Settings ... 189 Configuring IP Access Control ... 198 SSL Certificates ... 200 Security Banner ... 202 Security Settings From the Security Settings page, you can specify login limitations, user blocking, password rules, and encryption and share settings. Raritan SSL certificates are used for public and private key exchanges, and provide an additional level of security.
Page 200: Login Limitations
Chapter 9: Security Management To reset back to defaults:  Click Reset to Defaults. Login Limitations Using login limitations, you can specify restrictions for single login, password aging, and the logging out idle users. Limitation Enable single login limitation Enable password aging Description When selected, only one login per user name is...
Page 201: Strong Passwords
Limitation Description change is required. The default is 60 days. Log out idle users, Select the "Log off idle users" checkbox to After (1-365 automatically disconnect users after the amount minutes) of time you specify in the "After (1-365 minutes)" field.
Page 202: User Blocking
Chapter 9: Security Management Field numeric character Enforce at least one printable special character Number of restricted passwords based on history User Blocking The User Blocking options specify the criteria by which users are blocked from accessing the system after the specified number of unsuccessful login attempts.
Page 203: Encryption & Share
Option Description Users are denied access to the system for the Timer Lockout specified amount of time after exceeding the specified number of unsuccessful login attempts. When selected, the following fields are enabled:  Attempts - The number of unsuccessful login attempts after which the user will be locked out.
Page 204 Chapter 9: Security Management Encryption mode Description Auto This is the recommended option. The KSX II autonegotiates to the highest level of encryption possible. You must select Auto in order for the device and client to successfully negotiate the use of FIPS compliant algorithms.
Page 205 2. Apply Encryption Mode to KVM and Virtual Media. When selected, this option applies the selected encryption mode to both KVM and virtual media. After authentication, KVM and virtual media data is also transferred with 128-bit encryption. 3. For government and other high security environments, enable FIPS 140-2 Mode by selecting the Enable FIPS 140-2 checkbox.
Page 206: Enabling Fips 140-2
Chapter 9: Security Management Checking Your Browser for AES Encryption The KSX II supports AES-256. If you do not know if your browser uses AES, check with the browser manufacturer or navigate to the https://www.fortify.net/sslcheck.html website using the browser with the encryption method you want to check.
Page 207 For additional security, you can also create a new Certificate Signing Request once FIPS mode is activated. This will be created using the required key ciphers. Upload the certificate after it is signed or create a self-signed certificate. The SSL Certificate status will updated from 'Not FIPS Mode Compliant' to 'FIPS Mode Compliant'.
Page 208: Configuring Ip Access Control
Chapter 9: Security Management Configuring IP Access Control Using IP access control, you can control access to your KSX II. By setting a global Access Control List (ACL) you are ensuring that your device does not respond to packets being sent from disallowed IP addresses.
Page 209 4. Click Insert. If the rule # you just typed equals an existing rule #, the new rule is placed ahead of the exiting rule and all rules are moved down in the list. Tip: The rule numbers allow you to have more control over the order in which the rules are created.
Page 210: Ssl Certificates
Chapter 9: Security Management SSL Certificates The KSX II uses the Secure Socket Layer (SSL) protocol for any encrypted network traffic between itself and a connected client. When establishing a connection, the KSX II has to identify itself to a client using a cryptographic certificate.
Page 211 Key length - The length of the generated key in bits. 1024 is the default. k. Select the Create a Self-Signed Certificate checkbox (if applicable). 3. Click Create to generate the Certificate Signing Request (CSR). To download a CSR certificate: 1.
Page 212: Security Banner
Chapter 9: Security Management Security Banner KSX II provides you with the ability to add a security banner to the KSX II login process. This feature requires users to either accept or decline a security agreement before they can access the KSX II. The information provided in a security banner will be displayed in a Restricted Service Agreement dialog after users access KSX II using their login credentials.
Page 213 Chapter 9: Security Management Note: You cannot upload a text file from the local port.
Page 214: Chapter 10 Maintenance
Chapter 10 Maintenance In This Chapter Maintenance Features (Local/Remote Console) ... 204 Audit Log... 205 Device Information ... 206 Backup and Restore ... 207 USB Profile Management ... 210 Upgrading CIMs ... 211 Upgrading Firmware ... 212 Upgrade History ... 214 Rebooting ...
Page 215: Audit Log
Audit Log A log is created of the KSX II system events. To view the audit log for your KSX II: 1. Choose Maintenance > Audit Log. The Audit Log page opens. The Audit Log page displays events by date and time (most recent events listed first).
Page 216: Device Information
Chapter 10: Maintenance Device Information The Device Information page provides detailed information about your KSX II device and the CIMs in use. This information is helpful should you need to contact Raritan Technical Support. To view information about your Dominion KSX II and CIMs: ...
Page 217: Backup And Restore
Backup and Restore From the Backup/Restore page, you can backup and restore the settings and configuration for your KSX II. In addition to using backup and restore for business continuity purposes, you can use this feature as a time-saving mechanism. For instance, you can quickly provide access to your team from another KSX II by backing up the user configuration settings from the KSX II in use and restoring those configurations to the new KSX II.
Page 218 Chapter 10: Maintenance 1. Click Backup. A File Download dialog appears that contains an Open 2. To do this: WARNING: Exercise caution when restoring your KSX II to an earlier version. Usernames and password in place at the time of the backup will be restored.
Page 219  Full Restore - A complete restore of the entire system. Generally used for traditional backup and restore purposes.  Protected Restore - Everything is restored except device-specific information such as IP address, name, and so forth. With this option, you can setup one KSX II and copy the configuration to multiple KSX II devices.
Page 220: Usb Profile Management
Chapter 10: Maintenance USB Profile Management From the USB Profile Management page, you can upload custom profiles provided by Raritan tech support. These profiles are designed to address the needs of your target server‟s configuration, in the event that the set of standard profiles does not already address them. Raritan tech support will provide the custom profile and work with you to verify the solution for your target server‟s specific needs.
Page 221: Handling Conflicts In Profile Names
As noted, you may delete a custom profile from the system while it is still designated as an active profile. Doing so will terminate any virtual media sessions that were in place. Handling Conflicts in Profile Names A naming conflict between custom and standard USB profiles may occur when a firmware upgrade is performed.
Page 222: Upgrading Firmware
Chapter 10: Maintenance 3. Click the Upgrade button. You are prompted to confirm the upgrade. 4. Click OK to continue the upgrade. Progress bars are displayed Upgrading Firmware Use the Firmware Upgrade page to upgrade the firmware for your KSX II and all attached CIMs.
Page 223 7. Click Upload from the Firmware Upgrade page. Information about the upgrade and version numbers is displayed (if you opted to review CIM information, that information is displayed as well). Note: At this point, connected users are logged off and new login attempts are blocked.
Page 224: Upgrade History
Chapter 10: Maintenance 9. As prompted, close the browser and wait approximately 5 minutes Upgrade History The KSX II provides information about upgrades performed on the KSX II and attached CIMS.  before logging on to the KSX II again. To view the upgrade history: Choose Maintenance >...
Page 225: Rebooting
Information is provided about the KSX II upgrade(s) that have been run, the final status of the upgrade, the start and end times, and the previous and current firmware versions. Information is also provided about the CIMS, which can be obtained by clicking the show link for an upgrade. The CIM information provided is: ...
Page 226: Cc Unmanage
Chapter 10: Maintenance 2. Click Reboot. You are prompted to confirm the action. Click Yes to CC Unmanage When a KSX II device is under CommandCenter Secure Gateway control and you attempt to access the device directly using the KSX II Remote Console, the following message appears (after entry of a valid user name and password).
Page 227: Stopping Cc-Sg Management
Stopping CC-SG Management While the KSX II is under CC-SG management, if you try to access the device directly, you are notified that it the device is under CC-SG management. If you are managing the KSX II through CC-SG and connectivity between CC-SG and the KSX II is lost after the specified timeout interval (typically 10 minutes), you are able to end the CC-SG management session from the KSX II console.
Page 228 Chapter 10: Maintenance 3. Click Yes to remove the device CC-SG management. Once CC-SG management has ended, a confirmation will be displayed.
Page 229: Chapter 11 Diagnostics
Chapter 11 Diagnostics The Diagnostics pages are used for troubleshooting and are intended primarily for the administrator of the KSX II device. All of the Diagnostics pages (except Device Diagnostics) run standard networking commands and the information that is displayed is the output of those commands. The Diagnostics menu options help you debug and configure the network settings.
Page 230 Chapter 11: Diagnostics  Statistics - Produces a page similar to the one displayed here.  Interfaces - Produces a page similar to the one displayed here.
Page 231: Ping Host Page
 3. Click Refresh. The relevant information is displayed in the Result field. Ping Host Page Ping is a network tool used to test whether a particular host or IP address is reachable across an IP network. Using the Ping Host page, you can determine if a target server or another KSX II is accessible.
Page 232: Trace Route To Host Page
Chapter 11: Diagnostics 3. Click Ping. The results of the ping are displayed in the Result field. Trace Route to Host Page Trace route is a network tool used to determine the route taken to the provided hostname or IP address. 1.
Page 233: Device Diagnostics
Device Diagnostics Note: This page is for use by Raritan field engineers or when you are directed by Raritan Technical Support. Device Diagnostics downloads the diagnostics information from KSX II to the client machine. Two operations can be performed on this page: Operation Diagnostics Scripts Device Diagnostic Log...
Page 234 Chapter 11: Diagnostics 3. To create a diagnostics file to send to Raritan Technical Support: 4. Email this file as directed by Raritan Technical Support. a. Click the Save to File button. The File Download dialog appears. b. Click Save. The Save As dialog appears. c.
Page 235: Chapter 12 Command Line Interface (Cli)
Chapter 12 Command Line Interface (CLI) In This Chapter Overview ... 226 Accessing the KSX II Using CLI ... 227 SSH Connection to the KSX II ... 227 Telnet Connection to the KSX II ... 228 Local Serial Port Connection to the KSX II ... 228 Logging On ...
Page 236: Overview
Chapter 12: Command Line Interface (CLI) Overview The KSX II Serial Console supports all serial devices such as:       The KSX II allows an administrator or user to access, control, and manage multiple serial devices. You can use the Command Line Interface (CLI) to configure the KSX II or to connect to target devices.
Page 237: Accessing The Ksx Ii Using Cli
Accessing the KSX II Using CLI Access the KSX II by using one of the following methods:  Telnet via IP connection  SSH (Secure Shell) via IP connection  Local Port-via RS-232 serial interface A number of SSH/Telnet clients are available and can be obtained from the following locations: ...
Page 238: Telnet Connection To The Ksx Ii
Chapter 12: Command Line Interface (CLI) Telnet Connection to the KSX II Due to the lack of security, user name, password and all traffic is in clear-text on the wire. Telnet access is disabled by default. Enabling Telnet If you wish to use Telnet to access the KSX II, first access the KSX II from the CLI or a browser.
Page 239: Port Settings
Port Settings Ensure that the port settings (serial communication parameters) are configured as follows:  Data bits = 8  Parity = None  Stop bits =1  Flow Control = None  Bits per second = 9600 Logging On To log in, enter the user name admin as shown: 1.
Page 240 Chapter 12: Command Line Interface (CLI) After reviewing the following section, perform the Initial Configuration tasks. Welcome! 192.168.59.202 login: admin Passwd: ---------------------------------------------------- ---------------------------- Device Type: Dominion KSX2 Device Name: YongKSX2 SN: AE17950009 IP Address: 192.168.59.202 IP Address: 192.168.59.202 Port Port No.
Page 241: Navigation Of The Cli
login as: Janet Password: Authentication successful. ---------------------------------------------------- ------------ Welcome to the KSX II [Model: KSX2] UnitName:KSX II FirmwareVersion:3.0.0.5.1 Serial:WACEA00008 IP Address:192.168.51.194 UserIdletimeout:99min ---------------------------------------------------- ------------- Port Port No. Name 1 - Port1 [U] 3 - Port3 [U] Current Time: Wed Sep 20 16:05:50 2006 Janet >...
Page 242: Cli Syntax -Tips And Shortcuts
Chapter 12: Command Line Interface (CLI) CLI Syntax -Tips and Shortcuts Tips       Shortcuts      Common Commands for All Command Line Interface Levels Following are the commands that are available at all CLI levels. These commands also help navigate through the CLI.
Page 243: Initial Configuration Using Cli
Initial Configuration Using CLI Note: These steps, which use the CLI, are optional since the same configuration can be done via KVM. See Getting Started for more information. KSX II devices come from the factory with default factory settings. When you first power up and connect to the device, you must set the following basic parameters so the device can be accessed securely from the network:...
Page 244: Cli Prompts
Description Port configuration command Switch to the Configuration menu. Connect to a port. Switch to diagnostic commands menu. Display an overview of the CLI syntax. Display the current session's command line history. Configure the KSX II network interface.
Page 245: Security Issues
Security Issues Elements to consider when addressing security for console servers:  Encrypting the data traffic sent between the operator console and the KSX II device.  Providing authentication and authorization for users.  Security profile. The KSX II supports each of these elements; however, they must be configured prior to general use.
Page 246: Port Sharing Using Cli
Chapter 12: Command Line Interface (CLI) Port Sharing Using CLI It is possible for access client users to share ports with other authenticated and authorized users, regardless of whether they are access client users (RSC) or SSH/Telnet users. Port sharing is used for training or for troubleshooting applications.
Page 247: Interface Command
Chapter 12: Command Line Interface (CLI) Interface Command The Interface command is used to configure the KSX II network interface. The syntax of the interface command is: interface [ipauto <none|dhcp>] [ip <ipaddress>] [mask <subnetmask>] [gw <ipaddress>] [mode <mode>] Set/Get ethernet parameters ipauto <none|dhcp>...
Page 248: Connect Commands
Chapter 12: Command Line Interface (CLI) Connect Commands The connect commands provide a means to access ports and their history. Command connect clearhistory clientlist close gethistory getwrite help history powerstatus powertoggle quit return sendbreak writelock writeunlock Description Connect to a port. The port sub-menu, reached using escape key sequence.
Page 249: Ipv6 Command
Chapter 12: Command Line Interface (CLI) IPv6 Command Use the IPv6_command to set IPv6 network parameters and retrieve existing IPv6 parameters.
Page 250: Chapter 13 Ksx Ii Local Console
Chapter 13 KSX II Local Console In This Chapter Overview ... 240 Using the KSX II Local Console ... 240 KSX II Local Console Interface ... 241 Security and Authentication ... 241 Local Console Smart Card Access ... 242 Local Console USB Profile Options ... 243 Available Resolutions ...
Page 251: Ksx Ii Local Console Interface
KSX II Local Console Interface When you are located at the server rack, the KSX II provides standard KVM management and administration via the KSX II Local Console. The KSX II Local Console provides a direct KVM (analog) connection to your connected servers;...
Page 252: Local Console Smart Card Access
OS. When the KVM session is terminated, either because it has been closed or because you switch to a new target, the smart card reader will be automatically unmounted from the target server.
Page 253: Local Console Usb Profile Options
To update the Card Readers Detected list:  Click Refresh if a new smart card has been mounted. The Card Readers Detected list will be refreshed to reflect the newly added smart card reader. Local Console USB Profile Options From the USB Profile Options section of the Tools page, you can choose from the available USB profiles for a local port.
Page 254: Available Resolutions
Chapter 13: KSX II Local Console 3. Click OK. The USB profile will be applied to the local port and will appear in the Profile In Use field. Available Resolutions The KSX II Local Console provides the following resolutions to support various monitors: ...
Page 255: Port Access Page (Local Console Server Display)
Note: Do not use apostrophes for the Port (CIM) Name.    2. Click View by Port or View by Group to switch between views.  Port Number - Numbered from 1 to the total number of ports available for the KSX II device.
Page 256: Server Display
Chapter 13: KSX II Local Console 3. Click the Port Name of the target server you want to access. The 4. Choose the desired menu command from the Port Action Menu.  Server Display After you login to the KSX II Local Console, the Port Access page opens. This page lists all of the KSX II ports, KVM target servers and serial servers, and their status and availability.
Page 257: Hot Keys And Connect Keys
GUI. A connect key is used to connect to a target or switch between targets. The Local Port hot key allows you to rapidly access the KSX II Local Console user interface when a target server is currently being viewed.
Page 258: Supported Keyboard Languages
Traditional Chinese Simplified Korean Switch from target port 5, slot 2 to port 5, slot  Press Left ALT > Press and Release 5 > Press and Release - > Press and Release 1 > Press and Release 1 > Release Left ALT...
Page 259: Special Sun Key Combinations
Language Japanese French German Belgian Norwegian Danish Swedish Hungarian Slovenian Italian Spanish Portuguese Special Sun Key Combinations The following key combinations for Sun keys operate on the local port. These special are available from the Keyboard menu when you connect to a Sun target server: Sun key Again Props...
Page 260: Accessing A Target Server
Chapter 13: KSX II Local Console Sun key Compose Vol + Vol - Stop Power Accessing a Target Server 1. Click the Port Name of the target you want to access. The Port 2. Choose Connect from the Port Action menu. The video display Returning to the KSX II Local Console Interface Important: The KSX II Local Console default hot key is to press the Scroll Lock key twice rapidly.
Page 261: Ksx Ii Local Console Local Port Settings
KSX II Local Console Local Port Settings From the Local Port Settings page, you can customize many settings for the KSX II Local Console including keyboard, local port hot key, video switching delay, power save mode, local user interface resolution settings, and local user authentication.
Page 262 Press the left Ctrl key twice quickly necessary. Generally 0 is used unless more time is needed (certain monitors require more time to switch the video). a. Select the Power Save Mode checkbox. b. Set the amount of time (in minutes) in which Power Save Mode will be initiated.
Page 263: Ksx Ii Local Console Factory Reset
10. Click OK. To reset back to defaults:  Click Reset to Defaults. KSX II Local Console Factory Reset Note: This feature is available only on the KSX II Local Console. The KSX II offers several types of reset modes from the Local Console user interface.
Page 264: Resetting The Ksx Ii Using The Reset Button
Chapter 13: KSX II Local Console   1. Click Reset to continue. You will be prompted to confirm the factory 2. Click OK button proceed. Upon completion, the KSX II device is Resetting the KSX II Using the Reset Button On the back panel of the device, there is a Reset button.
Page 265 Chapter 13: KSX II Local Console 2. Use a pointed object to press and hold the Reset button. 3. While continuing to hold the Reset button, power the KSX II device back on. 4. Continue holding the Reset button for 10 seconds. Once the device has been reset, two short beeps signal its completion.
Page 266: Chapter 14 Modem Configuration
Chapter 14 Modem Configuration In This Chapter Certified Modems for UNIX, Linux and MPC ... 256 Low Bandwidth KVM Settings ... 257 Client Dial-Up Networking Configuration ... 258 Windows 2000 Dial-Up Networking Configuration ... 258 Windows Vista Dial-Up Networking Configuration ... 261 Windows XP Dial-Up Networking Configuration ...
Page 267: Low Bandwidth Kvm Settings
Low Bandwidth KVM Settings Following are the settings that Raritan recommends in order to achieve optimum performance when using KVM over low bandwidth speeds typical of DSL connections. This information applies to both virtual KVM and MPC. Setting Connection speed Color depth Noise filter Note: Setting the color depth to low and the noise filter to high will...
Page 268: Client Dial-Up Networking Configuration
Chapter 14: Modem Configuration Setting Client Dial-Up Networking Configuration Configuring Microsoft Windows allows configuration of a PC to reside on the same PPP network as the KSX II. After the dial-up connection is established, connecting to a KSX II is achieved by pointing the web browser to the PPP Server IP. Modem installation guidelines are provided for the following client based systems: ...
Page 269 3. Click Next and follow the steps in the Network Connection Wizard dialog to create custom dial-up network profiles. 4. Click the Dial-up to private network radio button and click Next. 5. Select the checkbox before the modem that you want to use to connect to the KSX II and then click Next.
Page 270 Chapter 14: Modem Configuration 6. Type the area code and phone number you wish to dial in the 7. Click the Country/region code drop-down arrow and select the 8. Click Next. The Connection Availability dialog appears. appropriate fields. country or region from the list.
Page 271: Windows Vista Dial-Up Networking Configuration
9. Click the Only for myself radio button in the Connection Availability dialog. 10. Click Next. The Network Connection has been created. 11. Type the name of the Dial-up connection. 12. Click Finish. 13. Click Dial to connect to the remote machine when the Dial dialog appears.
Page 272: Windows Xp Dial-Up Networking Configuration
Chapter 14: Modem Configuration 7. Click Connect. Windows XP Dial-Up Networking Configuration 1. Choose Start > Programs > Accessories > Communications > New 2. Click Next and follow the steps in the New Connection Wizard to Note: In order to access the KSX II, the username and password cannot use a \ (backslash).
Page 273 Chapter 14: Modem Configuration 3. Click the Connect to the Internet radio button and click Next.
Page 274 Chapter 14: Modem Configuration 4. Click the "Set up my connection manually" radio button and click Next.
Page 275 Chapter 14: Modem Configuration 5. Click the "Connect using a dial-up modem" radio button and click Next.
Page 276 Chapter 14: Modem Configuration 6. Type a name to identify this particular connection in the ISP Name field and click Next.
Page 277 7. Type the phone number for the connection in the Phone number field and click Next. 8. Type your ISP information. Type the user name and password in the appropriate fields, and retype the password to confirm it. Chapter 14: Modem Configuration...
Page 278 Chapter 14: Modem Configuration 9. Select the checkbox before the appropriate option below the fields and click Next. 10. Click Finish. 11. Click Dial to connect to the remote machine when the Dial dialog appears. A dialog indicating that you connected successfully appears.
Page 279: Appendix A Specifications
Appendix A Specifications In This Chapter Physical Specifications ... 269 Supported Operating Systems (Clients) ... 270 Supported Operating Systems and CIMs (KVM Target Servers) ... 271 Supported Browsers ... 274 Computer Interface Modules (CIMs) ... 274 Supported Paragon CIMS and Configurations ... 275 Supported Video Resolutions ...
Page 280: Supported Operating Systems (Clients)
Appendix A: Specifications Supported Operating Systems (Clients) The following operating systems are supported on the Virtual KVM Client and Multi-Platform Client (MPC): Client operating system Windows 7 Windows XP Windows 2008 Windows Vista Windows 2000 Windows 2003 Windows 2008 Red Hat Red Hat Desktop 4.0 Open SUSE 10, 11 Fedora...
Page 281: Supported Operating Systems And Cims (Kvm Target Servers)
Mode Windows x64 64-bit mode Supported Operating Systems and CIMs (KVM Target Servers) In addition to the new D2CIMs, most Dominion CIMs are supported. The following table displays the supported target server operating systems, CIMs, virtual media, and mouse modes: Note: D2CIM-VUSB is not supported on Sun Operating system Browser...
Page 282 Appendix A: Specifications Supported Operating system and Dominion CIMs & serial devices (where D2CIMs applicable)   DCIM-PS2 Windows XP operating system  DCIM-PS2  Windows 2000  DCIM-USB operating system  DCIM-USB G2  Windows 2000 Server  Windows 2003 Server ...
Page 283 SM: Standard Mouse Mode  The DCIM-USB G2 provides a small slide switch on the back of the CIM. Move the switch to P for PC-based USB KVM target servers; move the switch to S for Sun USB KVM target servers.
Page 284: Supported Browsers
Appendix A: Specifications Supported Browsers KSX II supports the following browsers:    Computer Interface Modules (CIMs) Part Line item number description D2CIM-VUS KSX II Computer Interface Module [USB port with virtual media] DCIM-SUN KSX II Computer Interface Module [Sun port, HD15 video] Internet Explorer...
Page 285: Supported Paragon Cims And Configurations
Supported Paragon CIMS and Configurations The KSX II supports the P2CIM-APS2DUAL and P2CIM-AUSBDUAL CIMs, which provide two RJ45 connections to different KVM switches. Support of these CIMs provides a second path to access the target in the event that one of the KVM switches is blocked or fails. Paragon CIM P2CIM-APS2DUAL P2CIM-AUSBDUAL...
Page 286: Ksx Ii To Ksx Ii Guidelines
Appendix A: Specifications KSX II to KSX II Guidelines The following system configuration guidelines should be followed when you are using Paragon CIMs in a KSX II to KSX II configuration: Concurrent Access Both KSX II KVM switches should be configured with the same policy for concurrent access to targets, either both PC-Share or both Private.
Page 287: Ksx Ii To Paragon Ii Guidelines
If a connection to the target is in place from the other KSX II, the availability is checked when a connection is attempted. Access is denied or allowed consistent with the PC-Share policy in place for the KSX II. Until that time, the availability is not be updated on the other KSX II. If access is denied because the target is busy, a notification is displayed.
Page 288 However, only the first user will have keyboard and mouse control until they disconnect or switch away. CIM names updated from Paragon II are stored and retrieved from the CIM memory location corresponding to the Paragon naming convention. CIM names updated from the KSX II are stored and retrieved from the CIM memory location corresponding to the KSX II naming convention.
Page 289: Supported Video Resolutions
Supported Video Resolutions Ensure that each target server's video resolution and refresh rate are supported by the KSX II and that the signal is noninterlaced. Video resolution and cable length are important factors in the ability to obtain mouse synchronization. See Distance and Video Resolution The KSX II supports these resolutions: Resolutions...
Page 290: Ksx Ii Local Console Support Languages
Appendix A: Specifications Note: Composite Sync and Sync-on-Green video require an additional adapter. Note: Some resolutions may not be available by default. If you do not see a resolution, plug in the monitor first, remove the monitor and then plug in the CIM. Note: If the 1440x900 and 1680x1050 resolutions are not displayed but are supported by the target server's graphics adapter card, a DDC-1440 or DDC-1680 adapter may be required.
Page 291 Port Description HTTP, Port 80 This port can be configured as needed. See Settings via HTTP (port 80) are automatically forwarded to HTTPS for complete security. The KSX II responds to Port 80 for user convenience, relieving users from having to explicitly type in the URL field to access the KSX II, while still preserving complete security.
Page 292: Smart Card Readers
Appendix A: Specifications Smart Card Readers Supported and Unsupported Smart Card Readers Only USB type external smart card readers are supported by the KSX II. Supported Smart Card Readers Type Keyboard/Card reader Combo Keyboard/Card reader Combo USB reader for SIM-sized cards Integrated (Dell Latitude D620) PCMCIA...
Page 293: Minimum System Requirements
This table contains a list of readers that Raritan has tested with the KSX II and we know not to work, therefore they are unsupported. If a smart card reader does not appear in the supported smart card readers table or in the unsupported smart card readers table, Raritan cannot guarantee it will function with the KSX II.
Page 294 Appendix A: Specifications Windows XP SP3 in order to use smart cards with the KSX II. If you are working with .NET 3.5 in a Windows XP environment on the target server, you must be using SP1. Linux Targets If you are using a Linux to use smart card readers with the KSX II.
Page 295: Environmental Requirements
SuSE 11 Fedora  Create a Java A soft link must be created to the libpcsclite.so after upgrading RHEL 4, RHEL 5 and FC 10. For example, ln –s /usr/lib/libpcsclite.so.1 /usr/lib/libpcsclite.so, assuming installing the package places the libraries in /usr/lib or /user/local/lib. ...
Page 296: Electrical Specifications
Appendix A: Specifications Local Access for “crash-cart” applications. Local access (adapters and/or cables) for connecting the KSX II to common Vendor/Model combinations. Electrical Specifications Parameter Input Nominal Frequencies Nominal Voltage Range Maximum Current AC AC Operating Range Remote Connection Remote Details connection Network...
Page 297 Port Description field to access the KSX II, but while still preserving complete security. HTTPS, Port 443 This port is used for the actual KVM-over-IP communication from the KSX II device to the KVM client on the user's desktop. It cannot be changed.
Page 298: Target Server Connection Distance And Video Resolution
Appendix A: Specifications Port Description The default is port 22. Telnet Telnet port can be configured but is not recommended. The default port is 23. Target Server Connection Distance and Video Resolution The maximum supported distance is a function of many factors including the type/quality of Cat5 cable, server type and manufacturer, video driver and monitor, environmental conditions, and user expectations.
Page 299: Network Speed Settings
Network Speed Settings KSX II network speed setting Network Auto switch port Highest setting Auto Available Speed 1000/Full 1000/Full KSX II: 100/Full 100/Half Switch: 100/Full 100/Half 100/Half KSX II: 10/Full 10/Half Switch: 10/Full 10/Half 10/Half Legend: 1000/Full 100/Full 1000/Full KSX II:...
Page 300: Connectivity
Appendix A: Specifications Note: For reliable network communication, configure the KSX II and the LAN switch to the same LAN Interface Speed and Duplex. For example, configure both the KSX II and LAN Switch to Autodetect (recommended) or set both to a fixed speed/duplex such as 100MB/s/Full.
Page 301: Ksx Ii Serial Rj-45 Pinouts
Vendor Silicon Graphics ™ Various Go to the Support page on Raritan's website (www.raritan.com) to obtain a list of commonly used cables and adapters. KSX II Serial RJ-45 Pinouts To provide maximum port density and to enable simple UTP (Category 5) cabling, The KSX II provides its serial connections via compact RJ-45 ports.
Page 302: Db9M Nulling Serial Adapter Pinouts
Appendix A: Specifications RJ-45 (female) DB9M Nulling Serial Adapter Pinouts RJ-45 (female) DB25F Nulling Serial Adapter Pinouts RJ-45 (female) DB9 (female) 1, 6 SHELL DB9 (male) 1, 6 SHELL DB25 (female) 6, 8...
Page 303: Db25M Nulling Serial Adapter Pinouts
RJ-45 (female) DB25 (female) DB25M Nulling Serial Adapter Pinouts RJ-45 (female) DB25 (male) 6, 8 Appendix A: Specifications...
Page 304: Appendix B Updating The Ldap/Ldaps Schema
Appendix B Updating the LDAP/LDAPS Schema IMPORTANT: The procedures in this chapter should be attempted only by experienced users. In This Chapter Returning User Group Information ... 294 Setting the Registry to Permit Write Operations to the Schema ... 295 Creating a New Attribute ...
Page 305: Setting The Registry To Permit Write Operations To The Schema
Setting the Registry to Permit Write Operations to the Schema To allow a domain controller to write to the schema, you must set a registry entry that permits schema updates. To permit write operations to the schema: 1. Right-click the Active Directory the window and then click Operations Master.
Page 306: Adding Attributes To The Class
Appendix B: Updating the LDAP/LDAPS Schema 3. Click New and then choose Attribute. When the warning message 4. Type rciusergroup in the Common Name field. 5. Type rciusergroup in the LDAP Display Name field. 6. Type 1.3.6.1.4.1.13742.50 in the Unique x5000 Object ID field. 7.
Page 307 Appendix B: Updating the LDAP/LDAPS Schema 2. Scroll to the user class in the right pane and right-click it. 3. Choose Properties from the menu. The user Properties dialog appears. 4. Click the Attributes tab to open it. 5. Click Add.
Page 308: Updating The Schema Cache
Appendix B: Updating the LDAP/LDAPS Schema 6. Choose rciusergroup from the Select Schema Object list. 7. Click OK in the Select Schema Object dialog. 8. Click OK in the User Properties dialog. Updating the Schema Cache 1. Right-click Active Directory 2.
Page 309 Appendix B: Updating the LDAP/LDAPS Schema 3. Go to the directory where the support tools were installed. Run adsiedit.msc. The ADSI Edit window opens. 4. Open the Domain. 5. In the left pane of the window, select the CN=Users folder.
Page 310 Appendix B: Updating the LDAP/LDAPS Schema 6. Locate the user name whose properties you want to adjust in the 7. Click the Attribute Editor tab if it is not already open. Choose 8. Click Edit. The String Attribute Editor dialog appears. 9.
Page 311: Appendix C Informational Notes
Appendix C Informational Notes In This Chapter Overview ... 301 Java ... 301 IPv6 Support Notes ... 303 Keyboards ... 304 Dell Chassis Cable Lengths and Video Resolutions ... 307 Fedora ... 308 USB Ports and Profiles ... 309 SUSE/VESA Video Modes ... 311 CIMs ...
Page 312: Java Runtime Environment (Jre)
Appendix C: Informational Notes Applications MPC Applet HTML access client + Jurisdiction files for various JREs Downloads on the Java JRE1.6 * In addition, IE6 does not support AES 128. Java Runtime Environment (JRE) Important: It is recommended that you disable Java clear the Java cache.
Page 313: Ipv6 Support Notes
The KSX II Remote Console and MPC require JRE Runtime Environment KSX II Remote Console checks the Java version. If the version is incorrect or outdated, you will be prompted to download a compatible version. Note: In order for multi-language keyboards to work in the KSX II Remote Console (Virtual KVM Client), install the multi-language version of Java Runtime Environment (JRE).
Page 314: Keyboards
Appendix C: Informational Notes Keyboards Non-US Keyboards French Keyboard Caret Symbol (Linux The Virtual KVM Client and the Multi-Platform Client (MPC) do not process the key combination of Alt Gr + 9 as the caret symbol (^) when using French keyboards with Linux clients. From a French keyboard, press the ^ key (to the right of the P key), then immediately press the space bar.
Page 315 Tilde Symbol From the Virtual KVM Client and the Multi-Platform Client, the key combination of Alt Gr + 2 does not produce the tilde (~) symbol when using a French keyboard. To obtain the tilde symbol: Create a macro consisting of the following commands: ...
Page 316 Appendix C: Informational Notes Note: The Keyboard Indicator should be used on Linux systems using Gnome as a desktop environment. When using a Hungarian keyboard from a Linux client, the Latin letter U with Double Acute and the Latin letter O with Double Acute work only with JRE 1.6.
Page 317: Macintosh Keyboard
Macintosh Keyboard When a Macintosh keyboard are not captured by the Java       Volume Up  Volume Down  Mute  Eject As a result, the Virtual KVM Client and the Multi-Platform Client (MPC) are unable to process these keys from a Mac client's keyboard. Dell Chassis Cable Lengths and Video Resolutions In order to maintain video quality, Raritan recommends using the following cable lengths and video resolutions when you are connecting to...
Page 318: Fedora
Appendix C: Informational Notes Fedora Resolving Fedora Core Focus Using the Multi-Platform Client (MPC), occasionally there is an inability to log in to a KSX II device or to access KVM target servers (Windows SUSE, and so forth). In addition, the Ctrl+Alt+M key combination may not bring up the Keyboard Shortcut menu.
Page 319: Usb Ports And Profiles
Appendix C: Informational Notes USB Ports and Profiles VM-CIMs and DL360 USB Ports ® DL360 servers have one USB port on the back of the device and another on the front of the device. With the DL360, both ports cannot be used at the same time.
Page 320 Appendix C: Informational Notes USB profile help appears in the USB Profile Help window. For detailed information about specific USB profiles, see page 105). Raritan provides a standard selection of USB configuration profiles for a wide range of operating system and BIOS level server implementations. These are intended to provide an optimal match between remote USB device and target server configurations.
Page 321: Changing A Usb Profile When Using A Smart Card Reader
Changing a USB Profile when Using a Smart Card Reader There may be certain circumstances under which you will need to change the USB profile for a target server. For example, you may need to change the connection speed to "Use Full Speed for Virtual Media CIM"...
Page 322: Virtual Media
Appendix C: Informational Notes Virtual Media Dell OptiPlex and Dimension Computers From certain Dell OptiPlex possible to boot a target server from a redirected drive/ISO image, or to access the target server BIOS when a virtual media session is active (unless the Use Full Speed for Virtual Media CIM option is enabled from the Port page).
Page 323: Cc-Sg
Appendix C: Informational Notes CC-SG Virtual KVM Client Version Not Known from CC-SG Proxy Mode When the Virtual KVM Client is launched from CommandCenter Secure Gateway (CC-SG) in proxy mode, the Virtual KVM Client version is unknown. In the About Raritan Virtual KVM Client dialog, the version is displayed as “Version Unknown”.
Page 324: Appendix D Faqs
Appendix D FAQs In This Chapter General Questions ... 315 Serial Access ... 317 Universal Virtual Media ... 322 USB Profiles ... 323 IPv6 Networking ... 325 Remote Access ... 326 Ethernet and IP Networking ... 328 Servers ... 332 Blade Servers ...
Page 325: General Questions
What is KSX II? The KSX II is a second generation digital KVM (Keyboard, Video Mouse) switch that enables IT administrators to access and control 8, 16, 32, or 64* servers over the network with BIOS-level functionality. The KSX II is completely hardware and OS-independent;...
Page 326 KSX II models. Raritan's centralized management unit, CommandCenter Secure Gateway, and the Multi-Platform Client (MPC) both support KSX I and KSX II switches seamlessly. What CIMs are supported for the KSX II switch? Refer to Supported Operating Systems and CIMs (KVM Target Servers) (on page 271).
Page 327: Serial Access
Appendix D: FAQs Serial Access My Dominion KSX II has just been configured with a network address and I can successfully ping the IP, but when I try to access it using a web browser, the message reads "Page cannot be found or server error, contact System Administrator."...
Page 328 Appendix D: FAQs Can I open multiple windows and "tile" to monitor multiple servers and other IT equipment? Yes, you may monitor and "tile" as many windows as there are serial ports on the Dominion KSX II. I manage many servers. How do I select a server to connect to? From a browser, a simple menu provides the user-assigned name of each server.
Page 329 I have a few serial devices located a distance away from my server closet and the Dominion KSX II. Can I connect these devices to my Raritan switch? Yes. See Distances for Serial Devices (on page 288) for more information.
Page 330 Appendix D: FAQs What is the name of the terminal emulation package included with Dominion KSX II? Raritan Serial Console. What Authentication mechanisms does the Dominion KSX II support? Local database, RADIUS, LDAP/S, Active Directory. Does Dominion KSX II support SNMP? Yes.
Page 331 Yes. Can I use KSX II over a VPN connection? Yes, KSX II fits into most any network configuration utilizing TCP/IP. KSX II uses standard Internet Protocol (IP) technologies from Layer 1 through Layer 4. Set up the VPN (typically IPSec) connection then start the web-browser and enter the URL for the Dominion device.
Page 332: Universal Virtual Media
Appendix D: FAQs Go to the Raritan website (www.raritan.com) Support page to find the latest information about the KSX II serial pinouts (RJ-45). The Dominion KSX II uses the web browser to access serial devices. What are the advantages of Java-enabled web browser access? For many Solaris/Unix/Linux system administrators, the de facto standard for accessing serial hosts is SSH.
Page 333: Usb Profiles
Appendix D: FAQs USB Profiles What is a USB profile? Certain servers require a specifically configured USB interface for USB based services such as virtual media. The USB Profile tailors the KSX II‟s USB interface to the server to accommodate these server specific characteristics.
Page 334 Appendix D: FAQs Do I need a special CIM to use USB profiles? You must use a D2CIM-VUSB or D2CIM-DVUSB with updated firmware. Will Raritan provide USB profiles for other target server configurations? Raritan will provide new USB profiles to suit customer needs. As these profiles become available, they will be included in firmware upgrades.
Page 335: Ipv6 Networking
Appendix D: FAQs IPv6 Networking What is IPv6? IPv6 is the acronym for “Internet Protocol Version 6”. IPv6 is the “next generation” IP protocol which will replace the current IP Version 4 (IPv4) protocol. IPv6 addresses a number of problems in IPv4, such as the limited number of IPv4 addresses.
Page 336: Remote Access
Appendix D: FAQs Where can I get more information on IPv6? See www.ipv6.org for general information on IPv6. The KSX II User Guide describes the KSX II‟s support for IPv6. Remote Access How many users can remotely access servers on each KSX II? Up to 8 KVM users can share one KVM channel and up to 8 serial users can share 8 serial channels.
Page 337 Speed Description 60Mbps Likely practical 100Mbit network speed 0.08 seconds 10Mbps Theoretical 10Mbit network speed 6Mbps Likely practical 10Mbit network speed 512Kbps Cable modem download speed (typical) How do I access servers connected to the KSX II if the network ever becomes unavailable? The KSX II offers an internal modem port.
Page 338: Ethernet And Ip Networking
Yes. The KSX II features dual gigabit Ethernet ports to provide redundant failover capabilities. Should the primary Ethernet port (or the switch/router to which it is connected) fail, the KSX II will failover to the secondary network port with the same IP address, ensuring that server operations are not disrupted.
Page 339 Use case Idle Windows Desktop Move Static 400x600 Window/Dialog Navigate Start Menu Scroll an Entire Page of Text Run 3D Maze Screensaver Appendix D: FAQs Required bandwidth 0 Mbps 0.35Mbps 0.49Mbps 1.23Mbps 1.55Mbps...
Page 340 Appendix D: FAQs What is the slowest connection (lowest bandwidth) over which the KSX II can operate? 33Kbps or above is recommended for acceptable KSX II performance over a modem connection. What is the speed of the KSX II's Ethernet interfaces? The KSX II supports two 10/100/1000 speed Ethernet interfaces, with configurable speed and duplex settings (either auto-detected or manually set).
Page 341 If an external authentication server (such as LDAP/LDAPS, Active Directory, RADIUS, and so forth) is used, the KSX II allows this as well, and will even failover to its own internal authentication should the external authentication server become unavailable. In this way, the KSX II's design philosophy is optimized to provide ease of installation, complete independence from any external server, and maximum flexibility.
Page 342: Servers
Appendix D: FAQs Servers Does the KSX II depend on a Windows No. The KSX II is completely independent. Even if a user chooses to configure the KSX II to authenticate against an Active Directory server - if that Active Directory server becomes unavailable, the KSX II's own authentication will be activated and fully functional.
Page 343 Some blade servers require you to use hotkeys to switch between blades. With the KSX II, you don't have to use these hotkeys. Just click on the name of the blade server and the KSX II will automatically switch to that blade without the explicit use of the hotkey.
Page 344 Appendix D: FAQs I'm running VMware on some of my blade servers. Is this supported? Yes, with CC-SG you can display and access virtual machines running on blade servers. Is virtual media supported? ® We support VM on IBM BladeCenter Model H and E with the D2CIM - DVUSB.
Page 345: Installation
Some operating systems lock up when I disconnect a keyboard or mouse during operation. What prevents servers connected to the KSX II from locking up when I switch away from them? Each Dominion computer interface module (DCIM) dongle acts as a virtual keyboard and mouse to the server to which it is connected.
Page 346 Appendix D: FAQs The KSX II models range from 4 to 8 server ports in a 1U chassis. This is the industry's highest digital KVM switch port density. What happens if I disconnect a server from the KSX II and...
Page 347: Local Port
Local Port Can I access my servers directly from the rack? Yes. At the rack, the KSX II functions just like a traditional KVM switch - allowing control of up to 16 servers using a single keyboard, monitor, and mouse.
Page 348 Appendix D: FAQs Yes. The local port presentation is identical and completely in sync with remote access clients, as well as Raritan's optional CommandCenter Secure Gateway management device. To be clear, if the name of a server via the KSX II onscreen display is changed, this updates all remote clients and external management servers in real-time.
Page 349: Power Control
Appendix D: FAQs Power Control Does the power supply used by the KSX II automatically detect voltage settings? Yes. The KSX II's power supply can be used in AC voltage ranges from 100-240 volts, at 50-60 Hz. What type of power control capabilities does the KSX II offer? Raritan's Remote Power Control power strips can be connected to the KSX II to provide power control of the KVM target servers.
Page 350: Scalability
Yes. Analog KVM switches can be connected to one of the KSX II's server ports. Simply use a D2CIM-DVUSB or D2CIM-VUSB and attach it to the user ports of the existing analog KVM switch. Please Note that analog KVM switches vary in their specifications and Raritan cannot guarantee the interoperability of any particular third-party analog KVM switch.
Page 351: Security
Appendix D: FAQs Security Is the KSX II FIPS 140-2 Certified? The KX II 2.2.0 and later, and the KSX II 2.3.0 and later, provides users with the option to use an embedded FIPS 140-2-validated cryptographic module running on a Linux platform per FIPS 140-2 implementation guidelines.
Page 352 Appendix D: FAQs Yes, the KSX II has administrator-configurable, strong password checking to ensure that user-created passwords meet corporate and/or government standards and are resistant to brute force hacking. If the KSX II Encryption Mode is set to Auto, what level of encryption is achieved? The KSX II has the ability to support AES-256.
Page 353: Smart Cards And Cac Authentication
Appendix D: FAQs Smart Cards and CAC Authentication Does the KSX II support smart card and CAC authentication? Yes, smart cards and DoD Common Access Card (CAC) authentication to target servers is supported in release KX II 2.1.10 and later, and KSX II 2.3.0 and later.
Page 354: Managability
Appendix D: FAQs Managability Can the KSX II be remotely managed and configured via web browser? Yes, the KSX II can be completely configured remotely via web browser. Note that this does require that the workstation have an appropriate Java Runtime Environment (JRE) version installed.
Page 355: Miscellaneous
Appendix D: FAQs Miscellaneous What is the KSX II's default IP address? 192.168.0.192 What is the KSX II's default user name and password? The KSX II's default user name is admin and the default password is raritan [all lower case]. However, for the highest level of security, the KSX II forces the administrator to change the KSX II default administrative user name and password when the unit is first booted up.
Page 357: Index
Index A. AC Power • 25 Absolute Mouse Mode • 73 Accessing a Target Server • 250 Accessing Telnet from a Windows PC • 228 Accessing the KSX II Using CLI • 227 Accessing Virtual Media on a Windows 2000 Server Using a D2CIM-VUSB •...
Page 358 Index Create User Groups and Users • 37 Creating a New Attribute • 295 D. KVM Target Server Ports • 27 DB25F Nulling Serial Adapter Pinouts • 292 DB25M Nulling Serial Adapter Pinouts • 293 DB9F Nulling Serial Adapter Pinouts • 291 DB9M Nulling Serial Adapter Pinouts •...
Page 359 Key Combinations and the Java Runtime Environment (JRE) • 306 Keyboard Language Preference (Fedora Linux Clients) • 305 Keyboard Macros • 60 Keyboard Options • 60 Keyboards • 304 KSX II Client Applications • 5 KSX II Console Layout • 42 KSX II Help •...
Page 360 Index Port Action Menu • 46, 246 Port Group Management • 188 Port Keywords • 186 Port Permissions • 115, 117 Port Settings • 229 Port Sharing Using CLI • 236 Ports Used • 286 Power Control • 10, 158, 339 Power Controlling a Target Server •...
Page 361 Supported CIMs for Blade Chassis • 162, 164, 168, 176 Supported Keyboard Languages • 248 Supported Operating Systems (Clients) • 4, Supported Operating Systems and CIMs (KVM Target Servers) • 4, 27, 271, 316 Supported Paragon CIMS and Configurations • 4, 195, 275 Supported Protocols •...
Page 362: United Kingdom
U.S./Canada/Latin America Monday - Friday 8 a.m. - 6 p.m. ET Phone: 800-724-8090 or 732-764-8886 For CommandCenter NOC: Press 6, then Press 1 For CommandCenter Secure Gateway: Press 6, then Press 2 Fax: 732-764-8887 Email for CommandCenter NOC: tech-ccnoc@raritan.com Email for all other products: tech@raritan.com China Beijing Monday - Friday...

This manual is also suitable for:

Dominion ksx ii

Raritan DKSXII-V2.3.0-0D-E User Manual

Chapter 1 Introduction

Chapter 2 Installation and Configuration

In this Chapter Interfaces

Chapter 3 Working with Target Servers

Chapter 4 Rack PDU (Power Strip) Outlet Control

Chapter 5 Virtual Media

Chapter 6 USB Profiles

Chapter 7 User Management

Chapter 8 Device Management

Chapter 9 Security Management

Chapter 10 Maintenance

In this Chapter Network Interface Page

Chapter 11 Diagnostics

Chapter 12 Command Line Interface (CLI)

In this Chapter Overview

Chapter 13 KSX II Local Console

Chapter 14 Modem Configuration

In this Chapter Physical Specifications

Appendix A Specifications

Appendix B Updating the LDAP/LDAPS Schema

In this Chapter Overview

Appendix C Informational Notes

Appendix D Faqs

Quick Links

Need help?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Raritan DKSXII-V2.3.0-0D-E

Summary of Contents for Raritan DKSXII-V2.3.0-0D-E