SLC™ Console Manager User Guide SLC8 SLC16 SLC32 SLC48 Part Number 900-449 Revision I November 2013
Copyright and Trademark © 2013 Lantronix, Inc. All rights reserved. No part of the contents of this book may be transmitted or reproduced in any form or by any means without the written permission of Lantronix. Lantronix is a registered trademark of Lantronix, Inc. in the United States and other countries. SLC, SLB, SLP, SLM, Detector and Spider are trademarks of Lantronix, Inc. Windows and Internet Explorer are registered trademarks of Microsoft Corporation.
Notes: This equipment has been tested and found to comply with the limits for Class A digital device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with this user guide, may clause interference to radio communications.
Table of Contents Copyright and Trademark ____________________________________________________2 Warranty _________________________________________________________________2 Open Source Software ______________________________________________________2 Contacts _________________________________________________________________2 Disclaimer and Revisions ____________________________________________________2 Revision History ___________________________________________________________3 List of Figures ______________
4: Quick Setup 30 Recommendations ________________________________________________________30 IP Address _______________________________________________________________30 Front Panel LCD Display and Pushbuttons __________________________________31 Navigating ____________________________________________________________32 Entering the Settings ___________________________________________________32 Restoring Factory Defaults _______________________________________________34 Next Step __________________________
NFS and SMB/CIFS Commands __________________________________________69 Secure Lantronix Network ___________________________________________________69 Secure Lantronix Network Commands ______________________________________72 Date and Time ___________________________________________________________72 Date and Time Commands _______________________________________________74 Web Server ______________________________________________________________74 Web Server Commands __________________________________________
9: PC Cards 118 Set Up of PC Card Storage _________________________________________________118 Modem Settings _________________________________________________________120 PC Card Commands ______________________________________________________126 10: USB Port 127 Set Up of USB Storage ____________________________________________________127 Manage Firmware and Configuration Files _____________________________________129 USB Commands ______________________________________________________130 11: Connectio
Imported Keys ________________________________________________________168 Exported Keys _______________________________________________________168 SSH Commands ______________________________________________________173 Custom User Menus ______________________________________________________173 Custom User Menus Commands _________________________________________175 13: Maintenance 177 Firmware and Configurations _______________________________________________177 Firmware and Configurations Commands _______
Console Port Commands __________________________________________________219 Custom User Menu Commands _____________________________________________219 Date and Time Commands _________________________________________________221 Device Commands _______________________________________________________222 Device Port Commands ___________________________________________________223 Diagnostic Commands ____________________________________________________227 Email Log Commands _______________________________________
Appendix C: Safety Information 266 Cover __________________________________________________________________266 Power Plug _____________________________________________________________266 Input Supply ____________________________________________________________266 Grounding ______________________________________________________________267 Fuses _________________________________________________________________267 Rack __________________________________________________________________267 Port Connections ___
List of Figures Figure 2-2 Lantronix SLC48 Console Manager with PC Card Slots __________________________20 Figure 2-3 Lantronix SLC48 Console Manager with USB Port ______________________________20 Figure 2-4 Device Port Connections __________________________________________________22 Figure 2-5 Console Port Connection__________________________________________________23 Figure 2-6 Network Connection _____________________________________________________23 Figure 2-7 PC Card Interface _________________________
Figure 8-2 Device Ports Page _______________________________________________________82 Figure 8-3 Device Ports - Settings Page_______________________________________________84 Figure 8-4 Modem Log ____________________________________________________________91 Figure 8-5 Port Status and Counters Section ___________________________________________92 Figure 8-6 Device Ports - SLP Page __________________________________________________93 Figure 8-7 Device Ports - Sensorsoft _____________________________________
Figure 13-4 System Log Output Page________________________________________________184 Figure 13-5 Audit Log Page _______________________________________________________185 Figure 13-6 Email Log Page _______________________________________________________186 Figure 13-7 Diagnostics Page______________________________________________________187 Figure 13-8 Diagnostics Report Page ________________________________________________189 Figure 13-9 Status/Reports Page ________________________________________________
List of Tables Table 1-1 Chapter/Appendix and Summary ____________________________________________15 Table 1-2 Conventions Used in This Book _____________________________________________17 Table 2-1 SLC Part Numbers, Models, and Descriptions __________________________________19 Table 3-1 Component Part Numbers and Descriptions ___________________________________25 Table 3-2 Components and Descriptions ______________________________________________26 Table 4-1 Methods of Assigning an IP Address _____________
1: About This Guide This guide provides the information needed to install, configure, and use the products in the Lantronix® SLC™ Console Manager family. It is for IT professionals who must remotely and securely configure and administer servers, routers, switches, telephone equipment, or other devices equipped with a serial port. Note: The features and functionality described in this document specific to PC Card use are supported on SLC-02 part numbers.
1: About This Guide Table 1-1Chapter/Appendix and Summary (continued) Chapter/Appendix Summary Chapter 10: USB Port Provides instructions for configuring USB storage devices (thumb drive) or USB modems. Chapter 11: Connections Provides instructions for configuring connections and viewing, updating, or disconnecting a connection. Chapter 12: User Authentication Provides instructions for enabling or disabling methods that authenticate users who attempt to log in via SSH, Telnet, or the console port.
1: About This Guide Conventions Table 1-2 lists and describes the conventions used in this book. Table 1-2 Conventions Used in This Book Convention Description Bold text Default parameters. Brackets [ ] Optional parameters. Angle Brackets < > Possible values for parameters. Pipe | Choice of parameters. Warning Warning: Means that you are in a situation that could cause equipment damage or bodily injury.
2: Overview SLC console managers are members of a secure IT management family of products. These products offer systems administrators and other IT professionals a variety of tools to securely access and manage their resources. Lantronix has been an innovator in this market with terminal servers and secure console servers, as well as other remote access devices. The SLC console managers build on that foundation and offer new features and capabilities.
2: Overview Two Ethernet ports are useful when you want to use one port on a private, secure network and the other on a public, unsecured network. Table 2-1 lists the part numbers, models, and descriptions.
2: Overview Figure 2-2 Lantronix SLC48 Console Manager with PC Card Slots Two-line Display Front Panel Pushbuttons Two PC Card Slots RS232 Port 1u Tall Self-Contained Rack-Mountable Chassis Dual DC Power Inputs RS-232 Device Ports (1 - 48) Two 10/100 Network Ports Figure 2-3 Lantronix SLC48 Console Manager with USB Port USB Port Two-line Display RS232 Port Front Panel Pushbuttons System Features The SLC console manager has the following capabilities: Connects up to 48 RS-232 serial console
2: Overview Configurable user rights for local and remotely authenticated users Supports an internal PC Card modem, USB modem, or an external modem No unintentional break ever sent to attached servers (Solaris Ready) Simultaneous access on the same port - “listen” and “direct” connect mode Local access through a console port Web administration (using most browsers) Protocols Supported The SLC console manager supports the TCP/IP network protocol as well as: SSH, Telnet, PPP, NFS,
2: Overview Hardware Features The SLC hardware includes the following: 1U-tall (1.
2: Overview Figure 2-5 Console Port Connection Network Connections The SLC network interfaces are 10Base-T/100Base-TX connectors for use with a conventional Ethernet network as shown in Figure 2-6. Use standard RJ45-terminated Category 5 cables. Network parameters must be configured before the SLC console manager can be accessed over the network. Figure 2-6 Network Connection PC Card Interface Note: This PC Card interface is only supported on SLC -02 part numbers.
2: Overview Figure 2-7 PC Card Interface USB Port Note: This USB port is only supported on SLC -03 part numbers. The SLC console manager has a USB port as shown in Figure 2-8.
3: Installation This chapter provides a high-level procedure for installing the SLC console manager followed by more detailed information about the SLC connections and power supplies. Caution: To avoid physical and electrical hazards, please be sure to read Appendix C: Safety Information on page 266 before installing the SLC device.
3: Installation Verify and inspect the contents of the SLC package using the enclosed packing slip or the table above. If any item is missing or damaged, contact your place of purchase immediately.
3: Installation Physical Installation To install the unit in a rack: 1. Place the unit in a 19-inch rack. Warning: Be careful not to block the air vents on the sides of the unit. If you mount the SLC console manager in an enclosed rack, we recommended that the rack have a ventilation fan to provide adequate airflow through the unit. 2. Connect serial devices to the SLC device ports. See Connecting to Device Ports on page 27. 3. Install any PC Cards or USB devices that you intend to use.
3: Installation Figure 3-3 CAT 5 Cable Connection Connecting to Network Ports The SLC network ports, 10Base-T/100Base-TX, allow remote access to the attached devices and the system administrative functions. Use a standard RJ45-terminated Category 5 cable to connect to the network port. Note: One possible use for the two Ethernet ports is to have one port on a private, secure network, and the other on an unsecured network.
3: Installation mounted IEC-type AC power connector(s) are provided for universal AC power input (North American cord provided). The SLC0xx12N models have a single supply/input, while the SLC0xx22N models have dual inputs and dual supplies. The power connector also houses a replaceable protective fuse (fast-blow 4.0A, maximum 250V AC) and the on/off switch. In addition, we provide the SLC0xx22N with a “Y” cord. See the SLC models listed in Table 3-2 on page 26.
4: Quick Setup This chapter helps get the IP network port up and running quickly, so you can administer the SLC console manager using your network. It contains the following sections: Recommendations IP Address Next Step Recommendations To set up the network connections quickly, we suggest you do one of the following: Use the front panel LCD display and pushbuttons. Complete the Quick Setup web page on the web interface.
4: Quick Setup Table 4-1 Methods of Assigning an IP Address (continued) Method Description Detector™ A Windows-based application available for download at http:// www.lantronix.com/support/downloads/ for viewing a DHCP-provided IP address or for assigning a static IP address to the SLC console manager. You can use Detector only if you have not already assigned a static IP address by another method. For more information, see Detector’s online help.
4: Quick Setup Any changes made to the network, console port, and date/time settings take effect immediately. Navigating The front panel has one Enter button (in the center) and four arrow buttons (up, left, right, and down). Press the arrow buttons to navigate from one option to another, or to increment or decrement a numerical entry of the selected option. Use the Enter button to select an option to change or to save your settings. Table 4-3 and Table 4-4 list the actions, buttons, and options.
4: Quick Setup Note: If you have connected Eth1 to the network, and Eth1 is able to acquire an IP address through DHCP, this IP address displays, followed by the letter [D]. Otherwise, the IP address displays as all zeros (000.000.000.000). 2. Press the Enter button on the keypad to enter edit mode. A cursor displays below one character of the existing IP address setting. 3. To enter values: Use the left or right arrow to move the cursor to the left or to the right position.
4: Quick Setup able to Telnet or SSH to the SLC console manager through your network connection, or access the web interface through a web browser. Restoring Factory Defaults To use the LCD display to restore factory default settings: 1. Press the right arrow button to move to the last option, Release. 2. Use the down arrow to move to the Restore Factory Defaults option. A prompt for the 6-digit Restore Factory Defaults password displays. 3. Press Enter to enter edit mode. 4.
4: Quick Setup Figure 4-5 Quick Setup Tab 4. To accept the defaults, select the Accept default Quick Setup settings checkbox in the top portion of the page and click the Apply button at the bottom of the page. Otherwise, continue with step 5. Note: Once you click Apply on the Quick Setup page, you can continue using the web interface to configure the SLC console manager. 5. Enter the following fields.
4: Quick Setup IP Address If specifying an IP address, enter an IP address that will be unique and valid on your network. There is no default. Enter all IP addresses in dot-quad notation. Do not use leading zeros in the fields for dot-quad numbers less than 100. For example, if your IP address is 172.19.201.28, do not enter 028 for the last segment. Note: Currently, the SLC console manager does not support configurations with the same IP subnet on multiple interfaces (Ethernet or PPP).
4: Quick Setup To complete the quick setup: 1. Do one of the following: With a serial terminal connection, power up, and when the command line displays, press Enter. With a network connection, use an SSH program or Telnet program (if Telnet has been enabled) to connect to xx.xx.xx.xx (the IP address in dot quad notation), and press Enter. You should be at the login prompt. 2. Enter sysadmin as the user name and press Enter. 3. Enter PASS as the password and press Enter.
4: Quick Setup Subnet Mask The subnet mask specifies the network segment on which the SLC console manager resides. There is no default. If you selected DHCP or BOOTP, this prompt does not display. Default Gateway IP address of the router for this network. There is no default. Hostname The default host name is slcXXXX, where XXXX is the last 4 characters of the hardware address of Ethernet Port 1. There is a 64-character limit (contiguous characters, no spaces).
4: Quick Setup Figure 4-7 Completed Quick Setup 5. To logout, type logout at the prompt and press Enter. Next Step After quick starting the SLC console manager, you may want to configure other settings. You can use the web page or the command line interface for configuration. For information about the web and the command line interfaces, go to 5: Web and Command Line Interfaces. To continue configuring the SLC console manager, go to 6: Basic Parameters.
5: Web and Command Line Interfaces This chapter describes the interfaces for configuring the SLC console manager that are: command line interface (CLI) and the Web Manager. You can also use the Front Panel LCD which is described in Chapter 4: Quick Setup. This chapter contains the following sections: Web Interface Command Line Interface Note: The features and functionality described in this chapter specific to PC Card use are supported on SLC -02 part numbers.
5: Web and Command Line Interfaces Figure 5-1 Web Page Layout The web page has the following components: Tabs: Groups of settings to configure. Options: Below each tab are options for specific types of settings. Only those options for which the currently logged-in user has rights display. Port Number Bar: Allows you to select a port and display its settings. The E1 and E2 buttons display the Network – Settings page. The A and B buttons display the status of the power supplies.
5: Web and Command Line Interfaces - Information about the SLC device and Lantronix contact information. Configuration site map. Status of the SLC console manager. Help Button: Provides online Help for the specific web page. Logout Button: Closes SLC device. Logging In Only the system administrator or users with web access rights can log into the web page. More than one user at a time can log in, but the same user cannot login more than once unless configured for multiple logins.
5: Web and Command Line Interfaces Note: By default, Telnet is disabled and SSH is enabled. To enable Telnet, use the SSH/ Telnet/Logging tab, a serial terminal connection, or an SSH connection. See Chapter 7: Services for more information. The sysadmin user and users with who have full administrative rights have access to the complete command set, while all other users have access to a reduced command set based on their permissions. Logging In To log into the SLC command line interface: 1.
5: Web and Command Line Interfaces Table 5-2 Actions and Category Options Action Category set auth | cifs | cli | command | consoleport | datetime | deviceport | history | hostlist | ipfilter | kerberos | ldap | localusers | log | menu | network | nfs | nis | ntp | password | radius | remoteusers | routing | script | services | slcnetwork | sshkey | tacacs+ | temperature | usb1 show auth | auditlog | cifs | cli | connections | consoleport | datetime | deviceport | emaillog | history | hostlist | ipfil
5: Web and Command Line Interfaces To clear an IP address, type 0.0.0.0, or to clear a non-IP address value, type CLEAR. When the number of lines displayed by a command exceeds the size of the window (the default is 25), the command output is halted until the user is ready to continue. To display the next line, press Enter, and to display the page, press the space bar. You can override the number of lines (or disable the feature altogether) with the set cli command.
5: Web and Command Line Interfaces To view the last 100 commands entered in the session: show history To clear the command history: set history clear To view the rights of the currently logged-in user: show user Note: For information about user rights, see Chapter 12: User Authentication.
6: Basic Parameters This chapter describes how to set the following basic configuration settings for the SLC console manager using the SLC web interface or CLI: Network parameters that determine how the SLC console manager interacts with the attached network Firewall and routing Date and time Note: If you entered some of these settings using a Quick Setup procedure, you may update them here.
6: Basic Parameters Network Settings Network parameters determine how the SLC console manager interacts with the attached network. Use this page to set the basic configuration settings for the network ports (Eth1 and Eth2). If you entered some of these settings using a Quick Setup procedure, you may update them here. Ethernet Bonding The SLC console manager supports dual Ethernet interfaces.
6: Basic Parameters Figure 6-1 Network Web Page SLC™ Console Manager User Guide 49
6: Basic Parameters 2. Enter the following fields. Ethernet Interfaces Note: Configurations with the same IP subnet on multiple interfaces (Ethernet or PPP) are not currently supported. Eth1/Eth2 Settings Disabled: If selected, disables the network port. Defaults are Eth1 and Eth2 enabled. Obtain from DHCP: Acquires IP address, subnet mask, hostname and gateway from the DHCP server. (The DHCP server may not provide the hostname gateway, depending on its setup.) This is the default setting.
6: Basic Parameters Ethernet Bonding Use the pull-down menu to select and configure one of the following: Disabled Active Backup 802.3 Transmit Load Balancing Note: Bonding requires a static IP address. Gateway Default IP address of the router for this network. If this has not been set manually, any gateway acquired by DHCP for Eth1 or Eth2 displays. All network traffic that matches the Eth1 IP address and subnet mask is sent out Eth1.
6: Basic Parameters Hostname & Name Servers Hostname The default host name is slcXXXX, where XXXX is the last 4 characters of the hardware address of Ethernet Port 1. There is a 64-character limit (contiguous characters, no spaces). The host name becomes the prompt in the command line interface. Domain If desired, specify a domain name (for example, support.lantronix.com). The domain name is used for host name resolution within the SLC console manager.
6: Basic Parameters Network Commands The following CLI commands correspond to the Network Settings page. For more information, see 15: Command Reference.
6: Basic Parameters Figure 6-3 IP Filter Page 1. Enter the following fields. Enable IP Filter Select the Enable IP Filter checkbox to enable all filters, or clear the checkbox to disable all filters. Disabled by default. Packets Dropped (view only) Displays the number of data packets that the filter ignored (did not respond to). Packets Rejected (view only) Displays the number of data packets that the filter sent a “rejected” response to. Test Timer Timer for testing IP Filter rulesets.
6: Basic Parameters Figure 6-4 Adding Network IP Filter Rulesets 2. Enter the Ruleset Name. The Ruleset Name identifies a filter. The name can be letters, numbers, and hyphens only but cannot start with a hyphen. For example, FILTER-2. 3. Enter following fields. Rule Parameters IP Address Specify a single IP address to act as a filter. Example: 172.19.220.64 – this specific IP address only Subnet Mask Specify a subnet mask to act as a filter. Example: 255.255.0.
6: Basic Parameters Action Select whether to drop, reject, or allow communications for the specified IP address, subnet mask, protocol, and port range. Drop ignores the packet with no notification. Reject ignores the packet and sends back an error message. Allow permits the packet through the filter. Generate rule to allow service Allow a particular protocol or service in your filter set.
6: Basic Parameters Viewing IP Filter Rulesets and Mapping You can view a list of filter rulesets and a table showing how each filter is mapped to an interface. You can also view the status of the configured filter rulesets. The status page displays the number of incoming, outgoing, and forwarded packets. To view a list of IP filter rulesets and mappings: 1. Click the Network tab and select the IP Filter option. Figure 6-5 shows the page that displays.
6: Basic Parameters Figure 6-6 IP Filter Status IP Filter Commands The following CLI commands correspond to the Network - IP Filter Status page. For more information, see 15: Command Reference.
6: Basic Parameters Figure 6-7 Routing Page 2. Enter the following fields. Enable RIP Select to enable Dynamic Routing Information Protocol (RIP) to assign routes automatically. Disabled by default. RIP Version Select the RIP version. The default is 2. Enable Static Routing Select to assign the routes manually. The system administrator usually provides the routes. Disabled by default.
6: Basic Parameters Figure 6-8 Status/Reports Page 2. Click the IP Routes checkbox and Generate Report. You can also generate reports for port status and counters, connections, and system configurations in this page. Routing Commands The following CLI commands correspond to the Status/Reports page. For more information, see 15: Command Reference.
7: Services This chapter describes how to use the Services web page to perform the following tasks: Configure the amount of data sent to the logs. Enable or disable SSH and Telnet logins. Enable a Simple Network Management Protocol (SNMP) agent. Identify a Simple Mail Transfer Protocol (SMTP) server. Enable or disable SSH and Telnet logins. Configure an audit log. View the status of and manage the SLC console manager on the secure Lantronix network. Set the date and time.
7: Services Figure 7-1 SSH/Telnet/Logging Page 2. Enter the following fields. System Logging In System Logging, select one of the following alert levels from the drop-down list for each category: Off: Disables this type of logging. Info: Saves informative message, in addition to warning and error messages. Warning: Saves message output from a condition that may be cause for concern, in addition to error messages. This is the default for all message types.
7: Services Services Specifies that messages about SNMP and SMTP get logged. Authentication Specifies that messages concerning user authentication get logged. Device Ports Specifies that messages concerning device ports and connections get logged. Diagnostics Specifies that messages concerning system status and problems get logged. General Specifies that messages not in the categories above get logged.
7: Services Audit Log Enable Log Select to save a history of all configuration changes in a circular log. Disabled by default. The audit log is saved through SLC reboots. Size Set the maximum size of a log from 1 to 500 Kbytes. The default maximum size of a log is 50 Kbytes (approximately 500 entries). Include CLI Commands Select to cause the audit log to include the CLI commands that have been executed. Disabled by default.
7: Services SNMP Simple Network Management Protocol (SNMP) is a set of protocols for managing complex networks. 1. Click the Services tab and select the SNMP option. Figure 7-2 shows the page that displays. Figure 7-2 SNMP Page 2. Enter the following fields. Enable Agent Enables or disables SNMP agent, which allows read-only access to the system. Disabled by default.
7: Services Enable Traps Traps are notifications of certain critical events. Disabled by default. This feature is applicable when SNMP is enabled. Examples of traps that the SLC console manager sends include: Ethernet Port Link Up Ethernet Port Link Down Authentication Failure SLC Booted SLC Shutdown Device Port Logging Power Supply Status Sysadmin user password changed The SLC device sends the traps to the host identified in the NMS field.
7: Services Encrypt with Encryption standard to use: DES: Data Encryption Standard (default) AES: Advanced Encryption Standard V3 Read-Only User User Name SNMP v3 is secure and requires user-based authorization to access SLC MIB objects. Enter a user ID. The default is snmpuser. Up to 20 characters. Password/Retype Password Password for a user with read-only authority to use to access SNMP v3. The default is SNMPPASS. Up to 20 characters.
7: Services Logs directory, which contains the system logs and the device port local buffers (see System Logs on page 183) and is read-only. Config directory, which contains saved configurations and is read-write. The share allows users to access the contents of the directory or map the directory onto a Windows computer. Users can also access the device port local buffers from the CIFS share (see Device Ports – Logging on page 96). To configure NFS and SMB/CIFS: 1.
7: Services Read-Write If enabled, indicates that the SLC console manager can write files to the remote directory. If you plan to log port data or save configurations to this directory, you must enable this option. Mount Select the checkbox to enable the SLC device to mount the file to the NFS server. Disabled by default. SMB/CIFS Share Share SMB/CIFS directory Select the checkbox to enable the SLC console manager to export an SMB/CIFS share called “public.” Disabled by default.
7: Services Figure 7-4 Secure Lantronix Network Page with Local Subnet Addressing 2. Click a device IP Address in the column labeled IP Address/Web Interface. A separate browser opens at the device Home page after you have logged in. In the separate browser page, you can manage the device. 3. To access a device port via SSH or Telnet, click on the bright green device ports in the Ports column. SSH/Telnet access to the CLI or a device port requires that Web SSH or Web Telnet is enabled.
7: Services Figure 7-5 Telnet Session To configure how SLC devices are searched for on the network: 1. Click the Search Options link on the top right of the Secure Lantronix Network page. Figure 7-6 shows the page that displays.
7: Services 2. Enter the following fields. Secure Lantronix Network Search Select the type of search you want to conduct. Local Subnet: Performs a broadcast to detect SLC devices on the local subnet. Manually Entered IP Address List: Provides a list of IP addresses that may not respond to a broadcast because of how the network is configured. The default is Both. IP Address If you selected Manually Entered IP Address List or Both, enter the IP address of the SLC device you want to find and manage. 3.
7: Services Figure 7-7 Date & Time Page 1. Enter the following fields. Change Date/ Time Select the checkbox to manually enter the date and time at the SLC location. Date Select the current month, day, and year from the drop-down lists. Time Select the current hour and minute from the drop-down lists. Time Zone Select the appropriate time zone.From the drop-down list. Enable NTP Click the checkbox to enable NTP synchronization. NTP is disabled by default.
7: Services Date and Time Commands The following CLI commands correspond to the Date & Time page. For more information, see 15: Command Reference. set datetime (on page 221) set ntp (on page 221) show ntp (on page 222) Web Server The Web Server page allows the system administrator to: Configure attributes of the web server. View and terminate current web sessions. Import a site-specific SSL certificate.
7: Services 2. Enter the following fields. Timeout Select the number of minutes (5-120) after which the SLC web session times out. The default is 5. To avoid timeouts, select No. If the session times out, refresh the browser page and enter your user ID and password to open another web session. Note: If you close the browser without logging off the SLC console manager first, you will have to wait for the timeout time to expire.
7: Services Figure 7-10 Web Server - SSL Certificate Page 2. Enter the following fields. Reset to Default Certificate To reset to the default certificate, select the checkbox to reset to the default certificate. Unselected by default. Import SSL Certificate To import your own SSL Certificate, select the checkbox. Unselected by default. Import via Select the SCP, SFTP, or HTTPS method from the drop-down list. The default is SCP. Certificate Filename Assign a certificate filename.
7: Services Password & Retype Password Password to use to SCP or SFTP the file. 3. Click the Apply button. 4. Reboot the SLC console manager for the update to take effect. 5. Click the Back to Web Server link to return to the Web Server page. Web Server Commands The following CLI commands correspond to the Web Server page. For more information, see 15: Command Reference.
7: Services -
8: Devices This chapter describes how to view the device status, configure devices, and use an SLC device port connected to an external device, such as a server or a modem. Chapter 11: Connections describes how to use the Connections page to connect external devices and outbound network connections (such as Telnet or SSH) in various configurations. The Console Port page allows you to configure the console port, if required.
8: Devices For #2, #3, #4, #5, and #6, if logins or authentication are not enabled, the user is directly connected to the device port with no authentication. For #1 and #6, if logins are enabled, the user is authenticated first, and then logged into the command line interface. The user login determines permissions for accessing device ports. Permissions There are three types of permissions: Direct (or data) mode: The user can interact with and monitor the device port (connect direct command).
8: Devices Figure 8-1 Device Status Page Device Ports On the Device Ports page, you can set up the numbering of Telnet, SSH, and TCP ports, view current port modes, and select individual ports to configure.
8: Devices 1. Click the Devices tab and select the Device Ports option. Figure 8-2 shows the page that displays. Figure 8-2 Device Ports Page Starting port numbers for Telnet, SSH, and TCP display on the left. The list of ports on the right includes the individual ports and the current mode. Note: To view additional ports and depending on the SLC model, click the 17-32 button or the 33-48 button. Icons that represent some of the possible modes include the following. Idle The port is not in use.
8: Devices Telnet in or SSH in is enabled for the device port. The device port is either waiting for a Telnet or SSH login or has received a Telnet or SSH login (a user has logged in). To set up Telnet, SSH, and TCP port numbers: 1. Enter the following fields. Starting Telnet Port Assign a starting port number for connecting via Telnet. Enter a number between 1025 and 65535 that represents the first port. The default is 2000 plus the port number.
8: Devices Figure 8-3 Device Ports - Settings Page SLC™ Console Manager User Guide 84
8: Devices OR Click the port number on the green bar at the top of each page (shown here). The same page displays as in Figure 8-3. To enter device port settings: 1. Enter the following fields. Port (view only) Displays the port number. Mode (view only) Displays the port status automatically. Name Assign the port name. Valid characters are letters, numbers, dashes (-), periods, and underscores ( _ ).
8: Devices IP Settings Telnet In Enables access to this port through Telnet. Disabled by default. SSH In Enables access to this port through SSH. Disabled by default. TCP in Port: Automatically assigned Telnet, SSH, and TCP port numbers. You can override the value. Timeout: To cause an idle Telnet, SSH or TCP connection to disconnect after a specified number of seconds, select the checkbox and enter a value from 1 to 1800 seconds. The default is 600 seconds.
8: Devices Note: Check the serial device equipment settings and documentation for the proper settings. The device port and the attached serial device must have the same settings. Baud Enables the speed (baud rate) with which the device port exchanges data with the attached serial device. From the drop-down list, select the baud rate. Most devices use 9600 for the administration port, so the device port defaults to this value. Check the equipment settings and documentation for the proper baud rate.
8: Devices Modem Settings Note: Depending on the State and Mode you select, different fields are available. State Indicates whether an external modem is attached to the device port. If enabling, set the modem to dial-out, dial-in, dial-back, CBCP server, CBCP client, dial-ondemand, dial in & dial-on-demand, or dial-in/host list. Disabled by default. For more information, see Modem State Parameters on page 277.
8: Devices Modem Settings: Text Mode Timeout Logins If you selected Text mode, you can enable logins to time out after the connection is inactive for a specified number of minutes. The default is No. This setting is only applicable for text mode connections. PPP mode connections stay connected until either side drops the connection. Disabled by default. Dial-in Host List From the drop-down list, select the desired host list.
8: Devices Restart Delay The number of seconds after the timeout and before the SLC device attempts another connection. The default is 30 seconds. 2. Click the Apply button. To save selected settings to ports other than the one you are configuring: 1. From the Apply Settings drop-down box at the bottom of the Device Ports - Settings page, select none, General, IP, Data, Modem, or All. 2.
8: Devices Figure 8-4 Modem Log Port Status and Counters Port Status and Counters list the status of signals and interfaces. SLC console manager updates and increments the port counters as signals change and data flows in and out of the system. These counters help troubleshoot connections or diagnose problems because they give the user an overview of the state of various parameters. By setting them to zero and then re-checking them later, the user can view changes in status. See Figure 8-5 for an example.
8: Devices Note: Status and statistics shown on the web interface represent a snapshot in time. To see the most recent data, you must reload the web page. Figure 8-5 Port Status and Counters Section Device Port – SLP Power Manager On the Device Ports – SLP page, configure commands to send to an SLP power manager or SLP power manager expansion chassis that expands the number of power ports. To open the Device Ports – SLP page: 1.
8: Devices Figure 8-6 Device Ports - SLP Page To configure the SLP power manager: 1. Enter the following fields. Port (view only) Displays the port number. Name (view only) Displays the port name. Device (view only) Displays the device type. SLP Login User ID for logging into the SLP power manager. SLP Password/ Retype Password Password for logging into the SLP power manager.
8: Devices Environmental Status Click the link to view the environmental status (e.g., temperature and humidity) of the SLP power manager. Infeed Status Click the link to view the status of the data the SLP power manager is receiving. System Info Click the link to see system information pertaining to the SLP power manager. SLP Commands Restart SLP To restart the SLP power manager, select the checkbox.
8: Devices Figure 8-7 Device Ports - Sensorsoft To configure Sensorsoft settings: 1. Select a port and enter the following fields. Device Port (view only) Displays the port number. Device Port Name (view only) Displays the port name. Temp (°C) Displays the current temperature (Celsius). Low Temp Enter the temperature (Celsius) permitted on the monitored device below which the SLC device sends a trap.
8: Devices Device Port Commands The following CLI commands correspond to the Device Ports page. For more information, see 15: Command Reference.
8: Devices 02_Port-2_3.log 02_Port-2_4.log 02_Port-2_5.log PC Card Logging Note: The PC Card logging feature is only supported on SLC -02 part numbers. Data can be logged to a PC Card Compact Flash that is loaded into one of the PC Card slots on the front of the SLC device and properly mounted. Data logged locally to the SLC console manager is limited to 256 Kbytes and may be lost in the event of a power loss. Data logged to a PC Card Compact Flash does not have these limitations.
8: Devices To set logging parameters: 1. In the Device Ports – Settings page, click the Logging: Settings link. Figure 8-8 shows the page that displays. Figure 8-8 Device Ports - Logging 2. Enter the following fields. Local Logging Local Logging Enable local logging and each device port stores 256 Kbytes (approximately 400 screens) of I/O data in a true FIFO buffer. Disabled by default. Clear Local Log Select the checkbox to clear the local log.
8: Devices Email Traps Email/Traps Select the checkbox to enable email and SNMP logging. Email logging sends an email message to pre-defined email addresses or an SNMP trap to the designated NMS (see 7: Services) when alert criteria are met. Disabled by default. Send Select notification type to send: Email, SNMP, or Both. Email is the default. Email and SNMP logging must be enabled for this feature to work.
8: Devices Email Subject Input a subject text appropriate for your site. May have up to 128 characters. The email subject line is pre-defined for each port with its port number. You can use the email subject to inform the desired recipients of the problem on a certain server or location (e.g., server location or other classification of your equipment). This is helpful if the email message goes to the system administrator’s or service technician's mobile or wireless device (e.g.
8: Devices USB Logging Note: This USB logging feature is only supported on SLC -03 part numbers. USB Logging Select to enable USB logging. See USB Port Logging on page 97. Disabled by default. USB Log to View A list of saved log files to view. Log To Port U1 is the default and is automatically selected. Max Number of Files The maximum number of files to create to contain log data to the port. These files keep a history of the data received from the port.
8: Devices Console Port The console port initially has the same defaults as the device ports. Use the Console Port page to change the settings, if desired. To set console port parameters: 1. Click the Devices tab and select Console Port. Figure 8-9 shows the page that displays. Figure 8-9 Console Port Page 2. Enter the following fields. Status (view only) Displays the status of the console port. Baud Select the baud rate (speed) with which the device port exchanges data with the attached serial device.
8: Devices Show Lines on Connecting Click the checkbox if you connect to the console port with a terminal emulator. You will see the last lines of output to the console. For example, the SLC boot messages or the last lines of output during a CLI session on the console. 3. Click the Apply button. Console Port Commands The following CLI commands correspond to the Console Port page. For more information, see Chapter 15: Command Reference.
8: Devices Note: To clear fields in the lower part of the page, click the Clear Host List button. Host Lists (view only Displays host lists by ID and Name. Host List Id (view only) Displays after a host list is saved. Host List Name Enter a name for the host list. Retry Count Enter the number of times the SLC console manager should attempt to retry connecting to the host list. Authentication Select to require authentication when the SLC device connects to a host.
8: Devices 2. Click View Host Lists button. The parameters display in the Host List Parameters section. 3. Click the Edit Host List button. A new window opens and when the changes are complete, the message “Host List configuration is complete.” displays. 4. After the process completes, you can click the Host Lists tab. To delete a host list: 1. Select the host list in the Host Lists table. 2. Click the Delete Host List button. A new window opens to confirm the deletion.
8: Devices Figure 8-11 Scripts Page 2. Click the Add button. Figure 8-11 shows the page that displays.
8: Devices Figure 8-12 Adding New Scripts Page 3. Enter the following fields. Script Name A unique identifier for the script. Type Select Interface for a script that utilizes Expect/Tcl to perform pattern detection and action generation on Device Port output. Select Batch for a script of CLI commands. Script Text In the free-form editing box, enter the contents of the script. Group Select the group to which the script will belong: Default Users—This group has only the most basic rights.
8: Devices 4. Click the Apply button. If your Interface script gets validated before it is saved. Once the script is saved, the main Scripts page displays. To view or update a script: 1. In the Scripts table, select the script and click the Edit Script button. The page for editing script attributes displays. 2. Update the script attributes. 3. Click the Apply button. To rename a script: 1. In the Scripts table, select the script and enter a new script name in the New Name field. 2.
8: Devices Secondary commands provide support for the primary commands and are generally not useful by themselves. For example, the expr command can be used to generate a value for a set command. set [expr 1 + 1] Control Flow commands allow conditional execution of other commands based on the results of the evaluation of a Boolean expression. Definitions Word: A contiguous group of characters delimited on either side by spaces. Not enclosed by double quotes.
8: Devices parameters. The preprocessor will require that these commands appear only as the first element of a command line. The start of a command line is delimited by any of the following: The start of a new line of text in the script A semicolon (;) A left brace ({) set The set command assigns a value to a variable.
8: Devices send, send_user The send command sends output to a sub-process, The send_user command sends output to the standard output. Both commands have the same syntax: send send_user where can be either a quoted string or a variable reference. expect, expect_user, expect_before, expect_after, expect_background The expect command waits for input and attempts to match it against one or more patterns.
8: Devices string range Return a string consisting of the characters in 'str' between 'int start' and 'int end' string tolower Convert to lowercase string toupper Convert to uppercase string trim Trim 'str 2' from 'str 1' string trimleft Trim 'str 2' from the beginning of 'str 1' string trimright Trim 'str 2' from the end of 'str 1' element can either be a quot
8: Devices while () { command 1 command 2 ... Command n } if, elseif and else The if command executes an associated block of commands if its Boolean expression evaluates to TRUE. Each command within the block must be a Primary command. Syntax: if () { command 1 command 2 ... command n } The elseif command is used in association with an if command - it must immediately follow an if or elseif command.
8: Devices Sample Scripts Interface Script—Monitor Port The Monitor Port (Monport) script connects directly to a device port by logging into the SLC port, gets the device hostname, loops a couple of times to get port interface statistics, and logs out.
8: Devices #Already Logged in got Command Prompt $prompt { send_user "Already Logged....
8: Devices The following is the screen output: slb247glenn]> conn script ex4 deviceport 7 login: Logging in.... sysadmin sysadmin Password: PASS Welcome to the SLC Console Manager Model Number: SLC48 For a list of commands, type 'help'. [slc251glenn]> show network port 1 host show network port 1 host ___Current Hostname Settings___________________________________________________ Hostname: slc251glenn Domain: support.int.lantronix.
8: Devices The following is the screen output of the script: [slb247glenn]> se script runcli cli [slb247glenn]> show network port 1 host ___Current Hostname Settings___________________________________________________ Hostname: slb247glenn Domain: [slb247glenn]> [slb247glenn]> show deviceport names ___Current Device Port Names___________________________________________________ 01 - SCS_ALIAS_Test 05 - Port-5 02 - Port-2 06 - Port-6 03 - Port-3 07 - SLC-251 04 - Port-4 08 - Port-8 [slb247glenn]> [slb
9: PC Cards This chapter describes how to configure storage by using the PC Card web page and CLI. The PC Card page can be used to configure Compact Flash storage and modem/ISDN PC cards. A Compact Flash is useful for saving and restoring configurations and for Device Port Logging (see Device Ports – Logging on page 96). The SLC console manager supports a variety of Compact Flash-to-PC Card adapters, as well as modem and Basic Rate Interface (BRI) ISDN cards. See the Lantronix web site www.lantronix.
9: PC Cards Figure 9-2 PC Card - Storage Page 4. Enter the following fields. Slot (view only) Slot on the SLC console manager where the PC Card is inserted. Device (view only) Type of PC Card (modem or storage). Type (view only) Information read from PC Card. State (view only) Applies to storage cards. Mount Click the checkbox to mount the first partition of the Compact Flash on the SLC device (if not currently mounted).
9: PC Cards Modem Settings To enter modem settings for a PC card, perform the following steps. 1. Insert any of the supported modem or ISDN cards (see www.lantronix.com/slc) into one of the PC card bays on the front of the SLC device. You can do this before or after powering up the SLC console manager. 2. Click the Devices tab and select the PC Card option. 3. Click the radio button in the PC Card Slots table that shows a modem installed. 4. Click the Configure button.
9: PC Cards Figure 9-3 PC Card - Modem/ISDN Page SLC™ Console Manager User Guide 121
9: PC Cards 5. Enter the following fields. Slot (view only) Displays the slot position. Device (view only) Displays the device type. Type (view only) Displays the card type. Firmware Version (view only) Displays the current firmware version. State (view only) Displays the state of the device. State Enables the modem to use dial-out, dial-in, dial-back, CBCP server, CBCP client, dial-on-demand, or dial in & dial-on-demand. Disabled by default.
9: PC Cards Dial-back Delay For dial-back and CBCP Server, the number of seconds between the dial-in and dial-out portions of the dialing sequence. For more information about CBCP, see Modem State Parameters on page 277. Data Settings Baud The speed with which the device port exchanges data with the attached serial device. From the drop-down list, select the baud rate. Most devices use 9600 for the administration port, so this is the default.
9: PC Cards GPRS Context Command to specify the protocol data packet (PDP) context parameter values. PPP Compression Select to enable negotiation of data compression over PPP links. Disabled by default. GSM Bearer Svc. Command to select the bearer service, data rate, and connection element to use when data call originate. Auto-acquire DNS Select to enable the SLC console manager to acquire up to three DNS servers by means of GPRS. Enabled by default.
9: PC Cards Enable NAT Select to enable Network Address Translation (NAT) for dial-in and dial-out PPP connections on a per modem (Device Port or PC Card) basis. Users dialing into the SLC console manager access the network connected to Eth1 and/or Eth2. Note: IP forwarding must be enabled on the Network - Settings page for NAT to work. To enable, click the IP Forwarding link to display the Network Settings page. Dial-out Number Phone number for dialing out to a remote system or serial device.
9: PC Cards To view the log of all modem activity: 1. Click the View Modem Log link. PC Card Commands The following CLI commands correspond to the PC Card. For more information, see Chapter 15: Command Reference .
10: USB Port This chapter describes how to configure storage by using the USB web page and CLI. The USB web page can be used to configure the thumb drive and modems. The thumb drive is useful for saving and restoring configurations and for Device Port Logging (see Device Ports – Logging on page 96). The SLC console manager supports a variety of thumb drives and modems. See the Lantronix web site for a complete list. Note: This USB port chapter applies only to SLC models with part numbers -03.
10: USB Port 4. To configure the USB port, from the USB Ports table, click the radio button (on the far right) for Port U1. 5. Click Configure. Figure 10-2 shows the page that displays. Figure 10-2 USB - Storage Page 6. Enter the following fields. Port (view only) Slot on the SLC console manager for the USB device. Device (view only) Type of device (modem or storage). Type (view only) Information read from USB device. State (view only) Applies to USB device.
10: USB Port 7. Click Apply. Manage Firmware and Configuration Files To manage the firmware and configuration files, perform the following steps. 1. Click the Manage Files on the Thumb Drive link on the USB - Storage page. Figure 10-3 Firmware and Configurations - Manage Files (Top of Page) Note: At the bottom of the page, shown in Figure 10-4, are the Delete, Download, and Rename options.
10: USB Port Figure 10-4 Firmware and Configurations - Manage Files (Bottom of Page) 2. To delete a file, click the check box next to the filename and click Delete File. A confirmation message displays. 3. To download a file, click the Download button. Select the file from the list. 4. To rename a file, click the check box next to the filename and enter a new name in the New File Name: box. Click Rename File. USB Commands The following CLI commands correspond to the USB port.
10: USB Port set usb storage delete (on page 261) set usb storage format (on page 261) show usb (on page 261) show usb storage (on page 262) show usb modem (on page 262) SLC™ Console Manager User Guide 131
11: Connections This chapter describes how to use the Connections web page to connect external devices and outbound network connections, such as Telnet or SSH, in various configurations. For information about how to configure devices to interact with an SLC device port connected to an external device, see Chapter 8: Devices.
11: Connections Figure 11-1 Terminal Server VT100 Terminals VT100 Terminals Remote Access Server Figure 11-2 shows the SLC console manager connected to one or more modems by its device ports. Configure the device ports on the Device Ports - Settings web page by selecting the Dial-in option in the Modem Settings section. Most customers use the modems in PPP mode to establish an IP connection to the SLC device and either Telnet or SSH into the SLC.
11: Connections Multiport Device Server Figure 11-4 shows a PC connected to the device ports on the SLC console manager as virtual serial ports, enabling the ports to act as if they are local ports to the PC. Configure the SLC device for this setup by using special software, for example, Com Port Redirector (available on www.lantronix.com) or similar software.
11: Connections Figure 11-5 Console Server SLC™ Console Manager User Guide 135
11: Connections Connection Configuration To create a connection: 1. Click the Devices tab and Connections. Figure 11-6 shows the page that displays. Figure 11-6 Connections Page 2. Enter the following fields. Outgoing Connection Timeout Enable an outgoing timeout by clicking the Yes radio button and specifying the seconds. The range is 1 to 9999 seconds. The default is 5 seconds.
11: Connections Connect: DevicePort Input the port number that you are connecting. The device port must be connected to an external serial device and must not have command line interface logins enabled, be connected to a modem, or be running a loopback test. Note: To see the current settings for this device port, click the Settings link. Data Flow Select the arrow showing the direction (bidirectional or unidirectional) the data will flow in relationship to the device port you are connecting.
11: Connections Figure 11-7 Current Connections Section of the Connections Page To view details about a connection: 1. Hold the mouse over the arrow in the Flow column. To disconnect/delete one or more connections: 1. Select one or more connections in the Select column and click the Terminate buttons. To reestablish the connection: 1. Create the connection again in the top part of the page. To view information about Web connections: 1. Click the here link in the text above the table.
12: User Authentication This chapter describes authentication methods for users who attempt to log into the SLC console manager by Telnet, SSH, the console port, or one of the device ports. It includes descriptions of user rights, NIS, LDAP, RADIUS, Kerberos, and TACACS+ options.
12: User Authentication User “joe” tries to login. Because there is an LDAP user named “joe,” the SLC console manager tries to authenticate that user by using the LDAP password first. If that login fails, then the SLC device may or may not try to authenticate the user by using the NIS password. User Rights The SLC console manager has three default user groups: Administrators, Power Users, and Default Users. Each has a predefined set of rights; users inherit rights from the user group to which they belong.
12: User Authentication By default, the system assigns new users to the Default Users group, but you can change their group membership at any time. If you change a user's rights while the user is logged into the web or CLI, the results do not take effect until the next time the user logs in. See Local/Remote User Settings on page 145 for information about assigning rights to users. Authentication Methods To enable, disable, and set the precedence of authentication methods: 1.
12: User Authentication NIS (Network Information System) A network naming and administration system developed by Sun Microsystems for smaller networks. Each host client or server in the network has knowledge about the entire network. A user at any host can access files or applications on any host in the network with a single user identification and password. NIS uses the client/server model and the Remote Procedure Call (RPC) interface for communication between hosts.
12: User Authentication LDAP on page 152 RADIUS on page 157 Kerberos on page 161 TACACS+ on page 164 Authentication Commands The following CLI commands correspond to the Authentication Methods page. For more information, see Chapter 15: Command Reference . set auth (on page 214) show auth (on page 214) Local and Remote Users The system administrator can configure the SLC console manager to use local/remote accounts to authenticate users. 1.
12: User Authentication The top of the page has checkboxes for enabling local and remote users and for setting password requirements. The bottom of the page displays a table listing and describing all local and remote users. To enable local and remote users capabilities: 1. Enter the following fields. Enable Local Users Select to enable all local users except sysadmin. The sysadmin is always available regardless of how you set the check box. Enabled by default.
12: User Authentication Local/Remote User Settings You can add, edit, or delete a local or remote user. To add a user: 1. On the Local/Remote Users page, click the Add/Edit User button. Figure 12-4 shows the page that displays. Figure 12-4 Local/Remote User Settings Page 2. Enter the following fields. Login User ID of selected user. Authentication Select the type of authenticated user: Local: User listed in the SLC database. Remote: User not listed in the SLC database.
12: User Authentication Listen Ports The device ports that the user may access to view data using the connect listen command. Enter the port numbers or the range of port numbers (for example, 1, 5, 8, 10-15). U and L denote the PC Card upper and lower slots. U1 denotes the USB port. Data Ports The device ports with which the user may interact using the connect direct command. Enter the port numbers or the range of port numbers.
12: User Authentication Lock Account Select to locks the account indefinitely. Account Status Current status of the account: Active, Locked, or Locked (invalid logins). 3. Assign rights to users. Each user is a member of a group that has a predefined user rights associated with it. You can assign or remove additional rights to the individual user. Group Select the group to which the user will belong: Default Users: This group has only the most basic rights.
12: User Authentication Note: The logged-in username displays at the top of the web page. Only the tabs and options display for the user who has rights. Shortcut to add a user based on an existing user: 1. Display the existing user on the Local/Remote Users Settings page. The fields in the top part of the page display the current values for the user. 2. Change the Login to that of the new user. It is best to change the Password too. 3. Click the Apply button. To edit a local user: 1.
12: User Authentication set localusers maxloginattempts (on page 237) set localusers multipleadminlogins (on page 237) set localusers periodlockout (on page 237) set localusers periodwarning (on page 238) set localusers reusehistory (on page 238) set remoteusers (on page 249) set remoteusers listonlyauth (on page 250) set remoteusers delete (on page 249) show localusers (on page 238) show remoteusers (on page 250) show user (on page 214) NIS The system administra
12: User Authentication Figure 12-5 NIS Page 2. Enter the following fields. Enable NIS Displays selected if you enabled this method on the Authentication Methods page. If you want to set up this authentication method but not enable it immediately, clear the checkbox. Note: You can enable NIS here or on the first User Authentication page. If you enable NIS here, it automatically displays at the end of the order of precedence on the User Authentication page.
12: User Authentication NIS Slave Servers #1 -5 The IP addresses or host names of up to five slave servers. Custom Menu If custom menus have been created (see Local/Remote Users Commands on page 148), you can assign a default custom menu to NIS users. Escape Sequence A single character or a two-character sequence that causes the SLC console manager to leave direct (interactive) mode. (To leave listen mode, press any key.
12: User Authentication Secure Lantronix Network Right to view and manage secure IT management devices (e.g., SLP power managers, Spider devices, SLC console managers) on the local subnet. Local Users Right to add or delete local users on the system. Remote Authentication Right to assign a remote user to a user group and assign a set of rights to the user. SSH Keys Right to set SSH keys for authenticating users. User Menus Right to create a custom user menu for the CLI for NIS users.
12: User Authentication Typically user authorization (operational rights and device port privileges parameters support only users who exist in the SLC local user database. If an SLC device user gets authenticated via a remote authentication server such as LDAP, configuration of the user is required in the remote authentication server (for authentication only, no authorization) and the SLC console manager (authorization only).
12: User Authentication Figure 12-6 LDAP Page 2. Enter the following fields. Enable LDAP Displays as checked if you enabled this method in the User Authentication Methods page. If you want to set up this authentication method but not enable it immediately, clear the checkbox. Server Enter the IP address or host name of the AD server. Port Enter the TCP port number of the AD server. The default is 389. Base Enter the LDAP search base for your AD Domain (e.g., dc=company, dc=com).
12: User Authentication Bind Password and Retype Password Enter the password for the user configured in Bind Name for a non-anonymous bind. This entry is optional. Acceptable characters are a-z, A-Z, and 0-9. The maximum length is 127 characters. Bind with Login Select to bind with the login and password that a user is authenticating with. This requires that the Bind Name contain the $login token, which will be replaced with the current login.
12: User Authentication 3. In the User Rights section, select the user group to which LDAP users belong. Group Select the group to which the LDAP users will belong: Default Users: This group has only the most basic rights (described above). Power Users: This group has the same rights as Default Users plus Networking, Date/Time, Reboot & Shutdown, and Diagnostics & Reports. Administrators: This group has all possible rights. 4. Select or clear the checkboxes for the following rights.
12: User Authentication User Attributes and Permissions from LDAP Schema Remote user attributes (group/permissions and port access) can be obtained from an Active Directory server schema via the user attribute secureLinxSLCPerms. This attribute is a set of parameter-value pairs. Each parameter and value is separated by a space, and a space separates each parameter-value pair. White space is not supported in the value strings. See Chapter 9: PC Cards for the parameters and values.
12: User Authentication Figure 12-7 RADIUS Page 2. Enter the following fields. Enable RADIUS Displays selected if you enabled this method on the User Authentication page. If you want to set up this authentication method but not enable it immediately, clear the checkbox. Note: You can enable RADIUS here or on the first User Authentication page. If you enable RADIUS here, it automatically displays at the end of the order of precedence on the User Authentication page.
12: User Authentication Server #1 Secret Text that serves as a shared secret between a RADIUS client and the server (SLC device). The shared secret is used to encrypt a password sent between the client and the server. May have up to 128 characters. RADIUS Server #2 IP address or host name of the secondary RADIUS server. This server can be used as a SecurID proxy. Server #2 Port Number of the TCP port on the RADIUS server used for the RADIUS service.
12: User Authentication 3. In the User Rights section, select the user group to which RADIUS users belong. Group Select the group to which the RADIUS users will belong: Default Users: This group has only the most basic rights (described above). Power Users: This group has the same rights as Default Users plus Networking, Date/Time, Reboot & Shutdown, and Diagnostics & Reports. Administrators: This group has all possible rights. 4. Select or clear the checkboxes for the following rights.
12: User Authentication RADIUS Commands The following CLI commands correspond to the RADIUS page. For more information, see Chapter 15: Command Reference . set radius (on page 248) set radius server (on page 248) show radius (on page 249) Kerberos Kerberos is a network authentication protocol that provides strong authentication for client/server applications by using secret-key cryptography.
12: User Authentication Figure 12-8 Kerberos Page 2. Enter the following fields. Enable Kerberos Displays selected if you enabled this method on the User Authentication page. If you want to set up this authentication method but not enable it immediately, clear the checkbox. Note: You can enable Kerberos here or on the first User Authentication page. If you enable Kerberos here, it automatically displays at the end of the order of precedence on the User Authentication page.
12: User Authentication KDC Port Port on the KDC listening for requests. Enter an integer with a maximum value of 65535. The default is 88. Custom Menu If custom menus have been created (see Local/Remote Users Commands on page 148), you can assign a default custom menu to RADIUS users. Escape Sequence A single character or a two-character sequence that causes the SLC console manager to leave direct (interactive) mode. (To leave listen mode, press any key.
12: User Authentication Services Right to enable and disable system logging, SSH and Telnet logins, SNMP, and SMTP. Secure Lantronix Network Right to view and manage secure IT management devices (e.g., SLP power managers, Spider devices, SLC console managers) on the local subnet. Date/Time Right to set the date and time. Local Users Right to add or delete local users on the system. Remote Authentication Right to assign a remote user to a user group and assign a set of rights to the user.
12: User Authentication Users who are authenticated through Kerberos are granted device port access through the port permissions on this page. All Kerberos users are members of a group that has predefined user rights associated with it. You can add additional user rights that are not defined by the group. To configure the SLC console manager to use TACACS+ to authenticate users: 1. Click the TACACS+ tab and select TACACS+. Figure 12-9 shows the page that displays. Figure 12-9 TACACS+ Page 2.
12: User Authentication TACACS+ Servers 1-3 IP address or host name of up to three TACACS+ servers. Secret Shared secret for message encryption between the SLC console manager and the TACACS+ server. Enter an alphanumeric secret of up to 127 characters. Encrypt Messages Select the checkbox to encrypt messages between the SLC device and the TACACS+ server. Selected by default. Custom Menu If custom menus have been created (see the User Guide), you can assign a default custom menu to TACACS+ users.
12: User Authentication Services Right to enable and disable system logging, SSH and Telnet logins, SNMP, and SMTP. Secure Lantronix Network Right to view and manage secure IT management devices (e.g., SLP power managers, Spider devices, SLC console managers) on the local subnet. Date/Time Right to set the date and time. Local Users Right to add or delete local users on the system. Remote Authentication Right to assign a remote user to a user group and assign a set of rights to the user.
12: User Authentication SSH Keys The SLC console manager can import and export SSH keys to facilitate shared key authentication for all incoming and outgoing SSH connections. By using a public/private key pair, a user can access multiple hosts with a single passphrase, or, if a passphrase is not used, a user can access multiple hosts without entering a password.
12: User Authentication To configure the SLC console manager to use SSH keys to authenticate users: 1. From the main menu, select User Authentication – SSH Keys. Figure 12-10 shows the page that displays.
12: User Authentication 2. Enter the following fields. Imported Keys (SSH In) Host & User Associated with Key These entries are required in the following cases: The imported key file does not contain the host that the user will be making an SSH connection from, or The SLC local user login for the connection is different from the user name the key was generated from or is not included in the imported key file.
12: User Authentication Passphrase/ Retype Passphrase Optionally, enter a passphrase associated with the key. The passphrase may have up to 50 characters. The passphrase is an optional password that can be associated with an SSH key. It is unique to each user and to each key. SECSH Format Indicate whether the keys will be exported in SECSH format (by default the key is exported in OpenSSH format). Public Key Filename Filename of the public host key.
12: User Authentication Figure 12-11 SSH Server/Host Keys Page 2. Enter the following fields. Reset to Default Host Key Select the All Keys checkbox to reset all default key(s), or select one or more checkboxes to reset defaults for RSA1, RSA, or DSA keys. All checkboxes are unselected by default. Import Host Key To import a site-specific host key, select the checkbox. Unselected by default.
12: User Authentication Type From the drop-down list, select the type of host key to import. Import via From the drop-down list, select the method of importing the host key (SCP or SFTP). The default is SCP. Public Key Filename Filename of the public host key. Private Key Filename Filename of the private host key. Host Host name or IP address of the host from which to import the key. Path Path of the directory where the host key will be stored. Login User ID to use to SCP or SFTP the file.
12: User Authentication For example, the system administrator creates two custom user menus, with menu1 having a nested menu (menu2). Arrow keys can be used at the Command and Nickname prompts to cycle through previously entered commands and nicknames. [slc]> set menu add menu1 Enter optional menu title ( for none): Menu1 Title Specify nickname for each command? [no] y Enter each command, up to 50 commands ('logout' is always the last command). Press when the menu command set is complete.
12: User Authentication The system administrator configures local user “john” to use custom menu “menu1”: [slc]> set localusers edit john custommenu menu1 Local users settings successfully updated.
12: User Authentication set menu edit (on page 220) set menu delete (on page 221) set cli menu (on page 220) show menu (on page 221) SLC™ Console Manager User Guide 176
13: Maintenance This chapter describes the tasks that the system administrator performs by using the pages of the Maintenance tab and additional commands on the command line interface. It contains the following sections: Firmware and Configurations System Logs Audit Log Email Log Diagnostics Status/Reports Events Banners LCD and Keypad Note: The features and functionality described in this chapter specific to PC Card use are supported on SLC-02 part numbers.
13: Maintenance To configure settings: 1. Click the Maintenance tab. Figure 13-1 shows the page that displays.
13: Maintenance 2. Enter the following fields. General Reboot Select this option to reboot the SLC console manager immediately. The default is No. Note: The front panel LCD displays the “Rebooting the SLC message, and the normal boot sequence occurs. Shutdown Select this option to shut down the SLC console manager. The default is No. Internal TemperatureCurrent/Low/High Sets the acceptable range for the internal temperature of the SLC device.
13: Maintenance NFS Mounted Dir Displays created NFS local directories. Note: You must create NFS mounts by using the Services tab and accessing the NFS/CIFS page. PC Card Slot or USB For the SLC device with the PC Card slots, select the upper slot or lower slot options. For the SLC console manager with the USB port, U1 is automatically selected. FTP/SFTP/TFTP Server The IP address or host name of the server used for obtaining updates and saving or restoring configurations.
13: Maintenance Location for Save, Restore, or Manage If you selected to save or restore a configuration, select one of the following options: Preserve Configuration after Restore Local Disk – Saved Configurations: If restoring, select a saved configuration from the drop-down list. FTP Server: The FTP server specified in the FTP/SFTP/TFTP section. If you select this option, select FTP or SFTP to transfer the configuration file.
13: Maintenance Figure 13-2 Firmware & Configurations - Manage Configuration Files Page 2. To download files, click the Download File button. A File Download window opens to confirm the download. 3. To rename files, check the box of the file that you want to rename and enter the new name in the text box. Click the Rename File button. 4. To delete files, select one or more files and click the Delete File button.
13: Maintenance admin config save (on page 207) admin config show (on page 207) System Logs The System Logs page allows you to view and clear system logs. See Chapter 7: Services for more information about system logs. To view system logs: 1. Click the Maintenance tab and select the System Logs option. Figure 13-3 shows the page that displays. Figure 13-3 System Logs Page 2. Enter the following fields. Log Select the type(s) of log you want to view.
13: Maintenance 3. Click the View Log button. The log displays. For example, if you select the type All and the level Error, the SLC device displays a log shown in Figure 13-4. Figure 13-4 System Log Output Page 4. To email the system log to an individual: a. In the Comment field, enter a comment (if desired). b. Select to and enter the person’s email address. c. Press the Email Output button. 5. To email the system log to Lantronix Technical Support: a.
13: Maintenance System Logs Commands The following CLI commands correspond to the System Logs page. For more information, see Chapter 15: Command Reference . show syslog (on page 257) show syslog clear (on page 257) Audit Log The Audit Log web page displays a log of all actions that have changed the configuration of the SLC console manager. The audit log is disabled by default. Use the Services web page (Chapter 7: Services ) to enable the audit log and to configure its maximum size.
13: Maintenance Audit Log Commands The following CLI commands correspond to the Audit Log page. For more information, see Chapter 15: Command Reference . show auditlog (on page 213) Email Log The Email Log web page displays a log of all emails that have been sent by the SLC console manager, a count of the number of emails sent, the number of bytes sent, and the number of email errors. Use the SSH/Telnet/Logging page to configure the email (SMTP) server and sender.
13: Maintenance Diagnostics The Diagnostics web page provides methods for diagnosing problems such as network connectivity and device port input/output problems. You can use equivalent commands on the command line interface. An additional diagnostic, loopback, is only available as a command. 1. Click the Maintenance tab and select the Diagnostics option. Figure 13-7 shows the page that displays. Figure 13-7 Diagnostics Page 2. Enter the following fields.
13: Maintenance Ping If you enter a host name in the corresponding Hostname field, the SLC console manager verifies that the host is up and running. Check the Ethernet Port button (Both, Eth1, or Eth2), and check the IPv6 box. Note: The Ethernet Port option restricts ping transmission to both Ethernet ports, Eth1, or Eth2. The IPv6 box should be checked if the host that is pinged requires IPv6 addressing or routing.
13: Maintenance Figure 13-8 Diagnostics Report Page 4. To view a report, click the link for that report. The links display at the top left of the page. 5. To email the report to an individual: a. In the Comment field, enter a comment (if desired). b. Select to and enter the email address. c. Press the Email Output button. 6. To email the report to Lantronix Technical Support: a. In the Comment field, enter a comment (if desired). b. Select to: Lantronix Tech Support c.
13: Maintenance Diagnostics Commands The following CLI commands correspond to the Diagnostics page. For more information, see Chapter 15: Command Reference .
13: Maintenance Figure 13-9 Status/Reports Page 2. Enter the following fields. View Report View Report Select as many of the reports as desired, or select All. Port Status: Displays the status of each device port: mode, user, any related connections, and serial port settings. Port Counters: Displays statistics related to the flow of data through each device port. IP Routes: Displays the routing table.
13: Maintenance Figure 13-10 Generated Reports Page 4. To view a report, click the link for that report. 5. To email the report to Lantronix Technical Support: a. In the Comment field, enter a comment (if desired). b. Select to: Lantronix Tech Support c. Call Lantronix Tech Support and obtain a case number. For contact information, click the Lantronix Tech Support link. d. Enter the number in Case Number. e. Press the Email Output button. 6. To email the report to an individual: a.
13: Maintenance c. Press the Email Output button. Status/Reports Commands The following CLI commands correspond to the Status/Reports page. For more information, see Chapter 15: Command Reference .
13: Maintenance 2. Enter the following fields. Event Trigger From the drop-down list, select the type of incident that triggers an event. Currently, the options are: Receive Trap Temperature Over/Under Limit: For Sensorsoft devices. Humidity Over/Under Limit: For Sensorsoft devices. Action From the drop-down list, select the action taken because of the trigger.
13: Maintenance Banners The Banners page allows the system administrator to customize text messages that display to users. To configure banner settings: 1. Click Banners. Figure 13-12 shows the page that displays. Figure 13-12 Banners Page 1. Enter the following fields. Welcome Banner The text to display on the command line interface before the user logs in. May contain up to 1024 characters. Welcome to the SLC console manager is the default. Note: To create more lines use the \n character sequence.
13: Maintenance Banner Commands The following CLI commands correspond to the Banners page. For more information, see Chapter 15: Command Reference . admin banner login (on page 205) admin banner logout (on page 205) admin banner show (on page 205) admin banner ssh (on page 205) admin banner welcome (on page 206) LCD and Keypad The LCD has a series of screens, consisting of 2 lines of 24 characters each. Specific screens and the display order can be configured.
13: Maintenance To configure the Keypad: 1. Enter the following fields. Keypad Locked Select this to lock out any input to the keypad. The default is for the keypad to be unlocked. Restore Factory Defaults Password The 6 digit key sequence entered at the keypad to restore the SLC console manager to factory defaults. The default is 999999. To configure the LCD: 1. Select a screen and click the up arrow or the down arrow to change the order of the screens. 2.
14: Application Examples Each SLC console manager has multiple serial ports and two network ports as shown in Figure 14-1. Each serial port can be connected to the console port of a device. Using a network in-band port or an out-of-band modem for a dial-up connection, an administrator can remotely access any of the connected devices using Telnet or SSH. Figure 14-1 SLC Console Manager This chapter includes three examples that use the SLC device.
14: Application Examples In the example below, the system administrator performs the following steps: 1. Display the settings for device port 2 by using the show deviceport command.
14: Application Examples Dial-in (Text Mode) to a Remote Device The example in Figure 14-3 shows a modem connected to the SLC console manager device port 1, and a SUN server connected to the SLC device port 2. You can configure the modem for text mode dial-in, so a remote user can dial into the modem using a terminal emulation program and access the SUN server. HyperTerminal™ which comes with the Microsoft ® Windows™ operating system, is an example of a terminal emulation program.
14: Application Examples 4. Log into the SLC console manager. CONNECT 57600 Welcome to the SLC login: sysadmin Password: Welcome to the SLC Console Manager Model Number: SLC 48 For a list of commands, type 'help'. [SLC]> 5. Connect to the SUN UNIX server using the connect direct command. [SLC]> connect direct deviceport 2 SunOS 5.7 login: frank Password: Last login: Wed Jul 14 16:07:49 from computer Sun Microsystems Inc. SunOS 5.7 Generic October 1998 SunOS computer 5.
14: Application Examples The system administrator performs the following steps. 1. Display the settings for device port 2 by using the show deviceport command.
15: Command Reference This chapter lists and describes all of the commands available on the SLC command line interface (CLI) accessed by using Telnet, SSH, or a serial connection.
15: Command Reference User must specify an appropriate value, for example, an IP address. The parameter values are in mixed case. Square brackets [ ] indicate optional parameters. Command Line Actions and Categories Table 15-1 lists the actions and categories for each action.
15: Command Reference To clear an IP address, type 0.0.0.0, or to clear a non-IP address value, type CLEAR. When the number of lines displayed by a command exceeds the size of the window (the default is 25), the command output is halted until you are ready to continue. To display the next line, press Enter, and to display the page, press the space bar. You can override the number of lines (or disable the feature altogether) with set cli.
15: Command Reference Description Configures the banner that displays prior to SSH authorization. admin banner welcome Syntax admin banner welcome Description Configures the banner displayed before the user logs in. Note: To go to the next line, type \n and press Enter. admin clear Syntax admin clear tmpdir Description Resets system resources and clears the temporary directory.
15: Command Reference Note: dt - Date/Time pc - PC Card lu - Local Users ub - USB The Config Params to Preserve get contained as a comma-separated list of current configuration parameters that are kept after the config restore or factorydefaults. Description Restores the factory default settings.
15: Command Reference Description Lists the configurations saved to a location. admin firmware bootbank Syntax admin firmware bootbank <1|2> Description Sets the boot bank to be used at the next SLC console manager reboot. Applies to dual-boot SLC devices only. admin firmware copybank Syntax admin firmware copybank Description Copies the boot bank from the currently booted bank to the alternate bank (for dual-boot SLC console managers).
15: Command Reference admin ftp server Syntax admin ftp server [login ] [path ] Description Sets the FTP/TFTP/SFTP server used for firmware updates and configuration save/restore. admin ftp show Syntax admin ftp show Description Displays FTP settings. admin keypad Syntax admin keypad Description Locks or unlocks the LCD keypad. If the keypad is locked, you can scroll through settings but not change them.
15: Command Reference admin lcd reset Syntax admin lcd reset Description Restarts the program that controls the LCD. admin lcd line1 Syntax admin lcd line1 <1-24 Chars> line2 <1-24 Chars> Description Sets the strings displayed on the LCD user string screen.
15: Command Reference Description Displays the LCD screens. admin quicksetup Syntax admin quicksetup Description Runs the quick setup script. admin reboot Syntax admin reboot Description Terminates all connections and reboots the SLC console manager. The front panel LCD displays the “Rebooting the SLC” message, and the normal boot sequence occurs.
15: Command Reference admin version Syntax admin version Description Displays current hardware and firmware information. admin web certificate Syntax admin web certificate import via certfile privfile host login [path ] Description Imports an SSL certificate. admin web certificate reset Syntax admin web certificate reset Description Resets a web certificate.
15: Command Reference admin web protocol Syntax admin web protocol Description Configures the web server to use SSLv2 in addition to SSLv3 and TLSv1. admin web timeout Syntax admin web timeout Description Configures the timeout for web sessions. admin web terminate Syntax admin web terminate Description Terminates a web session. admin web show Syntax admin web show [viewslmsessions ] Description Displays the current sessions and their ID.
15: Command Reference set auth Syntax set auth Parameters authusenextmethod kerberos <1-6> ldap <1-6> localusers <1-6> nis <1-6> radius <1-6> tacacs+ <1-6> Description Sets ordering of authentication methods. Local Users authentication is always the first method used. Any methods omitted from the command are disabled. show auth Syntax show auth Description Displays authentication methods and their order of precedence.
15: Command Reference listdev ssh Description Allows you to use SCS-compatible commands as shortcuts for executing commands. Enabling this feature enables it only for the current cli session. It is disabled by default. Note: Settings are retained between CLI sessions for local users and users listed in the remote users list. Description Starts the menu if the menu associated with the current user does not display.
15: Command Reference Connection Commands connect bidirection Syntax connect bidirection is one of: deviceport telnet [port ] ssh [port ] [] tcp port udp [port ] Parameters exclusive trigger date charcount <# of Chars> charseq
15: Command Reference version <1|2> command Description Connects to a device port to monitor and/or interact with it, or establishes an outbound network connection. connect listen Syntax connect listen Description Monitors a device port.
15: Command Reference connect unidirection Syntax connect unidirection dataflow is one of: deviceport telnet [port ] ssh [port ] [] tcp port udp port is one or more of: user version <1|2> command Parameters exclusive
15: Command Reference Description Displays details for a single connection. You can optionally email the displayed information. Console Port Commands set consoleport Syntax set consoleport Parameters baud <300-230400> databits <7|8> flowcontrol parity showlines stopbits <1|2> timeout Description Configures console port settings.
15: Command Reference No syntax checking. (Enter each command correctly.) set cli menu Syntax set cli menu Description Tests a CLI menu. set localusers menu Syntax set localusers add|edit menu
15: Command Reference set menu delete Syntax set menu delete
15: Command Reference localserver3 poll publicserver state sync Description Synchronizes the SLC console manager with a remote time server using NTP. show ntp Syntax show ntp Description Displays NTP settings.
15: Command Reference Description Sends commands to (or control) a device connected to an SLC device port over the serial port. Note: Currently the only devices supported for this type of interaction are the SLP power manager and Sensorsoft devices. Device Port Commands set deviceport port Syntax set deviceport port Note: An example would be set deviceport port 2-5,6,12,15-16 baud 2400.
15: Command Reference dodchapsecret emaildelay emaillogging emailrestart emailsend emailstring emailsubj emailthreshold emailto flowcontrol initscript ipaddr localipaddr locallogging logins maxdirect <1-10> modemmode
15: Command Reference slmtime
15: Command Reference Description Configures settings for all or a group of device ports. show deviceport global Syntax show deviceport global Description Displays global settings for device ports. show deviceport names Syntax show deviceport names Description Displays a list of all device port names. show deviceport port Syntax show deviceport port [display ] Description Displays the settings for one or more device ports.
15: Command Reference Description Displays the modes and states of one or more device port(s). You can optionally email the displayed information. Diagnostic Commands diag arp Syntax diag arp [email ] Description Displays the ARP table of IP address-to-hardware address mapping. You can optionally email the displayed information. diag internals Syntax diag internals Description Displays information on the internal memory, storage and processes of the SLC console manager.
15: Command Reference diag netstat Syntax diag netstat [protocol ] [email ] Description To display a report of network connections. You can optionally email the displayed information. diag nettrace Syntax diag nettrace Parameters ethport <1|2> host numpackets protocol verbose Description Displays all network traffic, applying optional filters.
15: Command Reference Description Displays performance statistics for an Ethernet Port or Device Port, averaged over the last 5 seconds. diag sendpacket host Syntax diag sendpacket host port [string ] [protocol ] [count ] Defaults protocol:tcp count:1 Description Generate and send Ethernet packets.
15: Command Reference admin events add Syntax admin events add is one of: receivetrap, templimit, humidlimit or overcurrent is one of: action action ethport <1|2> nms community [oid ] action deviceport nms community [oid ] action pccardslot
15: Command Reference admin events show Syntax admin events show Description Displays event definitions. Host List Commands set hostlist (name) Syntax set hostlist add|edit [] Parameters name (edit only) retrycount <1-10> (Default is 3.) auth Description Configures a prioritized list of hosts to be used for modem dial-in connections.
15: Command Reference set hostlist edit Syntax set hostlist edit move position Description Moves a host entry to a new position in the host list. show hostlist Syntax show hostlist Description Displays the members of a host list. IP Filter Commands set ipfilter mapping Syntax set ipfilter mapping Parameters ethernet <1|2> state ethernet <1|2> state ruleset deviceport <1..
15: Command Reference append insert replace delete Description Sets IP filter rules. set ipfilter state Syntax set ipfilter state [testtimer ] Description Enables or disables IP filtering for incoming network traffic. show ipfilter Syntax show ipfilter Description Displays IP filters. show ipfilter mapping Syntax show ipfilter mapping Description Displays the IP filter mapping.
15: Command Reference Kerberos Commands set kerberos Syntax set kerberos Parameters breakseq <1-10 Chars> clearports custommenu
15: Command Reference adsupport base bindname bindpassword bindwithlogin useldapschema breakseq <1-10 Chars> clearports custommenu
15: Command Reference breakseq <1-10 Chars> changenextlogin changepassword clearports custommenu
15: Command Reference Description Deletes a local user. set localusers lifetime Syntax set localusers lifetime Description Sets the number of days the login password may be used. The default is 90 days. set localusers lock Syntax set localusers lock|unlock Description Allows or blocks a user login. set localusers maxloginattempts Syntax set localusers maxloginattempts Description Sets the maximum number of login attempts before the account is locked.
15: Command Reference set localusers periodwarning Syntax set localusers periodwarning Description Sets the number of days the system warns the user that the password will be expiring. The default is 7 days. set localusers reusehistory Syntax set localusers reusehistory Description Sets the number of passwords the user must use before reusing an old password. The default is 4.
15: Command Reference Description Clears the modem log the modem log is automatically pruned when it reaches 50K. set log modem pppdebug Syntax set log modem pppdebug Description Enables PPP debugging in the modem log. When enabled, performance could be impacted.
15: Command Reference Network Commands set network Syntax set network Parameters interval <1-99999 Seconds> ipforwarding probes startprobes <1-99999 Seconds> Description Sets TCP Keepalive and IP Forwarding network parameters. set network bonding Syntax set network bonding Description Configures ethernet bonding.
15: Command Reference set network host Syntax set network host [domain ] Description Sets the SLC host name and domain name. set network ipv6 Syntax set network ipv6 Description Enables or disables IPv6 networking.
15: Command Reference show network dns Syntax show network dns Description Displays DNS settings. show network gateway Syntax show network gateway Description Displays gateway settings. show network host Syntax show network host Description Displays the network host name of the SLC console manager. show network port Syntax show network port <1|2> Description Displays Ethernet port settings and counters.
15: Command Reference Note: The admin config command saves SLC configurations on the SMB/CIFS share. set cifs password Syntax set cifs password Description Changes the password for the SMB/CIFS share login (default is cifsuser). set nfs mount Syntax set nfs mount <1|2|3> Parameters remdir locdir rw mount Note: Specification of rmdir and locdir parameters are required.
15: Command Reference Description Displays NFS share settings.
15: Command Reference PC Card Commands pccard modem Syntax pccard modem Parameters auth baud <300-115200> (Default is 9600) cbcpnocallback cbcptype calleridcmd calleridlogging chaphost chapsecret databits <7|8> dialbackdelay dialbacknumber dialinlist dialoutlogin
15: Command Reference modemtimeout nat parity remoteipaddr restartdelay service sshauth sshport stopbits <1|2> tcpauth tcpport telnetauth telnetport timeoutlogins Note: Dial-out GPRS connections may replace the default route and DNS entries.
15: Command Reference pccard storage format Syntax pccard storage format [filesystem ] Description Formats a Compact Flash card. pccard storage mount Syntax pccard storage mount Description Mounts a Compact Flash card in the SLC console manager for use as a storage device. The Compact Flash card must be formatted with an ext2 or FAT file system before you mount it.
15: Command Reference show pccard modem Syntax show pccard modem Description Displays product information and settings for any PC card modem.
15: Command Reference show radius Syntax show radius Description Displays RADIUS settings.
15: Command Reference set remoteusers listonlyauth Syntax set remoteusers listonlyauth Description Sets whether remote users who are not part of the remote user list will be authenticated. show remoteusers Syntax show remoteusers Description Displays settings for all remote users.
15: Command Reference Script Commands set script delete Syntax set script delete name
