background image

142

xxx

|

LDAP Feature for the RCS

xxx

The following figure illustrates how you can set up the Active Directory Objects
in multiple domains. In this scenario, you have two RCSs (RCS1 and RCS2)
and three existing Active Directory users (User1, User2, and User3).

User1 is in Domain1, and User2 and User3 are in Domain2. You want to give
User1 and User2 an administrator privilege to both RCSs and give User3 a login
privilege to the RCS2.

Figure 5.13: Setting Up Active Directory Objects in Multiple Domains

To set up the objects for the multiple domain scenario, perform the following
tasks:

1

Ensure that the domain forest function is in Native or Windows 2003
mode.

2

Create two Association Objects, AO1 (of Universal scope) and AO2, in any
domain. The figure shows the objects in Domain2.

3

Create two RCS Device Objects, RCS1 and RCS2, to represent the two
RCSs.

Summary of Contents for Remote Console Switch

Page 1: ...Dell Remote Console Switch User s Guide ...

Page 2: ...eproduction of these materials in any manner whatsoever without the written permission of Dell Inc is strictly forbidden Trademarks used in this text Dell the DELL logo and PowerEdge are trademarks of Dell Inc Avocent is a trademark or registered trademark of Avocent Corporation or its affiliates in the U S and other countries Other trademarks and trade names may be used in this document to refer ...

Page 3: ...n board Web Interface 4 Access the Switch Using a Standard TCP IP Network 4 Encryption 4 Video 4 Flash Upgradeable 5 Tier Expansion 5 Avocent Management Software Plug in 5 FIPS cryptographic module 5 Sample Configuration 7 Safety Precautions 8 General 9 LAN Options 10 Installation 13 RCS Quick Setup 13 Getting Started 15 Setting up Your Network 16 Rack Mounting the RCS 16 Rack Mounting Safety Cons...

Page 4: ...ewall 38 Verifying the Connections 41 Rear Panel Ethernet Connection LEDs 41 Rear Panel Power Status LEDs 41 Adjusting Mouse Settings on Target Devices 42 Local and Remote Configuration 43 Local User Interface UI 43 Filtering 44 OBWI 45 Using the User Interfaces 47 Launching a Session 49 Scan Mode 50 Viewing System Information 51 RCS Tools 52 Rebooting the RCS 52 Upgrading RCS Firmware 52 Saving a...

Page 5: ...ssigning an Outlet Name 65 Local Session Page on the Local Port 69 Local Port UI Settings 70 Modem Settings 71 Setup Settings Port Security 72 Sessions 72 Configuring General Sessions 72 Configuring KVM Sessions 73 Configuring Local Virtual Media Sessions 73 Configuring Serial Sessions 77 Setting Up User Accounts 77 Managing Local Accounts 77 Access Levels 77 Avocent Management Software Device IP ...

Page 6: ...89 Video Test Pattern 90 Vendor specific Video Settings 90 Color Settings 90 Adjusting Color Depth 90 Contrast and Brightness 91 Noise Settings 91 Detection Thresholds 91 Mouse Settings 92 Adjusting Mouse Options 92 Cursor Type 92 Mouse Scaling 95 Mouse Alignment and Synchronization 95 Virtual Media 96 Requirements 96 Sharing and Preemption Considerations 97 Virtual Media Dialog Box 97 Opening a V...

Page 7: ...NTP Settings 112 Configuring the LDAP Authentication Parameters 112 Enabling LDAP Authentication 112 Entering Authentication Parameters Operational Modes 115 Entering Extension Options Active Directory LDAP 116 Entering Authentication Parameters Standard LDAP 116 Entering Authentication Parameters Custom IP Port Assignments 117 Completing LDAP Configuration 118 Secondary LDAP Settings Standard Con...

Page 8: ... Active Directory Users and Computers Snap In Optional 144 Opening the Active Directory Users and Computers Snap In 145 Adding Users and Privileges to Active Directory with Dell Schema Extensions 145 Creating a SIP Object 145 Creating a Privilege Object 146 Using Dell Association Objects Syntax 147 Creating an Association Object 148 Adding Objects to an Association Object 148 Console Redirection A...

Page 9: ...aps 159 Appendix D Cable Pinouts Information 165 Modem Pinouts 165 Console Setup Pinouts 166 Appendix E UTP Cabling 167 UTP Copper Cabling 167 Wiring Standards 167 Cabling Installation Maintenance and Safety Tips 168 Appendix F Sun Advanced Key Emulation 171 Appendix G Technical Specifications 173 Appendix H Technical Support 177 ...

Page 10: ...Contentsxxx xxxviii ...

Page 11: ...mote access from anywhere at anytime through the RCS software or on board web interface OBWI Features and Benefits The RCS provides enterprise customers with the following features and options significant reduction of cable volume Virtual Media VM capabilites configurable for analog local or digital remote connectivity smart card Common Access Card CAC capability true serial capability through Sec...

Page 12: ...CS supports SIPs that are powered directly from the target device and provide Keep Alive functionality when the switch is not powered The SIPs with CAT 5 design dramatically reduce cable clutter while providing optimal resolution and video settings The built in memory of the SIPs simplifies configuration by assigning and retaining unique device names and Electronic ID EID numbers for each attached...

Page 13: ...ch and any devices connected to the switch are automatically detected Virtual Media and Smart Card capable Switches The RCS allows you to view move or copy data located on virtual media to and from any target device You can manage remote systems more efficiently by allowing operating system installation operating system recovery hard drive recovery or duplication BIOS updating and target device ba...

Page 14: ... for multiple RCSs to be managed through a single interface Access the Switch Using a Standard TCP IP Network The switch provides agentless remote control and access No special software or drivers are required on the attached servers or client NOTE The client connects to the switch using an Internet browser You can access the switch and all attached systems via Ethernet or using a V 34 V 90 or V 9...

Page 15: ...y be used with the switch to allow IT administrators to remotely access monitor and control target devices on multiple platforms through a single web based user interface For more information see the Technical Bulletin for the Avocent management software FIPS cryptographic module The RCS switches support FIPS 140 2 Level 1 cryptographic security requirements The FIPS mode of operation can be enabl...

Page 16: ...Appliance Configuration files saved from or restored to the appliance as external files are encrypted or decrypted using DES This is true even when the user does not fill in the Password parameter in the Save or Load dialog on the OBWI in which case a default OEM password is used for encryption or decryption One result of enabling the FIPS module is to render previously saved User Database and App...

Page 17: ...Product Overviewxxx xxx7 Sample Configuration Figure 1 1 Example RCS Configuration Table 1 1 Descriptions for Figure 1 1 ...

Page 18: ... help protect your system and working environment from potential damage CAUTION The power supplies in your system may produce high voltages and energy hazards which can cause bodily harm Only trained service technicians are authorized to remove the covers and access any of the components inside the system This warning applies to Dell Remote Console Switch Dell PowerEdge servers and Dell PowerVault...

Page 19: ...let and replace the part or contact your trained service provider The power cable extension cable or plug is damaged An object has fallen into the product The product has been exposed to water The product has been dropped or damaged The product does not operate correctly when you follow the operating instructions Keep your system away from radiators and heat sources Also do not block cooling vents...

Page 20: ...rly grounded electrical outlets These cables are equipped with three prong plugs to help ensure proper grounding Do not use adaptor plugs or remove the grounding prong from a cable Observe extension cable and power strip ratings Make sure that the total ampere rating of all products plugged into the power strip does not exceed 80 percent of the ampere ratings limit for the power strip To help prot...

Page 21: ...Product Overviewxxx xxx11 Never connect or use in a wet environment ...

Page 22: ...12xxx Product Overviewxxx ...

Page 23: ...avocent com The RCS box includes the RCS RCS software and the OBWI You may choose to use either the RCS software or the OBWI to manage your system The OBWI manages a single RCS and its connections while the RCS software can manage multiple switches and their connections If you plan to use only the OBWI you do not need to install the RCS software NOTE The RCS software can be used to manage some swi...

Page 24: ...workstation 2 From one client workstation launch the RCS software 3 Click the New RCS task button to add the new switch to the RCS software database If you configured the IP address as described above select Yes the product already has an IP address otherwise select No the product does not have an IP address RCS software will find the RCS and all SIPs connected to it and display the names in the E...

Page 25: ...upplied with the Remote Console Switch Before installing your RCS locate the necessary items for proper installation Remote Console Switch Jumper Cord s 0U Mounting Bracket 1U Mounting Bracket Hardware Kit two additional rails that are pre mounted to the RCS are included in the kit assembly Cable and Adaptors for SETUP and MODEM Remote Console Switch System User s Guide on CD Dell Safety Sheet Del...

Page 26: ...g the RCS You may either place the RCS on the rack shelf or mount the switch directly into a 19 wide EIA 310 E compliant rack four post two post or threaded methods The Dell ReadyRails system is provided for 1U front rack 1U rear rack and two post installations The ReadyRails system includes two separately packaged rail assemblies and two rails that are shipped attached to the sides of the RCS In ...

Page 27: ...e operation of the equipment is not compromised Reliable earthing Maintain reliable earthing of rack mounted equipment Pay particular attention to supply connections other than direct connections to the branch circuit for example use of power strips Product should not be mounted with the rear panel facing in the downward position Installing the Dell ReadyRails System The ReadyRails system is provi...

Page 28: ... flange ear item 3 and unseat each rail Two post Flush mount Configuration 1 For this configuration the castings must be removed from the front side of each ReadyRails assembly Figure 2 2 item 1 Use a Torx driver to remove the two screws from each front flange ear on the device side of the rail and remove each casting Retain castings for future rack requirements It is not necessary to remove the r...

Page 29: ... front post flange with two user supplied screws item 2 3 Slide the plunger bracket forward against the vertical post and secure the plunger bracket to the post flange with two user supplied screws item 3 4 Repeat this procedure for the second rail ...

Page 30: ...s Figure 2 3 item 1 Figure 2 3 Two post Center mount Configuration 2 Slide the back bracket towards the post and secure it to the post flange with two user supplied screws item 2 3 Repeat this procedure for the second rail Four post Threaded Configuration 1 For this configuration the flange ear castings must be removed from each end of the ReadyRails assemblies Use a Torx driver to remove the two ...

Page 31: ... and remove each casting Figure 2 4 item 1 Retain castings for future rack requirements 2 For each rail attach the front and rear flanges to the post flanges with two user supplied screws at each end item 2 Figure 2 4 Four post Threaded Configuration ...

Page 32: ...ar rack 1U front rack and 0U configurations For 1U two post flush and center configurations you can slide the switch into the rails in the same manner as the four post configurations 1U Rear rack Installation 1 Insert the ends of the rails that are attached to the switch into the ReadyRails assembly and push the switch into the rack Figure 2 5 item 1 Figure 2 5 1U Rear rack Installation ...

Page 33: ...tended to provide the opportunity to reposition the rail grip it is not intended for service 2 Locate the blue tabs on the sides of the switch rails item 4 3 Push the tabs inward and continue pulling the assembly until the switch rails are clear of the ReadyRails assemblies 1U Front rack Installation Before installation the rails that are attached to the switch must be re configured 1 On each swit...

Page 34: ...bly from the ReadyRails system NOTE No blanking panel is required for this configuration 0U RCS Installation 1 Align and assemble the 0U mounting bracket to the switch rails Figure 2 7 item 1 Tighten the thumbscrews item 2 2 Insert the mounting bracket hooks into the rack holes and push down until the blue button pops out and locks the bracket into place Figure 2 7 0U Installation ...

Page 35: ...ssembly press the blue button item 3 to unseat the bracket and then lift the assembly from the posts Connecting the RCS Hardware The following diagram illustrates one possible configuration for your RCS hardware Figure 2 8 Basic RCS Configuration ...

Page 36: ...26xxx Installationxxx Table 2 1 Basic RCS Configuration Descriptions Number Description Number Description 1 Jumper cord 7 External virtual media 2 Analog user 8 Power control device ...

Page 37: ...power source or the unit NOTE If the building has 3 phase AV power ensure that the computer and monitor are on the same phase to avoid potential phase related video and or keyboard problems NOTE The maximum supported cable length from switch to device is 30 meters Do not disable the power grounding plug The grounding plug is an important safety feature Connect the jumper cord into a grounded earth...

Page 38: ... Ethernet switches provides additional redundancy in the event one Ethernet switch fails 5 Optional The switch may also be accessed using an ITU V 92 V 90 or V 24 compatible modem Connect one end of an RJ 45 cable to the MODEM port on the switch Connect the other end to the supplied RJ 45 to DB 9 male adaptor which then connects to the appropriate port on the back of the modem NOTE Using a modem c...

Page 39: ...f the SIP cable to the appropriate keyboard monitor and mouse ports on the first server you will be connecting to this RCS If you are using a USB connection attach the plug from the SIP to the USB port on the first server you will be connecting to this RCS 3 To the RJ 45 connector on the SIP attach one end of the CAT 5 cabling that will run from your SIP to the RCS See Figure 2 9 4 Connect the oth...

Page 40: ...nxxx Table 2 2 Descriptions for Figure 2 9 Number Description 1 CAT 5 2 USB Connection 3 VGA Connection To connect a SIP to a serial device using a UTP connector 1 Connect the SIP RJ 45 connector to the serial device or ...

Page 41: ...rface ACI compatible RJ45 port on the iKVM module on the back of the M1000e chassis Firmware upgrades to the components of the M1000e Modular Enclosure are not possible via this tiered configuration You can tier up to two levels of switches enabling users to connect to up to 1024 servers In a tiered system each target port on the main switch will connect to the ACI port on each tiered switch Each ...

Page 42: ...switch per target port of the main switch You cannot attach a switch to the tiered switch NOTE When cascading with an RCS an 8 port or 16 port analog console switch is not supported as the primary unit in a tiered configuration The RCS must be the primary unit ...

Page 43: ...Installationxxx xxx33 Figure 2 10 Tiering the RCS With a UTP Analog Switch Table 2 3 Descriptions for Figure 2 10 Number Description 1 Local User 2 ARI Connection 3 UTP Connection 4 ACI Connection ...

Page 44: ...ther end of the UTP cable to a PS 2 SIP 4 Connect the SIP to your legacy switch according to the switch manufacturer s recommendations 5 Repeat steps 1 4 for all the legacy switches you wish to attach to your switch NOTE The RCS supports only one switch per ARI port You cannot cascade another switch under this first switch NOTE When cascading with an RCS an 8 port or 16 port analog console switch ...

Page 45: ...Installationxxx xxx35 Figure 2 11 Cascading Legacy Switches Table 2 4 Descriptions for Figure 2 11 Number Description 1 Local User 2 ARI Connection ...

Page 46: ...work behind PEM To add a PEM optional 1 Mount the PEM into your rack Using up to nine UTP cables one connects your RCS to the PEM and the other eight connect the PEM to the SIP attached to each device 2 Attach one end of the UTP cabling that will run between your PEM and the RCS to the RJ 45 connector slightly separated from the other connectors on the PEM Connect the remaining end of the UTP cabl...

Page 47: ...Installationxxx xxx37 Table 2 5 Descriptions for Figure 2 12 Number Description 1 ARI Port 2 UTP 3 PEM 4 SIP or Avocent IQ Module 5 Server ...

Page 48: ...r You can access the switch using the embedded web server that handles most day to day switch tasks Before using the web server to access the switch first specify an IP address through the SETUP port on the back panel of the switch or local UI See Chapter 3 for detailed instructions on using the switch user interface Connecting to the OBWI Through a Firewall For switch installations that use the O...

Page 49: ...nal Used by LDAP Directory Services standard access port TCP 636 Optional Used by LDAP Directory Services Secure SSL port TCP 3268 Optional Used by Microsoft Active Directory Services standard access port TCP 3269 Optional Used by Microsoft Active Directory Services Secure SSL access port The following figure and table provide a typical configuration where the user s computer is located outside of...

Page 50: ... external IP address To configure the firewall To access the switch from outside a firewall configure your firewall to forward ports 22 23 if telnet is enabled 80 443 2068 and 3211 from its external interface to the KVM switch through the firewall s internal interface Consult the manual for your firewall for specific port forwarding instructions NOTE Ports 80 and 443 can be reconfigured by an admi...

Page 51: ...10M Rear Panel Power Status LEDs The rear panel of each RCS has one for each power supply There are two Power LEDs for dual power models 16 port and 32 port and only one LED for the 8 port model The LED s illuminate green when the switch is turned on and operating normally The LED is off if the power supply does not have power or has failed The LED illuminates when the unit is ready The LED blinks...

Page 52: ...ation must also be set to none on every remote system Special cursors should not be used and cursor visibility options such as pointer trails Ctrl key cursor location animations cursor shadowing and cursor hiding should also be turned off NOTE If you are not able to disable mouse acceleration from within a Windows operating system or if you do not wish to adjust the settings of all your target dev...

Page 53: ...inds of sessions The Video Viewer window allows you to control the keyboard monitor and mouse functions of individual target devices connected to the switch in real time You may also use predefined global macros to perform actions within the Video Viewer window For instructions on how to use the Video Viewer see Chapter 4 The serial viewer window allows you to manage individual serial target devic...

Page 54: ...ve Attached target devices in the Local Port User Interface can be viewed and managed from two individual screens that are selected from the left navigational toolbar For less than 20 targets the Target List Basic screen is recommended for navigation For more than 20 attached target devices the Target List Full screen provides additional navigation tools At the Target List Full screen you can navi...

Page 55: ...atest version of your Web browser Table 3 1 Operating Systems Supported by the OBWI Operating System Browser Microsoft Internet Explorer version 6 0 SP1 and later Firefox version 2 0 and later Microsoft Windows 2000 Workstation or Server with Service Pack 2 Yes Yes Microsoft Windows Server 2003 Standard Enterprise or Web Edition Yes Yes Microsoft Windows Server 2008 Standard Enterprise or Web Edit...

Page 56: ...perating system No Yes Novell SUSE Linux Enterprise 10 and 11 Smart card may not be supported by the operating system No Yes Ubuntu 8 Workstation Smart card may not be supported by the operating system No Yes To log in to the switch OBWI 1 Launch a web browser 2 In the address field of the browser enter the IP address or host name assigned to the switch you wish to access Use https xxx xx xx xx or...

Page 57: ...need to associate the JNLP file with Java WebStart NOTE Using the on board web interface requires using Java Runtime Environment JRE version 1 6 0_11 or higher NOTE Once you have logged in to the on board web interface you will not have to log in again when launching new sessions unless you have logged out or your session has exceeded the inactivity timeout specified by the administrator Using the...

Page 58: ...tact Technical Support view the software general information or log out of an OBWI session 2 Second option bar Use this bar to print a web page refresh the current web page or access the Help tool 3 Version block The firmware version of the product and the username of the user currently logged in appears on the left side of the top option bar ...

Page 59: ...igation bar select Target List A list of available devices will appear 2 The applicable action KVM Session or Serial Session will be displayed in the Action column and will depend on the target device that was selected to launch the session If more than one action is available for a given target device click the drop down arrow and select the applicable action from the list If the target device is...

Page 60: ... mode the switch scans multiple target devices The scanning order is determined by placement of the target device in the list You can also configure the amount of time before the scan moves to the next target device in the sequence NOTE The Scan button is disabled if you are connected via modem To add target devices to the Scan list 1 From the side navigation bar select Unit View Target List to op...

Page 61: ...nd Trap MIB Unit View RCS Files RCS Configuration User Database and Target Device Unit View RCS Properties Identity Part Number Serial Number and EID Unit View RCS Properties Location Site Department and Location Unit View RCS Settings Versions Current Application and Boot versions Target Device Unit View Target List List of connected target devices as well as the Name Type Status and Action of ea...

Page 62: ...iting on the appliance to complete the reboot Upgrading RCS Firmware You can update your RCS with the latest firmware available After the Flash memory is reprogrammed with the upgrade the switch performs a soft reset which terminates all SIP sessions A target device experiencing a SIP firmware update may not display or may display as disconnected The target device will appear normally when the Fla...

Page 63: ...nd Restoring RCS Configurations and RCS User Databases You may save the switch configuration to a file The configuration file will contain information about the managed appliance You may also save the local user database on the switch After saving either file you may also restore a previously saved configuration file or local user database file to the switch To save a managed appliance configurati...

Page 64: ...ave method Filesystem TFTP FTP or HTTP 4 If you selected Filesystem select Browse to specify the location of the firmware upgrade file or If you selected TFTP enter the Server IP Address and Firmware Filename you wish to load or If you selected FTP or HTTP enter the Server IP Address User Name User Password and Firmware Filename you wish to load 5 Click Browse Navigate to the desired location and ...

Page 65: ...rk Settings NOTE Only switch administrators can make changes to the network dialog box settings Other users will have view only access From the side navigation bar click Network to display the General IPv4 and IPv6 tabs To configure general network settings 1 Click the Network tab then click the General tab to display the RCS General Network Settings screen 2 Select one of the following options fr...

Page 66: ...display the IPv6 Settings screen 2 Click to fill or clear the Enable IPv6 checkbox 3 Enter the desired information in the Address Subnet and Prefix Length fields IPv6 addresses are entered as the FD00 172 12 0 0 0 0 33 or abbreviated FD00 172 12 33 hex notation 4 Select either Enabled or Disabled from the DHCP drop down menu NOTE If you enable DHCPv6 any information that you enter in the Address G...

Page 67: ...en the OBWI will retrieve the SNMP parameters from the unit From the SNMP screen you can enter system information and community strings You may also designate which stations can manage the switch as well as receive SNMP traps from the switch If you select Enable SNMP the unit will respond to SNMP requests over UDP port 161 To configure general SNMP settings 1 Click SNMP to open the SNMP screen 2 C...

Page 68: ...ion To enable individual events 1 Click Auditing to open the Events screen 2 Specify the events that will generate notifications by clicking the appropriate checkboxes in the list or Select or clear the checkbox next to Event Name to select or deselect the entire list 3 Click Save Setting Event Destinations You can configure audit events to be sent to SNMP trap destinations and Syslog servers The ...

Page 69: ...ck Delete Offline Upgrading SIPs The SIP Flash upgrade feature allows RCS Administrators to update the SIP with the latest firmware available This update can be performed using the switch user interface or Avocent management software After the Flash memory is reprogrammed with the upgrade the switch performs a soft reset which terminates all SIP sessions A target device experiencing a SIP firmware...

Page 70: ...operation and select Upgrade 4 If the settings are correct click Upgrade To set the USB Speed NOTE This section only applies to the USB2 SIP 1 From the side navigation bar click Ports SIPs to open the SIPs screen 2 Select the checkbox es next to the SIP s that you wish to modify 3 Select Choose an operation and select either Set USB 1 1 Speed or Set USB 2 0 Speed Power Device Settings NOTE You mus...

Page 71: ...ices 1 From the side navigation bar click Ports Power Devices to open the Power Devices screen 2 Click Delete Offline To change the minimum on time off time or wake up state 1 From the side navigation bar click Ports Power Devices to open the Power Devices screen 2 Click the name of the unit you wish to configure and select Outlets 3 Click the outlet name that you wish to modify 4 Use the drop dow...

Page 72: ...ets Clicking on the drop down menu arrow in the Action column shows the additional power actions available Figure 3 2 Target List In the following figure the target Unit Overview page for Server2 shows the Wall Outlet Power where outlet 1 and outlet 9 from PDU 1 are linked to Server2 Figure 3 3 Target Overview Server2 ...

Page 73: ...ice menu and then select the target name for the first device from the drop down list Power actions performed on the Target List page are applied to all applicable outlets Power control actions for specific power outlets of a target may be performed on the Unit Overview page In the following figure the target named Group2 is composed of power outlets 4 and 5 from PDU 1 To group sockets 4 and 5 1 S...

Page 74: ...t Names On the Power Devices page the checkbox Assign Default Names to Outlets controls whether or not power outlets are given default names for a power device as shown in the following figure Only power outlets with names are listed on the Target page Default assigned power outlet names may be removed by clearing the Assign Default Names to Outlets checkbox and saving Power outlets without names ...

Page 75: ... Power Device Outlet Settings page three options are available for assigning the name of a outlet as shown in the following figure The options are Manual Name assignment Link to Target Device and Do Not Display as Target Device Figure 3 6 Power Device Outlet Settings Page ...

Page 76: ...target When an outlet is linked to a SIP target name typically the outlet physically provides power to the server attached to the SIP The Do Not Display as Target Device option gives the outlet a blank name which prevents it from being displayed on the Target List page This option may be used for spare outlets to remove them from the Target List page Access Control Inheritance When a power outlet ...

Page 77: ...target are also given the new target name Prioritized Status of Target Devices On the Target List page a target with linked power outlets controls multiple devices The Status value displayed for a target is chosen as the highest priority of all the status values of the devices The following table shows the possible status values in priority order highest to lowest and the applicable target device ...

Page 78: ...e locked off Idle x N A No session active SIP has power Turned On N A x Outlets are turned on When a target device has multiple power outlets linked by name and they do not have a common power state the RCS may consider the Locked Off outlet status as Off and the Locked On outlet status as On The following table lists the resulting Status values for combinations of two outlet status values Outlet ...

Page 79: ...d Off Off Powered Off Locked On Locked Off Partial Power Local Session Page on the Local Port On the local port s Local Session page when the target of the active session has power outlets linked three power controls are displayed on the page under the Active session The following figure illustrates the power controls displayed for an active local port session for a target named Server2 Figure 3 7...

Page 80: ...ing select the checkbox next to one or more of the listed methods 3 Click Save You can turn on or turn off local port user interface authentication and choose a user access level If you turn on local port user interface authentication you will be required to log in to use the interface You can also select the keyboard language for the local port scan mode time enable disable the local port passwor...

Page 81: ... Disable Local Port User Authentication is checked select one of the following options from the User Access Level drop down menu User User Administrator or RCS Administrator 4 Click Save Modem Settings From the RCS Modem Settings screen you can configure several modem settings as well as view the following modem settings Local Address Remote Address Subnet Mask and Gateway For information on conne...

Page 82: ... screen you can view a list of active sessions and the following information about each session Target Device Owner Remote Host Duration and Type Configuring General Sessions To configure general session settings 1 From the side navigation bar select Sessions General The General Session Settings screen appears 2 Select or deselect the Enable Inactivity Timeout checkbox 3 In the Inactivity Timeout ...

Page 83: ...pears 2 Select an encryption level for keyboard and mouse signals 128 bit SSL ARCFOUR DES 3DES or AES and for video signals 128 bit SSL ARCFOUR DES 3DES AES or None 3 Select a language from the Keyboard drop down menu 4 If your hardware includes the USB2 CAC SIP select the video resolution 5 Click Save Configuring Local Virtual Media Sessions To set virtual media options 1 From the side navigation...

Page 84: ...rovided in the Virtual Media Session Settings screen Table 3 4 outlines the options that can be set for virtual media sessions For information about using virtual media in a KVM session see Virtual Media on page 96 Setting Description Session Settings Virtual Media locked to KVM Session The locking option specifies whether a virtual media session is locked to the KVM session on the target device W...

Page 85: ...te data to the mapped drive on the client server When the access mode is read write the user will be able to read and write data from to the mapped drive If the mapped drive is read only by design for example a CD ROM drive DVD ROM drive or ISO images the configured read write access mode will be ignored Setting the read only mode can be helpful when a read write drive such as a mass storage devic...

Page 86: ...irtual Media Session Settings Setting Description CD ROM DVD ROM Allows virtual media sessions to the first detected CD ROM or DVD ROM read only drives Enable this checkbox to establish a virtual media CD ROM or DVD ROM connection to a target device Disable to end a virtual media CD ROM or DVD ROM connection to a target device Mass Storage Allows virtual media sessions to the first detected mass s...

Page 87: ... accounts By selecting User Accounts on the side navigation bar administrators may add and delete users define user preemption and access levels and change passwords Access Levels When a user account is added the user may be assigned to any of the following access levels RCS Administrators User Administrators and Users Operation RCS Administrator User Administrator Users Configure interface system...

Page 88: ...r the new user 5 Select any of the available target devices that you wish to assign to the user account and click Add NOTE User Administrators and RCS Administrators can access all target devices 6 Click Save To delete a user account User Administrator or RCS Administrator only 1 On the side navigation bar select User Accounts Local Accounts to open the Local User Accounts screen 2 Click the check...

Page 89: ...are allowed 3 Use the scroll bar to select the desired retry interval 4 To disassociate an RCS that has been registered with the server click the Disassociate button 5 Click Save LDAP The Dell 1082DS 2162DS 4322D RCS can authenticate and authorize users via a local database or by an external scalable distributed directory service using the Dell RCS software or OBWI with LDAP Lightweight Directory ...

Page 90: ...Closing a Session To close a session 1 From the side navigation bar select Active Sessions to display the RCS Active Sessions screen 2 Click the checkbox next to the desired target device s 3 Click Disconnect NOTE If there is an associated locked virtual media session it will be disconnected To close a session local users only 1 From the side navigation bar select Local Session 2 Select the Discon...

Page 91: ...witch OBWI uses system memory to store and display images within Video Viewer windows Each opened Video Viewer window requires additional system memory An 8 bit color setting on the client server requires 1 4 MB of memory per Video Viewer window a 16 bit color setting requires 2 4 MB and a 32 bit color setting requires 6 8 MB If you attempt to open more Video Viewer windows than your system memory...

Page 92: ...scription 1 Title Bar Displays the name of the target device being viewed When in Full Screen mode the title bar disappears and the target device name appears between the menu and toolbar 2 Thumbtack icon Locks the display of the menu and toolbar so that it is visible at all times ...

Page 93: ...r Indicates the status of the user that is connected to the RCS for this server The modes are exclusive basic active connection primary active sharing secondary active sharing passive sharing stealth and scanning 6 Smart Card Status Indicators Indicate whether or not a smart card is in the smart card reader The Video Viewer screen smart card icon is greyed out and indicates that the smart card opt...

Page 94: ...or High Compression See Adjusting the View on page 85 for more information NOTE If a user connects to a target device with a higher screen resolution than the local computer the Video Viewer window will display a portion of the target device screen with scroll bars for viewing the remainder of the screen The user may view the entire screen by adjusting the resolution on the target device the local...

Page 95: ...I is used for the first time any open Video Viewer windows display at a resolution of 1024 x 768 until the user changes the value Each Video Viewer window can be set to a different resolution The switch OBWI automatically adjusts the display if the window size changes during a session as long as autoscaling is enabled If the target device resolution changes any time during a session the display ad...

Page 96: ...nu of supported image scaling resolutions is displayed Change the color depth of the session image To align the mouse cursors Click the Align Local Cursor button in the Video Viewer window toolbar The local cursor should align with the cursor on the remote device NOTE If cursors drift out of alignment turn off mouse acceleration in the attached device To refresh the screen click the Refresh Image ...

Page 97: ...image NOTE You can also select View Refresh from the Video Viewer window menu to refresh the image Video Settings Additional Video Adjustment Generally the Video Viewer window automatic adjustment features optimize the video for the best possible view However users can fine tune the video with the help of Dell Technical Support by selecting the Tools Manual Video Adjust command in the Video Viewer...

Page 98: ...eo Adjustbutton The Manual Video Adjust dialog box appears Figure 4 2 Manual Video Adjust Dialog Box Table 4 2 Descriptions for Figure 4 2 Number Description Number Description 1 Image Capture Width 9 Automatic Video Adjustment 2 Pixel Sampling Fine Adjust 10 Refresh Image 3 Image Capture Horizontal Position 11 Adjustment bar ...

Page 99: ...l Video Adjust dialog box Target Video Settings The Image Capture Width Pixel Sampling Fine Adjust Image Capture Horizontal Position and Image Capture Vertical Position adjustments affect how the target video is captured and digitized They are seldom changed The image capture parameters are automatically changed by the Automatic Adjustment function A special image is required on the target in orde...

Page 100: ...ns an online database of optimized video settings for various video cards particularly Sun specific ones This information can be obtained from the Dell online knowledge base or by calling Dell technical support Color Settings Adjusting Color Depth The Dambrackas Video Compression DVC algorithm enables users to adjust the number of viewable colors in a remote session window You can choose to displa...

Page 101: ...ndicated by small dots changing in the area of the cursor when it is moved Varying the threshold values may result in quieter screens and can improve cursor tracking You can modify Noise Threshold and Priority Threshold values if you are using standard video compression You can restore default threshold values by clicking Auto Adjust Video NOTE Leaving the noise threshold at zero triggers constant...

Page 102: ... mouse will become disabled and the device will have to be rebooted Cursor Type The Video Viewer window offers five appearance choices for the local mouse cursor You can also choose no cursor or the default cursor In Single Cursor mode the display of the local second cursor in the Video Viewer window turns off and only the target device mouse pointer is visible The only mouse movements that appear...

Page 103: ...e Video Viewer window displays in the title bar including the keystroke that will exit Single Cursor mode You can define the keystroke that will exit Single Cursor mode in the Session Options dialog box NOTE When using a device that captures keystrokes before they reach the client server you should avoid using those keys to restore the mouse pointer ...

Page 104: ... box appears 2 Click the Mouse tab 3 Select a terminating keystroke from the drop down menu in the Single Cursor mode area 4 Click Save to save settings When you enable Single Cursor mode you can press the specified key to return to Regular Desktop mode To exit Single Cursor mode press the key on the keyboard that is identified in the title bar To change the mouse cursor setting 1 Select Tools Ses...

Page 105: ... 1 2 scaling ratio the value is 1 2X To set mouse scaling 1 Select Tools Session Options from the Video Viewer window menu or Click the Session Options button The Session Options dialog box appears 2 Click the Mouse tab 3 To use one of the pre configured settings check the appropriate radio button or To set custom scaling a Click the Custom radio button to enable the X and Y fields b Type a scalin...

Page 106: ...image file as a virtual drive on the target device You may have one CD drive and one mass storage device mapped concurrently A CD DVD drive disk image file such as an ISO or floppy image file is mapped as a virtual CD DVD ROM drive A floppy drive USB memory device or other media type is mapped as a virtual mass storage device For information on configuring virtual media settings using the OBWI see...

Page 107: ...ng a time intensive task using the virtual media session such as an operating system load and wants to establish a KVM session with a different target device to perform other functions while the operating system load progresses Once a target device has an active virtual media session without an associated active KVM session two situations can occur the original user User A can reconnect or a diffe...

Page 108: ...ociated KVM session is closed another user cannot launch a KVM session to that target device If a session is not reserved another KVM session may be launched You may also reset the SIP from the Virtual Media dialog box This action will reset every form of USB media on the target device It should be used with caution and only when the target device is not responding Opening a Virtual Media Session ...

Page 109: ...f you wish to limit the mapped drive to read only access click the Read Only checkbox next to the drive If the virtual media session settings were previously configured so that all mapped drives must be read only this checkbox will already be enabled and cannot be changed You might wish to enable the Read Only checkbox if the session settings enabled read and write access but you wished to limit a...

Page 110: ...h to add You may add any number of image files up to the limits imposed by memory but you may only have one virtual CD or DVD or virtual mass storage mapped concurrently If you attempt to map too many drives one CD or DVD and one mass storage device or too many drives of a particular type more than one CD or DVD or mass storage device a message will be displayed If you still wish to map a new driv...

Page 111: ...be used when the target device is not responding 1 In the Virtual Media dialog box click Details 2 The Details View will appear Click USB Reset 3 A warning message will appear indicating the possible effects of the reset Confirm or cancel the reset 4 To close the Details view click Details again Closing a Virtual Media Session To close the Virtual Media dialog box 1 Click Exit 2 If you have any ma...

Page 112: ...s Icon Description A smart card is not in the smart card reader or a smart card reader is not attached A smart card is in the smart card reader but has not been mapped yet A smart card is mapped green icon To map a smart card 1 Open a KVM session to display the Video Viewer window menu 2 Insert a smart card into the smart card reader attached to your client server 3 Click Tools Map Smart Card on t...

Page 113: ...troke combinations Keyboard pass through must be specified using the Session Options dialog box When enabled keyboard pass through sends all keystrokes and keystroke combinations except Ctrl Alt Del to the remote target device being viewed when the Video Viewer window is active When the local desktop is active keystrokes and keystroke combinations entered by the user affect the local computer NOTE...

Page 114: ...or to the clipboard for pasting into a word processor or other program To capture the Video Viewer window to a file 1 Select File Capture to File from the Video Viewer window menu or Click the Capture to File button The Save As dialog box appears 2 Enter a filename and choose a location to save the file 3 Click Save to save the display to a file To capture the Video Viewer window to your clipboard...

Page 115: ...ntaining hierarchical structures of objects Each object is associated with an object class that determines what kinds of data can be stored in that object The hierarchical structures begin with objects that represent AD domains deployed to form a hierarchy of domain names that can be represented in a tree diagram the same way DNS name spaces are usually depicted Dell RCSs are designed to support a...

Page 116: ...classes allow the AD Administrator to define groupings of entities for the purpose of simplifying the application of access controls and other administrative policies For example a domain may be configured to have an OU container named Engineering which contains several Group objects named according to function like Hardware Software and Support each of the groups is configured with a membership l...

Page 117: ...s such as those provided by Dell to simplify the administration of access controls such extensions are usually referred to as schema extensions and are at the heart of the Dell Extended Schema feature described in this document These schema extensions provide customized object classes to represent Dell RCSs access control information and a type of container used to associate specific access contro...

Page 118: ... queried using the same LDAP directory queries that work on the complete AD database The AD product requires at least one of the Domain Controllers in an enterprise to also be configured to provide GC services and actual deployments of AD can have any or all of the Domain Controllers configured to provide GC services The suite of Dell RCSs uses DNS to determine the network coordinates of each GC s...

Page 119: ...rd Active Directory schema a Remote Console Switch most closely matches a computer device object and is configured as one Since the RCS is not a computer the schema functions will not all apply Care will have to be taken to correctly configure an RCS that is designated in this manner In addition using the Dell Schema Extensions makes it easier to search on and identify switch devices A switch that...

Page 120: ...verride Admin Account in the on board web interface 1 Click User Accounts then click Override Admin 2 Type the username and password you wish to assign to the user and then verify the password by typing it in the Verify Password field 3 Click Save NOTE You must be logged in as admin for this option Configuring DNS Settings Before the LDAP client can resolve names at least one DNS server must be sp...

Page 121: ...mary server is unavailable the RCS software will automatically failover to backup DNS servers as identified here NOTE You can also set DNS server addresses using the RCS s serial administrative interface For information about using the serial administrative interface please consult your RCS documentation To configure the DNS settings in the on board web interface 1 Click DNS to open the DNS Settin...

Page 122: ...made 4 Click Save Configuring the LDAP Authentication Parameters The Authentication panel allows RCS Administrators to configure the parameters required to access LDAP Directory Services When access requests are received from users the RCS can use LDAP protocols to send the username password and other information to the Directory Service in determining what authorization permissions the user has N...

Page 123: ...method has already been selected for use then LDAP authentication will automatically be disabled It will be necessary to deselect this method to use LDAP Directory Services To restore the ability to use LDAP authentication 1 Under User Access select the Avocent tab see Figure 5 2 2 Click Disassociate to deselect the use of the Avocent management authentication server 3 Click Save Figure 5 2 The Av...

Page 124: ...to proceed To enable LDAP Authentication 1 Under User Access select the LDAP tab see Figure 5 3 Figure 5 3 The LDAP Configuration Options Screen 2 Select one of the available LDAP Authentication modes in the Operational Modes section 3 Configuration options must be set to fully enable LDAP Authentication for use Each of the options are detailed in this chapter 4 Click Save To disable LDAP authenti...

Page 125: ...Directory Servers may be setup to operate either in Open or Secure mode using SSL Secure Socket Layer encryption The mode selected must match that of the host directory server When selecting Secure SSL mode please also see the section entitled LDAP SSL Certificates for guidance on meeting the requirements for encrypted operations User caching Whenever a successful user authentication is completed ...

Page 126: ... 000 minutes NOTE As with all configuration updates you must click the Save to secure your changes LDAP configuration changes are generally available to the RCS immediately with no reboot required Entering Extension Options Active Directory LDAP When Active Directory mode is selected administrators must determine if the Standard or Extended Schema will be employed Additionally administrators shoul...

Page 127: ...ings elsewhere on the same screen will be used to identify the ports that can be altered The following chart defines conditions in which the available port slots are enabled and allowed to be edited List of Port Slots that are enabled and may be customized Open Mode Secure SSL Mode Not using Global Catalog Standard LDAP Message Port Standard LDAP Message Port Secure SSL Mode Using Global Catalog S...

Page 128: ...tory Servers These parameters are discussed in the following sections However you should be aware that there are interlocks established in the OBWI pages to assist the administrator by insuring that parameter updates are made on the appropriate page For example if you were to select the Active Directory LDAP tab you might see the following display on your screen see Figure 5 4 Figure 5 4 Notificat...

Page 129: ...he OBWI window shown here in Figure 5 5 Figure 5 5 Secondary LDAP Settings Standard Configuration NOTE While this section describes the setup parameters for connections being made to Standard LDAP Directory Servers please also note that this section may also be used to establish connections to more generic versions of Active Directory services as well Setting up the RCS for performing Standard LDA...

Page 130: ... and hyphens and must match the object names on the LDAP Server 5 Create one or more groups under the group container organizational unit 6 Add the usernames and the target device and appliance objects to the groups you created in step four 4 7 Specify the value of an attribute used to implement the Access Control Attribute Search Configuration Settings There are four settings that are required fo...

Page 131: ... sAMAccountName 1 which corresponds to the default for Microsoft Active Directory services Query Mode Selection Settings Configure the Query Mode parameters for the appliance and target device The appliance is used to authenticate administrators and users attempting to access the console switch The target device is used to authenticate users attempting to access attached target devices There are t...

Page 132: ...he query mode selected several of the configuration items on this screen may be enabled or disabled according to their applicability Group Configuration Parameters There are several group configuration parameters available Group container The group container specifies the OU created in Active Directory by the administrator as the location for group objects Group objects can contain users computers...

Page 133: ...least one character is required more than one is acceptable that will identify how the Access Control Attribute should be divided up For example the delimiter field is set to three characters Color red blue green black purple These delimiters would find the same five value components as in the first example above LDAP Administrators should make sure that any Access Control Delimiter characters def...

Page 134: ...ry LDAP Settings Active Directory Configuration If you plan to install the Dell Extended Schema enter only the RCS and Root Domains that will be used If you elect not to use the Dell Extended Schema the RCSs and access controlled SIPs in your installation will be configured as Computer Objects within Active Directory To do this you will first need to configure an Organizational Unit to hold group ...

Page 135: ...e Group Object Finally you will need to enter the location for the Group Container the Group Container Domain and the Access Control Attribute in the blanks provided in the Global Authentication window For more detailed descriptions of the Authentication panel fields see Table 5 2 To access the Authentication panel in the OBWI Click User Accounts then click LDAP Figure 5 7 OBWI Authentication Pane...

Page 136: ... RCSs and SIPs Root Domain The uppermost domain within the Active Directory Forest Group Container Standard schema set only This field available when the standard schema is selected contains part of the Distinguished Name of an Organizational Unit OU object in Active Directory The OU is used to hold group objects that relate users to access controlled Remote Console Switches and their attached SIP...

Page 137: ...d the RCS or attached computer that you are trying to access When using the Standard schema it is necessary for Group objects in the Group Container to have an attribute that is chosen to contain the permission level associated with the Group The Access Control Attribute field available when the Standard schema is selected contains the name of the chosen attribute The chosen attribute must be capa...

Page 138: ...er if you have not previously done so 1 Install a Microsoft Enterprise Root CA on a Domain Controller a Select Start Control Panel Add or Remove Programs b Select Add Remove Windows Components c In the Windows Components Wizard select the Certificate Services checkbox d Select Enterprise root CA as CA Type and click Next e Enter Common name for this CA click Next and click Finish 2 Enable SSL on e...

Page 139: ...te key 512 bit long modulus e is 65537 0x10001 OpenSSL req new key privatekey pem x509 out certificate pem batch days 365 2 Enter the information that will be incorporated into your certificate request in the Distinguished Name or DN There may be a default value for some fields If you wish you may type to leave a field blank Country Name 2 letter code GB US State or Province Name full name Berkshi...

Page 140: ... the Details tab then the Copy To File button The Certificate Export Wizard will open 5 Click Next to begin using the wizard 6 On the Export File Format screen select the Base 64 encoded X 509 CER radio button and press the Next button 7 On the File To Export screen enter or browse to a filename and path for the exported certificate Press the Next button 8 Press the Finish button The resulting cer...

Page 141: ...Certificate After clicking Update the following window displays Figure 5 9 OBWI Update LDAP Certificate You can browse to a certificate and open it Once the certificate is open and its contents are displayed the user can then send the certificate to the RCS ...

Page 142: ...response from the RCS The RCS will also use this value to determine the timeout on a LDAP request for authentication To specify the login timeout in the on board web interface 1 Click Sessions to open the General Session Settings screen 2 Specify the number of seconds in the Login Timeout menu 3 Click Save Figure 5 10 OBWI Login Timeout NOTE The Login Timeout is distinct from the User Login Cachin...

Page 143: ...ertificate The RCS will display the following types of information Begin CA certificate information display subject DC msft DC ldaptest CN MyCertificate issuer DC msft DC ldaptest CN MyCertificate notBefore Dec 7 20 09 56 2005 GMT notAfter Dec 7 20 18 34 2010 GMT serial 7BA146C0221A08B447B989292074329F MD5 Fingerprint CB 6D 70 30 31 E5 1B C0 90 BB DB 32 B2 C9 D1 5A End CA certificate information d...

Page 144: ...mbership must also contain the objects representing the RCS s and the SIP s the user is allowed to access The level of access granted is determined by the value of a specific attribute in the Group object Standard Schema or Association Object Extended Schema There are three permission levels available In increasing order of access they are KVM User KVM User Admin and the most powerful level KVM Ap...

Page 145: ...ectory Allowed to preempt another User Admin Permission must be configured for each target device by including the target device in the appropriate Group object in the Directory No Configure network parameters and global settings Yes Permission must be configured for each RCS by including the RCS in the appropriate Group object in the Directory No No Restart Yes Permission must be configured for e...

Page 146: ...ory No No Administer user accounts Yes Permission must be configured for each RCS by including the RCS in the appropriate Group object in the Directory Yes Permission must be configured for each RCS by including the RCS in the appropriate Group object in the Directory No Configure port settings Yes Permission must be configured for each RCS by including the RCS in the appropriate Group object in t...

Page 147: ...that account will be allowed to modify any of the fields in the Authentication Panel In particular only an RCS Administrator is allowed to modify the Authentication Settings Active Directory Object Overview for Standard Schema For each of the physical RCSs on the network that you want to integrate with Active Directory for Authentication and Authorization you must create at least one Computer Obje...

Page 148: ...vilege level delimiter arbitrary text string Where privilege level KVM User or KVM User Admin or KVM Appliance Admin delimiter one or more of any of the following newline or c r or comma or semicolon or tab arbitrary text string is any string of alphanumeric characters and may be the null i e empty string Square brackets indicate optional items for example the following template indicates an optio...

Page 149: ...nistrator must configure the RCS and its device object with its Active Directory name so that users can perform authentication and authorization with Active Directory The Administrator will also need to add the Remote Console Switch to at least one Association Object in order for users to authenticate You can create as many Association Objects as you want and each Association Object can be linked ...

Page 150: ...the Association Object only has one Privilege Object per Association Object The Association Object connects the users who have privileges on the RCSs In addition you can set up Active Directory objects in a single domain or in multiple domains For example you have two RCSs RCS1 and RCS2 and three existing Active Directory users User1 User2 and User3 You want to give User1 and User2 an Administrato...

Page 151: ...2 in which Priv1 has all privileges Administrator and Priv2 has login privileges 4 Group User1 and User2 into Group1 5 Add Group1 as Members in Association Object 1 AO1 Priv1 as Privilege Objects in AO1 and RCS1 and RCS2 as RCS Devices in AO1 6 Add User3 as Members in Association Object 2 AO2 Priv2 as Privilege Objects in AO2 and RCS2 as RCS Devices in AO2 See Adding RCS Users and Privileges to Ac...

Page 152: ...ve User1 and User2 an administrator privilege to both RCSs and give User3 a login privilege to the RCS2 Figure 5 13 Setting Up Active Directory Objects in Multiple Domains To set up the objects for the multiple domain scenario perform the following tasks 1 Ensure that the domain forest function is in Native or Windows 2003 mode 2 Create two Association Objects AO1 of Universal scope and AO2 in any...

Page 153: ...ware and the Remote Console Switch by performing the following steps in their numbered order 1 Extend the Active Directory schema 2 Extend the Active Directory Users and Computers Snap in 3 Add RCS users and their privileges to Active Directory Extending the Active Directory Schema Optional Extending your Active Directory schema will add a Dell organizational unit schema classes and attributes and...

Page 154: ... the Dell Schema Extender 5 Click Finish Installing the Dell Extension to the Active Directory Users and Computers Snap In Optional When you extend the schema in Active Directory you must also extend the Active Directory Users and Computers snap in so that the administrator can manage RCS devices Users and User Groups RCS Associations and SIP Privileges The Dell Extension to the Active Directory U...

Page 155: ...strator Pack click Start Run type MMC and press Enter This opens the Microsoft Management Console MMC 1 Click File or Console on systems running Windows 2000 in the Console 1 window 2 Click Add Remove Snap in 3 Select the Active Directory Users and Computers snap in and click Add 4 Click Close and click OK Adding Users and Privileges to Active Directory with Dell Schema Extensions The Dell extende...

Page 156: ...vilege Objects must be created in the same domain as the Association Object to which it is associated 1 In the Console Root MMC window right click a container 2 Select New Dell SIP Object to open the New Object window 3 Type a name for the new object 4 Select Privilege Object 5 Click OK 6 Right click the privilege object that you created and select Properties 7 Click the RCS Privileges tab and sel...

Page 157: ...r class generally denotes Active Directory objects that contain information about single entities The Group class represents containers used for nesting and contain information about collections of objects Each KVM RCS Object represents an individual Remote Console Switch within Active Directory Since these are single entities in the LDAP default language they are User objects rather than Group ob...

Page 158: ...means that association objects are only available when the Active Directory Domain is functioning in Native Mode or above To create an association object 1 In the Console Root MMC window right click a container 2 Select New Dell SIP Object to open the New Object window 3 Type a name for the new object 4 Select Association Object 5 Select the scope for the Association Object 6 Click OK Adding Objec...

Page 159: ...s or user groups NOTE You can add multiple SIP devices to an association object To add SIP devices or SIP device groups 1 Select the Products tab and click Add 2 Type the SIP device or SIP device group name and click OK 3 In the Properties window click Apply and then OK Console Redirection Access Security In any RCS installation any user privilege allows the user to launch the on board web interfa...

Page 160: ...nt for each of the users to be controlled 3 Create a DPO Do not check any of the three boxes on the KVM RCS Privileges tab Check the Console Redirection Access box on the KVM SIP Privileges tab NOTE If you check any of the KVM RCS Privileges checkboxes and you check the Console Redirection Access box the normal User Privileges associated with the privilege level checked in the KVM RCS Privileges b...

Page 161: ...rectory and its name exactly matches the name assigned to that SIP via the OBWI at the console switch The Dell Standard Schema and the Dell Extended Schema use specific object classes in the Microsoft Windows Active Directory to represent SIPs The Microsoft standard naming conventions for these object classes prohibit the use of special characters or spaces If you intend to use LDAP in a deployed ...

Page 162: ...crosoft Windows NT 4 0 Windows 2000 or Windows Server 2003 Yes In mixed mode all objects used by the RCS querying process among user SIP Device Object and Association Object have to be in the same domain The Dell extended Active Directory Users and Computers snap in checks the mode and limits users in order to create objects across domains if in mixed mode Does using the RCS with Active Directory ...

Page 163: ...ect must be in the same domain The Dell extended Active Directory Users and Computers snap in forces you to create these two objects in the same domain Other objects can be in different domains Are there any restrictions on Domain Controller SSL configuration Yes All Active Directory servers SSL certificates in the forest must be signed by the same root CA since RCS only allows uploading one trust...

Page 164: ...b interface on the RCS Active Directory configuration page Ensure that the DNS setting is correct on the RCS Networking configuration page Ensure Network Time Protocol is enabled on at least one server specified on the NTP panel Ensure that you have uploaded the Active Directory certificate from your Active Directory root CA to the RCS Check the Domain Controller SSL certificates to ensure that th...

Page 165: ...or and flat RJ 45 cable connect a terminal or a PC that is running terminal emulation software such as HyperTerminal to the SETUP port on the back panel of the switch The terminal settings are 9600 bits per second bps 8 bits 1 stop bit no parity and no flow control 2 Turn on each target device and then turn on the switch When the switch completes initialization the Console menu will display the fo...

Page 166: ...nsole status messages Because this can significantly reduce performance you should only enable debug messages when instructed to do so by Dell Technical Support When you are finished viewing the messages press any key to exit this mode Reset RCS This menu option allows you to execute a soft reset of the switch Exit This menu selection will return you to the ready prompt If the Console menu interfa...

Page 167: ...nit View RCS RCS Settings Ports SIPs 2 Click on the desired SIP 3 Select Settings Pinout NOTE If the DB 9 adaptor is used select the ACS console server pinouts ACS Console Server Port Pinouts The following table lists the ACS console server serial port pinouts for the SIP Pin No Signal Name Input Output 1 RTS Request to Send OUT 2 DTR Data Terminal Ready OUT 3 TXD Transmit Data OUT 4 GND Signal Gr...

Page 168: ...rt Pinouts The following table lists the Cisco serial port pinouts for the SIPs Pin No Signal Name Input Output 1 CTS Clear to Send IN 2 DCD DSR Data Set Ready IN 3 RXD Receive Data IN 4 GND Signal Ground N A 5 N C Not Connected N A 6 TXD Transmit Data OUT 7 DTR Data Terminal Ready OUT 8 RTS Request to Send OUT Table B 2 Cisco Serial Port Pinouts ...

Page 169: ...mment of each trap defined in the Trap MIB file This appendix describes the trap events which the RCS may generate Although care has been taken to keep the information in this appendix up to date the Trap MIB file will contain the most accurate trap information An SNMP manager may access MIB II objects of the RCS using the IPv4 or IPv6 protocols By design the enterprise specific MIB objects within...

Page 170: ...es a means for defining enterprise specific traps The specific objects reported by each trap are defined in the Trap MIB file which is uploaded from the RCS The following table is a list of the generated trap events Table C 1 Generated Trap Events Trap Event Trap Number Reboot Started 1 User Login 2 User Logout 3 Target Session Started 4 Target Session Stopped 5 Target Session Terminated 6 traps 7...

Page 171: ...Failure 17 SIP Added 18 SIP Removed 19 SIP Moved 20 Target Device Name Changed 21 Tiered Switch Added 22 Tiered Switch Removed 23 Tiered Switch Name Changed 24 Configuration File Loaded 25 User Database File Loaded 26 Ca Certificate Loaded 27 SIP Image Upgrade Started 28 SIP Image Upgrade Result 29 SIP Restarted 30 Virtual Media Session Started 31 ...

Page 172: ...a Drive Mapped 36 Virtual Media Drive Unmapped 37 traps 38 through 44 are deprecated 38 44 Screen Resolution Changed 45 Aggregated Target Device Status Changed 46 Factory Defaults Set 47 Power Supply Failure 48 Power Supply Restored 49 Pdu Device Online 50 Pdu Device Offline 51 Pdu Socket On Command 52 Pdu Socket Off Command 53 Pdu Socket Reboot Command 54 Pdu Socket On Sense Fail 55 Pdu Socket Of...

Page 173: ...du Input Feed Total Load Low 62 Pdu Device Name Changed 63 Pdu Input Feed Name Changed 64 Pdu Socket Lock Command 65 Pdu Socket Unlock Command 66 Pdu Status Socket Lock 67 Pdu Status Socket Unlock 68 Pdu Image File Upgrade Started 69 Pdu Image File Upgrade Result 70 Pdu Circuit Name Changed 71 Pdu Device Total Load High 72 Pdu Circuit Total Load High 73 Pdu Socket Total Load High 74 Fan Failure 75...

Page 174: ...Appendix C MIB and SNMP Trapsxxx xxx164 Trap Event Trap Number Temperature Range 76 Smart Card Inserted 77 Smart Card Removed 78 ...

Page 175: ...ck for the modem and console setup ports Modem Pinouts The modem port pinouts and descriptions are provided in the following figure and table Figure D 1 Modem Pinouts Table D 1 Modem Pinout Descriptions Pin Number Description Pin Number Description 1 Request to Send RTS 5 Transmit Data TXD 2 Data Set Ready DSR 6 Signal Ground SG ...

Page 176: ...CTS Console Setup Pinouts The console setup port pinouts and descriptions are provided in the following figure and table Figure D 2 Console Setup Pinouts Table D 2 Console Setup Pinout Descriptions Pin Number Description Pin Number Description 1 No Connection 5 Transmit Data TXD 2 No Connection 6 Signal Ground SG 3 No Connection 7 No Connection 4 Receive Data RXD 8 No Connection ...

Page 177: ...e RCS supports CAT 5 4 pair high performance cable consists of twisted pair conductors used primarily for data transmission The twisting of the pairs gives this cable some immunity from the infiltration of unwanted interference CAT 5 cable is generally used for networks running at 10 or 100 Mbps CAT 5E enhanced cable has the same characteristics as CAT 5 but is manufactured to somewhat more string...

Page 178: ...nge white green 4 blue blue 5 white blue white blue 6 orange green 7 white brown white brown 8 brown brown Cabling Installation Maintenance and Safety Tips The following is a list of important safety considerations that should be reviewed prior to installing or maintaining your cables Keep all UTP runs to a maximum of 30 feet each Maintain the twists of the pairs all the way to the point of termin...

Page 179: ...es on electrical fixtures Always test every installed segment with a cable tester Toning alone is not an acceptable test Always install jacks so as to prevent dust and other contaminants from settling on the contacts The contacts of the jack should face up on the flush mounted plates or left right down on surface mount boxes Always leave extra slack on the cables neatly coiled in the ceiling or ne...

Page 180: ...Appendix E UTP Cablingxxx xxx170 ...

Page 181: ...wing table as you would use the advanced keys on a Sun keyboard For example For Stop A press and hold Ctrl Shift Alt and press Scroll Lock then F1 A These key combinations will work with the Dell USB USB2 and USB2 CAC SIPs and Avocent USB USB2 and VMC IQ modules With the exception of F12 these key combinations are not recognized by Microsoft Windows Using F12 performs a Windows key press When fini...

Page 182: ... F3 Front F5 Stop F1 Again F2 Undo F4 Cut F10 Copy F6 Paste F8 Find F9 Mute keypad Vol keypad Vol keypad Command left 2 F12 Command left 2 Win GUI left1 Command right 2 Win GUI right 1 ENDNOTES 1 Windows 95 104 key keyboard 2 The Command key is the Sun Meta diamond key ...

Page 183: ...cifications Table G 1 RCS Technical Specifications Number of ports 1082DS 8 2162DS 16 4322DS 32 Type Dell PS 2 USB USB2 USB2 CAC and Serial SIPs Avocent PS 2 PS2M USB Sun USB2 VMC and Serial modules Connectors 8 pin modular RJ 45 Sync types Separate horizontal and vertical ...

Page 184: ...500 60 Hz 1024 x 640 60 Hz 1280 x 800 60 Hz 1440 x 900 60 Hz 1680 x 1050 60 Hz Supported cabling 4 pair UTP 45 meters maximum length Dimensions Form factor 1U or 0U rack mount Dimensions 1 72 x 17 00 x 9 20 Height x Width x Depth Weight without cables 1082DS 6 6 lb 3 0 kg 2162DS 7 0 lb 3 2 kg 4322DS 7 6 lb 3 4 kg SETUP port Number 1 Protocol RS 232 serial Connector 8 pin modular RJ 45 Local port ...

Page 185: ...thernet Connector 8 pin modular RJ 45 USB device port Number 4 Protocol USB 2 0 MODEM port Number 1 Protocol RS 232 serial Connectors 8 pin modular RJ 45 PDU port Number 2 Protocol RS 232 serial Connector 8 pin modular RJ 45 Power specifications Connectors 1082DS 1 IEC C14 2162DS 2 IEC C14 4322DS 2 IEC C14 Type Internal ...

Page 186: ...ondensing Non operating 5 to 95 relative humidity 38 7 degrees C maximum wet bulb temperature Safety and EMC Standards approvals and markings UL cUL CE EU N Nemko GOST C Tick NOM NYCE MIC KCC SASO TUV GS IRAM FCC ICES VCCI SoNCAP SABS Bellis FIS Kvalitet Koncar INSM Ukrtest STZ KUCAS Safety certifications and EMC certifications for this product are obtained under one or more of the following desig...

Page 187: ...ll product If an issue should develop follow the steps below for the fastest possible service To resolve an issue 1 Check the pertinent section of this manual to see if the issue can be resolved by following the procedures outlined 2 Check our web site at dell com support to search the knowledge base or use the on line service request 3 Call the Dell Technical Support location nearest you ...

Page 188: ...Appendix H Technical Supportxxx xxx178 ...

Reviews: