Page 1 Installation and Operations Manual SX32 SX48 SX16 Raritan Computer Inc. Raritan Computer Europe, B.V. 400 Cottontail Lane Eglantierbaan 16 Somerset, NJ 08873 2908 LV Capelle aan den IJssel The Netherlands Tel. 1-732-764-8886 Tel. 31-10-284-4040 Fax. 1-732-764-8887 Fax. 31-10-284-4049 E-mail: sales@raritan.com E-mail: sales.europe@raritan.com http://www.raritan.com http://www.raritan.com...
Page 3 EXPORT NOTICE Dominion SX models contain 128-bit encryption software. Export of this product is restricted under U.S. law. Information is available from the U.S. Department of Commerce, Bureau of Export Administration at www.bxa.doc.gov.
Page 4 This page intentionally left blank.
Page 5: Table Of Contents
ONTENTS Contents Chapter 1: Introduction ..............1 Dominion SX Overview ......................1 Product Photos...........................1 Product Features........................1 Package Contents........................2 Chapter 2: Installation..............3 Pre-Configuration Notes......................3 Hardware Installation .........................3 Initial Software Configuration......................5 Configuration .............................5 Step-by-Step Configuration .......................6 Time and Date Configuration .....................8 Configuration .............................8 Deployment ..........................9...
Page 6 Chapter 5: Dominion SX Connectivity and Serial Pin-Out Guides 69 Connectivity Table:........................69 Dominion SX Serial Pinouts.....................69 Chapter 6: Using Secure Shell (SSH) with Dominion SX Series .. 71 Secure Shell (SSH) Access .....................71 Interactive Session........................71 Command Line Arguments Session ..................73 Port Sharing Using SSH ........................74...
Page 7 ONTENTS Appendix E: Configuring Cisco ACS RADIUS Server....115 Appendix F: RSA ACE/Server Configuration....... 119 Lightweight Directory Access Protocol (LDAP)..............124 Appendix G: Modem Configuration..........125 Client Dialup Networking Configuration .................125 Windows NT Dialup Networking Configuration..............125 Windows 98 Dialup Networking Configuration...............127 Windows 2000 Dialup Networking Configuration..............129 Appendix H: TCL Programming Guide........
Page 8 Figure 38 Display Overview ...........................32 Figure 39 Report Display ..........................35 Figure 40 Sample of Network Configuration Display..................36 Figure 41 Modem Connection to a Dominion SX unit ..................38 Figure 42 Port Configuration Display ......................39 Figure 43 Port Editing Display........................39 Figure 44 Users Tab Display..........................41 Figure 45 New User Creation.........................42...
Page 9 IGURES Figure 55 CSR Configurable Parameters ......................53 Figure 56 View CSR Display..........................53 Figure 57 User Certificate ..........................54 Figure 58 Schematic of External Certificate Utilization ..................55 Figure 59 RADIUS Users Login Mechanism ....................56 Figure 60 Unsuccessful Login Message Window...................57 Figure 61 RADIUS Configuration Display ......................58 Figure 62 Current Users List ..........................59 Figure 63 Time Configuration Display ......................59 Figure 64 Notification Display ........................60...
Page 10 IGURES Figure 108 Dial-Up Networking Display .......................125 Figure 109 New Phone Entry Display ......................126 Figure 110 Dial-Up Security Display ......................126 Figure 111 Configuring Windows 98 Dialup Networking ................127 Figure 112 Make New Connection – Connection Name ................127 Figure 113 Make New Connection – Complete....................128 Figure 114 Connect to Window........................128 Figure 115 Windows 2000 Network and Dialup Connections ..............129 Figure 116 Welcome to the Network Connection Wizard................129...
Page 11: Chapter 1: Introduction
Chapter 1: Introduction Dominion SX Overview The Dominion SX Series of Serial over IP Console Servers offers convenient and secure, remote access and control via LAN/WAN, Internet or Dial-up modem of all networking devices. Dominion SX connects to any networking device (servers, firewalls, load balancer, etc.) via the serial port and provides the ability to remotely and securely manage the device using any Web browser.
Page 12: Package Contents
Package Contents Each Dominion SX ships with the following: (1) Dominion SX unit with mounting kit (Rack-mount kit is optional on some units) (1) Raritan User Manual CD-ROM containing the Dominion SX Installation and Operations Manual (1) Printed Dominion SX Quick Setup Guide...
Page 13: Chapter 2: Installation
If you are uncertain of any information, contact your system administrator for assistance. Network Information: Raritan Unit Name: The name of this unit, a generic term for the Dominion SX unit. This can be 64 characters maximum, no minimum, no spaces.
Page 14: Figure 3 Default Settings For Factory Reset Mode
8. On the command line interface, type: ping 192.168.0.192. If this command successfully produces a reply from the Dominion SX unit, please proceed to step b. If this does not produce a reply, verify that the default IP address is entered correctly and there is a route to that IP address.
Page 15: Initial Software Configuration
User Information: This information should be entered for each user, up to 50 user accounts, with at least one administrator for each Dominion SX unit: User Name: 32 characters maximum, one character minimum, spaces permitted. Login Name: 20 characters maximum, one character minimum, no spaces.
Page 16: Step-By-Step Configuration
SX I OMINION NSTALLATION AND PERATIONS ANUAL Step-by-Step Configuration 1. Access the unit through your Web browser on an installation computer that is on the same subnet by typing the URL: https://192.168.0.192. Figure 5 Initial Configuration showing Physical Installation was successful 2.
Page 17: Figure 7 Initial Configuration Screen For Network Settings
Figure 7 Initial Configuration screen for Network Settings 6. Click on the [Finish] button to complete the initial configuration of Dominion SX. You will see a screen that indicates successful configuration of the unit. The system will reboot and apply the new settings.
Page 18: Time And Date Configuration
ANUAL Time and Date Configuration We recommend that you configure the local Date and Time in the Dominion SX unit as soon as it is configured. Some features in Dominion SX, such as certificate generation depend on the correct Timestamp, which is used to check the validity period of the certificate.
Page 19: Deployment
2: I HAPTER NSTALLATION Deployment After the Initial Software Configuration phase, a Dominion SX unit is configured for operation on the LAN. Ethernet Connection Browser Dominion SX Unit Installation Computer Figure 10 Deployment 1. Make sure you have an allocated Ethernet cable connected to the network for use with the unit.
Page 20 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 21: Chapter 3: Operation
Figure 11 Security Alert Display The unit is always SSL enabled. When you try to connect to the Dominion SX unit, a Security Alert is displayed ; this is because the CA root certificate is not installed in the browser. Please see Appendix C: Certificates for additional information.
Page 22: Figure 12 Login Display
SX I OMINION NSTALLATION AND PERATIONS ANUAL 3. When the login screen appears, enter your Login Name and Password, and click on the [Login] button. Figure 12 Login Display 4. When the main display page appears, click on the desired [Port#] button to launch that port’s console display.
Page 23: Security Dialog For Console Display
PERATION Security Dialog for Console Display RaritanConsole, an applet included with your Dominion SX unit, is designed by Raritan to enable the applet to access the resources of the user’s computer. In addition, the default code set preferences are stored on the user’s computer.
Page 24: Netscape Navigator
SX I OMINION NSTALLATION AND PERATIONS ANUAL Netscape Navigator RaritanConsole loads without displaying a Security Warning window. When actions that require user permissions are performed, a security dialog will appear. Each operation requires a unique permission. Once permissions are granted, they will not be requested again in the same session. Users can also check the [Remember this decision] checkbox to avoid being asked for permissions every new session.
Page 25: Chapter 4: Console Features
4: C HAPTER ONSOLE EATURES Chapter 4: Console Features There are six drop-down menus available in the menu bar of the console window: Emulator Edit Chat Tools Script Help Emulator Settings The Settings window displays the Terminal Type and Cursor Type for the console window. Currently the unit supports Terminal Type VT100/ANSI, which cannot be changed.
Page 26: History
SX I OMINION NSTALLATION AND PERATIONS ANUAL History The History feature allows you to view the recent history of console sessions by displaying the console messages to and from the target device. This function displays up to 64 kilobytes of recent console message history, allowing a user to see target device events over time.
Page 27: Write Access
4: C HAPTER ONSOLE EATURES Write Access The user with Write Access can send commands to the target device. Write Access can be transferred among users working in RaritanConsole via the Get Write Access command from the Emulator drop-down menu. To Obtain Write Access: 1.
Page 28: Sending A Break/Null
SX I OMINION NSTALLATION AND PERATIONS ANUAL Sending a Break/Null To get access to a certain commands, Sun Solaris servers require a null character (Break) to be sent from the console to get to an OK prompt. This is the equivalent of issuing a STOP-A from the Sun keyboard. Only users with Operator and Administrator privileges can send a “break”;...
Page 29: User List
4: C HAPTER ONSOLE EATURES User List The User List command allows you to view a list of other users who are accessing the same port. An asterisk (*) appears before the user who has Write Access to the console. To View the User List: 1.
Page 30: Close
SX I OMINION NSTALLATION AND PERATIONS ANUAL Close To Close RaritanConsole: 1. Click on Emulator in the main menu. 2. Select Close from the drop-down menu. Figure 23 Close Command...
Page 31: Edit
4: C HAPTER ONSOLE EATURES Edit Use the Copy, Paste, and Select All Text commands to relocate and / or re-use important text. Figure 24 Edit Commands - Copy, Paste, and Select All Text To Copy and Paste All Text: 1.
Page 32: Tools
SX I OMINION NSTALLATION AND PERATIONS ANUAL Tools Raw console data from the target device can be logged to a file in your computer. The Logging indicator on the status bar indicates whether Logging is on or off. Start Logging 1.
Page 33: Stop Logging
4: C HAPTER ONSOLE EATURES Stop Logging 1. Click on Tools in the main menu. 2. Select Stop Logging from the drop-down menu. Logging is On until the Stop Logging command is executed. Figure 26 Stop Logging Command...
Page 34: Script
SX I OMINION NSTALLATION AND PERATIONS ANUAL Script RaritanConsole supports TCL version 7.0, an industry standard scripting engine. Using TCL scripting capabilities, system administrators can create their own conditions for event detection, and generate customer-specific notifications and alerts. The unit features a TCL engine and a flash file system for the development and storage of TCL scripts.
Page 35: Securechat
4: C HAPTER ONSOLE EATURES SecureChat When using SSL (browser access), a real-time interactive chat feature called SecureChat provides you and other users who are accessing the console port of the target device to conduct an online dialog for training or collaborative diagnostic activities.
Page 36: Help
SX I OMINION NSTALLATION AND PERATIONS ANUAL Help Help Topics include on-line assistance for operating RaritanConsole and the console window, and Release information about RaritanConsole. Help Topics To Access Help Topics: 1. Click on Help in the main menu. 2. Select Help Topics from the drop-down menu. Figure 29 Help Topics Command and Help File Window 3.
Page 37: About Raritanconsole
4: C HAPTER ONSOLE EATURES About RaritanConsole The ‘About’ window displays version information (name and revision number) for the console terminal emulation software, and copyright information. When contacting Raritan for technical support when performing a software upgrade, etc., you may be asked for this information. To Access ‘About’...
Page 38: Direct Port Access
SX I OMINION NSTALLATION AND PERATIONS ANUAL Direct Port Access This approach provides a quick and direct method of connecting to the console port in order to access unit programmability or the console of the target device directly. There are two ways to access the target device console directly by giving the appropriate URL.
Page 39: Url With Port Number
4: C HAPTER ONSOLE EATURES URL with Port Number 1. Type the following URL into the browser's location bar: https://<IPAddress>/dpa.htm IPAddress: This is the IP Address of the unit. This can be either the actual IP address of the unit or IPAddress assigned for a modem.
Page 40: Exit The Application
Exit the Application Click on the [Exit] button in the left panel of the Dominion SX window to exit Dominion SX. If changes to the configuration have been made but not saved, a screen will prompt you to save changes and log out of the unit.
Page 41: Figure 36 Exit Confirmation Display
4: C HAPTER ONSOLE EATURES If changes have been saved already, the unit will confirm the request to exit. Click on the [OK] button to log out of the unit. Figure 36 Exit Confirmation Display A confirmation screen will indicate disconnection from the unit. Figure 37 Unit Disconnection Display...
Page 42: Dominion Sx Management
Some advanced features are configured through a command line interface (CLI) using SSH (and Telnet, if enabled). Aside from providing the capability to manage a remote target device, Dominion SX has a number of powerful built-in features and capabilities available to manage the unit itself. With Dominion...
Page 43: Configuration Lock And The Configuration Save Commands
Configuration Lock and the Configuration Save Commands Dominion SX is designed to allow only one user to configure it at any given time. When a user clicks on any of the Configuration tabs, that user acquires the Configuration Lock, preventing others from modifying the configurations.
Page 44 SX I OMINION NSTALLATION AND PERATIONS ANUAL 7. The status bar displays the message: Save in progress… Note: If changes are made in the Network and Modem configuration screens, a warning message alerts the user to the automatic system reboot upon the completion of the save. 8.
Page 45: Configuration
EATURES Configuration Report Overview The Report configuration screen displays detailed information on how the Dominion SX has been configured, which can be useful if debugging or troubleshooting. System time and date Ethernet address Network configuration (IP address, subnet mask, and gateway)
Page 46: Network
Some Dominion SX units come equipped with a 56Kbps (bits per second) modem, which allows dial-in access to the unit from virtually any location in the world. On other Dominion SX units, there is a connector on the rear panel for a user-supplied external modem. Client computers connect to the unit by establishing a PPP (Point-to-Point Protocol) link between the client machine and the Dominion SX unit.
Page 47 Configure Modem Parameters 1. Check the Enable Modem box. 2. Enter the PPP Server IP – the IP address used by the client to access Dominion SX once the modem connection is established. 3. Enter the PPP Client IP – the IP address assigned by Dominion SX to the client in order for the connection to be established.
Page 48: Figure 41 Modem Connection To A Dominion Sx Unit
Dial-up connection support for the unit allows users to access the connected target device when normal network connectivity to Dominion SX is not available. Once the PPP connection is established between the client computer and the unit, the user can access the unit by using the browser.
Page 49: Ports
4: C HAPTER ONSOLE EATURES Ports Overview The Ports configuration screen allows Administrators to define the serial/console port settings in order to communicate with remote target devices. Figure 42 Port Configuration Display Figure 43 Port Editing Display Configure Port Parameters Name: Name that associates the serial port with the connected target device;...
Page 50 SX I OMINION NSTALLATION AND PERATIONS ANUAL Edit Port Parameters 1. Select an entry to modify. 2. Click on the [Edit] button. 3. The selected entry appears in the lower half of the screen. 4. Make changes to the fields as needed. 5.
Page 51: Users
User Name: Name used for display purpose as in the Current Users list; alphanumeric text, 1 – 32 characters in length (mandatory) Login Name: Login name used to log in to Dominion SX; alphanumeric text, 1 – 20 characters in length (mandatory) User Type: Administrator / Operator / Observer.
Page 52: Figure 45 New User Creation
SX I OMINION NSTALLATION AND PERATIONS ANUAL Add a New User Only an Administrator can create a new Administrator, Operator, or Observer. New users’ records are valid only after the configuration is saved, and users can change their passwords after the first time they log on. Figure 45 New User Creation To Add a New User: 1.
Page 53: Figure 46 User Modification Screen
4: C HAPTER ONSOLE EATURES Edit Existing User Information All users can edit their own Passwords, but only Administrators can edit all other User information (except Login Name). Observers and Operators cannot change any User Information. If the user is logged in at the time the Administrator is editing that User’s information, only the Information and Password fields can be changed.
Page 54: Ip Acl
To create access rules, click on the IP ACL tab on the Dominion SX screen. Click Insert to insert a new rule in the rules table on this screen.
Page 55: Figure 47 Inserting A Rule Into The Browser-Based Ip Acl Configuration Screen
ONSOLE EATURES Browser – Graphical User Interface (GUI) The new Dominion SX GUI is illustrated in the following figures. The user interface provides a front end to the IPTables. Once again, we suggest the following link for IPTables familiarity: http://iptables-tutorial.frozentux.net/iptables-tutorial.html Figure 47 Inserting a rule into the browser-based IP ACL configuration screen.
Page 56 Rule 0 correctly, and then enters Rule 1, the user will functionally be locked out of accessing the Dominion SX unit. The only recovery is to reset the Dominion SX unit to factory default in order to get out of this situation, and, as a result, all user entered settings will be lost.
Page 57 IP ACL deny list (“Allow=NO”); if the IP Address is in the deny list, the Dominion SX unit will be inaccessible. If this happens, you must reset the Dominion SX unit to factory default settings; when reset, all Dominion SX settings will be lost and must be reconfigured.
Page 58 SX I OMINION NSTALLATION AND PERATIONS ANUAL aclcfg move <pos1> <pos2> Move the ipacl rule at <pos1> to <pos2>. aclcfg delete <pos1> [pos2] Delete can have one or two parameters, if there is one parameter, then this command will delete the rule at <pos1>.
Page 59: Certificate
The Certificate configuration screen provides an area for Administrators to define security parameters. Dominion SX supports certificate-based server authentication to establish an encrypted SSL session and to assure the user that they are dealing with a correct web site. The encrypted SSL session, always through HTTPS connection, ensures that personal information sent over the network is secure.
Page 60: Figure 50 Certificate Configuration Display
SX I OMINION NSTALLATION AND PERATIONS ANUAL User certificate and active default certificate. Pending CSR and active default certificate Certificate Status Indicator Figure 50 Certificate Configuration Display Default Certificate The unit ships with a 1024-bit self-signed certificate signed by Raritan. When a user powers up the unit for the first time, an SSL certificate is generated that is associated to the default IP address 192.168.0.192.
Page 61: Figure 51 Generate Certificate Display
4: C HAPTER ONSOLE EATURES Generate Default Certificate This function is used when the certificate has expired and a new one is needed. 1. Click on the [Generate Default Certificate] button. 2. When the confirmation window appears, confirm that the correct date is displayed. If not, you must change the date by modifying the information on the Time configuration screen (click on the Time tab) before you generate the Certificate, or the Certificate generated may not be valid.
Page 62: Figure 53 Activating Default Certificate
Certificate Signing Request (CSR) Dominion SX will generate a CSR that can be used to obtain a user certificate to be installed in the unit, from a trusted third-party source. Bit strengths of 512, 1024, and 2048 are supported. If a user-installed certificate is active, a CSR cannot be generated.
Page 63: Figure 55 Csr Configurable Parameters
4: C HAPTER ONSOLE EATURES Figure 55 CSR Configurable Parameters The first three fields in this screen are required; the other fields are optional: Key strength: 512, 1024, or 2048 Certificate validity period: In days, two years maximum Common name: Fully qualified host name such as www.raritan.com or 10.0.3.65 Country name State/province name Locality...
Page 64: Figure 57 User Certificate
SX I OMINION NSTALLATION AND PERATIONS ANUAL User Certificate (Install Server Certificate) This function allows the user to install a certificate from various Certificate Authorities (CA) such as VeriSign, Thawte, and Baltimore. If you do not want to use the Certificate generated by the unit, you can obtain one from one of these Certificate Authorities and install it in the unit yourself.
Page 65: Figure 58 Schematic Of External Certificate Utilization
Private Key that issue into the Dominion Certificate (generated Certificates unit (issued by by the the External Certificate Certifying server or Authority) External Certificate similar tool) Authority Install CA Root Dominion SX Unit Browser Figure 58 Schematic of External Certificate Utilization...
Page 66: Radius
RADIUS protocol is an Internet standard that provides user authentication, authorization, and accounting services for remote access devices. Dominion SX can be configured as a RADIUS client. The unit will query the RADIUS server for authentication and authorization information each time a user attempts to login to the unit.
Page 67: Figure 60 Unsuccessful Login Message Window
There is no limit to the number of users; it can store as many users as its disk storage permits. If you are using many Dominion SX units, you do not have to configure all users on each of the units. Configure a user once on your RADIUS server, then allow all Dominion SX units authenticate their login requests from the same place.
Page 68: Figure 61 Radius Configuration Display
Secondary RADIUS Server, it informs the user accordingly. Thus, a user may have to wait for as long as 20 seconds if one or both RADIUS server(s) fail to respond or if the Dominion SX unit is not properly configured.
Page 69: Time
Time Overview The Time configuration screen is important for modifying the time and date in the Dominion SX unit. Some features in Dominion SX, for example, Certificate generation, depend on the correct Timestamp, which is used to check the validity period of the certificate.
Page 70: Notification
Dominion SX is shipped with a set of predefined notification messages that are based on events that occur within the unit. It is also possible to have user-defined events sent out as email messages. User defined events are defined using the scripting capability.
Page 71: Figure 65 New Notification Display
4: C HAPTER ONSOLE EATURES Add a New Notification 1. Click on the [New] button. 2. Select the desired event from the Event Name drop-down list, for which an email is to be generated. The event list contains events predefined by Raritan. To subscribe to a user-defined event, type the user defined event name.
Page 72: Figure 66 Edit Notification Destination
SX I OMINION NSTALLATION AND PERATIONS ANUAL Edit a Notification Entry 1. Select the entry to be modified. 2. Click on the [Edit] button. 3. Make changes to the entry in the fields that appear in the lower portion of the screen. 4.
Page 73 Notification configuration has been modified. Dominion SX Standard Error Notification Events The following is a list of standard error events that are internally generated by the unit. Should these notifications occur, please call Raritan Support. ERROR EVENT NAME DESCRIPTION event.amp.error...
Page 74: Upgrade
ANUAL Upgrade The Upgrade feature allows an Administrator to upgrade the Dominion SX unit's firmware/application to a newer version of firmware. Firmware and application upgrades preserve user-defined settings, so the unit does not need to be re-configured after the upgrade procedure is complete.
Page 75 EATURES To Upgrade the Application: Dominion SX has the ability to run different applications on each port; Raritan has a library of applications available for purchase, please contact us for more information. To load these applications into the unit for deployment: 1.
Page 76: Reset
SX I OMINION NSTALLATION AND PERATIONS ANUAL Reset Soft Reset Only an Administrator can execute a Soft Reset by clicking on the [Reset] button in the left panel of the main window. This resets the unit, logs off all the logged-in users and exits the application. A list of logged-in users who will be logged out upon reset will be displayed.
Page 77: Factory Reset
Factory Reset You may want to perform a factory reset, or hard reset, to the Dominion SX unit to revert the configuration to known defaults. This is useful if the IP address of the unit is no longer known. Using the following procedure, the network settings of the unit will be reset to the values shown in the table below, and all ports will be reset to 9600 baud, no parity checking, and no hardware flow control.
Page 78 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 79: Chapter 5: Dominion Sx Connectivity And Serial Pin-Out Guides
ONNECTIVITY AND ERIAL UIDES Chapter 5: Dominion SX Connectivity and Serial Pin-Out Guides Connectivity Table: This table lists the necessary Dominion SX hardware (adapters and/or cables) for connecting Dominion SX to common Vendor/Model combinations: VENDOR MODELS CONSOLE SERIAL CONNECTION CONNECTOR...
Page 80 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 81: Chapter 6: Using Secure Shell (Ssh) With Dominion Sx Series
You must enter the appropriate IP address, select SSH (which always uses port 22), and click on the [Open] button. The example below is done using PUTTY. Support for SSH is provided in the Dominion SX. By default, the SSHv2 Server is always running. Use any SSH client that supports SSHv2 to connect to it.
Page 82 Note: Use the standard SSH exit sequence “~.” to exit from SSH session at any time. Some of the usage scenarios using command line SSH client: #SSH –l dominion <IP Address Of Dominion SX> Welcome to Raritan Dominion Server Username: admin password: Authenticating [admin]..Authenticated.
Page 83: Command Line Arguments Session
[Now user can access serial target connected to port 2 of Dominion SX] Command Line Arguments Session The syntax for initiating a command line session is: SSH -l dominion –t <IP Address of Dominion SX> “sconsole –u <username> -a <password> -p <port#>” An example of using this command, with the following parameters: Dominion IP Address = 192.168.51.225...
Page 84: Port Sharing Using Ssh
SX I OMINION NSTALLATION AND PERATIONS ANUAL Password = frst256 Port# = 2 $ SSH -l dominion -t 192.168.51.225 "sconsole -u admin -a pass123 -p 2" Authenticating [admin]..Authenticated. User Type [Administrator] UserName [admin] Number Of Accessible Ports = 6 Port# PortName Port1 Port2-SUN Port3...
Page 85: Chapter 7: Authentication And Authorization
If you selected LDAP as your remote authentication protocol, use the steps in the following section, Implementing LDAP Remote Authentication, to complete fields in the LDAP tab. 1. Before starting the configuration of the LDAP authentication section in the Dominion SX configuration, please gather all information for the required fields from the administrator of the directory server.
Page 86: Tacacs+ Server Configuration
No special steps are required to add the new service or parameters. Simply place them in the user database for each user that will be accessing a Dominion SX system. Below is an example of user and group usage: group = anyone service = dominionsx { port-list = "1 2 3 4 5"...
Page 87 7: A HAPTER UTHENTICATION AND UTHORIZATION Cisco Secure ACS: These instructions have been written for version 3.2. Please refer also to the following URL: http://cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a008007cd49.html #12231 1. Allow new services. Select Interface Configuration. b. Select TACACS+ (Cisco IOS). Add dominionsx service under the heading New Services. 2.
Page 88 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 89: Chapter 8: Logging
8: L HAPTER OGGING Chapter 8: Logging NFS Per Port Logging Configuration Usage Name nfsportlog <enable/disable/status> [<PREFIX> <SIZE> <IP1> <DIR> [<IP2> <DIR2>] ] Description Set the configuration parameters for logging all Port Activity to a NFS shared directory. All user activity and user port login/logouts are logged.
Page 90: Nfs Server Setup
SX I OMINION NSTALLATION AND PERATIONS ANUAL NFS Server Setup The NFS server must have the exported directory with write permission for the port logging to work. Because the per-port logging application runs at a privileged level, the NFS server used must also be set up to allow root access.
Page 91: Chapter 9: Snmp
If a recipient with a port number is to be removed, include the port number in the delete command. Traps may be sent to multiple ports with the same IP address. NOTE: At this time, the Dominion SX system must be rebooted for configuration changes (other than disabling SNMP) to take effect.
Page 92 SX I OMINION NSTALLATION AND PERATIONS ANUAL TANAKA:Command>snmp del 10.0.0.56 78 Any SNMP configuration changes require rebooting to take effect. TANAKA:Command>snmp Enabled: N Community: public Trap Destinations: 10.0.0.125 6.6.6.6 TANAKA:Command>snmp enable Any SNMP configuration changes require rebooting to take effect. TANAKA:Command>snmp Enabled: Y Community: public...
Page 93: Chapter 10: System Configuration
10: S HAPTER YSTEM ONFIGURATION Chapter 10: System Configuration Local Port Access Configuration Name lpa [<enable|disable> [BPS]] Description Configure the Local Serial Port Access feature. With no parameters, the current LPA configuration is displayed. lpa <enable|disable> Depending on the parameter, enable or disable usage of the serial port for LPA. lpa <enable|disable>...
Page 94: Name
Note: The Dominion SX system must be restarted for changes to the service configuration to take effect. To check what port the unit is currently installed on, please log into the unit using a browser, and click on the Configuration button on the left hand side of the screen.
Page 95 10: S HAPTER YSTEM ONFIGURATION Example: TANAKA:Command>service Telnet Enabled: No SSH Enabled: Yes TANAKA:Command>service telnet enable The system will need to be rebooted for changes to take effect. TANAKA:Command>service ssh disable The system will need to be rebooted for changes to take effect. TANAKA:Command>service Telnet Enabled: Yes SSH Enabled: No...
Page 96 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 97: Chapter 11: Firmware Upgrade Instructions
8. Shut down the Linux machine, remove the power cord, and remove the DOM disk. 9. Plug the DOM disk into the Dominion SX unit, reconnect the power cable to the DOM, close the unit cover, install the screws, and power ON the unit.
Page 98 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 99: Appendix A: Specifications
A: S PPENDIX PECIFICATIONS Appendix A: Specifications ITEM DIMENSIONS WEIGHT POWER 11.34” (W) x 10.7” (D) x 1.75” (H) 4.61 lbs. 110/220V auto-switching: 50-60 Hz (288mm x 270mm x 44mm) (2.08 kg.) 11.34” (W) x 10.7” (D) x 1.75” (H) 4.81 lbs.
Page 100 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 101: Appendix B: System Defaults
B: S PPENDIX YSTEM EFAULTS Appendix B: System Defaults Dominion SX system defaults, as shipped from Raritan, are defined in the table below. EFAULT IP Address 192.168.0.192 Subnet Mask 255.255.255.0 Port Address 51000 ENERAL ETTINGS Modem Disabled RADIUS Disabled LDAP...
Page 102 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 103: Appendix C: Certificates
This section discusses certificate contents and the differences between the CA (Certificate Authority) Certificate and the Server Certificate that are present on the Dominion SX unit. A Certificate is an association of the public key with the real identity of an individual, server, or other entity.
Page 104: Figure 73 Hierarchies Of Certificate Authorities
SX I OMINION NSTALLATION AND PERATIONS ANUAL order to “trust” certificates signed by the CA's private key. For additional information, please see http://www.cren.net/ca/. Root CA Certificate Issued by the Marketing Certificate Authority. INDIA ..- - - - - - Engn Marketing - - - -...
Page 105: Installing Dominion Sx Ca-Root Certificate To A Browser
Installing Dominion SX CA-Root Certificate to a Browser The CA Root Certificate generated in the Dominion SX unit must be installed in the browser in order for the browser to trust the Server Certificate. When the user connects to the Dominion SX unit by entering the IP address in the browser, the Server Certificate is downloaded.
Page 106: Installing Ca Root For Ie Browsers
You will have to repeat the acceptance process for each Dominion SX unit you wish to access in order to eliminate the Security Alert window. To eliminate the appearance of this window for every Dominion SX unit with a particular certificate, you must install the root certificate in your browser, described in the Install the Raritan Root Certificate section that follows.
Page 107: Figure 76 View Of Ca_Root.cer
C: C PPENDIX ERTIFICATES 6. Open the CA_ROOT.cer file by double-clicking on it. This will open the certificate. Figure 76 View of CA_ROOT.cer 7. Click on the [Install Certificate] button to start the Certificate Manager Import wizard. Figure 77 Certificate Manager Import Wizard 8.
Page 108: Figure 78 Import Wizard, Select A Certificate Page
SX I OMINION NSTALLATION AND PERATIONS ANUAL 9. Select the Certificate store, the system area where the certificates are stored. If you do not want the Certificate Manager to select the certificate store automatically, click on the Place all certificates into the following store radio button and click on the [Browse] button to choose a file you prefer.
Page 109: Remove An Accepted Certificate
C: C PPENDIX ERTIFICATES Remove an Accepted Certificate Removing a certificate that you have previously accepted from the unit is the same process whether removing an Raritan default certificate or a user-installed third-party certificate. 1. Open IE and select Tools Internet Options from the main menu. The Internet Options window will appear.
Page 110: Install Ca Root For Netscape Navigator
You must repeat the acceptance process for each Dominion SX unit you wish to access. To eliminate the appearance of this window for every Dominion SX unit with a particular certificate, you must install the root certificate in your browser, described in the Install the Dominion SX Root Certificate section that follows.
Page 111: Install The Dominion Sx Root Certificate
Install the Raritan root certificate in Netscape Navigator to eliminate the New Site Certificate window from appearing whenever you access any SSL-secured Dominion SX unit. 1. Open Netscape Navigator and connect to the unit. Enter Username and Password when prompted and log on to the unit.
Page 112: Figure 86 Netscape New Certificate Authority Window
SX I OMINION NSTALLATION AND PERATIONS ANUAL MIME Type: Enter application/x-x509-ca-cer d. Application to use: Click on the [Browse] button and locate the Netscape Navigator executable, netscape.exe, on your hard drive. Select this executable and click on the [Open] button. The path to the Netscape executable, in quotes, will populate the Application to use field.
Page 113: Remove An Accepted Certificate
2. On the left side of this window, locate Certificates and click on Web Sites. Figure 87 Netscape Web Site Certificates Window 3. In the displayed list, select the IP address of the Dominion SX unit from which the certificate was accepted.
Page 114: Install A Third-Party Root Certificate
SX I OMINION NSTALLATION AND PERATIONS ANUAL Install a Third-Party Root Certificate If you have installed a third-party certificate on the unit, you can obtain its corresponding root certificate from the Certificate Authority that provided you with a certificate. These instructions can be used for any of the CAs;...
Page 115: Figure 90 New Certificate Authority Window In Netscape
C: C PPENDIX ERTIFICATES 5. Return to the CA’s website and try to download the root certificate again. Note: If an error message appears, it indicates that the certificate deleted from the list in the Netscape security settings may not have been the correct one. Please go back to the list and double-check. 6.
Page 116 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 117: Appendix D: Radius Server
RADIUS clients. Along with each client's address is a secret. It is not critical what the secret is as long as this same secret is also configured into the client (Dominion SX unit). The RADIUS client and server use the secret to encrypt parts of the packets they send to each other and to guarantee that the messages and replies are authentic.
Page 118: Install And Configure The Radius Server For Windows 2000
Service-Type will determine the privileges to be given to the user. In this case, the user will be given access to all the ports. Our RADIUS clients build inside the Dominion SX unit the following attributes and maps them in the following order: VALUE...
Page 119 The following steps must be carried out for every new client trying to access the RADIUS server. As an example, imagine Dominion SX has an IP address of 10.0.3.60. To add this IP address to the client list, perform these steps: 1.
Page 120 2:4:6:8:10:12:14:1 gives access to only these specified ports. Configuration examples: 10.0.3.60:A:3:6:9:12:15 10.0.3.60 is the IP address of the Dominion SX unit. The privileges and port numbers will apply only to this IP address. A indicates Administrative privileges are given to the user.
Page 121 D: RADIUS S PPENDIX ERVER F. Select Requests to be Logged 1. Open IAS. 2. In the Console Tree, click on Remote Access Logging. 3. In the Details pane, right-click on Local File and select Properties. 4. Click on the Settings tab and select one or more check boxes for recording authentication and accounting requests in the IAS log files: Click in the Log accounting requests check box to capture accounting requests and responses.
Page 122 SX I OMINION NSTALLATION AND PERATIONS ANUAL H. Enable the Routing and Remote Access Service If this server is a member of a Windows 2000 Active Directory domain and you are not a domain administrator, your domain administrator must add the computer account of this server to the RAS and IAS Servers security group in the domain of which this server is a member.
Page 123 D: RADIUS S PPENDIX ERVER K. Add a User Account 1. Open Active Directory Users and Computers. 2. In the Console Tree, double-click on the domain node. 3. In the Details pane, right-click on the organizational unit to which you want to add the user, point to New and select User.
Page 124 SX I OMINION NSTALLATION AND PERATIONS ANUAL g. Click on the [Add] button. h. Click on the appropriate group and click on the [OK] button. After these steps are executed, a new user can connect to the NAS device and IAS will look at the user name, find the group in which it is a member, and use the policy associated with that group.
Page 125: Appendix E: Configuring Cisco Acs Radius Server
Use the following procedure to configure the Cisco RADIUS server so that you can work with Dominion SX. It is assumed here that Administrators are familiar with setting up and configuring the RADIUS server. In order for Dominion SX to support RADIUS, both the unit and the user information must be added into the RADIUS configuration.
Page 126: Figure 93 Interface Configuration Display
SX I OMINION NSTALLATION AND PERATIONS ANUAL 3. Click on the [Interface Configuration] button in the left panel of the screen. Figure 93 Interface Configuration Display 4. Click on the RADIUS (IETF) link to edit properties. Under the User heading, click on the check boxes before Service-Type and Framed Protocol.
Page 127: Figure 95 New User Display
E: C ACS RADIUS S PPENDIX ONFIGURING ISCO ERVER 6. To edit existing users, click on the [User Setup] button in the left panel of the screen. Click on the [List All Users] button and select a user from the list. Figure 95 New User Display 7.
Page 128 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 129: Appendix F: Rsa Ace/Server Configuration
This section provides guidelines for configuring the RSA ACE/Server 5.0 so that SecureID can be used as the authentication mechanism. Users in an ACE server native database can log on to Dominion SX units installed in the network using SecureID token authentication.
Page 130: Figure 99 Add Agent Host Display
[OK] button. If the name entered is not listed in the local host file or DNS server, and error message will appear. b. Network Address: IP address of Dominion SX unit in the network. Site: Optional entry. d. Agent Types: Communication Server: Select this option for Dominion SX units.
Page 131: Figure 101 Add Profile Selection
F: RSA ACE/S PPENDIX ERVER ONFIGURATION 4. Select Profile Add Profile in the main menu. Figure 101 Add Profile Selection 5. In the Add Profile window, assign an appropriate name to identify the desired profile, such as Raritan- Administrator. Figure 102 Add Profile Display 6.
Page 132: Figure 103 Add Attribute Display
Figure 103 Add Attribute Display Note: Only the user’s Role can be controlled on the Dominion SX units using specific Service-Type profiles. Access restriction to specific ports on cannot be controlled. 8. Select User Add User/Edit User in the main menu to add a user and assign the appropriate profile.
Page 133: Figure 105 Profile Selection Display
Secret (encryption key), and Port. The unit is now ready to authenticate the user using the ACE RADIUS server. 12. At the login screen for the Dominion SX unit, enter the Username and Passcode (a combination of the PIN and a number generated on the SecureID token). Authentication will be made using the RADIUS...
Page 134: Lightweight Directory Access Protocol (Ldap)
Using Dominion SX software revision 2.1, your Dominion SX unit can authenticate users via LDAP. LDAP/S (LDAP Secure) is currently available on Dominion SX16 and SX32 models. If your Dominion SX unit does not have revision 2.1, upgrade via the upgrade feature and download the appropriate software from http://www.raritan.com/support to gain access to the LDAP feature.
Page 135: Appendix G: Modem Configuration
Configuring Microsoft Windows Dialup Networking for use with Dominion SX allows configuration of a PC to reside on the same PPP network as the Dominion SX. After the dial-up connection is established, connecting to a Dominion SX is achieved by pointing the web browser to the PPP Server IP. Modem...
Page 136: Figure 109 New Phone Entry Display
Entry name: Name of the Dominion SX connection b. Phone number: Phone number of the line attached to the Dominion SX unit Dial using: Modem being used to connect to Dominion SX; if there is no entry here, there is no modem installed in your workstation Figure 109 New Phone Entry Display 4.
Page 137: Windows 98 Dialup Networking Configuration
3. In the Make New Connection window, enter: Name: Name for the Dominion SX unit you are dialing. b. Device: Device you wish to use to connect to the Dominion SX unit from the drop-down list (this will be the Modem).
Page 138: Figure 113 Make New Connection - Complete
Figure 114 Connect to Window 5. Once logged in, you may connect to the Dominion SX unit with a supported Java-enabled browser. Or, for getting access to target ports, launch SSH or Telnet (if enabled). Because SSH and Telnet are CLI-...
Page 139: Windows 2000 Dialup Networking Configuration
G: M PPENDIX ODEM ONFIGURATION Windows 2000 Dialup Networking Configuration 1. Select Start Programs Accessories Communications Network and Dial-Up Connections. 2. When the Network and Dial-Up Connections window appears, double-click on the Make New Connection icon. Figure 115 Windows 2000 Network and Dialup Connections 3.
Page 140: Figure 117 Network Connection Type
4. Click on the Dial-up to private network radio button and click on the [Next] button. Figure 117 Network Connection Type 5. Click on the check box before the modem that you want to use to connect to the Dominion SX unit and then click on the [Next] button.
Page 141: Figure 119 Phone Number To Dial
G: M PPENDIX ODEM ONFIGURATION 6. Click in the Use dialing rules check box and enter the Area code and Phone number you wish to dial in the fields. Click on the [Next] button. Figure 119 Phone Number to Dial 7.
Page 142: Figure 121 Network Connection Wizard Completion
SX I OMINION NSTALLATION AND PERATIONS ANUAL 8. The Network Connection has been created, and you can complete set-up of the dial-up connection by entering the name of the Dial-up connection. Figure 121 Network Connection Wizard Completion 9. Click on the [Finish] button. 10.
Page 143: Appendix H: Tcl Programming Guide
Raritan has introduced an extension library to provide an API to Dominion SX’s functions. In addition, Dominion SX includes an extensive list of notification events that can be used to audit, track, and trace the conditions of and modifications to the unit itself.
Page 144 The above extensions to TCL, along with the standard TCL commands, provide a development platform for powerful scripts for managing the target devices. This guide provides details on all of the extensions provided in the Dominion SX product. A few sample scripts are also provided. The TCL command queuer provides the following features: Serialize multiple TCL Command Requests.
Page 145: Boot Script Support
File System Dominion SX includes a general-purpose flash file system, which can be accessed by both the internal web server and the TCL interpreter. The file system is MSDOS 3.3 compatible with 8.3 (xxxxxxxx.xxx) file name constraints and can be used to store TCL data and scripts.
Page 146: Tcl Commands
SX I OMINION NSTALLATION AND PERATIONS ANUAL cd <directory name> Change the current directory to the new directory specified. This command will take a relative path or an absolute path. /ata and system related directories are not accessible. del <filename> Delete specified file name TCL Commands The TCL interpreter incorporated supports TCL 7.0.
Page 147: Accessing Tcl Window
H: TCL P PPENDIX ROGRAMMING UIDE Accessing TCL Window The TCL Interpreter can be accessed through RaritanConsole using the Script menu selection, as described in Chapter 4: Console Features. The TCL prompt is “%”. The command(s) to be executed must be entered AFTER the prompt. The result will be echoed on the next new line.
Page 148: Automatic Execution Of A Tcl Script Upon Power Up
SX I OMINION NSTALLATION AND PERATIONS ANUAL The prompt does not return if the script contains forever-loops, but the shell is active (listening) and will take input if the script is designed to accept them. Automatic Execution of a TCL Script upon Power Up For a TCL script to be executed automatically upon each reboot or power cycle of the unit, the script needs to be named boot.scr and placed in the /ata/usr directory.
Page 149: Generating A User Event
H: TCL P PPENDIX ROGRAMMING UIDE Generating a User Event TCL scripts are a powerful tool for performing true device management, in the form of customer-defined monitoring and notification of events. A sample script is shown below: #This script performs the monitoring of HTTP servers. proc pstat {procname port_num} { set psef [concat "ps -ef | grep "...
Page 150: Extensions To Tcl
SX I OMINION NSTALLATION AND PERATIONS ANUAL Extensions to TCL Various extensions have been incorporated into TCL to support functions to interact with the RaritanConsole unit. The command info comm amp (executed in a Script Shell Window) lists all the commands that are supported.
Page 151 H: TCL P PPENDIX ROGRAMMING UIDE Possible error condition: % ampsetconfiguration network portaddress 2398 TCL cannot write to the configuration: locked by John Smith This denotes that there is a user that is viewing/modifying the configuration of the unit and the command cannot modify the configuration parameters.
Page 152 SX I OMINION NSTALLATION AND PERATIONS ANUAL ampadduser Creates a new user account or edit an existing user account. The last argument is optional. Usage: ampadduser <loginname> <function> <user_name> <password> <portpermission> [information] Loginname: user login name Function: type of user (administrator, operator, observer) User_name: name of user;...
Page 153 H: TCL P PPENDIX ROGRAMMING UIDE ampreset Reboots the unit. All users are disconnected. Usage: ampreset ampupgrade Upgrades the unit. ip_address specifies the server to obtain the file specified by file_path. If the login and password are specified they are used by FTP. If they are not specified, anonymous FTP is used. Usage: ampupgrade <ip_address>...
Page 154 SX I OMINION NSTALLATION AND PERATIONS ANUAL ampsetipacl add Adds an IP address to the IP ACL list. Usage: ampsetipacl add <ip_address> <subnet_mask> Ip_address: ip address to be added to the list Subnet_mask: subnet mask % ampsetipacl add 10.0.1.120 255.255.0.0 set IP acl successful ampsave command % ampsave...
Page 155 H: TCL P PPENDIX ROGRAMMING UIDE ampgetsubscription Returns a string listing all user-defined subscriptions. ampaddsubscription <event> <url> Creates a subscription for the URL to the event specified. The URL encapsulates the service to be used for notification, and any parameters required by that service. % ampgetsubscription Has returned NULL because there are no...
Page 156 SX I OMINION NSTALLATION AND PERATIONS ANUAL ampdelay <seconds> Pauses the TCL script a number of seconds equal to the integer argument. amptriggerevent <event> <message> Generates an event with the appropriate associated message. The event may not begin with the amp prefix. Events that begin with the amp prefix may only be generated by the AMP and not by a user created script or interactively.
Page 157 H: TCL P PPENDIX ROGRAMMING UIDE ampopensocket [ip_address port_number] Opens a socket to a specific port on a device with a given IP address. The command returns a unique socket ID. If the command fails or the arguments are improperly formatted, the command will return an error message.
Page 158 SX I OMINION NSTALLATION AND PERATIONS ANUAL ampreadsocket [socket_id length timeout] A non-blocking call: reads from the socket represented by the socket ID until either the length or timeout is reached. Timeout is specified in microseconds; a timeout of zero indicates the socket will be polled and the results returned immediately.
Page 159: Basic Tcl Server Example
H: TCL P PPENDIX ROGRAMMING UIDE Basic TCL Server Example while (1) { amppermission off set s "" set s [amplisten] if {[string length $s] !=0} { puts $s ampresponse if {[string length $s] == 5} { amppermision on break Script Function Description: This TCL Server will echo back any strings from any client who connects to the TCL interpreter through the TCL Scripting Window.
Page 160: Basic Cpu Utilization Monitoring Example
SX I OMINION NSTALLATION AND PERATIONS ANUAL Basic CPU Utilization Monitoring Example #Description: This TCL script checks the CPU utilization for each port connected to a HP-UX server. It alerts the subscribed user that the threshold limit has reached through e-mail notification. This TCL script uses vmstat to find out the CPU usage of the user process and checks with given threshold limit.
Page 161 H: TCL P PPENDIX ROGRAMMING UIDE #clear any previous data in the read buffer ampclear $port #write to the console ampwrite "vmstat -n\n" $port #ignore the first 8 lines to read the cpu usage params. for {set i 0 } {$i < 9} {incr i +1} { set cpu [ampread 1 "\n"...
Page 162 SX I OMINION NSTALLATION AND PERATIONS ANUAL initEvents #Main loop starts here... while { 1>0 } { cpuUtil $ports ampdelay $intr set rval [ListenCmds] if { $rval == 1} { delEvents unset $ports unset $noOfPorts unset $thr unset $intr unset $mailid break incr ports 1 if { $ports >...
Page 163: Tcl Server Designed To Interact With A Tcl User
H: TCL P PPENDIX ROGRAMMING UIDE TCL Server designed to interact with a TCL user amppermission off Allow observers Clear old data in the TCL internal buffer so that there amplock 1 and operators to is no confusion when data is gathered upon user issue commands to ampclear 1 request.
Page 164 SX I OMINION NSTALLATION AND PERATIONS ANUAL puts “A TCL script is running.\rInputs accepted are DATA/READ1/READ2/READ3/CONSOLE/QUIT" ampresponse Input received is not as per expectation. Remind user what the expected inputs are.
Page 165: Appendix I: Troubleshooting
Should the ping succeed, consult the following topics. DNS Error/Server When attempting to connect to the Dominion SX URL using Microsoft IE, Unreachable a web page may appear indicating a DNS error and reading that the server is unreachable.
Page 166: Firewall
Contact your system administrator and request port 80 and 443 access. Login Failure Firewalls must be configured to allow connections using the Dominion SX configurable port network parameter (Default 51000). If the firewall does not allow these connections, the applet indicates that the login has failed.
Page 167: Port Access
I: T PPENDIX ROUBLESHOOTING Port Access ROBLEM OLUTION Port Access Refresh The unit does not automatically refresh the Port Access List. It is refreshed only when the user clicks on the [Port Access] button, therefore, it is possible that a user will have permissions revoked and these changes will not be visible on the port access screen until the [Port Access] button is activated.
Page 168 SX I OMINION NSTALLATION AND PERATIONS ANUAL...
Page 169: Appendix J: Technical Faqs
Even if the target devices to the status of the device or which the Dominion SX is attached are turned off, you will still be equipment to which it is attached able to access the unit.
Page 170 SX I OMINION NSTALLATION AND PERATIONS ANUAL UESTION NSWER Open your supported Web browser (Netscape or Internet Explorer), Once I have assigned the unit a enter the IP address you have assigned to that unit into the Address unique IP address, how do I access field and press the <Enter>...
Page 171 J: T PPENDIX ECHNICAL...
Page 172 SX I OMINION NSTALLATION AND PERATIONS ANUAL 255-60-2000...

This manual is also suitable for:

Dominion sx16 Dominion sx32 Dominion sx48 Dominion sx 4 Dominion sx 8

Raritan DOMINION SX Installation And Operation Manual

Chapter 1: Introduction

Chapter 2: Installation

Chapter 3: Operation

Chapter 4: Console Features

Chapter 5: Dominion SX Connectivity and Serial Pin-Out Guides

Chapter 6: Using Secure Shell (SSH) with Dominion SX Series

Chapter 7: Authentication and Authorization

Chapter 8: Logging

Chapter 9: SNMP

Chapter 10: System Configuration

Chapter 11: Firmware Upgrade Instructions

Appendix A: Specifications

Appendix B: System Defaults

Appendix C: Certificates

Appendix D: RADIUS Server

Appendix E: Configuring Cisco ACS RADIUS Server

Appendix F: RSA Ace/Server Configuration

Appendix G: Modem Configuration

Appendix H: TCL Programming Guide

Appendix I: Troubleshooting

Appendix J: Technical Faqs

Quick Links

Troubleshooting

Need help?

Questions and answers

Related Manuals for Raritan DOMINION SX

Summary of Contents for Raritan DOMINION SX

This manual is also suitable for:

Table of Contents