SEH myUTN-50a User Manual
  1. Manuals
  2. Brands
  3. SEH Manuals
  4. Server
  5. myUTN-50a
  6. User manual

SEH myUTN-50a User Manual

Usb device server
Hide thumbs Also See for myUTN-50a:
Table of Contents

Advertisement

Quick Links

See also: User Manual
USB Device Server
myUTN-50a
Dongleserver myUTN-80
myUTN-54
myUTN-250
Dongleserver myUTN-800
User Manual Linux

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the myUTN-50a and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for SEH myUTN-50a

Summary of Contents for SEH myUTN-50a

  • Page 1 USB Device Server myUTN-50a Dongleserver myUTN-80 myUTN-54 myUTN-250 Dongleserver myUTN-800 User Manual Linux...
  • Page 2 SEH Computertechnik GmbH has endeavored to ensure that the information in this documentation is correct. If you detect any inaccuracies please inform us at the address indicated above. SEH Computertechnik GmbH will not accept any liability for any error or omission.

  • Page 3: Table Of Contents

    2.1 Administration via myUTN Control Center ......18 2.2 Administration via the SEH UTN Manager......20 2.3 Administration via E-Mail (only myUTN-80 and later) .
  • Page 4 8.4 Information shown in the display panel (myUTN-800 only) ..137 8.5 SEH UTN Manager - Function Overview......138 8.6 Troubleshooting.

  • Page 5: General Information

    The 'Dongleservers' (myUTN-80 and myUTN-800) are exclusively designed for the deployment of USB dongles. The software tool 'SEH UTN Manager' handles the access of the USB devices. The software is installed on all clients that are meant to access a USB device in the network. The SEH UTN Manager shows...

  • Page 6: Utn Server In The Network

    User Manual. For further information; see: ’Documentation’ 7. Procedure and Basic After the SEH UTN Manager is started, the network will be scanned Functions for connected UTN servers. The network range to be scanned is freely definable.

  • Page 7: Documentation

    'myUTN Control Center'. Online Help (SEH UTN Manager) The Online Help contains detailed information about how to use the software tool 'SEH UTN Manager'. Document Features This documentation has been designed as an electronic document for screen use. Many programs (e.g. Adobe® Reader®) offer a book-...
  • Page 8 General Information mark navigation feature that allows you to view the entire docu- ment structure. This document contains hyperlinks to the associated information units. If you want to print this documentation, we recommend using the printer setting 'Duplex' or 'Booklet'. Terminology Used in The explanation of technical terms used in this document is summa- this Document...
  • Page 9 General Information Symbols and A variety of symbols are used within this document. Their meaning is Conventions listed in the following table: Tabelle 1: Conventions within the documentation Symbol / Convention Description A warning contains important information that must be heeded. Non-observance may lead to malfunctions.

  • Page 10: Support And Service

    8:00 a.m. to 3:15 p.m. (CET)  +49 (0)521 94226-44 support@seh.de Current Services The following services can be found on the homepage of SEH Com- putertechnik GmbH http://www.seh.de: • current firmware/software • current tools • current documentation • current product information •...

  • Page 11: Your Safety

    This will avoid potential misuse and prevent damages to people and devices. SEH Computertechnik GmbH will not accept any liability for per- sonal injuries, property damages and consequential damages result- ing from the non-observance of the mentioned safety regulations and warnings.

  • Page 12: First Steps

    Guide'. 3. Make sure that an IP address is stored in the UTN server; see: 13 4. Install and start the software tool 'SEH UTN Manager' on your 20 Windows client; see: 5. Add the UTN servers that you want to use to the selection list;...

  • Page 13: Saving The Ip Address In The Utn Server

    IP address in the UTN server. The UTN server’s assigned IP address can be determined and changed using the software tool 'SEH UTN Manager'; see: 17. Different methods for the assignment of the IP address are described in the following.
  • Page 14 General Information ZeroConf If no IP address can be assigned via boot protocols, the UTN server assigns itself an IP address via ZeroConf. For this purpose, the UTN server picks an IP address at random from the address range (169.254.0.0/16) which is reserved for ZeroConf. You can use the domain name service of Bonjour for the name reso- lution of the IP address;...
  • Page 15 To configure the assignment of IPv6 addresses, see: 35. SEH UTN Manager You can manually enter the desired IPv4 address and save it in the UTN server using the SEH UTN Manager. To configure an IPv4 address via the SEH UTN Manager, see: 34. myUTN Control Center You can manually enter the desired IP address and save it in the UTN server using the myUTN Control Center.
  • Page 16 General Information ARP/PING The assignment of the IP address to the hardware address can be done via the ARP table. The ARP table is an internal system file in which the assignment is temporarily saved (about 15 min). This table is administered by the ARP protocol.

  • Page 17: Administration Methods

    • ’Administration via myUTN Control Center’ 18 What Information Do You Need? • ’Administration via the SEH UTN Manager’ 20 • ’Administration via E-Mail (only myUTN-80 and later)’ 29 • ’Administration via the Reset Button of the Device’ 32 myUTN User Manual Linux...

  • Page 18: Administration Via Myutn Control Center

    You can also start the myUTN Control Center via the software tool 'SEH UTN Manager': Mark the UTN server in the selection list and select UTN server –Configure from the menu bar. myUTN User Manual Linux...

  • Page 19: Myutn Control Center - Start

    Administration Methods Abb. 2: myUTN Control Center - START Structure of the The available menu items are located in the navigation bar (top). myUTN Control After selecting a menu item (simple mouse click), the available sub- Center menu items are displayed at the left. After selecting a submenu item, the corresponding page with its content is displayed (at the right).

  • Page 20: Administration Via The Seh Utn Manager

    Administration via the SEH UTN Manager Area of Application The software tool 'SEH UTN Manager' handles the access of the USB devices. The SEH UTN Manager shows the availability of all UTN servers and USB devices that exist in the network and establishes a connection between the client and the USB port of the UTN server to which the USB device is connected.
  • Page 21 UTN servers, simplified use of USB devices, and much more. The minimal version of the SEH UTN Manager can only be used via the command-line interface. The minimal version can for example be used to automate the activation/deactivation of port connections (with scripts);...
  • Page 22 Administration Methods Installation In order to use the SEH UTN Manager, the program must be installed on a computer with a Linux operating system. The installation file of the SEH UTN Manager can be found on the SEH Computertechnik GmbH homepage: http://www.seh-technology.com/services/downloads/myutn.html...
  • Page 23 The package will be installed on your client. 4. Repeat steps 1 through 3 with the remaining packages. 5. Add all users that are to administrate the SEH UTN Manager on the client to the user group 'utnusers': To do this, open the console 'Terminal' and enter the command: sudo usermod -aG utnusers <user name>...
  • Page 24 2. Install the desired SEH UTN Manager packages: sudo dpkg -i <full package name> 3. Add all users that are to administrate the SEH UTN Manager on the client to the user group 'utnusers': sudo usermod -aG utnusers <user name>...
  • Page 25 Administration Methods Installing Dynamic Kernel Module Support (DKMS) In order to install the SEH UTN Manager, Dynamic Kernel Module Support (DKMS) must be installed on the system. Some distributions (like Oracle Linux 6.5) do not contain DKMS by default. As an example the installation procedure in Oracle Linux 6.5 is described.
  • Page 26 If not, install the package.  DKMS is installed on the client. Programm Start Ubuntu To start the SEH UTN Managers, in the launcher call 'UTN Manager' via Dash (search) or type utnmanager in the command line interface 'Terminal'.

  • Page 27: Seh Utn Manager - Main Dialog

    Display area for the Buttons for managing the port connection properties Abb. 3: SEH UTN Manager - Main Dialog Functions The SEH UTN Manager offers the following features: • 'Adding UTN Servers to the Selection List' 63 • 'Connecting the USB Port to the Client' 64 •...
  • Page 28 Online Help. To start the Online Help, select Help – Online Help from the menu bar. Functions in the SEH UTN Manager can be shown as inactive or not shown at all. This depends on • the embedded UTN server model •...

  • Page 29: Administration Via E-Mail (Only Myutn-80 And Later)

    Administration Methods Administration via E-Mail (only myUTN-80 and later) You can administer the UTN server via email and thus via any com- puter with Internet access. Functionalities An email allows you to • send UTN server status information • define UTN server parameters or •...
  • Page 30 Administration Methods The following commands are supported: Commands Option Description <command> get status Sends the status page of the UTN server. get parameters Sends the parameter list of the UTN server. set parameters Sends parameters to the UTN server. The syntax and values can be obtained from the parameter list, see: 121.

  • Page 31: Administration Via Email - Example 1

    Administration Methods Example 1 This email causes the UTN server to send the parameter list to the sender of the email. Email address of the UTN server as configured on the POP3 server. Command Abb. 4: Administration via Email - Example 1 Example 2 This email configures the parameter 'Description' on the UTN server.

  • Page 32: Administration Via The Reset Button Of The Device

    Administration Methods Administration via the Reset Button of the Device LEDs, the reset button and various ports can be found on the UTN server. These components are described in the 'Quick Installation Guide'. Using the reset button you can reset the UTN server’s parameter val- ues to their default setting;...

  • Page 33: Network Settings

     ’Configuring IPv4 Parameters via the myUTN Control Center’ What Do You Want 33 To Do?  ’Configuring IPv4 Parameters via the SEH UTN Manager’ 34 Configuring IPv4 Parameters via the myUTN Control Center Proceed as follows: 1. Start the myUTN Control Center.
  • Page 34 Gateway Gateway address of the UTN server Configuring IPv4 Parameters via the SEH UTN Manager  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  The UTN server is shown in the selection list; see: 63.

  • Page 35: How To Configure Ipv6 Parameters

    Network Settings How to Configure IPv6 Parameters You can integrate the UTN server into an IPv6 network. What are the IPv6 (Internet Protocol version 6) is the successor of the more com- Advantages of IPv6? monIPv4. Both protocols are standards for the network layer of the OSI model and regulate the addressing and routing of data packets via a network.
  • Page 36 Network Settings Which Types of IPv6 There are different types of IPv6 addresses. The prefixes of the IPv6 Addresses are addresses provide information about the IPv6 address types. available? • Unicast addresses can be routed globally. These addresses are unique and therefore unambiguous. A packet that is sent to a unicast address will only arrive to the interface that is assigned to this address.

  • Page 37: How To Configure The Dns

    Network Settings Parameters Description IPv6 address Defines a UTN server IPv6 unicast address assigned manually in the format n:n:n:n:n:n:n:n. Every 'n' represents the hexadecimal value of one of the eight 16 bit elements of the address. An IPv6 address may be entered or displayed using a shortened version when successive fields contain all zeros (0).

  • Page 38: How To Configure Snmp

    Network Settings Tabelle 4: DNS Parameters Parameters Description Enables/disables the name resolution via a DNS server. Primary DNS server Defines the IP address of the primary DNS server. Secondary DNS server Defines the IP address of the secondary DNS server. The secondary DNS server is used if the first one is not available.

  • Page 39: How To Configure Bonjour

    Network Settings 39 3. Configure the SNMP parameters; siehe: Tabelle 5 4. Click Save & Restart to confirm.  The settings are saved. Tabelle 5: SNMP parameters Parameters Description SNMPv1 Enables/disables SNMPv1. Read-only Enables/disables the write protection for the community. Community SNMP community name The SNMP community is a basic form of access...

  • Page 40: How To Configure Pop3 And Smtp (Only Myutn-80 And Later)

    Network Settings another query with a different IP address. If the IP address is avail- able, it is saved in the UTN server. The domain name service is used for additional Bonjour features. Since there is no central DNS server in Bonjour networks, each device and application has its own small DNS server.
  • Page 41 Network Settings SMTP 'SMTP' (Simple Mail Transfer Protocol) is a protocol that controls the sending of emails in networks. SMTP is required in the UTN server to administer the UTN server via email and to run the notification ser- vice. ...
  • Page 42 Network Settings Parameters Description POP3 - Ignore mail Defines the maximum email size (in Kbyte) to be exceeding accepted by the UTN server. (0 = unlimited) POP3 - User name Defines the user name used by the UTN server to log on to the POP3 server.
  • Page 43 Network Settings Parameters Description SMTP - Sender name Defines the email address used by the UTN server to send emails. Note: Very often the name of the sender and the user name are identical. SMTP - Login Enables/disables the SMTP authentication for the login. SMTP - User name Defines the user name used by the UTN server to log on to the SMTP server.

  • Page 44: How To Configure Wlan (Myutn-54 Only)

    Network Settings How to Configure WLAN (myUTN-54 only) The UTN server model 'myUTN-54' can handle WLAN. This allows you to wirelessly operate the UTN server in the network. What is WLAN? WLAN is a radio technology that allows you to establish wireless connections between network components.
  • Page 45 Network Settings mechanisms for data encryption and authentication. WEP uses a key to encrypt the entire communication. As for encrypted access points, the same WEP key must be used for the access point and the UTN server. Some access points convert WEP keys that are entered as ASCII text into arbitrary hexadecimal values.
  • Page 46 Network Settings In order to configure the UTN server you must first establish a con- nection to a wired network by means of the network connector RJ-45; see: 'Quick Installation Guide'.  The UTN server is connected to the network and the mains Requirements voltage.
  • Page 47 Network Settings Tabelle 9: WLAN Parameters Parameters Description Mode Defines the communication mode. The communication Communication mode) mode defines the network structure in which the UTN server will be installed. Two modes are available: - In the 'Ad-Hoc' mode, the UTN server communicates directly with another WLAN client (peer-to-peer).
  • Page 48 Network Settings Parameters Description Encryption method see: ’WLAN Security’ 44 Authentication method see: ’Authentication’ 45 Connecting the UTN Server to the Wired Network To establish a connection to a wired network, connect the network cable (RJ-45) to the UTN server. The UTN server automatically switches to the wired network.

  • Page 49: Device Settings

    Device Settings 4 Device Settings  You can configure the device time, the UTN port, the notification service, etc. on the UTN server. This chap- ter describes these device settings. • ’How to Determine a Description’ 49 What Information Do You Need? •...

  • Page 50: How To Assign An Identifier Shown In The Display Panel

    Device Settings  The data is saved. To assign names to USB ports, see: 52. How to Assign an Identifier Shown in the Display Panel (myUTN-800 only) The Dongleserver myUTN-800 can be mounted in a 19" server rack. In order to identify a certain myUTN-800 if several are mounted in a rack, an identifier is shown in the display panel on the front side of the Dongleserver.

  • Page 51: How To Configure The Device Time

    Device Settings How to Configure the Device Time You can control the device time of the UTN server via a time server (SNTP server) in the network. A timeserver is a computer networking device that reads the actual time from a reference clock and distrib- utes this information to its clients.

  • Page 52: How To Assign A Name To A Usb Port

    This UTN port or the UTN SSL port must not be blocked by a firewall. If required, you can change the port number on the UTN server.  In order that the SEH UTN Managers installed on the clients Requirements receive the current port number, the 'SNMPv1' parameter must be activated;...

  • Page 53: How To Deactivate A Usb Port (Only Myutn-80 And Later)

    Device Settings  The settings are saved. How to Deactivate a USB Port (only myUTN-80 and later) You can enable or disable a USB port. This is done by interrupting and re-establishing the power supply. The power supply for the USB ports is enabled by default. Benefits and Disable unused USB ports in order to ensure that unwanted USB Purpose...
  • Page 54 Device Settings • The event notification informs you about a specific event on the UTN server via email or SNMP trap. The event can be: The restart of the UTN server. The connection/disconnection of a USB device to/from the UTN server. The activation/deactivation of a USB port.

  • Page 55: How To Get Error Messages Via The Display Panel (Myutn-800 Only)

    Device Settings Configuring event notifications via email  SMTP parameters have been configured on the UTN server, see: Requirements 40.  A DNS server has been configured on the UTN server, see: 37. For the notification service you can specify up to two email recipi- ents and the message types.

  • Page 56: How To Configure Acoustic Signals (Myutn-800 Only)

    Device Settings • only one power supply works • SD card errors (read and write errors, no SD card) Errors are displayed in codes. The meaning of the codes you will find in chapter ’Informationen im Anzeigefeld (nur myUTN-800)’ 143 Proceed as follows: 1.
  • Page 57 Device Settings These optional acoustic signals ideally complement the error mes- sages in the display panel 55. Proceed as follows: 1. Start the myUTN Control Center. 2. Select Device – Notification. 3. In the Acoustic signal area, tick the options with the desired message types.

  • Page 58: How To Use The Utn Server In Vlan Environments

    Device Settings 4.10 How to Use the UTN Server in VLAN environ- ments (only myUTN-80 and later) The UTN server supports the use of VLAN (Virtual Local Area Net- works). It is useful to divide a physical network into VLANs for per- formance and security reasons.
  • Page 59 Device Settings Entering IPv4 Management VLANs Proceed as follows: 1. Start the myUTN Control Center. 2. Select NETWORK – IPv4 VLAN. 3. Configure the IPv4 management VLAN parameters; siehe: 60 Tabelle 11 4. Click Save to confirm.  The settings are saved. Tabelle 10: IPv4 management VLAN parameters Parameters Description...
  • Page 60 Device Settings 60 3. Configure the IPv4 VLAN parameters; siehe: Tabelle 11 4. Click Save to confirm.  The settings are saved. Tabelle 11: IPv4 client VLAN parameters Parameters Description VLAN Enables/disables the forwarding of IPv4 client VLAN data. IP Address IP address of the UTN server within the IPv4 client VLAN.

  • Page 61: Working With The Seh Utn Manager

    The software tool SEH UTN Manager handles the access of the USB devices. This chapter will show you how to embed USB devices in the SEH UTN Manager and how to establish connections between the client and the USB port including the connected USB device.
  • Page 62 Working with the SEH UTN Manager Defining Search Parameters  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20. Proceed as follows: 1. Start the SEH UTN Manager. 2. Select Program – Options from the menu bar .

  • Page 63: How To Add Utn Servers/Usb Devices To The Selection List

    The UTN servers found during the network scan will be displayed in the 'network list'. To use the connected USB devices, they must be assigned to the 'selection list' in the SEH UTN Manager together with the UTN server.  The SEH UTN Manager (complete version) is installed on the Requirements client;...

  • Page 64: How To Connect A Usb Port Including Usb Device To A Client

     The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  The USB port is shown in the selection list; see: 63.  All provisions (driver installation, etc.) necessary to operate the USB device locally (i.e.

  • Page 65: Seh Utn Manager - Activating The Device

    1. Start the SEH UTN Manager. 2. Select the port from the selection list. 3. Select Port – Activate from the menu bar.  The connection will be established. Abb. 9: SEH UTN Manager - Activating the Device myUTN User Manual Linux...

  • Page 66: How To Cut The Connection Between The Usb Port Including

    USB device is no longer needed. This allows other network participants to access the USB port and the connected USB device. Usually the connection is cut by the user via the SEH UTN Manager. The administrator can also cut the connection via the myUTN Con- trol Center.

  • Page 67: How To Request An Occupied Device

    The user can then terminate the connection to the USB port. When the USB port is shared, the connection between the USB port and your client will be established automatically.  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.

  • Page 68: How To Automate Port Connections And Program Starts

    • activated upon the operating system startup and terminated when the system shuts down • automatically reestablished when the system restarts.  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  The USB port is shown in the selection list; see: 63.
  • Page 69 Auto-Disconnect allows a large number of network participants to access a small amount of USB ports including the connected USB devices and avoids idle times.  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.
  • Page 70 Working with the SEH UTN Manager 6. Optionally, tick Prolongation. 7. Click OK.  The setting will be saved. myUTN User Manual Linux...

  • Page 71: How To Get Information About The Usb Port And Usb Device

    What Do You Want To Do?  ’Configuring Messages’ 71 Displaying Status Information  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  The USB port is shown in the selection list; see: 63.

  • Page 72: How To Manage Selection Lists For Several Participants

    How to Manage Selection Lists for Several Participants What are Selection The selection list is a central element of the SEH UTN Manager. It Lists? displays all embedded UTN servers as well as the connected USB devices and shows their status. These USB devices can be connected to the client via the port connection and can then be used.

  • Page 73: Global Selection List

    Working with the SEH UTN Manager Global Selection List Abb. 10: Global Selection List Properties of the global selection list: • All users of a client use the same selection list. • The users can only access the devices listed in the selection list.
  • Page 74  ’Providing Users with a Predefined Selection List’ 75  ’Protecting the user-specific selection list’ 76 Providing the Global Selection List to All Users  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  You are logged on to the system as administrator.
  • Page 75  The setting will be saved. All users of a client use the same selection list. Providing User-Specific Selection Lists  The SEH UTN Manager (complete version) is installed on the Requirements client; see: 20.  You are logged on to the system as administrator.
  • Page 76 Protecting the user-specific selection list When using predefined user-specific selection lists we recommend protecting the selection list against modifications by the user. The selection list of a user is stored as 'SEH UTN Manager.ini' file in the following location: $HOME/.config/SEH...

  • Page 77: Security

    Security 6 Security  A number of security mechanisms are available to ensure optimum security for the UTN server. This chap- ter describes how to make use of these security mech- anisms. The following security mechanisms can be configured and activated according to your demands: What Information •...

  • Page 78: How To Define The Encryption Level For Ssl/Tls Connections

    Security How to Define the Encryption Level for SSL/TLS Connections The following connections on the UTN server can be encrypted via SSL/TLS: • Email: POP3 (40) • Email: SMTP (40) • Web access to the myUTN Control Center: HTTPS (80) •...
  • Page 79 Security The following encryption levels can be selected: • Compatible: Cipher suites with an encryption of 40 to 256 bit are used. • Low: Only cipher suites with a low encryption of 56 bit are used. (Fast connection) • Medium: Only cipher suites with an encryption of 128 bit are used.

  • Page 80: How To Control The Access To The Myutn Control Center

    Security How to Control the Access to the myUTN Control Center You can protect the administrative access to the myUTN Control Center by user profiles.  ’Specifying the Permitted Web Connection Type’ 80 What Do You Want To Do?  ’Protecting the web access via password’ 81 The myUTN Control Center can also be protected by the SNMP secu- rity concept.

  • Page 81: How To Control Access To The Utn Server (Tcp Port Access Control)

    Security Protecting the web access via password To protect the myUTN Control Center against unauthorized web access, you can use a passwort. If a password is set, only the start page of the myUTN Control Center can be visited and displayed. If you select a menu item, you will be asked to enter a password.
  • Page 82 Security work elements with access rights must be entered in the 'Exceptions' area. Please note: • MAC addresses are not delivered through routers! • The use of wildcards (*) allows you to define subnetworks. Test Mode The 'test mode' allows you to check the configured access protec- tion.

  • Page 83: How To Control Access To Usb Devices (Only Myutn-80 And Later)

    Neither the USB port nor the connected USB device will be displayed in the SEH UTN Manager. This means that a user will not be able to make changes to the port or to establish a connection between the client and the USB port.
  • Page 84 In order for a user to gain access to a USB device that is protected by means of the USB port key control, an appropriate key must be entered on the client via the SEH UTN Manager. Proceed as follows: 1.
  • Page 85 Security Specifying the Device Assignment on the USB Port To prevent manipulations by switching the USB devices on the UTN server, you can permanently assign USB devices to the USB ports. Proceed as follows: 1. Start the myUTN Control Center. 2.

  • Page 86: How To Block Usb Device Types

    Security How to Block USB Device Types USB devices are grouped into classes according to their function. For example, input devices such as keyboards belong to the group 'Human Interface Device' (HID). USB devices may present themselves as HID class USB devices but actually are used for abuse (known as 'BadUSB').

  • Page 87: How To Use Certificates Correctly

    Security How to Use Certificates Correctly The UTN server has its own certificate management. This section explains how certificates are used and when the use of certificates is recommended. What are Certificates can be used in TCP/IP-based networks to encrypt data Certificates? and to authenticate communication partners.

  • Page 88: Myutn Control Center - Certificates

    Security • A requested certificate is created by a certification authority (CA) for the UTN server on the basis of a certificate request. • CA certificates are certificates that have been issued for a certi- fication authority (CA). They are used for verifying certificates that have been issued by the respective certification authority.
  • Page 89 Security  ’Displaying Certificates’ 89 What Do You Want To Do?  ’Creating a Self-Signed Certificate’ 89  ’Creating a Certificate Request for a Requested Certificate’ 91  ’Installing the Requested Certificate in the UTN Server’ 91  ’Installing the CA Certificate in the UTN Server’ 92 ...
  • Page 90 Security 5. Click Create7Install.  The certificate will be created and installed. This may take a few minutes. Tabelle 13: Parameters for the Creation of Certificates Parameters Description Common name Is used to clearly identify the certificate. It is advisable to use the IP address or the host name of the UTN server to allow a clear assignment of the certificate to the UTN server.
  • Page 91 Security Creating a Certificate Request for a Requested Certificate As preparation for using a certificate which is issued by a certifica- tion authority for the UTN server, a certificate request can be cre- ated in the UTN server. The request must be sent to the certification authority which creates an certificate on the basis of this request.
  • Page 92 Security 5. Specify the requested certificate. 6. Click Install.  The requested certificate will be installed in the UTN server. Installing the CA Certificate in the UTN Server In order to check the identity of the communicating parties of the UTN server, it is necessary to validate their certificates.
  • Page 93 Security If a PKCS#12 certificate has already been installed on the UTN server, it will be overwritten.  The certificate must be in 'base64' format. Requirements Proceed as follows: 1. Start the myUTN Control Center. 2. Select SECURITY – Certificates. 3.
  • Page 94 Security Deleting Certificates Do not delete the certificate (CA/self-signed/PKCS#12) if only HTTPS is defined as the permitted connection type for the web access to the myUTN Control Center. If the corresponding certifi- cate is deleted, the myUTN Control Center can no longer be reached.

  • Page 95: How To Use Authentication Methods

    Security How to Use Authentication Methods By means of an authentication, a network can be protected against unauthorized access. The UTN server can participate in various authentication procedures. This section describes which procedures are supported and how these procedures are configured on the UTN server.
  • Page 96 Security Configuring EAP-MD5 Benefits and EAP-MD5 validates the identity of devices or users before they gain Purpose access to network resources. You can configure the UTN server for the EAP-MD5 network authentication. This ensures that the UTN server gets access to protected networks. Mode of Operation EAP-MD5 describes a user-based authentication method via a RADIUS server.
  • Page 97 Security validate the certificate. After the mutual authentication was suc- cessful, the access to the network will be freed. Since each device needs a certificate, a PKI (Public Key Infrastruc- ture) must be available. User passwords are not necessary. If you want to use the EAP-TLS authentication, you must observe the instructions below in the indicated order.
  • Page 98 Security tion. This ensures that the UTN server gets access to protected net- works. Mode of Operation EAP-TTLS consists of two phases: • In phase 1, a TLS-encrypted channel between the UTN server and the RADIUS server will be established. Only the RADIUS server authenticates itself using a certificate that was signed by a CA.
  • Page 99 Security Configuring PEAP Benefits and PEAP (Protected Extensible Authentication Protocol) validates the Purpose identity of devices or users before they gain access to network resources. You can configure the UTN server for the PEAP network authentication. This ensures that the UTN server gets access to pro- tected networks.
  • Page 100 Security 7. Click Save & Restart to confirm.  The settings are saved. Configuring EAP-FAST Benefits and EAP-FAST (Flexible Authentication via Secure Tunneling) validates Purpose the identity of devices or users before they gain access to network resources. You can configure the UTN server for the EAP-FAST net- work authentication.
  • Page 101 Security  The UTN server is defined as user (with user name and password) Requirements on a RADIUS server. Proceed as follows: 1. Start the myUTN Control Center. 2. Select SECURITY – Authentication. 3. Select FAST from the Authentication method list. 4.

  • Page 102: How To Encrypt Data Transfer

    Security How to Encrypt Data Transfer You can encrypt the data transfer between the clients and the UTN server (and the connected USB devices). Only payload will be encrypted. Control and log data will be trans- mitted without encryption. Encrypted connection means that client and UTN server communi- cate via the UTN SSL port.

  • Page 103: Seh Utn Manager - Encryption

    Security The encrypted connection will be displayed client-side in the SEH UTN Manager under 'Properties'. Abb. 14: SEH UTN Manager - Encryption myUTN User Manual Linux...

  • Page 104: Maintenance

    Maintenance 7 Maintenance  Various maintenance activities can be carried out on the UTN server. This chapter contains information on securing and resetting the parameter values. You will also learn how to carry out a restart and a device update. •...
  • Page 105 Maintenance Upon delivery, the SD card is already inserted into the SD card reader and ready for use (installation or formatting are not required). By means of the backup, the whole configuration can be quickly and easily loaded to other UTN servers (e.g. when exchanging a UTN server).
  • Page 106 Maintenance 3. Click the icon The current parameter values are displayed. 4. Save the '<default name>_parameters.txt' file on a local system with the help of your browser.  The parameter file is copied and secured. Loading the Parameter file onto the UTN Server Proceed as follows: 1.

  • Page 107: How To Reset The Utn Parameters To Their Default Values

    Maintenance How to Reset the UTN Parameters to their Default Values It is possible to reset the UTN Server’s parameters to the default val- ues (factory settings). All previously configured parameter values will be deleted in this process. Installed certificates will not be deleted.
  • Page 108 Guide'. Using the reset button you can reset the UTN server’s parameter val- ues to their default setting. There are two procedures: 1. myUTN-50a to myUTN-250 2. myUTN-800 The two procedures are each described in the following. The illustra- tions may differ slightly from your UTN server model.
  • Page 109 Maintenance [Phase 1] Reset [Phase 2] Restart Switch off the UTN server Switch off the UTN server (interrupt the power supply). (interrupt the power supply). Press and hold the reset Switch on the UTN server button. (establish the power supply). Switch on the UTN server (establish the power supply).

  • Page 110: Reset Button (Myutn-800)

    Maintenance myUTN-800 Remove the SD card from the UTN server before resetting the parameters. Otherwise, the UTN server will load the parameter values stored on it (automatic backup 106). Proceed as follows: 1. Press the reset button for 5 seconds. You will hear a beep.

  • Page 111: How To Perform An Update

    Recommended? and if a new software or firmware version with new functions or bug fixes has been released by SEH Computertechnik GmbH. Check the installed software and firmware version on the UTN server. You will find the version number on the myUTN Control Cen- ter.

  • Page 112: How To Restart The Utn Server

    Maintenance How to Restart the UTN Server The UTN server will automatically restart after changes to the parameters or after an update. If the UTN server is in an undefined state, it can also be manually restarted.  ’Restarting the UTN Server via the myUTN Control Center’ What Do You Want 112 To Do?

  • Page 113: Appendix

    • ’Parameter List’ 117 • ’LED Display’ 136 • ’Information shown in the display panel (myUTN-800 only)’ 137 • ’SEH UTN Manager - Function Overview’ 138 • ’Troubleshooting’ 140 • ’Additional Tool 'utnm'’ 144 • ’Abbildungsverzeichnis’ 155 • ’Index’ 156...

  • Page 114: Glossary

    Mozilla Firefox). SEH UTN Manager The software tool SEH UTN Manager handles the access of the USB devices. The software is installed on all clients that are meant to access a USB device in the network. The SEH UTN Manager shows...
  • Page 115 Hardware address 00:c0:eb:00:01:ff Manufactu Device number The hardware address can be found on the housing or in the SEH UTN Manager. The use of separators within the hardware address depends on the platform. In Linux werden ':' are used. IP Address The IP address is the unique address of each node in a network, i.e.
  • Page 116 USB devices. If a compound USB device is connected to a USB port of the UTN server, in the myUTN Control Center and the selection list of the SEH UTN Manager all integrated USB devices will be displayed on the USB port.

  • Page 117: Parameter List

    Appendix - Parameter List Parameter List This chapter gives an overview of all available parameters of the UTN server. The parameter list gives details about the functions and val- ues of the individual parameters. • ’Parameter List - IPv4’ 118 What Information Do You Need? •...
  • Page 118 Appendix - Parameter List Tabelle 14: Parameter List - IPv4 Parameters Value Default Description ip_addr valid IP address 169.254. Specifies the IP address of the [IP address] 0.0/16 UTN server. ip_mask valid IP address 255.255. Specifies the subnet mask of [Subnet mask] the UTN server.
  • Page 119 Appendix - Parameter List Parameters Value Default Description ip4vlan_mgmt_un on/off Enables/disables the administrative access to the [Access via LAN UTN server via IPv4 packets (untagged)] without tag. If this option is disabled, the UTN server can only be administrated via VLANs. ipv4vlan_on_1 on/off Enables/disables the...
  • Page 120 Appendix - Parameter List Parameters Value Default Description ipv6_gate n:n:n:n:n:n:n:n Defines the IPv6 unicast [Router] address of the router. The UTN server sends its 'Router Solicitations' (RS) to this router. ipv6_plen 0–64 Defines the length of the sub- [Prefix length] [1–2 characters;...
  • Page 121 Appendix - Parameter List Tabelle 18: Parameter List - SSL Connections Parameters Value Default Description security 1–4 Defines the encryption level to [Encryption] [1 characters] be used for SSL/TLS connec- tions. 1 = low (56 bit) 2 = medium (128 bit) 3 = high (128 –256 bit) 4 = compatible (40–256 bit) Do not use the encryption...
  • Page 122 Appendix - Parameter List Tabelle 21: Parameter List - TCP port access Parameters Value Default Description protection on/off Enables/disables the locking [Port access of the selected ports. control] protection_test on/off Enables/disables the test [Test mode] mode. The test mode allows you to test the parameters set using the access control.
  • Page 123 Default Description utn_heartbeat 1–1800 This parameter can only be [1–4 characters; 0–9] used after consultation with the SEH support team. utn_accctrt_1 [---] Specifies methods for limiting the access and use of the USB utn_accctrt_20 port and the connected USB [Method] keyids device.
  • Page 124 = power off utn_poffdura_1 0–100 This parameter can only be [1–3 characters; 0–9] used after consultation with utn_poffdura_20 the SEH support team. utn_prereset_1 on/off This parameter can only be used after consultation with utn_prereset_20 the SEH support team. Tabelle 26: Parameter List - DNS...
  • Page 125 Appendix - Parameter List Parameters Value Default Description dns_domain max. 255 characters [blank] Defines the domain name of [Domain name] [a–z, A–Z, 0–9] an existing DNS server. Defines the IP address of the dns_primary valid IP address 0.0.0.0 [Primary DNS primary DNS server.
  • Page 126 Appendix - Parameter List Parameters Value Default Description admin_name max. 64 characters admin Defines the name of the [User name] [a–z, A–Z, 0–9] SNMP user group 2. admin_pwd 8-64 characters adminis- Defines the password of the [Password] [a–z, A–Z, 0–9] trator SNMP user group 2.
  • Page 127 Appendix - Parameter List Parameters Value Default Description sys_contact max. 64 characters [blank] Freely definable description [Contact person] [a–z, A–Z, 0–9] (of the contact person) Tabelle 30: Parameter List - Authentication Parameters Value Default Description auth_typ --- [None] ---- Defines the authentication [Authentication method that is used to identify method]...
  • Page 128 Appendix - Parameter List Parameters Value Default Description auth_ano_name max. 64 characters [blank] Defines the anonymous name [Anonymous [a–z, A–Z, 0–9] for the unencrypted part of the name] EAP authentication methods TTLS, PEAP, and FAST. auth_wpa_addon max. 255 characters [blank] Specifies an optional WPA [WPA add-on] [a–z, A–Z, 0–9]...
  • Page 129 Appendix - Parameter List Tabelle 32: Parameter List - SMTP (only myUTN-80 and later) Parameters Value Default Description smtp_srv max. 128 characters [blank] Defines the SMTP server via [Server name] the IP address or the host name. The host name can only be used if a DNS server was configured beforehand.
  • Page 130 Appendix - Parameter List Tabelle 33: Parameter List - Notification (only myUTN-80 and later) Parameters Value Default Description trapto_1 valid IP address 0.0.0.0 Defines the SNMP trap trapto_2 address of the recipient. [Address] trapcommu_1 max. 64 characters public Defines the SNMP trap trapcommu_2 [a–z, A–Z, 0–9] community of the recipient.
  • Page 131 Appendix - Parameter List Parameters Value Default Description noti_dev_1 on/off Enables/disables the sending noti_dev_2 of emails after a USB device [Send email if was connected to/removed USB devices are from the UTN server. connected or disconnected] noti_act_1 on/off Enables/disables the sending noti_act_2 of emails after a USB port was [Send email if...
  • Page 132 Appendix - Parameter List Parameters Value Default Description notistat_h 1 = 1. hour Specifies the time at which a [hh] 2 = 2. hour status email is sent. 3 = 3. hour etc. notistat_tm 0 = 00 min Specifies the time at which a [mm] 1 = 10 min status email is sent.
  • Page 133 Appendix - Parameter List Parameters Value Default Description wifi_name max. 64 characters Defines the SSID. [Network name [a–z, A–Z, 0–9, _, -] The ID of a wireless network (SSID)] is referred to as SSID (Service Set Identifier) or network name. Each wireless LAN has a configurable SSID in order to clearly identify the wireless network.
  • Page 134 Appendix - Parameter List Parameters Value Default Description wifi_roaming on/off Enables/disables the use of [Roaming] roaming. Roaming refers to the 'moving' of one radio cell to the next. The UTN server will use the access point that has the stron- gest signal.
  • Page 135 Appendix - Parameter List Tabelle 36: Parameter List - Acoustic signal (only myUTN-800) Parameters Value Default Description beepPwr on/off Enables/disables the acoustic [Only one power signal that sounds if the UTN supply provides server only is supplied by one power] power supply.

  • Page 136: Led Display

    Appendix - LED Display LED Display The UTN server has LEDs. The LEDs of the UTN server provide infor- mation about its status. During the activation procedure, the behavior of the LEDs differs from this description. Action Color Description Link permanently on green There is a connection to the network.

  • Page 137: Information Shown In The Display Panel (Myutn-800 Only)

    Appendix - Information shown in the display panel (myUTN-800 only) Information shown in the display panel (myUTN-800 only) The Dongleserver myUTN-800 has a display panel at its front side. It provides status information (error states). Text Description Troubleshooting The Dongleserver is operational. (identifier 51) One of the two power supplies is Check the cabling connections...

  • Page 138: Seh Utn Manager - Function Overview

    Appendix - SEH UTN Manager - Function Overview SEH UTN Manager - Function Overview Functions in the SEH UTN Manager can be shown as inactive (grayed out) or not shown at all. This depends on the following factors: • Settings of the selection list mode (global list / user list) •...
  • Page 139 Appendix - SEH UTN Manager - Function Overview Tabelle 38: SEH UTN Manager - Function Overview Linux Global User-Specific Selection List Selection List Adminis Adminis trative trative rights rights User User / 'utn / 'utn (rw) users' User users' (INI)

  • Page 140: Troubleshooting

    This chapter describes some problems and their solutions. • ’The UTN server signalizes the BIOS mode’ 140 Problem • ’Some functions in the SEH UTN Manager are hidden, enabled or appear dimmed’ 141 • ’USB devices are not shown in the SEH UTN Manager’ 141 •...
  • Page 141 Appendix - Troubleshooting Some functions in the SEH UTN Manager are hidden, enabled or appear dimmed  Your user account does not have the required administrative Possible Cause rights. This leads to restricted user rights in the SEH UTN Manager; see: ’SEH UTN Manager - Function Overview’ 138.
  • Page 142 A connection to the UTN server cannot be established A common port will be used for the data transfer between the UTN server and the SEH UTN Manager that is installed on the client. 52.  The port numbers are not identical.
  • Page 143 Appendix - Troubleshooting  The password protection is enabled 83.  The cipher suites of the encryption level are not supported by the browser 80. The password is no longer available The access to the myUTN Control Center can be protected by a pass- word.

  • Page 144: Additional Tool 'Utnm

    The additional tool 'utnm' has been developed for the myUTN prod- ucts of SEH Computertechnik GmbH. It is used for the activation and deactivation of USB ports including connected USB devices. In order to activate or deactivate a USB port with utnm, commands are entered and run in a special syntax in the console of the operat- ing system.
  • Page 145 Appendix - Additional Tool 'utnm' Creating Scripts  The SEH UTN Manager is installed on the client; see: 21. Requirements  The IP address or host name of a UTN server is known. Proceed as follows: 1. Open a text editor.
  • Page 146 Appendix - Additional Tool 'utnm' The following commands are supported: Command Description Runs a command. The command is specified in greater -c "command string" detail by the command string. The following command strings can be used: • activate UTN server port number Activates the connection to a USB port and the --command "command connected USB device.
  • Page 147 Appendix - Additional Tool 'utnm' Command Description Specifies a USB port key. -k USB port key In the course of the port key control a key is specified for the USB port via the myUTN Control Center so that the --key USB port key USB device that is connected to the USB port is protected against unwanted access (86).

  • Page 148: Return Values

    Appendix - Additional Tool 'utnm' Return Values Return Value Description The USB port including the connected USB device is free for use. The plugin of the USB device connected to the USB port failed. The plugout of the USB device connected to the USB port failed. The ejection of the USB device connected to the USB port failed.

  • Page 149: List Of Figures

    Control Center - START ......19 SEH UTN Manager - Main Dialog ......27 Administration via Email - Example 1 .

  • Page 150: Glossary

    Anhang - Index Glossary Channel 47 Cipher Suite 78 Communication mode 47 Complete version 21 Acoustic Signals 56 Compound USB device 64 Address Connection Types Hardware address 114 Define 80 IP address 115 Connection types 80 MAC address 114 Console 144 Ad-Hoc mode 47 ARP/PING 16 Authentication 44...
  • Page 151 IEEE 802.1X 95 Improper Use 11 Infrastructure mode 47 Parameter file 104 Installation Parameter list 117 Hardware 12 Parameters SEH UTN Manager 22 Default setting 107 Intended Use 11 Display 105 Interferences 132 Load 106 IP Address 115 Reset 107...
  • Page 152 Script 144 Status information 71 SD card 104 USB Port Security 77 Activate 64 Security level 81 Request 67 SEH UTN Manager USB port Changing versions 26 Deactivate 53 Function overview 138 Messages 71 Installation 22 Name 52 Start 26...
  • Page 153 Anhang - Index VLAN 58 IPv4 client VLAN 59 IPv4 management VLAN 59 WEP (Wired Equivalent Privacy) WPA/WPA2 45 ZeroConf 14 myUTN User Manual Linux...

This manual is also suitable for:

Dongleserver myutn-80Myutn-250Myutn-54Dongleserver myutn-800Myutn-55

Table of Contents

Save PDF