CommandCenter Secure Gateway ® CC-SG User Guide Release 3.0 Copyright © 2006 Raritan, Inc.
This page intentionally left blank
Copyright and Trademark Information This document contains proprietary information that is protected by copyright. All rights reserved. No part of this document may be photocopied, reproduced, or translated into another language without express prior written consent of Raritan, Inc. © Copyright 2006 Raritan, CommandCenter, RaritanConsole, Dominion, and the Raritan company logo are trademarks or registered trademarks of Raritan, Inc. All rights reserved.
Safety Guidelines To avoid potentially fatal shock hazard and possible damage to Raritan equipment: • Do not use a 2-wire power cord in any product configuration. • Test AC outlets at your computer and monitor for proper polarity and grounding. • Use only with grounded outlets at both the computer and monitor. When using a backup UPS, power the computer, monitor and appliance off the supply.
CONTENTS i Contents Chapter 1: Introduction ....................................................................................................1 Prerequisites ............................................................................................................... 1 Terminology/Acronyms ............................................................................................... 1 New 3.0 Features.....................................................................................................
ii FIGURES Figures Figure 1 Verify Java Runtime Environment (JRE) version ........................................................................... 3 Figure 2 Disable Blocking Pop-Ups ............................................................................................................. 4 Figure 3 Security Alert Window.................................................................................................................... 4 Figure 4 Login Window .........................................
CHAPTER 1: INTRODUCTION 1 Chapter 1: Introduction This document is intended for users who have been granted the Ports Access privilege and have access to particular ports (target servers) that are attached to Raritan devices, generic devices (hub, Windows server, or Cisco router), or IPMI servers. With the Ports Access privilege, you can connect to ports, create custom views, search for ports, bookmark ports, and use port chat to talk to other users who are connected to the same port.
2 COMMANDCENTER SECURE GATEWAY USER GUIDE
CHAPTER 2: ACCESSING CC-SG 3 Chapter 2: Accessing CC-SG You can access CC-SG in two ways, each described in this chapter: • Through a browser: CC-SG supports numerous Web browsers (please see the Compatibility Matrix on http://www.raritan/support and click Firmware Upgrades then CommandCenter for a complete list of browsers and platforms). • Through a standalone client: Install the executable from the included CD and run this instead of using the browser-based applet.
4 COMMANDCENTER SECURE GATEWAY USER GUIDE 3. Click the Privacy tab. 4. Deselect Block Pop-ups. Figure 2 Disable Blocking Pop-Ups 5. Click Apply. 6. Click OK. Browser-Based Access 1. Using a supported Internet browser, type the URL of the CC-SG: https:// (for example, https://10.0.3.30). When the security alert window appears, click Yes to continue with the procedure.
CHAPTER 2: ACCESSING CC-SG 5 3. With the correct JRE version (or if you continue with an incorrect version) the Login window appears. Figure 4 Login Window 4. Type your Username and Password and click Login. 5. Upon valid login, the CC-SG application window appears. The menu bar and tool bar, which contain commands for operating CC-SG are at the top of the screen. The Ports tab displays the Ports selection tree. The central panel is where operation screens appear.
6 COMMANDCENTER SECURE GATEWAY USER GUIDE Standalone Client Access The standalone CC-SG client allows you to connect to CC-SG servers by launching a Java application instead of running an applet through a Web browser. 1. Install the standalone CC-SG client located on the included CD ROM onto your PC. 2. Double-click on the CC Application icon on your desktop to launch the CC-SG client. An address specification window appears. Figure 6 IP Specification Window 3.
CHAPTER 2: ACCESSING CC-SG 7 Figure 8 RaritanConsole Application Warning: The security warning display (appearing in IE only) appears the first time the user connects to a serial port. Click Yes when this display appears; if you click No, the console application does not launch and you must exit CC– SG, close the browser, re-launch the browser, and connect to CC–SG again. For additional details about RaritanConsole operation, please see Raritan’s RaritanConsole User Guide.
8 COMMANDCENTER SECURE GATEWAY USER GUIDE CC-SG Window Components 3 7 2 4 1 5 Figure 9 CC-SG Window Components 6 1. Ports Selection tab: All known target Ports are displayed in the Ports tree. Right-click on a port and select Connect to connect to that port or double-click on a port. Note: To make ports easier to find, right-click on the tree and select the desired listing method under Port Sorting Options.
CHAPTER 3: CONNECTING TO AND USING PORTS 9 Chapter 3: Connecting to and Using Ports Port commands allow you to connect to, and disconnect from ports of serial devices, generic devices, IPMI servers, and KVM devices managed by your CC-SG. When you click on the Ports tab, the Ports tree displays information about the Ports connected with CC-SG. Clicking on a port displays the View Port screen. Ports are arranged alphabetically by name, or grouped by availability status.
10 COMMANDCENTER SECURE GATEWAY USER GUIDE Port Icons For easier identification, different ports have different icons in the tree. In addition, availability status of each port also has a different icon. Refer to the table for port icon descriptions. ICON MEANING Device available Port available Ghosted Port – a ghosted port can occur when managing Paragon devices and when a CIM or target server is removed from the system or powered off but a record of it remains.
CHAPTER 3: CONNECTING TO AND USING PORTS 11 Connect to Ports Once ports have been configured, you are ready to connect to these ports and manage them through the applications they have been configured with, for example, Raritan Console (RC), Raritan Remote Client (RRC), or Multi-Platform Client (MPC) application. Note: If using the MPC application, saving the user profile from MPC also saves it to CC-SG. Thereafter, when connecting to a port using MPC, the saved settings are applied to the MPC session.
12 COMMANDCENTER SECURE GATEWAY USER GUIDE Connect to a KVM Port 1. In the Ports tree, select a KVM port to connect to and manage. 2. On the Ports menu, click Connect Port. Or, you can double-click on a port icon. 3. While RRC or MPC launches, a Connection Status window informs you of connection status. Once a connection is established, RRC or MPC opens in a new window.
CHAPTER 3: CONNECTING TO AND USING PORTS 13 4. When you are finished using RRC or MPC to manage the port, from the Connection menu, click Exit. 5. Repeat steps 1 through 4 to connect to and manage other KVM ports. Note: If the KVM port is on sleep mode and indicates “no video signal,” press the space bar on your keyboard until you ‘wake up’ the port. Connect to a Generic Port with In-band Access 1. In the Ports tree, select a Generic port to connect to and manage. 2.
14 COMMANDCENTER SECURE GATEWAY USER GUIDE 4. If authentication has been configured for the in-band application, type the password to proceed. Figure 15 Connecting to Generic Device with SSH 5. If authentication is successful for the in-band application, you see a command prompt. Figure 16 SSH Command Prompt 6. When you are finished using the in-band application, such as SSH, to manage the port, type exit and press ENTER. 7. Repeat steps 1 through 6 to connect to and manage other Generic ports.
CHAPTER 3: CONNECTING TO AND USING PORTS 15 Connect to an iLO/RILOE Port 1. In the Ports tree, select an iLO or RILOE target to connect to and manage. 2. On the Ports menu, click Connect Port. Or, you can double-click on a port icon. 3. A new java applet, HP’s Remote Console launches and once the applet loads, you have KVM access to the iLO/RILOE-enabled server. Figure 17 HP's Remote Console Applet 4. When you are finished using Remote Console, close the browser window. 5.
16 COMMANDCENTER SECURE GATEWAY USER GUIDE Note: Targets of an iLO/RILOE device are powered on/off and recycled directly. Targets of Raritan Dominion products, such as KX, SX, are managed via outlets of a power strip that are associated with a port of a Dominion device. Managing an IPMI Server Power Port 1. Click on the Ports tab and select an Outlet port for the IPMI server target you want to manage. 2. Double-click on the port. The Port Power Management screen for the IPMI server target appears.
CHAPTER 3: CONNECTING TO AND USING PORTS 17 View Ports Regular View Select this command to view the Ports tree grouped in default view (you can change the regular view by assigning new criteria to a custom view, see the next section Custom View. 1. On the Ports menu, click Change View, and then click Regular View. The Regular View of the Ports tree appears. Figure 21 Ports Tree in Regular View Ports are arranged alphabetically by name, or grouped by availability status.
18 COMMANDCENTER SECURE GATEWAY USER GUIDE Custom View You can customize the Ports tree view by organizing your ports to appear in the format of your choice. You might want to view ports by device, or by rack, or by any other option that helps you differentiate between them. Set up a Custom View following the instructions in the next sections. 1. On the Ports menu, click Change View and then click Custom View. The Custom View screen appears. Figure 22 Custom View Screen 2.
CHAPTER 3: CONNECTING TO AND USING PORTS 19 Add Custom View 1. Click on the Ports tab. 2. On the Ports menu click Change View, and then click Custom View. The Custom View screen appears. 3. In the Custom View panel click Add. An Add Custom View window appears. Figure 23 Add Custom View Window 4. Type a new custom view name and click OK or click Cancel to close the window. The new view name appears in the Name field. 5.
20 COMMANDCENTER SECURE GATEWAY USER GUIDE 4. In the Custom View Details panel, click on the drop-down arrow at the bottom of the panel. This list contains categories that you can use to filter custom views. Select a detail from the drop-down list and click Add to add the detail to the Custom View Details panel. Select as many details as needed. 5.
CHAPTER 3: CONNECTING TO AND USING PORTS 21 Port Power Manager Manage the power to outlet ports directly using this screen. 1. Select an outlet port from the Ports tree. 2. On the Ports menu, click Port Power Manager. The Power Port Management screen appears. Figure 26 Port Power Management Screen 3. Click the On option button to power ON the port. 4. Click the Off option button to power OFF the port. 5. Click Recycle to recycle power to a port, that is, power it OFF, and then power it back ON again. 6.
22 COMMANDCENTER SECURE GATEWAY USER GUIDE Port Chat A utility called chat is available to all CC-SG GUI users who have connected to the same port. All users who are connected to the same port can participate in a chat session. Assuming the device supports multiple simultaneous connections, chat is started automatically if you connect to a busy port. 1. To invoke chat, you must be connected to a port on a device. 2. Right-click on the port and click Chat. 3. Click Start Chat Session.
CHAPTER 3: CONNECTING TO AND USING PORTS 23 Bookmark Port If you frequently access a particular port connected to a target server, you may want to bookmark it so it is readily available from your browser. Every time a bookmarked port is accessed, a license is used for the session. To add more licenses, please see Raritan’s CommandCenter Secure Gateway Administrator Guide for additional information. 1. Click on the Ports tab. 2. Right-click on the port you want to bookmark. 3. Click Bookmark Port.
24 COMMANDCENTER SECURE GATEWAY USER GUIDE 5. If the port was configured with both Out-of-band access, such as Raritan Remote Console, and In-band access, such as SSH Client, choose the access method to be used when the port is selected as a bookmark. Search for Ports CC-SG can search for a port name or IP address that satisfies the text typed in the search box. Searches are case-insensitive. 1. Click on the Ports tab. Figure 30 Search for Ports 2.
CHAPTER 3: CONNECTING TO AND USING PORTS 25 Supported Wildcards These wildcards are supported: WILDCARD ? [-] * Examples are as follows: EXAMPLE Solaris? Windows* Windows[0-9][0-9][0-9][0-9] 192.* DESCRIPTION Indicates any character. Indicates a character in range. Indicates zero or more characters. DESCRIPTION Locates Solaris1, and SolarisN, but not Solaris1Z. Locates Windows2000, Windows2003 Server. Locates Windows2000, but not Windows2003 Server.
26 COMMANDCENTER SECURE GATEWAY USER GUIDE
CHAPTER 4: GENERATING REPORTS 27 Chapter 4: Generating Reports Reports can be sorted by clicking on the column headers. Click on a column header such as User Name, Access Time, etc., to sort report data by that value. The data refreshes in ascending order alphabetically, numerically, or chronologically. Click on the column header again to sort in descending order. Please note the arrowhead pointing upwards or down next to the cell name, indicating how the report is sorted.
28 COMMANDCENTER SECURE GATEWAY USER GUIDE User Data Report The User Data report displays certain data on all users in the CC-SG database. From User Name field you can see names of users currently in session. From Description field you can see description of user. From Phone field you can see user dial back telephone number. Form Enabled field you can see information if check box Login is enabled. From Password Expiration you can see password expiration period in days. 1.
CHAPTER 4: GENERATING REPORTS 255-80-3100 29
North American Headquarters Raritan 400 Cottontail Lane Somerset, NJ 08873 U.S.A. Tel. (732) 764-8886 or (800) 724-8090 Fax (732) 764-8887 Email: sales@raritan.com Website: Raritan.com Raritan NC 4901 Waters Edge Dr. Suite 101 Raleigh, NC 27606 Tel. (919) 277-0642 Email: sales.nc@raritan.com Website: Raritan.com Raritan Canada 4 Robert Speck Pkwy, Suite 1500 Mississauga, ON L4Z 1S1 Canada Tel. (905) 949-3650 Fax (905) 949-3651 Email: sales.canada@raritan.com Website: Raritan.
