CPS Installer/User Guide For Technical Support: Email: support@avocent.com www.avocent.com Avocent Corporation 4991 Corporate Drive Huntsville, Alabama 35805-6201 USA Tel: +1 256 430 4000 Fax: +1 256 430 4031 Avocent International Ltd.
LIMITED WARRANTY INSTRUCTIONS This symbol is intended to alert the user to the presence of important operating and maintenance (servicing) instructions in the literature accompanying the appliance. DANGEROUS VOLTAGE This symbol is intended to alert the user to the presence of uninsulated dangerous voltage within the product’s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons.
CPS810/1610 Installer/User Guide Avocent, the Avocent logo, The Power of Being There and DSView are registered trademarks of Avocent Corporation. All other marks are the property of their respective owners. © 2004 Avocent Corporation. All rights reserved.
USA Notification Warning: Changes or modifications to this unit not expressly approved by the party responsible for compliance could void the user’s authority to operate the equipment. Note: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.
iii T A B L E O F C ON T E N T S Table of Contents List of Figures ................................................................................................................ vii List of Tables ................................................................................................................... ix Chapter 1: Product Overview.......................................................................................... 1 Features and Benefits ..................................................
iv CPS Installer/User Guide Authentication of serial CLI port sessions ............................................................................... 26 Authentication summary ........................................................................................................... 26 Using security lock-out ............................................................................................................. 27 Managing the Port History Buffer ....................................................
Table of Contents v Server PPP command ............................................................................................................... 54 Server RADIUS command ........................................................................................................ 55 Server Reboot command ........................................................................................................... 56 Server Security command .....................................................................
vi CPS Installer/User Guide Appendix E: Technical Support ....................................................................................................... 86 Index................................................................................................................................
vii LIST OF FIGU RES List of Figures Figure 2.1: 16-port CPS Appliance Front Panel .............................................................................. 5 Figure 2.2: 16-port CPS Appliance Back Panel................................................................................ 6 Figure B.1: CAT 5 Cable Adaptor Pin Assignments ....................................................................... 78 Figure B.2: Reversing Cable Adaptor Pin Assignments.............................................
viii CPS Installer/User Guide
ix LIST OF TABLES List of Tables Table 2.1: LEDs and Buttons............................................................................................................. 5 Table 3.1: Default Port Settings ..................................................................................................... 11 Table 3.2: SSH Authentication Methods.......................................................................................... 17 Table 3.3: Access Rights ............................................
x CPS Installer/User Guide Table 5.18: Server SNMP Command Parameter............................................................................. 58 Table 5.19: Server SNMP Community Command Parameters........................................................ 59 Table 5.20: Server SNMP Manager Command Parameters ........................................................... 59 Table 5.21: Server SNMP Trap Command Parameter.................................................................... 60 Table 5.
List of Tables xi Table C.1: CPS Appliance Enterprise Traps................................................................................... 82 Table D.1: Ports Used by CPS Appliance .......................................................................................
xii CPS Installer/User Guide
1 CHAPTER Product Overview 1 Features and Benefits Overview The CPS serial over IP network appliance provides non-blocked access and control for serial devices such as routers, power management devices and firewalls. This includes Avocent SPC power control devices that provide advanced power management and security. You may connect up to 8 serial devices to a CPS810 appliance, and 16 serial devices to a CPS1610 appliance. A single 10/100 Ethernet port provides network connectivity.
2 CPS Installer/User Guide error message data and built-in command help information. On-board Trivial File Transfer Protocol (TFTP) support allows administrators to upload new functionality to CPS appliances in the field. Port history Each CPS port has a buffer that holds the most recent 64K bytes of online and offline serial data. A separate history command mode lets you navigate within a port’s current history file and conduct tailored searches.
Chapter 1: Product Overview 3 Using DSView Software The DSView management software may be used to manage CPS appliances and access attached devices. Using DSView software, you may perform most of the operations that are described in this manual. This manual describes how to manage a CPS appliance by entering commands using the CLI. The DSView Installer/User Guide describes how to manage a CPS appliance using the DSView software graphical interface.
4 CPS Installer/User Guide
5 CHAPTER 2 Installation and Configuration Hardware Overview Figure 2.1 shows the front panel of a 16-port CPS network appliance. Figure 2.1: 16-port CPS Appliance Front Panel The lower left area of the front panel contains five LEDs and two buttons, which are described in Table 2.1. Table 2.1: LEDs and Buttons LED/Button Description POWER The POWER LED illuminates when the CPS appliance is connected to a power source.
6 CPS Installer/User Guide As shown in Figure 2.2, the back of the CPS appliance contains RJ-45 connectors for serial cabling (8 connectors for an 8-port CPS appliance model or 16 connectors for a 16-port CPS appliance), a LAN connector for a 10BaseT or 100BaseT interface cable and a power receptacle. Figure 2.2: 16-port CPS Appliance Back Panel Installing the CPS Network Appliance WARNING: The power outlet should be near the equipment and easily accessible. To install the CPS appliance hardware: 1.
Chapter 2: Installation and Configuration 7 WARNING: The CPS appliance and all attached devices should be powered down before servicing the unit. Always disconnect the power cord from the wall outlet. Configuring the CPS Appliance To configure the CPS network appliance, you must specify a unique IP address, plus other network address information. This information will be stored in the CPS configuration database. During initial login, you will specify a password for the Admin user.
8 CPS Installer/User Guide Reply Reply Reply Reply from from from from 192.168.0.5: 192.168.0.5: 192.168.0.5: 192.168.0.5: bytes=32 bytes=32 bytes=32 bytes=32 time<10ms time<10ms time<10ms time<10ms TTL=128 TTL=128 TTL=128 TTL=128 If the CPS appliance did not successfully obtain its IP address with the BootP protocol, you will see a display similar to the following. Pinging Request Request Request Request 192.168.0.5 with 32 bytes of data timed out. timed out. timed out. timed out.
Chapter 2: Installation and Configuration 9 For cable and adaptor information, see Device Cabling on page 77. You may also use any terminal emulation program that is available on your system. 2. Configure your terminal or terminal emulation program as follows. Baud rate Bits per character Stop bits Flow control 9600 8 1 None 3. Press the Return or Enter key until a prompt appears, requesting your username.
10 CPS Installer/User Guide Enter CPS New Admin Password > ***** Confirm New Admin Password > ***** After you have provided the required configuration information, a confirmation message appears while the CPS appliance stores the values in its configuration database. You have now completed the initial login, and you may enter additional commands at the CLI prompt (>). To configure other CPS appliance ports, see Configuring Serial Port Settings on page 11.
11 CHAPTER 3 Operations Overview The CPS serial over IP network appliance and its ports are easily configured and managed to meet your requirements for device connection, user authentication, access control, power status monitoring, port history information display and Simple Network Management Protocol (SNMP) compliance for use with third party network management products. Support for SSH access using third party clients is also provided.
12 CPS Installer/User Guide Table 3.1: Default Port Settings (Continued) Parameter Value Power None Most of these settings are standard serial port operating characteristics. The CLI access character parameter specifies how you access the CLI. For more information, see Telnet CLI mode on page 20. The Power parameter instructs the CCM appliance to monitor the state of a specified control signal. Signal transitions may be configured to trigger SNMP traps.
Chapter 3: Operations 13 that port, the display also includes the username, access rights and other information about the current session. When you request information about a single SPC port, the display includes information configured with the SPC command. A Show Port All command will indicate which ports are SPC ports. When you request information about port names, the display includes the port numbers and names.
14 CPS Installer/User Guide Authentication Complete Connected to Port: ... If the authentication method is configured as None, you may Telnet and connect to a serial device without entering credentials; however, credentials are always required when connecting to the CPS CLI. Data entered at the Telnet client is written to the attached serial device. Any data received by the CPS appliance from the serial device is output to your Telnet client.
Chapter 3: Operations 2. 15 Issue a Connect command to the desired port. CONNECT 3. To end a device session that was initiated with a Connect command, issue a Disconnect command. DISCONNECT For more information, see Server CLI command on page 51, Connect Command on page 43 and Disconnect Command on page 43. Configuring and using dial-in connections You may attach an external modem to the serial CLI port for dial-in serial CLI access to the CPS appliance.
16 CPS Installer/User Guide The PPP dial-in may be used to access a remote CPS appliance that does not warrant a WAN (Wide Area Network) link to the Ethernet interface. In this case, the PPP connection allows a remote PC with Telnet capability to dial the CPS appliance and then establish a Telnet connection to a port. The PPP dial-in may also be used to access a subnet containing remote CPS devices in the event of a WAN link failure.
Chapter 3: Operations 17 Telnet access on port 3007, then port 3107 will be a direct SSH connection for port 7. When SSH is enabled, Telnet port 23 connections will be accepted from other clients if the Server Security command includes the Encrypt=SSH,None parameter, which indicates that both SSH and plain text connections will be allowed. Connecting to Telnet port 23 may also be tunneled through a connection to SSH port 22. Telnet, DSView software and SSH clients may authenticate using a DS server.
18 CPS Installer/User Guide Table 3.2: SSH Authentication Methods (Continued) Method Description PW|KEY or KEY|PW SSH connections will be authenticated with either a username/password or an SSH key. If a user has only a password defined, that user must authenticate an SSH session with a username/password. If a user has only an SSH key defined, that user must authenticate an SSH session using the key.
Chapter 3: Operations 19 and the FTP connection will be closed. The CPS appliance then stores the SSH key with the username in the CPS user database. • When using the KEY keyword to specify the SSH key, the KEY parameter specifies the actual uuencoded SSH key. This is for configurations that do not implement an FTP server. The CPS appliance stores the specified key in the CPS user database.
20 CPS Installer/User Guide If you enable SSH connections using the Server Security command with the Encrypt=SSH parameter, plain text Telnet connections will be disabled. However, if you enable SSH connections with the Server SSH command, both plain text and SSH connections will be allowed. To enable both Telnet and SSH connections: Issue a Server Security command, indicating Encrypt=SSH,None.
Chapter 3: Operations 21 If you initiated the device session with a Connect command, enter CLI mode and issue a Disconnect command. DISCONNECT - or Allow the port to time-out due to inactivity. In this case, a notification message is issued and the serial CLI session returns to CLI mode. This time-out may occur while you are in CLI mode. - or For modem connections, if a carrier drop occurs, the serial CLI session is automatically logged off.
22 CPS Installer/User Guide A server-level preemption level may also be configured with the Server CLI command. This value is used when authentication is disabled on the serial CLI port and a user on that port attempts to connect to another port that is already in use. For example, assume authentication has been disabled on the serial CLI port.
Chapter 3: Operations 23 For more information, see Connecting to devices using SSH on page 16, Access rights and levels on page 23 and User Set command on page 72. To delete a user: Issue a User Delete command. USER DELETE If the specified user is currently logged in, a message is sent to the user indicating that access is no longer permitted, and the user’s Telnet session is terminated. For more information, see User Delete command on page 72. To display user configuration information: 1.
24 CPS Installer/User Guide Table 3.3: Access Rights (Continued) Access Right Description P The Port access right gives a user access to one or more serial ports and the attached serial devices. You may grant Port access rights to specific ports (Pn), a range of ports (Px-y) or all ports (PALL). Access levels When you specify a user’s access rights, you may either specify the individual rights or you may use a shortcut that specifies an access level.
Chapter 3: Operations 25 • Secure indicates authentication will be locked to one DSView software server after a successful initial access, and DSView software server and appliance credentials will be stored on the CPS appliance. • Trustall indicates that any DSView software server may be used for authentication, and DSView software server credentials will not be stored or validated on the CPS appliance.
26 CPS Installer/User Guide Authentication of serial CLI port sessions Using the Server CLI command, you may enable or disable user authentication at the serial CLI port. You may also configure a preemption level that will be used by a serial CLI port user when user authentication is disabled on that port. By default, authentication is enabled on the serial CLI port.
Chapter 3: Operations 27 You must specify the server’s IP address, the UDP port to be used and a “secret” to be used. You must also specify a user-rights attribute value that matches a value in the RADIUS server’s dictionary. You may also use this command to delete a RADIUS server definition. SERVER RADIUS PRIMARY|SECONDARY DELETE For more information, see Server RADIUS command on page 55. 2. Issue a Server Security command, using the Authentication parameter to specify the authentication method.
28 CPS Installer/User Guide configure a lock-out period of from 1-99 hours. Specifying a lock-out period of 0 disables the feature; that is, users will not be locked-out. A locked-out user will remain locked-out until the specified time elapses, the CPS appliance is power-cycled or the user is unlocked by an administrator with the User Unlock command. A user with the ADMIN access level may unlock all users except a user with the APPLIANCEADMIN level.
Chapter 3: Operations 29 Table 3.4: Port History Mode Commands (Continued) Command Description Prev P decrements the current history display line by the number of lines per page and outputs a new history display page. Quit Q returns to the normal CLI. Resume R leaves port history mode and CLI mode and resumes the session with the attached serial device. This single command is equivalent to sequentially using the Quit and Resume commands.
30 CPS Installer/User Guide • If Auto is specified, the number of bytes in the history buffer is displayed and the entire content of the buffer is output to the Telnet session. In this mode, the history buffer’s content may be reviewed in the Telnet client’s scrolling window. You may also use the Port History command to view the port’s history buffer content.
Chapter 3: Operations 31 For more information, see Server SNMP command on page 58. To specify SNMP community names: Issue a Server SNMP Community command, using the Readcomm, Writecomm and Trapcomm parameters to specify community names. NOTE: The default community names are “public”; if you enable SNMP, you are encouraged to change the community values to prevent access to the MIB.
32 CPS Installer/User Guide 2. To disable SNMP traps, issue a Server SNMP Trap command with the Disable parameter. SERVER SNMP TRAP DISABLE The CPS appliance will display a numbered list of traps that are currently enabled with a prompt requesting you to select trap(s) to disable. Indicate the traps to be disabled by entering a trap’s list number, several numbers separated by commas, a range of numbers separated by a dash or a combination of numbers with commas and dashes. To disable all traps, type ALL.
Chapter 3: Operations PORT ALERT COPY At the confirmation prompt, press Y to confirm or N to cancel. When the copy operation occurs, all previously defined strings on the port being copied to will be replaced. For more information, see Port Alert Add command on page 45, Port Alert Copy command on page 45 and Port Alert Delete command on page 46. To display SNMP configuration information: Issue a Show Server SNMP command.
34 CPS Installer/User Guide
35 CHAPTER 4 Using CPS Appliance Commands Accessing the CLI You may access the CLI in three ways: using the Telnet CLI, using the serial CLI or entering the CLI access character during a session to a serial device. When the CLI is accessed, its prompt appears (>), indicating you may type a command. Entering Commands At the command prompt, type a command and then press Return or Enter. When the key is pressed, the command line comprises all characters to the left of the cursor.
36 CPS Installer/User Guide Table 4.2 lists the line editing operations for ASCII TTY devices. There is no command line buffer available on an ASCII TTY device. Table 4.2: Line Editing Operations for ASCII TTY Devices Operation Action Backspace Erases the last character typed. Esc Erases the current command line. When commands take effect Each command is completely processed before the next command may be entered. Some commands prompt for confirmation before they are processed.
Chapter 4: Using CPS Appliance Commands 37 Table 4.3: Command Syntax Types in Example Command (Continued) Value Syntax XONXOF Keyword value. Not every command will contain all syntax types. For example, the following command reboots the CPS appliance. >SERVER REBOOT In this case, both SERVER and REBOOT are positional commands. In most cases, one or more spaces separate positional commands, positional parameters and keyword parameters.
38 CPS Installer/User Guide > POR 2 SET BAUD=576 FLOW=XON --ERR 27 - SET keyword value invalid In the following example, there are spaces between BAUD, the equal sign and the value 57600. Spaces are not permitted between keyword parameters and their values. > POR 2 SET BAUD = 57600 FLOW=XON -----------ERR 26 - SET keyword parameter invalid Syntax conventions This manual uses the following command syntax conventions: • Brackets [ ] surround optional keywords and values.
Chapter 4: Using CPS Appliance Commands 39 Table 4.4: CPS Appliance Command Summary (Continued) Command Description, Access Right and Access Level Port Alert Copy Copies a port’s alert strings to another port. Access right: SCON or PCON Access level: ADMIN or APPLIANCEADMIN Port Alert Delete Deletes one or more port alert strings. Access right: SCON or PCON Access level: ADMIN or APPLIANCEADMIN Port Break Sends a break signal to the attached device.
40 CPS Installer/User Guide Table 4.4: CPS Appliance Command Summary (Continued) Command Description, Access Right and Access Level Server RADIUS Specifies RADIUS server parameters. Access right: SCON Access level: APPLIANCEADMIN Server Reboot Reboots the unit. Access right: SCON Access level: APPLIANCEADMIN Server Security Specifies the user authentication mode, enables/disables security lock-out and connection methods.
Chapter 4: Using CPS Appliance Commands 41 Table 4.4: CPS Appliance Command Summary (Continued) Command Description, Access Right and Access Level Show Server Displays CPS appliance configuration, statistics and session information. Access right: SMON Access level: ADMIN or APPLIANCEADMIN Show Server CLI Displays information specified with the Server CLI command. Access right: SMON Access level: ADMIN or APPLIANCEADMIN Show Server PPP Displays PPP settings.
42 CPS Installer/User Guide Table 4.4: CPS Appliance Command Summary (Continued) Command Description, Access Right and Access Level User Unlock Unlocks a locked-out user. Access right: USER Access level: ADMIN or APPLIANCEADMIN (An ADMIN level user may issue this command for users with any level other than APPLIANCEADMIN.
43 CHAPTER CPS Appliance Commands 5 Connect Command The Connect command establishes a connection from the CPS serial over IP network appliance serial CLI port to a device attached to another port on that CPS appliance. To use this command, you must have previously issued a Server CLI command with the Connect=On parameter. For more information, see Connecting to Serial Devices on page 13.
44 CPS Installer/User Guide Help Command The Help command displays information about CPS appliance commands. Access right: none needed Access level: none needed Syntax HELP [] Table 5.2: Help Command Parameter Parameter Description Command name. Default: Displays list of all commands Examples The following command displays information about the Show Server CLI command. help sho ser cli The following command displays a list of all commands.
Chapter 5: CPS Appliance Commands 45 Port Alert Add command The Port Alert Add command adds a port alert string to a specified port. Each port may have up to ten port alert strings. Duplicate strings are not allowed on the same port. To generate a trap, the Server SNMP Trap command must be issued to enable the PortAlert trap. For more information, see Managing the CPS Appliance Using SNMP on page 30.
46 CPS Installer/User Guide Port Alert Delete command The Port Alert Delete command deletes one or more alert strings from a port. When you issue this command, a numbered list of defined alert strings is displayed, from which you choose those to be deleted. You may enter one or more numbers separated by commas, a range of numbers separated by a hyphen or type ALL to specify all strings. Pressing Enter cancels the command. For more information, see Managing the CPS Appliance Using SNMP on page 30.
Chapter 5: CPS Appliance Commands 47 Access right: none needed Access level: all Syntax PORT HISTORY When you are in port history mode, you may issue the commands listed in Table 3.4 on page 28. Examples The following command accesses the serial port’s history mode. > port history In history mode, the following command searches the history buffer in the downward direction for the string “connected to,” ignoring case.
48 CPS Installer/User Guide [STOP=] [FLOW=] [TIMEOUT=] [SOCKET=] [CHAR=^] [TOGGLE=NONE|DTR] [POWER=] Table 5.8: Port Set Command Parameters Parameter Description |ALL A port number in range 1-8 for a CPS810 appliance or 1-16 for a CPS1610 appliance, a range of ports separated by a hyphen or multiple port numbers separated by commas, or All which indicates that the settings that follow should be applied to all ports.
Chapter 5: CPS Appliance Commands 49 Table 5.8: Port Set Command Parameters (Continued) Parameter Description SOCKET= TCP port that must be entered on the Telnet client to connect to this serial port. The new value becomes effective in subsequent sessions. When SSH is enabled, the CPS appliance automatically adds 100 to the specified value. When All is specified, port 1 will be assigned the specified socket value plus 1, port 2 will be assigned the specified value plus 2, and so on.
50 CPS Installer/User Guide Syntax PORT [|ALL] SET IN|OUT [CR=] [LF=|CRLF=CR] Table 5.9: Port Set In/Out Command Parameters Parameter Description |ALL Either a port number in range 1-8 for a CPS810 appliance or 1-16 for a CPS1610 appliance, or All which indicates that the settings that follow should be applied to all ports. Default = port to which you are attached ALL Indicates that the settings that follow should be applied to all ports.
Chapter 5: CPS Appliance Commands 51 Syntax RESUME Server Commands The Server command has several forms, as listed in Table 5.10. Table 5.10: Server Command Summary Command Description Server CLI Specifies the serial CLI port, type and access character; modem initialization string; port history mode operations and port time-out value. It also enables/ disables device connection from the CLI port. Server FLASH Updates the unit’s FLASH. Server Ping Enables/disables response to ping requests.
52 CPS Installer/User Guide • Specifies a port time-out value • Enables/disables serial CLI port authentication • Specifies a preemption level to be used for serial CLI port sessions when authentication is disabled on that port At least one parameter must be specified.
Chapter 5: CPS Appliance Commands 53 Table 5.11: Server CLI Command Parameters (Continued) Parameter Description MODEMINIT=“” Modem initialization string, enclosed in quotation marks. Must contain at least ATV1 and S0=1. Default = “” (no modem is attached to serial CLI port) TIMEOUT= Number of time-out minutes in the range 0-90. If no data is received or transmitted during a Telnet session for the specified period, the session will timeout. A zero value indicates no time-out.
54 CPS Installer/User Guide Table 5.12: Server FLASH Command Parameters (Continued) Parameter Description IMAGE= Name of file on TFTP server host containing the image file. Example The following command updates the boot image program using the image file name c:\winnt\system32\drivers\cps10bt.img, which is located on the TFTP server host located at 192.168.1.16. > ser fla app hostip=192.168.1.16 c:\winnt\system32\drivers\ima=cps10bt.
Chapter 5: CPS Appliance Commands 55 Syntax SERVER PPP DISABLE|ENABLE LOCALIP=] [REMOTEIP=] [MASK=] Table 5.14: Server PPP Command Parameters Parameter Description DISABLE|ENABLE Disables or enables the PPP server. LOCALIP= IP address to be used to connect the CPS appliance over the PPP connection. Must be on same subnet as REMOTEIP address. REMOTEIP= IP address to assign to the PPP client end of the PPP connection.
56 CPS Installer/User Guide Table 5.15: Server RADIUS Command Parameters Parameter Description PRIMARY| SECONDARY Indicates either the primary RADIUS server or the secondary RADIUS server is being defined or deleted. IP= IP address of the RADIUS authentication server. SECRET= 8-24 character text string for shared secret with the RADIUS server. Enclose the string in quotes if it contains spaces.
Chapter 5: CPS Appliance Commands 57 Server Security command The Server Security command specifies the authentication method, enables/disables access methods and enables/disables security lock-out. For more information, see Using Authentication Methods on page 24, Enabling plain text Telnet and SSH connections on page 19 and Using security lock-out on page 27. When you enter this command, you are prompted to confirm or cancel the specified information.
58 CPS Installer/User Guide Access right: SCON Access level: APPLIANCEADMIN Syntax SERVER SET [IP=] [MASK=] [GATEWAY=] Table 5.17: Server Set Command Parameters Parameter Description IP= IP address. MASK= Subnet mask for the subnet on which the CPS appliance resides. GATEWAY= IP address of default gateway for routing IP packets. Server SNMP command The Server SNMP command enables or disables SNMP UDP port 161 SNMP processing.
Chapter 5: CPS Appliance Commands 59 Syntax SERVER SNMP COMMUNITY [READCOMM=] [WRITECOMM=] [TRAPCOMM=] Table 5.19: Server SNMP Community Command Parameters Parameter Description READCOMM= 1-64 alphanumeric character read community name. Default = public WRITECOMM= 1-64 alphanumeric character write community name. Default = public TRAPCOMM= 1-64 alphanumeric character trap community name.
60 CPS Installer/User Guide You may indicate the traps to be enabled/disabled by entering a single number, several numbers separated by commas, a range of numbers separated by a dash or a combinations of numbers separated by commas and dashes. You may also type ALL to select all traps in the list or press Enter, which cancels the operation. If you specify ALL on the command line, the numbered list is not displayed.
Chapter 5: CPS Appliance Commands 61 Syntax SERVER SNMP TRAP DESTINATION ADD|DELETE Table 5.22: Server SNMP Trap Destination Command Parameters Parameter Description ADD|DELETE Defines or deletes the specified destination. IP address of trap destination. Server SSH command The Server SSH command enables or disables SSH session access to the CPS appliance and specifies the SSH authentication method.
62 CPS Installer/User Guide Show Commands The Show command has several forms, as listed in Table 5.24. Table 5.24: Show Command Summary Command Description Show Port Displays configuration information and statistics for one or all ports. Show Port Alert Displays port alert strings. Show Port In/Out Displays how carriage returns and linefeeds are treated. Show Server Displays CPS configuration information and statistics. Show Server CLI Displays CPS CLI settings.
Chapter 5: CPS Appliance Commands 63 Table 5.26 and Table 5.27 list the display fields for a Show Port command that specifies one or all ports. Table 5.26: Show Port Command Display Fields for Console Ports Field Content Port Port number. Serial Port Settings Comma-separated string of port values: baud rate, number of bits, parity, stop bits, flow control, socket number, time-out value and CLI access character (from Port Set command).
64 CPS Installer/User Guide Table 5.27: Show Port Command Display Fields for SPC Ports (Continued) Field Content Wake Wakeup state for socket (from SPC command). ON Min Minimum On time (from SPC command). OFF Min Minimum Off time (from SPC command). Show Port Alert command The Show Port Alert command displays a port’s alert strings. Access right: SMON Access level: ADMIN or APPLIANCEADMIN Syntax SHOW PORT ALERT Table 5.
Chapter 5: CPS Appliance Commands 65 Table 5.29: Show Server Command Display Fields (Continued) Field Content Mask Subnet mask (from initial configuration or Server Set command). Gateway Gateway IP address (from initial configuration or Server Set command). Up Time Days, hours, minutes and seconds since unit was rebooted. MAC Ethernet MAC address. S/N Serial number. Port Port number. Username Username (from User Add command). Duration Duration of session. Socket Telnet socket number.
66 CPS Installer/User Guide Table 5.30: Show Server CLI Command Display Fields (Continued) Field Contents Connect Indicates whether a valid user on the serial CLI port may use the Connect command. Modeminit string String used to initiate modem connections on the serial CLI port. Server CLI Timeout Session time-out value, shown in full minute or minute:second form (for example, 3m for 3 minutes, 3:30 for 3 minutes, 3 seconds.
Chapter 5: CPS Appliance Commands 67 Table 5.31: Show Server Security Command Display Fields Field Contents Authentication Configured authentication method(s). This includes the SSH authentication method configured with the Server SSH command (or the default value), regardless of whether SSH is enabled. Encryption Configured connection methods: None, SSH or both. Lockout Configured security lock-out state (Enabled or Disabled). If Enabled, the number of hours in the lock-out period is included.
68 CPS Installer/User Guide Table 5.32: Show User Command Parameter Parameter Description |ALL Username or All, which requests a display of all defined users. Default: user currently logged in The Show User command display for one user includes the information in the following table. Table 5.33: Show User Command Display Fields Field Contents User Username. Level User’s access level.
Chapter 5: CPS Appliance Commands 69 Table 5.34: Show User All Command Display Fields (Continued) Field Contents Level User’s access level. If a level was not configured, access rights determine the level: Users with SCON access => APPLIANCEADMIN. Users with USER or PCON but not SCON => ADMIN. Otherwise, USER level is assigned. Access User’s access rights and preemption level. SPC Command The SPC command changes settings for an SPC device and its sockets.
70 CPS Installer/User Guide Table 5.35: SPC Command Parameters (Continued) Parameter Description ONMIN=
Chapter 5: CPS Appliance Commands 71 Table 5.37: User Add Command Parameter Description 3-16 alphanumeric character username. Usernames are case sensitive. PASSWORD= 3-16 alphanumeric character password. Passwords are case sensitive. SSHKEY= Name of uuencoded public key file on an FTP server. The maximum file size that may be received is 4K bytes. If this parameter is specified, you must also specify the FTPIP parameter. FTPIP= FTP server’s IP address.
72 CPS Installer/User Guide User Delete command The User Delete command removes a username entry from the CPS user database. The username may no longer be used to authenticate a session with the CPS appliance. If the specified user is currently logged in, a message is output to the user, indicating that access is no longer permitted, and the Telnet session is terminated. Access right: USER Access level: ADMIN or APPLIANCEADMIN Syntax USER DEL Table 5.
Chapter 5: CPS Appliance Commands 73 Syntax USER SET [PASSWORD=] [SSHKEY=] [FTPIP=] [KEY=] [ACCESS=] [PREEMPT=1|2|3|4] Table 5.40: User Set Command Parameters Parameter Description Username. PASSWORD= New 3-16 alphanumeric character password. Passwords are case sensitive. This parameter is required when changing another user’s password. The password is displayed on the screen.
74 CPS Installer/User Guide Examples The following command sets the access rights for JohnDoe, enabling access to all ports with configuration and monitoring access rights and specifying a preemption level of three. >user set JohnDoe access=pall,scon,smon pre=3 The following command removes the server configuration access right for JohnDoe, and leaves other access rights intact. > user set JohnDoe access=-SCON The following command deletes the SSH key information for JohnDoe.
75 APP ENDICE S APPENDICES Appendix A: Technical Specifications Table A.1: CPS 810/1610 Appliance Technical Specifications Item Value Device Ports Number 8 (CPS810 appliance); 16 (CPS1610 appliance) Type Serial ports Connectors Serial port RJ-45 Network Connection Number 1 Type Ethernet: IEEE 802.3, 10BaseT Fast Ethernet: IEEE 802.3U, 100BaseT Connector RJ-45 Dimensions HxWxD 4.45 x 22.23 x 20.32 cm 1U form factor (1.75 x 8.75 x 8.00 in) Weight 5 lbs (2.
76 CPS Installer/User Guide Table A.1: CPS 810/1610 Appliance Technical Specifications (Continued) Item Temperature Value 0o to 40o Celsius (32o to 104o Fahrenheit) operating -20o to +65o Celsius (-4o to +149o Fahrenheit) nonoperating Humidity 10% to 90% noncondensing Safety and EMC Standards FCC P 15 Class A, EN55022, EN61000-3-2, EN61000-3-3, EN60950, EN55024, ETL (UL 1950), CSA 22.2 No.
Appendices 77 Appendix B: Device Cabling Each CPS appliance serial port has an RJ-45 connector for attaching a serial device. Table B.1 lists the pin assignments. Table B.
78 CPS Installer/User Guide Table B.2: Adaptors for Use with CAT 5 Cable (Continued) Part Number Description 210127 RJ-45 to RJ-45 Male Adaptor for Cisco and Sun Netra console port 750238 CAT 5 Serial Starter Kit - includes all the above adaptors Figure B.1 shows the pin assignments for the adaptors listed in Table B.2.
Appendices Reversing Adaptors and Cables Table B.3 lists the reversing adaptors and reversing cables available from Avocent. Table B.
80 CPS Installer/User Guide Reversing Cable Adaptors RJ-45 8 pin RTS DB-9 DTE RJ-45 8 pin DB-25 DTE RTS RTS 8 4 RTS 6 DSR DSR 7 6 DSR 1 CD CD 6 8 CD 5 2 RD RD 5 3 RD 8 7 DSR 7 CD 6 RD TD 4 3 TD TD 4 2 TD GND 3 5 GND GND 3 7 GND DTR 2 4 DTR DTR 2 20 DTR CTS 1 8 CTS CTS 1 5 210094 RJ-45 8 pin CTS 210090 and 210091 DB-9 DCE RJ-45 8 pin DB-25 DCE 8 8 CTS RTS DSR 7 4 DTR DSR 7 20 DTR CD 6 6 DSR CD 6 6 DSR RD 5 3 TD RD 5 2 T
Appendices 8-WIRE RTS DSR CD RD TD GND DTR CTS 1 2 3 4 5 6 7 8 8 7 6 5 4 3 2 1 CPS Port Modular Adaptor Figure B.
82 CPS Installer/User Guide Appendix C: Supported Traps The CPS appliance supports the following MIB2 traps: • authenticationFailure • linkUp • linkDown • coldStart Table C.1 lists the supported enterprise traps. The Avocent web site, www.avocent.com, contains the complete trap MIB. Table C.1: CPS Appliance Enterprise Traps Trap Description and Variable(s) rebootStarted The CPS appliance is rebooting. Variable: command issued by username userLogin A user logged in to the CPS appliance.
Appendices 83 Table C.1: CPS Appliance Enterprise Traps (Continued) Trap Description and Variable(s) userAuthentication Failure A user failed to authenticate with the CPS appliance. Variable: username. factoryDefaultsSet The CPS appliance has received a command to set itself to factory default values. (The appliance sends this trap after receiving the command, but before actually reverting to factory default values.) portAlert The CPS appliance detected a port alert string on a serial port.
84 CPS Installer/User Guide Table C.1: CPS Appliance Enterprise Traps (Continued) Trap Description and Variable(s) SPCSocketReboot Command The Reboot command was issued to an SPC socket. Variables: command issued by username, server name, SPC location name, CPS appliance port number and SPC socket number. SPCSocketOnSense Failure An SPC socket encountered an on sense failure. Variables: server name, SPC location name, CPS appliance port number and SPC socket number.
Appendices Appendix D: Ports Used Table D.1 lists the UDP and TCP port numbers used by the CPS appliance. The values assume a default configuration; some values are configurable. Table D.1: Ports Used by CPS Appliance Port Type and Number Used for TCP 22 SSH2, if enabled. TCP 23 Telnet. UDP 161 SNMP, if enabled. TCP 3211 Secure protocol used by DSView software. TCP 3001-3016 Telnet serial sessions with ports 1-16. TCP 3101-3116 SSH serial sessions with ports 1-16.
86 CPS Installer/User Guide Appendix E: Technical Support Our Technical Support staff is ready to assist you with any installation or operating problems you encounter with your Avocent product. If an issue should develop, follow the steps below for the fastest possible service: 1. Check the pertinent section of the manual to see if the issue can be resolved by following the procedures outlined. 2. Check our web site at www.avocent.
87 INDE X A Disconnect 43 Access rights and levels about 23 changing 24 configuring 24 displaying 24 Adaptors 77 Authentication configuring 26, 57 displaying configuration information 27, 66 summary 26 types 24 using DSView software 24, 57 See also RADIUS B Help 44 line editing for ASCII TTY devices 36 line editing for VT100 compatible devices 35 Port Alert Add 45 Port Alert Copy 45 Port Alert Delete 46 Port Break 46 Port command summary 44 Port History 46 Port Logout 47 Port Set 47 Port Set In/Out 49
88 CPS Installer/User Guide Show Server 64 Dial-in connections Show Server CLI 65 about 15 Show Server PPP 66 displaying configuration information 15, 65 Show Server RADIUS 66 specifying modem initialization string 15, 51 Show Server Security 66 Disconnect command 43 Show Server SNMP 67 DSView software Show User 67 authentication using 24, 57 SPC 69 clearing stored credentials 57 summary 38 configuring network addresses using 7 syntax 36 connecting to devices 13 User Add 70 using 3 U
Index displaying configuration information 65 Port Alert Delete command 46 Port alert strings.
90 CPS Installer/User Guide Server Reboot command 56 enabling/disabling traps 31, 59 Server Security command 57 specifying community names 31, 58 specifying management entity addresses 59 Server Set command 57 Server SNMP command 58 SPC command 69 Server SNMP Community command 58 SPC device configuring ports and settings 12, 69 Server SNMP Manager command 59 displaying configuration information 12, 62 Server SNMP Trap command 59 Server SNMP Trap Destination command 60 SSH Server SSH command 61
Index access rights and levels 23 User command summary 70 adding 22, 70 User Delete command 72 changing 22, 72 User Logout command 72 deleting 23, 72 User Set command 72 displaying 23, 67 User Unlock command 74 User Add command 70 91
92 CPS Installer/User Guide
LIMITED WARRANTY INSTRUCTIONS This symbol is intended to alert the user to the presence of important operating and maintenance (servicing) instructions in the literature accompanying the appliance. DANGEROUS VOLTAGE This symbol is intended to alert the user to the presence of uninsulated dangerous voltage within the product’s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons.
CPS Installer/User Guide For Technical Support: Email: support@avocent.com www.avocent.com Avocent Corporation 4991 Corporate Drive Huntsville, Alabama 35805-6201 USA Tel: +1 256 430 4000 Fax: +1 256 430 4031 Avocent International Ltd.
