Home

KVM On the NET CN8000

Contents

1. 166 Slots tes eaten atte ent ea Ne de 166 ADOUT ae kt AG AAG Bl EE a ek Bee ee ee 167 BIOWSOF osos ei Pe gee eee ee ts 167 AP Windows Client 167 RN 168 Link Local IPv6 Address 168 IPv6 Stateless Autoconfiguration 169 Port Forwarding siii dene a eA ed ae ee 170 Keyboard Emulation 171 PPP Modem Operation 172 BASIC Setups 52088 LE En da a AE 172 Connection Setup Example Windows XP 173 Trusted Certificates 174 OVENVIOW s oct aot aye a Aaya Dae Em A 174 Installing the Certificate 175 Certificate Trusted 176 Self Signed Private Certificates 178 Examples 22e Suv nee ale a ce poe Settee dents atone 178 Importing the Files 178 CN8000 User Manual Troubleshooting 400 28 en aa e eee ess a E A de e 179 General Operation 179 WINDOWS Sarita ei 180 DN AA A A AS Li ea 181 SUN SYSTEMS a e 584 io a o e a 182 Mac cuina Poe a ad Rae a wee eS 183 The Log Server oi AA Uae Se 183 Additional Mouse Synchronization Procedures 184 WINdOWS 26 3 4 S46 Le ei ek bp nee anne Megan cay ne
2. 36 NetWork fins nn ii ere Ne ere a te es 37 IP instalei cita add a ties 37 Service POMS ii SA a A 38 Network Configuration 39 Network Transfer Rate 40 Finishing Upis 8 22 02 4 want A ae eae nee 40 ANMS Event Destination 41 SMTP Settings cc A so A 41 A A nent al bol ee 42 SNMP Server 28 eae Sees eae eed E Se 42 Syslog S rVer se eine a a cad nee ene ate Ke seg eect 43 ANMS Authentication 44 Disable Local Authentication 44 RADIUS Settings 44 CC Management Settings 47 SECUNIA Edd eee de da Gad deb ee 48 User Station Filters 48 Encryption certo dan eae ed e oe Saeed PT ee 53 Virtual Meda 2a a ei M eee ete eee ann ba 53 Private Certificate 54 COINS er sia on ca sce ste D Re gabe eee Me a 55 Console Management 56 Seral Gonsole 3 522 fe ta ev eee dee See ee 56 Port Property Settings 57 0 CRE atte ee 58 Enable Dial Back ie cae ease etant sente 58 Enable Dial DU iria Bent ee een ee 59 Date TIMES ASE it a en eee at 61 TIMO ZOMG res Se area ee Ae aA 61 Dirt neni a hu toi E ta Maal ee cee NE 62 ME Ra eo ad et oes 62 Netwo
3. 142 TYPE e 2 nora ia E Gute e hu Ra 142 Permission String Characters 146 CN8000 User Manual OpenLDAP uo da iO din Pade dc re 149 OpenLDAP Server Installation 149 OpenLDAP Server Configuration 150 Starting the OpenLDAP Server 151 Customizing the OpenLDAP Schema 152 LDAP DIT Design and LDIF File 153 LDAP Data Structure 153 DIT Great Sega BES eA aed eas Ble aa Ea lt 154 Using the New Schema 156 Appendix Safety Instructions 22 12 2402 5 apne nn Es eat Mey et ni REY aes 157 A es Pee Oe a ee ee 157 Rack Mounting 2 55 ica Gh Blea Sines bree teen 159 Consignes de s curit 160 G n ral iid eis Lai goede ala ee eee 160 Montage S r b ti essre vipa Giese ren the amenant Ne nr 163 Technical Support 848 os eee ee mou id pure 164 International serege 4 n es ERE Rae Dee a eee 164 North America sic pins ie ti Abe 164 IP Address Determination 165 First Time Browser Login 165 IP instaler Gortari 165 Network Device IP Installer 166 Devic LIST coa anak a db alg ae heed Sing nates 166 Protocol loto a iii e aa ee 166 Network Adapter
4. Issued to Aten Issued by Aten Valid from 2003 11 26 to 2013 11 23 Install Certificate Issuer Statement 176 Appendix Mismatch Considerations If the site name or IP address used for generating the certificate no longer matches the current address of the CN8000 a mismatch warning occurs Security Alert x Infomation you exchange with this site cannot be viewed or S changed by others However there is a problem with the site s security certificate iv The security certificate is from a trusted certifying authority iv The security certificate date is valid A The name on the a o beech ot docs not match the name Do you want to proceed es ne Vew Coticate You can click Yes to go on or you can disable mismatch checking To disable mismatch checking do the following 1 After the page you are logging in to comes up open the browser s Tools menu Select Internet Options gt Advanced Scroll to the bottom of the list and uncheck Warn about trusted certificates Settings O Allow active content from CDs to run on My Computer Allow active content to run in files on My Computer Allow software to run or install even if the signature is invalid Check for publisher s certificate revocation O Check for server certificate revocation requires restart Check for signatures on downloaded programs Do not save encrypted pages to disk C Empty Temporary Intemet Files
5. Item Action Search DN Set the distinguished name of the search base This is the domain name where the search starts for user names Note If Enable Authorization is not checked this field must include the entry where the CN8000 Admin Group is created Consult the LDAP LDAPS administrator to ascertain the appropriate value Admin Group Key in the Group Name for CN8000 administrator users Note If Enable Authorization is not checked this field is used to authorize users that are logging in If a user is in this group the user receives full access rights If a user is not in this group the user only receives limited access rights Consult the LDAP LDAPS administrator to ascertain the appropriate value CC Management Settings CC Management V Enable CC Server IP Port To allow authorization for the CN8000 through a CC Control Center server check Enable and fill in the CC Server s IP address and the port that it listens on in the appropriate fields 47 CN8000 User Manual Security The Security page controls access to the CN8000 User Station Filters If any filters have been configured they appear in the IP Filter and or MAC Filter list boxes User Station Filters IP Filter Enable Include Exclude MAC Filter Enable Include Exclude Login String IP and MAC Filters control access to the CN8000 based on the IP and or MAC addresses of the computers attempting to
6. ForeignSecurityPrincipals a Users wan_aten jason RAS and IAS Servers guse Admins O steve seves steve steve O steves G seves Securty Group Securty Group Securty Group Securty Group Securty Group Securty Group User Securty Group User User User All workstati All domain All domain g All domain u Designated Members in Buslt n acco TIS Worker t Built n acco Built n acco Securty Group Domain Local Servers in th Securty Group User User User User User User Global Designated 4 Right click on the user s name and select properties 5 On the Attribute Editor page of the dialog box that appears select permission from the list CN jason Properties Attribute Editor Security FN Show optional attributes IT Show only attributes that have values Attributes otherT elephone Unicode String lt Not Set gt otherWellKnownObje DN Binary lt Not Set gt ou Unicode String lt Not Set gt ownerBL Distinguished lt Not Set gt pager Unicode String lt Not Set gt partial ttributeDeletio Octet String lt Not Set gt patti ibuteSe Octet Shi permission Unicode String lt Not Set gt photo Octet String lt Not Set gt physicalDeliveryOffic Unicode String lt Not Set gt possiblelnferiors Object Identifier lt Not Set gt Unicode Strina lt Not Set gt 2 xl 143 CN8000 User Manual 6 Click Edit to bring up th
7. Port Alert Settings The Port Alert Settings dialog box provides a way for you to be informed about events that occur on the devices connected to the CN8000 s ports You can specify up to 10 types of events e g Power On in the Alert String fields When a specified alert occurs during the serial console session the CN8000 writes the event information to the log file OOBC In case the CN8000 cannot be accessed with the usual LAN based methods it can be accessed with an external modem via the switch s RS 232 port To enable support for PPP modem operation click to put a checkmark in the Enable Out of Band Access checkbox Note 1 Enabling out of band access automatically enables Dial In operation See PPP Modem Operation page 172 for set up and operation details 2 For the modem session the CN8000 has an IP address of 192 168 192 1 the user side has an IP address of 192 168 192 101 When you enable out of band access the Enable Dial Back and Enable Dial Out functions become available as described in the sections that follow Enable Dial Back PPP Settings V Enable Out of Band Access V Enable Dial Back Enable Fixed Number Dial Back Phone Number Enable Flexible Dial Back Use username as dial back phone number Password As an added security feature if this function is enabled the switch disconnects the connections that dial in to it and dials back to one of the entries described in the table
8. Creating a New Attribute To create a new attribute do the following 1 Start gt Administrative Tools Active Directory Schema 2 In the left panel of the screen that comes up right click Attributes im schmmgmt Console Root Active Directory Schema LDAP aten com AUrbULES 10 x fh Ge Action yew Favorites Window bep 1e xi 60mB888 C Console Root SM Active Directory Schema LDAP aten com accessPort Unicode String sccounitExpres Large Integer Interval accourtNamehistory Unicode String aCSAggregateTokenk Large Integer Interval aCSAlocableRSVPBan Large Integer Interval aC5CacheTimeout Integer acsDrection Integer eCSDSEMDeadTime Integer 2C50SBMPriority Integer 2C505BMRefresh Integer aCSEnableACSService Boolean aCSEnableRSVPAccou Boolean eCSEnableRSvPMessa Boolean aCSEventLoglevel Integer aCSIdentityName Unicode String aCSMaxAggregatePea Large Integer Interval aC5MaxDurationPerFlow Integer ac5MaximumSDUSize Large Integer Interval aCSMaxNoOfAccountF Integer 3 Select New Attribute 4 In the warning message that appears click Continue to bring up the Create New Attribute dialog box 5 Fill in the dialog box to match the entries shown below then click OK to complete step 1 of the procedure 139 CN8000 User Manual Note The Unique X500 Object ID uses periods not commas
9. L CtriL Shift PS NoWait d Add Delete Edit SetHotkey Import Export Search Macro 9 By Name By Key 6 If you want to change any of the keystrokes select the macro and click Edit This brings up a dialog box similar to the one for Show You can change the content of your keystrokes change their order etc 7 Repeat the procedure for any other macros you wish to create 81 CN8000 User Manual After creating your macros you can run them in any of three ways 1 2 3 If you run the macro from this dialog box you By using the hotkey if one was assigned By opening the Macro List on the Control Panel and clicking the one you want see Macro List page 75 By opening this dialog box and clicking Play Gap OO have the option of specifying how the macro runs Ifyou choose Play Without Wait the macro runs the keypresses one after another with no time delay between them If you choose Play With Time Control the macro waits for the amount of time between key presses that you took when you created it Click on the arrow next to Play to make your choice If you click Play without opening the list the macro runs with the default choice The default choice No Wait or TimeCtrl is shown in the Playback column Macros Hotkeys User Macros 5 System Macros Play Without Wait Play With Time Control 7 xl Name NewMacro
10. add Delete edit Search Macro By Name By Key sah J _ exe 6 If you want to change any of the keystrokes select the macro and click Edit This brings up a dialog box similar to the one for Show You can change the content of your keystrokes change their order etc 84 5 The WinClient Viewer 7 Repeat the procedure for any other macros you wish to create Once the system macros have been created you can choose to run any one of them upon logging out of the CN8000 System macros will only execute when the last user has logged out of the viewer see Exit Macro page 68 for details Note 1 Information about the Search function is given on page 83 2 Systems macros are stored on the CN8000 therefore macro names may not exceed 64 Bytes 1 Byte 1 English alphanumeric character and hotkey combinations may not exceed 256 Bytes each key usually takes 3 5 Bytes 85 CN8000 User Manual Video Settings The Video Settings dialog box allows you to adjust the placement and picture quality of the remote screen display on your monitor Screen Position 3 in T as E y Red Gain e Ra gt Green Gain O Preset Custom Y E L Fair lt Video Quality gt Excellent Set To Grayacale Reset Performance 0 Gamma NT un Ceit Min Max Video Quality Enable Refresh Refresh every seconds Color depth control Enabled Low High Detect Tolerance il Low Hig
11. 1 888 999 ATEN ext 4988 When you contact us please have the following information ready beforehand Product model number serial number and date of purchase Your computer configuration including operating system revision level expansion cards and software Any error messages displayed at the time the error occurred The sequence of operations that led up to the error Any other information you feel may be of help 164 Appendix IP Address Determination If you are an administrator logging in for the first time you need to access the CN8000 in order to give it an IP address that users can connect to There are three methods to choose from In each case your client computer must be on the same network segment as the CN8000 After you have connected and logged in you can give the CN8000 its fixed network address See Network page 37 First Time Browser Login The easiest way to assign an IP address is when you login from a browser for the first time and use the Easy Installation Wizard Refer to Logging In page 19 see step 5 for details on the procedure involved IP Installer The IP Installer utility provides a simple method to ascertain and configure IP related settings for ATEN and Altusen network enabled devices The utility can be obtained from the Download area of our website Look under Download Driver amp Software and select the model of your switch After downloading
12. 68 4 Administration 2 Refer to ATEN s PNO108 User Manual or a compatible PON device s manual for details on editing the power management configuration screens About Click About to view the CN8000 s firmware version 69 CN8000 User Manual This Page Intentionally Left Blank 70 Chapter 5 The WinClient Viewer Starting Up The WinClient Viewer is available by logging in using Microsoft s Internet Explorer selecting Auto as the Default Viewer under Preferences User Preferences and clicking launch from the sidebar at which time the CN8000 WinClient application will install on your computer You can also use the WinClient Viewer to log in directly to the server from your computer For more information on installing this stand alone client based application See AP Operation page 127 for details KVM over IP CNSO00 ATEN amp Basic Setting Default Settings User Management i e Set Language English 2 Session a Maintenance Advanced Setting Launch viewer after login Device Information Network ANMS Security Console Management Apply Date Time Customization Default Viewer Auto O Java Change Password Old Password Remote Console New Password ee Confirm New Password Change Password Viewer Logout Click the Viewer icon shown above to launch the WinClient Viewer AP 71 CN8000 User Manual A second or two
13. E Video Settings Video AutoSync E screen Mode Snapshot Message Board Ctri Alt Del a Set To Grayscale On screen Keyboard Mouse Pointer Mouse Sync Mode ha El Macro List Local Remote Share Mode Customize Control Panel Open Telnet Viewer Power Management Admin Utility 107 CN8000 User Manual Control Panel Functions The Control Panel functions are described in the table below Icon Function This is a toggle Click to make the Control Panel persistent i e it always displays on top of other screen elements Click again to have it display normally When you click this icon the Control Panel collapses into 4 categories Keyboard Mouse Video Macro and Advanced Hover your mouse over the categories to see the submenu list JH lt Keyboard Mouse Video Macro Advanced pa lt S A E EVA Click the icon again to revert to the original Control Panel format Click to bring up the Macros dialog box see Macros page 111 for details Click to bring up the Video settings dialog box Right click to perform a quick Auto Sync see Video Settings page 113 for details Click to perform a video and mouse autosync operation It is the same as clicking the Auto sync button in the Video Options dialog box see Video Settings page 113 Toggles the display between Full Screen Mode and Windowed Mode Click to take a snapshot screen capture of the remote display Se
14. Fixed IP radio button and fill in the IP address Note 1 If you choose Obtain IP address automatically when the switch starts up it waits to get its IP address from the DHCP server If it hasn t obtained the address after one minute it automatically reverts to its factory default IP address 192 168 0 60 2 If the CN8000 is on a network that uses DHCP to assign network addresses and you need to ascertain its IP address see IP Address Determination page 165 for information Em IPv4 DNS Server IPv6 DNS Server The CN8000 can either have its DNS server address assigned automatically or a fixed address can be specified For automatic DNS Server address assignment select the Obtain DNS server address automatically radio button To specify a fixed address select the Set DNS server address manually radio button and fill in the required information Note Specifying an alternate DNS Server address is optional 39 CN8000 User Manual DDNS DDNS maps the dynamic IP address assigned by a DHCP server to a host name The CN8000 can update the DDNS server with its IP address whenever the IP address is changed DDNS Enable Host Name DDNS dyndns org Username Password DDNS Retry Time hour To enable the DDNS capability for the CN8000 do the following 1 Check Enable 2 Enter the Host Name that you registered with your DDNS service provider 3 Drop down the DDNS list to select th
15. Lock Account To set the Login Failures policies check the Enable checkbox the default is for Login Failures to be enabled The meanings of the entries are explained in the table below Entry Explanation Allowed Sets the number of consecutive failed log in attempts that are permitted from a remote computer The default is 5 times Timeout Sets the amount of time a remote computer must wait before attempting to log in again after it has exceeded the number of allowed failures The default is 3 minutes Lock Client PC If this is enabled after the allowed number of failures have been exceeded the computer attempting to log in is automatically locked out No log ins from that computer will be accepted The default is enabled Note This function relates to the client computer s IP If the IP is changed the computer will no longer be locked out Lock Account If this is enabled after the allowed number of failures have been exceeded the user attempting to log in is automatically locked out No logins from the username and password that have failed will be accepted The default is enabled Note If you don t enable Login Failures users can attempt to login an unlimited number of times with no restrictions For security purposes we recommend that you enable this function and enable the lockout policies 52 4 Administration Encryption Encryption Keyboard Mouse O DES 3DES E
16. est tomb e ou le bo tier a t endommag Les performances de l unit sont visiblement alt r es ce qui indique la n cessit d une r paration L unit ne fonctionne pas normalement bien que les instructions d utilisation soient respect es N utilisez que les commandes qui sont abord es dans le mode d emploi Le r glage incorrect d autres commandes peut tre l origine de dommages qui n cessiteront beaucoup de travail pour qu un technicien qualifi puisse r parer l unit Ne connectez pas le connecteur RJ 11 portant la marque Sensor Capteur un r seau de t l communication public 162 Appendix Montage sur b ti Avant de travailler sur le b ti assurez vous que les stabilisateurs sont bien fix es sur le b ti qu ils sont tendus au sol et que tout le poids du b ti repose sur le sol Installez les stabilisateurs avant et lat raux sur un m me b ti ou bien les stabilisateurs avant si plusieurs b tis sont r unis avant de travailler sur le b ti Chargez toujours le b ti de bas en haut et chargez l l ment le plus lourd en premier Assurez vous que le b ti est niveau et qu il est stable avant de sortir une unit du b ti Agissez avec pr caution lorsque vous appuyez sur les loquets de lib ration du rail d unit et lorsque vous faites coulisser une unit dans et hors d un b ti vous pourriez vous pincer les doigts dans les rails Une
17. permission is added as an optional attribute to the person class Note Authentication refers to determining the authenticity of the person logging in authorization refers to assigning permission to use the device s various functions In order to configure the LDAP server you will have to complete the following procedures 1 Install the Windows Server Support Tools 2 Install the Active Directory Schema Snap in and 3 Extend and Update the Active Directory Schema The following section provides an example of configuring LDAP under Windows 2003 Server Install the Windows 2003 Support Tools To install the Windows 2003 Support Tools do the following 1 On your Windows Server CD open the Support Tools folder 2 In the right panel of the dialog box that comes up double click SupTools msi 3 Follow along with the Installation Wizard to complete the procedure 137 CN8000 User Manual Install the Active Directory Schema Snap in To install the Active Directory Schema Snap in do the following 1 2 n 9 Open a Command Prompt Key in regsvr32 schmmgmt d1ll to register schmmgmt dll on your computer Open the Start menu click Run key in mmc a click OK On the File menu of the screen that appears click Add Remove Snap in then click Add Under Available Standalone Snap ins double click Active Directory Schema click Close click OK On the screen you are in open the File
18. 1 180 for the IP address and the port number you want opened for it 9000 for internet access for example Since configuration setup can vary somewhat for each brand of router refer to the router s User Manual for specific information on configuring port forwarding for it 170 Appendix Keyboard Emulation The PC compatible 101 104 key keyboard can emulate the functions of the Sun and Mac keyboards The emulation mappings are listed in the table below PC Keyboard Sun Keyboard PC Keyboard Mac Keyboard Ctrl T Stop Shift Shift Ctrl F2 Again Ctrl Ctrl Ctrl F3 Props ua En Ctrl F4 Undo Ctrl 1 m Ctrl F5 Front Ctrl 2 m gt Ctrl F6 Copy Ctrl 3 mq Ctrl F7 Open Ctrl 4 A Ctrl F8 Paste Alt Alt Ctrl F9 Find Print Screen F13 Ctrl F10 Cut Scroll Lock F14 Ctrl 1 m 5 _ Ctrl 2 O e m Enter Return Ctrl 3 Dime Backspace Delete Ctrl 4 C Insert Help Ctrl H Help Ctrl ua F15 ES Compose T Note When using key combinations press and release the first key Ctrl then press and release the activation key 171 CN8000 User Manual PPP Modem Operation Basic Setup In addition to the browser and AP methods the CN8000 can also be accessed through its RS 232 port using a PPP dial in connection as follows 1 Set up your hardwa
19. 18 Female Yellow PON 1 x DB 9 Male Black Modem 1 x DB 9 Male Black LAN 1 x RJ 45 Female Power 1 x DC Jack Virtual Media 1 x USB Mini B Female Black Switches Reset 1 x Semi recessed pushbutton LEDs Power 1 Orange Link 1 Green 10 100 Mbps 1 Orange Green Emulation Keyboard Mouse USB PS 2 Video 1600 x 1200 60 Hz DDC2B Power Consump tion DC5 3V 6 3W Environment Operating Temp 0 50 C CN8000 0 40 C Power Adapter Storage Temp 20 60 C Humidity 0 80 RH Non condensing Physical Housing Metal Properties p Weight 0 49 kg Dimensions L x W x H 1 Power Over the NET 20 00 x 8 15 x 2 50 cm 188 Appendix About SPHD Connectors This product uses SPHD connectors for its KVM and or Console ports We have specifically modified the shape of these connectors so that only KVM cables that we have designed to work with this product can be connected Limited Warranty ALTUSEN warrants this product against defects in material or workmanship for a period of one 1 year from the date of purchase If this product proves to be defective contact ALTUSEN s support department for repair or replacement of your unit ALTUSEN will not issue a refund Return requests can not be processed without the original proof of purchase When returning the product you must ship the product in its original packaging or packaging t
20. 3 6 1 4 1 1466 115 121 1 15 SINGLE VALUE ebjectelass 1 3 6 1 4 1 21317 1 1 4 1 2 NAME cn8000User SUP organizationalPerson STRUCTURAL MAY permission userCertificate 152 9 LDAP Server Configuration LDAP DIT Design and LDIF File LDAP Data Structure An LDAP Directory stores information in a tree structure known as the Directory Information Tree DIT The nodes in the tree are directory entries and each entry contains information in attribute value form An example of the LDAP directory tree for the CN8000 is shown in the figure below cn st eve cn st eve Li Continues on next page 153 CN8000 User Manual Continued from previous page DIT Creation The LDAP Data Interchange Format LDIF is used to represent LDAP entries in a simple text format please refer to RFC 2849 The figure below illustrates an LDIF file that creates the DIT for the CN8000 directory tree shown in the figure above Summary Define the OpenLDAP users for CN8000 ER E dn de aten dc com objectclass top objectClass dcObject objectClass organization dn cn Manager dc aten dc com objectclass top objectclass person objectclass organizationalPerson cn Manager sn Manager dn ou Users dc aten dc com objectclass estelas top eras class organizationalUnit dn cn steve ou Users dc aten dc com Qplestchass objectclass person objectelass orga
21. Advanced Hover your mouse over the categories to see the submenus HH lt Keyboard Mouse Video Macro Advanced En f daa ys Click the icon again to revert to the original Control Panel format Click to bring up the Macros dialog box see Macros page 77 for details oA E Video Settings Click to bring up the Video Options dialog box Right click to perform a quick Auto Sync see Video Settings page 86 for details El Video Autosync Click to perform a video and mouse autosync operation It is the same as clicking the Auto sync button in the Video Options dialog box see Video Settings page 86 for details Toggles the display between Full Screen Mode and Windowed Mode H Click to take a snapshot screen capture of the remote display See Snapshot page 101 for details on configuring the Snapshot parameters NE Click to bring up the Message Board see The Message Board page 89 for details 74 5 The WinClient Viewer Icon Function Click to send a Ctrl Alt Del signal to the remote system Click to toggle the remote display between color and grayscale Click to bring up the Virtual Media dialog box The icon changes when a virtual media device is started on the port see Virtual Media page 91 for details Note This icon displays in gray when the function is disabled or not available to the user Click to zoom the remote display
22. CN8000 Note that if the installation contains more than one switch even though a switch isn t currently selected if its Recording checkbox is checked the Log Server records its tick information and keeps it in its database 126 Chapter 8 AP Operation Introduction In addition to the browser based client viewers the CN8000 also provides stand alone Windows and Java applications that can be used without a browser The applications can be found on the CN8000 software CD The Windows Client AP is called CNS000winclient exe the Java Client AP is called iClientJ jar The Windows Client AP Installation To install the stand alone Windows Client program do the following 1 Copy CN8000winclient exe from the software CD to a convenient location on your hard disk 2 Run the program and follow along with the installation dialog boxes When the installation completes an icon CN8000 WinClient is placed on your desktop and a program entry is made in the Windows Start menu Start gt All Programs CN8000 gt WinClient Note To download newer versions of the Windows Client AP for the CN8000 please check the download section of our web site www aten com Continues on next page 127 CN8000 User Manual Continued from previous page Starting Up To connect to the CN8000 either click its icon on the desktop or click its entry on the Start menu Tf this is the first time that you are runn
23. Create New Attribute 4 2 xj Y ese a New Attibute Object Identification Common Name permission LDAP Display Name permis s ion Unique X500 Object 1D 1 3 6 1 4 1 21317 1 1 4 2 2 Description Jcnsooo user permis s ions Extending the Object Class With the New Attribute To extend the object class with the new attribute do the following l Open the Control Panel gt Administrative Tools gt Active Directory Schema In the left panel of the screen that comes up select Classes In the right panel right click person im schmmgmt Console Root Active Directory Schema LDAP aten com Classes Bh Ele Action yew Favgies Window Help Pare Fb8 6m Console Root Name p status bea M Active Directory Schema LDAP aten com Ba organizationaPerson Type 88 Active Ore 1 O Classes Mg organizationaRole Structural Active Ore Attributes Bi organizationalunt Structural Active Ore MS packageRegistration Structural Active Pac E physicalLocation Structural Active Phy ME pkICertificateTemplate Structural Active PKI BS pklEnrolknentService Structural Active PKI B posixAccount Awdliary Active ap ME posixGroup Awdliary Active Ab Bi printQueue Structural Active Prit Be a arnb Eher wal Artua a 140 9 LDAP Server Configuration 4 Select Properties the person Properties dialog box comes up with the General page displayed Click the Attributes tab perso
24. Current selection requires at least 11 4 MB of disk space lt Back Cancel 149 CN8000 User Manual OpenLDAP Server Configuration The main OpenLDAP configuration file slapd conf has to be customized before launching the server The modifications to the configuration file will do the An following Specify the Unicode data directory The default is ucdata Choose the required LDAP schemas The core schema is mandatory Configure the path for the OpenLDAP pid and args start up files The first contains the server pid the second includes command line arguments Choose the database type The default is bdb Berkeley DB Specify the server suffix All entries in the directory will have this suffix which represents the root of the directory tree For example with suffix dc aten dc com the fully qualified name of all entries in the database will end with dc aten dc com Define the name of the administrator entry for the server rootdn along with its password rootpw This is the server s super user The rootdn name must match the suffix defined above Since all entry names must end with the defined suffix and the rootdn is an entry example configuration file is provided in the figure below ucdata path ucdata include schema core schema pidfile run slapd pid argsfile run slapd args database bdb suffix dc aten dc com rootdn cn Manager dc aten dc com rootpw secret d
25. Enable report from the following SMTP server and key in the IP address of your SMTP server 2 If your server requires authentication put a check in the Server requires authentication checkbox and key in the appropriate account information in the Account Name and Password fields 3 Key in the email address of where the report is being sent from in the From field Note 1 Only one email address is allowed in the From field and it cannot exceed 64 Bytes 2 1 Byte 1 English alphanumeric character 4 Key in the email address addresses of where you want the SMTP reports sent to in the To field Note 1 If you are sending the report to more than one email address separate the addresses with a semicolon The total cannot exceed 256 Bytes 2 1 Byte 1 English alphanumeric character 41 CN8000 User Manual 5 Select the report options you would like sent Choices include Report IP address Report system reboot Report user login and Report user logout Log Server Important transactions that occur on the CN8000 such as logins and internal status messages are kept in an automatically generated log file See Chapter 7 The Log Server for details on setting up the log server Log Server Enable MAC Address Service Port Specify the MAC address of the computer that the Log Server runs on in the MAC address field Specify the port used by the computer that the Log Server runs on to liste
26. Please visit our website to download the most up to date version of the manual Copyright 2007 2015 ATENO International Co Ltd F W Version 2 3 222 Manual Date 2015 03 05 ATEN and the ATEN logo are registered trademarks of ATEN International Co Ltd All rights reserved All other brand names and trademarks are the registered property of their respective owners CN8000 User Manual Contents EMC Informatio M ai pie ane a a dee deste iia ii A See antes coo T ii SJ T 11364 2006 iii User Information ts der A AA A late ayeare te iv Online Registration iv Telephone Support iv User Notice iv Package Contents v About this Manual xii QVCIVIOW sce otter ale cae ad ai el ae chal N ae xii Conventions iia toes ii kee pe Bes ees ee ra xiii TEMINY hada a wd eines xiv Product Information XV 1 Introduction OEM Wa A a est date Air 1 Features and Benefits 3 System Requirements 6 Remote User Computers 6 O 6 Cablesiua mit da o o th tor ahd bo aorta 7 A 8 Operating Systems 8 Brows
27. after you click the Viewer icon the remote server s display appears as a window on your desktop Navigation You can work on the remote computer via the screen display just as if it were your local system You can maximize the window drag the borders to resize the window or use the scrollbars to move around the screen You can switch between your local and remote programs with Alt Tab Note 1 Due to net lag there might be a slight delay before your keystrokes show up You may also have to wait a bit for the remote mouse to catch up to your local mouse before you click 2 Due to net lag or insufficient computing power on the local machine some images especially motion images may display poorly 72 5 The WinClient Viewer The WinClient Control Panel The WinClient control panel is hidden at the upper center of the screen It becomes visible when you move the mouse pointer over it E A SEE MA E 10 3 56 58 1600x1200 60 Note 1 The above image shows the complete Control Panel The icons that appear can be customized See Customize Control Panel page 100 for details 2 To move the Control Panel to a different location on the screen place the mouse pointer over the text bar area then click and drag By default the left of the text row shows the video resolution of the remote display As the mouse pointer moves over the icons in the icon bar however the information
28. appear on the Control Panel as well as its graphical settings L Customize Control Panel Customize Control Panel Control Panel Style Y Always On Top J icon Y Show Menu m N Macro v E Video Settings User Info Ea Video AutoSync y Show User Numbers m ll Screen Mode i ie Snapshot Snapshot ICa A Message Board 1 E Ctri Alt Del Path Browse m f Set To Grayscale Format JPEG Quality fal Virtual Media See 75 m KE Zoom g iy On screen Keyboard Sr Lowest Highest Mouse Pointer lv Mouse Sync Mode ra N Macro List v lt S Local Remote Share Mode Ia Customize Control Panel v D Open Telnet Viewer W Power Management m PA About oK Cancel RA AA O ROO nap RI CARO O O Control Panel Configuration is almost the same under the JavaClient as it is under the WinClient See Customize Control Panel page 100 for details Note The following functions found with the WinClient are not available with the JavaClient the Transparent control panel style and Screen Options In addition the BMP graphics format in the Snapshot section has been replaced by PNG 118 Chapter 7 The Log Server The Log Server is a Windows based administrative utility that records all the events that take place on selected CN8000 units and writes them to a searchable database This chapter describes how to install and configure the Log Server Installation 1 With Wi
29. at 100 The difference between this setting and the 100 setting is that when the remote view window is resized its contents don t resize they remain at the size they were To see any objects that are outside of the viewing area move the mouse to the window edge to have the screen scroll 95 CN8000 User Manual The On Screen Keyboard E The CN8000 supports an on screen keyboard available in multiple languages with all the standard keys for each supported language Click this icon to pop up the on screen keyboard One of the major advantages of the on screen keyboard is that if the keyboard languages of the remote and local systems aren t the same you don t have to change the configuration settings for either system The user just has to bring up the on screen keyboard select the language used by the computer on the port he is accessing and use the on screen keyboard to communicate with it Note You must use your mouse to click on the keys You cannot use your actual keyboard To change languages do the following 1 Click the down arrow next to the currently selected language to drop down the language list gt Fl Engish UK French German Hungarian Italian 2 Select the new language from the list 96 5 The WinClient Viewer To display hide the expanded keyboard keys click the arrow to the right of the language list arrow fs e ls fe lo Eo A A E
30. below Item Action Enable Fixed If Fixed Number Dial Back is enabled when there is an Number Dial Back incoming call the CN8000 hangs up the modem and dials back to the modem whose phone number is specified in the Phone Number field Key the phone number of the modem that you want the CN8000 to dial back to in the Phone Number field 58 4 Administration Item Action Enable Flexible Dial If Flexible Dial Back is enabled the modem that the CN8000 Back dials back to doesn t have to be fixed It can dial back to any modem that is convenient for the user as follows 1 Key the password that the users must specify in the Pass word field 2 When connecting to the CN8000 s modem users specify the phone number of the modem that they want the CN8000 to dial back to as their Username and specify the password set in the Password field for their password Enable Dial Out Y Enable Dial Out ISP Settings Phone Number Username Password Dial Out Schedule Every Never Daily at PPP online time 0 minute s Emergency dial out PPP stays online until network recovery PPP online time minute s Dial Out Mail Configuration SMTP Server IP Address Email From To SMTP server requires authentication Account Name Password For the dial out function you must establish an account with an Internet Service Provider and then use a modem to dial up to your ISP account An expla
31. default keys are F5 F6 F7 Toggle OSD Toggles the Control Panel Off and On The default keys are F3 F4 F5 Toggle mouse If you find the display of the two mouse pointers local and display remote to be confusing or annoying you can use this function to shrink the non functioning pointer down to a barely noticeable tiny circle which can be ignored Since this function is a toggle use the hotkeys again to bring the mouse display back to its original configuration This is equivalent to selecting the Dot pointer type from the Mouse Pointer icon on the Control Panel The default keys are F7 F8 F9 Note The Java Control Panel does not have this feature Adjust mouse This synchronizes the local and remote mouse movements The default keys are F7 F8 F9 Video Auto sync This combination performs an auto sync operation It is equivalent to clicking the Video Autosync icon on the Control Panel The default keys are F6 F7 F8 Show Hide Local Toggles the display of your local mouse pointer off and on This is Cursor equivalent to selecting the Null pointer type from the Mouse Pointer icon on the Control Panel The default keys are F4 F5 Substitute Ctrl key If your local computer captures Ctrl key combinations preventing them from being sent to the remote system you can implement their effects on the remote system by specifying a function key to substitute for the Ctrl key If you substitute the F11 key fo
32. ees 184 SUN ct LR Ain CARE Coes a 185 Supported KVM Switches 186 Virtual Media Support 186 WinClient ActiveX Viewer WinClient AP 186 Java Applet Viewer Java Client AP 186 Administrator Login Failure 187 Specifications 2 2 eie a oe ee ue 188 About SPHD Connectors 189 Limited Warranty 00 00 189 xi CN8000 User Manual About this Manual This User Manual is provided to help you get the most from your c c system It covers all aspects of installation configuration and operation An overview of the information found in the manual is provided below Overview Chapter 1 Introduction introduces you to the CN8000 System Its purpose features and benefits are presented and its front and back panel components are described Chapter 2 Hardware Setup provides step by step instructions for setting up your installation and explains some basic operation procedures Chapter 3 Browser Login describes how to log into the CN8000 with a browser and explains the functions of the icons and buttons that appear on the opening page Chapter 4 Administration explains the administrative procedures that are employed to configure the CN8000 s working environment as well as how to operate the CN8000 from the local console
33. ensemble des avertissements et instructions inscrits sur appareil Ne placez jamais l unit sur une surface instable chariot pied table etc Si Punit venait tomber elle serait gravement endommag e N utilisez pas l unit proximit de l eau Ne placez pas l unit proximit de ou sur des radiateurs ou bouches de chaleur Le bo tier de l unit est dot de fentes et d ouvertures destin es assurer une ventilation ad quate Pour garantir un fonctionnement fiable et prot ger l unit contre les surchauffes ces ouvertures ne doivent jamais tre bloqu es ou couvertes L unit ne doit jamais tre plac e sur une surface molle lit canap tapis etc car ses ouvertures de ventilation se trouveraient bloqu es De m me l unit ne doit pas tre plac e dans un meuble ferm moins qu une ventilation adapt e ne soit assur e Ne renversez jamais de liquides de quelque sorte que ce soit sur l unit D branchez l unit de la prise murale avant de la nettoyer N utilisez pas de produits de nettoyage liquide ou sous forme d a rosol Utilisez un chiffon humide pour le nettoyage de l unit L appareil doit tre aliment par le type de source indiqu sur l tiquette Si vous n tes pas s r du type d alimentation disponible consultez votre revendeur ou le fournisseur local d lectricit Afin de ne pas endommager votre installation v rifiez que tous les p r
34. fois qu une unit a t ins r e dans le b ti tendez avec pr caution le rail dans une position de verrouillage puis faites glisser l unit dans le b ti Ne surchargez pas le circuit de l alimentation CA qui alimente le b ti La charge totale du b ti ne doit pas d passer 80 de la capacit du circuit Assurez vous que tous les quipements utilis s sur le b ti y compris les multiprises et autres connecteurs lectriques sont correctement mis la terre Assurez vous que les unit s pr sentes dans le b ti b n ficie d une circulation d air suffisante Assurez vous que la temp rature ambiante de fonctionnement de l environnement du b ti ne d passe pas la temp rature ambiante maximale sp cifi e pour l quipement par le fabricant Ne marchez sur aucun appareil lors de la maintenance d autres appareils d un b ti Attention Glisser rail LCD KVM mont l quipement ne doit pas tre utilis comme une tag re ou un espace de travail 163 CN8000 User Manual Technical Support International For online technical support including troubleshooting documentation and software updates http eservice aten com For telephone support see Telephone Support page iv North America Email Support support aten usa com Online Technical Support Troubleshooting Documentation Software Updates http www aten usa com support Telephone Support
35. folder when browser is closed Enable Integrated Windows Authentication requires restart Enable Profile Assistant Use SSL 2 0 3 3 z id not secure mode Wam if forms submittal is being redirected 3 Click OK The next time you run the browser the change will be in effect 177 CN8000 User Manual Self Signed Private Certificates If you wish to create your own self signed encryption key and certificate a free utility openssl exe is available for download over the web at www openssl org To create your private key and certificate do the following 1 2 Go to the directory where you downloaded and extracted openssl exe to Run openssl exe with the following parameters openssl req new newkey rsa 1024 days 3653 nodes x509 keyout CA key out CA cer config openssl cnf Note 1 The command should be entered all on one line i e do not press Enter until all the parameters have been keyed in 2 If there are spaces in the input surround the entry in quotes e g ATEN International To avoid having to input information during key generation the following additional parameters can be used C ST L O OU CN emailAddress Examples openssl reg new newkey rsa 1024 days 3653 nodes x509 keyout CA key out CA cer config openssl cnf subj C yourcountry ST yourstateorprovince L yourlocationor city O yourorganiztion OU yourorganizationalunit CN yourcommonname emailAddres
36. for that activity doesn t appear See User Management page 30 for permission details 25 CN8000 User Manual Sidebar Submenu Sidebar Menu Description User Management Create Manage and set Permissions for User Accounts Basic Settings Session View and End current CN8000 user sessions Maintenance Perform Backups Restores and Firmware upgrades Device Information View the CN8000 s system information Network Manage network settings ANMS Manage Advanced Network Management Settings Advanced Settings Security Manage filters policies encryption virtual Media and private certificate information Console Management Configure serial port settings Date Time Set date and time information for the CN8000 Customization Customize the CN8000 system settings User Preferences Set the current users default settings and password Preferences Log View event information logged for the CN8000 Remote Console Provides a Remote Console Preview Exit Macro setup and Power Management Click this link to display the CN8000 s firmware version and copy Aout right information Viewer Launches the Java or WinClient Viewer application for remote server access Click this icon to log out and end your CN8000 session For secu rity reasons it is important to log out when your session ends Logout Otherwise if Disable Duplicate Login is checked other use
37. have to wait a bit for the remote mouse to catch up to your local mouse before you click 2 Due to net lag or insufficient computing power on the local machine some images especially motion images may display poorly 106 6 The JavaClient Viewer The JavaClient Control Panel The JavaClient control panel is hidden at the top center of the screen It becomes visible when you move the mouse pointer into that area dE SE 606 lt ESS 4 AE 10 3 56 58 1600x1200 60 1 Note 1 The above image shows the complete Control Panel The icons that appear can be customized See Control Panel Configuration page 118 for details 2 To place the control panel anywhere on the screen move the mouse pointer over the text bar area and drag the panel to the new position By default the text row shows the video resolution of the remote display As the mouse pointer moves over the icons in the icon bar information will be displayed that describes the icon s function Ifthe Show User Numbers function has been enabled under Control Panel Configuration see User Info page 101 the total number of users currently logged into the CN8000 displays next to the text row on the right Right clicking in the text row area brings up a menu that allows you to select and use the Control Panel options All Control Panel functions are discussed in the sections that follow 2 103 56 58 JavaClient ose fa D dem EE 6 0
38. is enabled the device will show up in the list of device list local CN8000 units on the AP Client Connection screen see The Windows Client Connection Screen page 129 If it is not enabled it will not show up The default is Enabled Enable Enabling Multiuser operation permits more than one user multiuser to log into the CN8000 at the same time The default is Enabled Force All to If Force All to Grayscale is enabled the remote display for Grayscale all users is changed to grayscale This can speed up I O transfer in low bandwidth situations The default is Disabled Disable Auto Checking this box disables the system from automatically Sync refreshing the Video AutoSync feature Video AutoSync can still be manually refreshed from the control panel using the Video AutoSync icon See Control Panel Functions page 74 USB IO OS Specifies the operating system that the server on the Settings connected port is using Choices are Win Mac Sun and Other The default is Win Language Specifies the OS language being used by the server on the connected port Drop down the list to see the available choices The default is English US Multiuser Mode Defines how a port is to be accessed when multiple users have logged on as follows Exclusive The first user to switch to the port has exclusive control over the port No other users can view the port Occupy The first user to switch to the port has control over the port Howev
39. is not found on Microsoft s list of Trusted Authorities You have two options 1 you can ignore the warning and click Yes to go on or 2 you can install the certificate and have it be recognized as trusted If you are working on a computer at another location accept the certificate for just this session by clicking Yes If you are working at your own computer install the certificate on your computer see below for details After the certificate is installed it will be recognized as trusted 174 Appendix Installing the Certificate To install the certificate do the following 9 In the Security Alert dialog box click View Certificate The Certificate Information dialog box appears Certificate 2x General Details Certification Path Certifitate Information This CA Root certificate is not trusted To enable trust install this certificate in the Trusted Root Certification Authorities store Issued to Aten Issued by Aten Valid from 2003 11 26 to 2013 11 23 Install Certificate 155 Note There is a red and white X logo over the certificate to indicate that it is not trusted 10 Click Install Certificate 11 Follow the Installation Wizard to complete the installation Unless you have a specific reason to choose otherwise accept the default options 12 When the Wizard presents a caution screen x A You are about to install a certificate from a certi
40. is optional 7 For security purposes change the administrator password then click Next CN8000 Installation Wizard Change Password Old Password New Password Confirm New Password For password requirements see Account Policy page 51 8 Set the Default Settings for the administrator see next page CN8000 Installation Wizard Default Settings O Launch viewer after login Default Viewer O auto O Java lt Back Apply 22 3 Browser Login Default Settings Check the Launch viewer after login box if you would like the remote Viewer application to launch in a new window every time you login from a web browser Choose the Default Viewer for remote server access Auto Detect will select the appropriate viewer based on the web browser used WinClient for Windows Internet Explorer Java Client for other web browsers Firefox etc Java will open the Java based viewer regardless of the web browser being used 9 Click Apply then OK to confirm the Operation Succeeded Operation succeeded 10 Click Yes to logout and allow the CN8000 to reset and apply the new settings After the device resets login again The server will reset itself if you log out Do you want to continue 23 CN8000 User Manual 11 After you have successfully logged in the CN8000 Main Screen appears KVM over IP CN8000 Basic Setting Device Information User Management Danaa Session M
41. menu and click Save For Save in specify the C Windows system32 directory For File name key in schmmgmt msc Click Save to complete the procedure Create a Start Menu Shortcut Entry To create a shortcut entry on the Start Menu for the Active Directory Schema do the following 1 Right click Start select Open all Users Programs Administrative Tools On the File menu select New Shortcut In the dialog box that comes up browse to or key in the path to schmmgmt msc C Windows system32 schmmgmt msc then click Next In the dialog box that comes up key in Active Directory Schema as the name for the shortcut then click Finish 138 9 LDAP Server Configuration Extend and Update the Active Directory Schema To extend and update the Active Directory Schema you must do the following 3 procedures 1 create a new attribute 2 extend the object class with the new attribute and 3 edit the Active Directory users with the extended schema The CN8000 supports two types of Active Directory users The first supports both authentication and authorization parameter settings on the LDAP server the second supports shadow user access rights where authentication takes place on the LDAP server but authorization is via the CN8000 s user database Editing Active Directory users with the Type 1 schema is described on page 142 editing Active Directory users with the Type 2 schema is described on page 148
42. mouse ports 1 Introduction Cables Two custom KVM cable sets 1 USB 1 PS 2 to link the CN8000 to a server or KVM switch are provided with this package Custom KVM cable sets are available in various lengths as shown in the table below Cable Type Length CS Part Number PS 2 12m 2L 5201P 1 8m 2L 5202P 1 8m 2L 5702P 3 0 m 2L 5203P 6 0 m 2L 5206P USB 12m 2L 5201U 1 8m 2L 5202U 3 0m 2L 5203U 5 0 m 2L 5205U To purchase additional cable sets contact your dealer One custom Console cable set to link the CN8000 to a local console is provided with this package Note This cable set has been designed to operate with either PS 2 or USB consoles A USB 2 0 cable for use with the Virtual Media function see Virtual Media Port page 11 is provided with this package Cat 5e or higher Ethernet cable not provided with this package should be used to connect the CN8000 to the LAN WAN or Internet CN8000 User Manual Video Only the following non interlaced video signals are supported Resolution Refresh Rates 640 x 480 60 72 75 85 90 100 120 720 x 400 70 800 x 600 56 60 72 75 85 90 100 120 1024 x 768 60 70 75 85 90 100 1152 x 864 60 70 75 85 1280 x 720 60 1280 x 1024 60 70 75 85 1600 x 1200 60 Operating Systems Supported operating systems for remote user computers that log into the CN80
43. on all CN8000 units administered by the LDAP server except for the ones with IP addresses of 10 0 0 166 and 10 0 0 164 2 User has no access rights on the CN8000 with an IP address of 10 0 0 166 3 User has Administrator and Java Applet rights on the CN8000 with an IP address of 10 0 0 164 147 CN8000 User Manual Type 2 For Type 2 users authentication takes place on the LDAP server but authorization is via the CN8000 s user database To edit a Type 2 user do the following 1 Follow Steps 1 6 of Editing a Type 1 user beginning on page 142 2 In the String Attribute Editor key in the values shown in the screenshot below String Attribute Editor xi Attribute permissions Value suluser cea Clear Note Where user represents the Username of a CN8000 user whose permissions reflect the permissions you want Jason to have 3 Click OK When you return to the Attribute Editor page the permission entry now reflects the new permissions CN jason Properties 21x Attribute Editor Security IV Show mandatory attributes IV Show optional attributes Show only attributes that have values Attributes groupsT olgnore homeDirectory homeDrive homePhone homePostal ddress permission initials instanceT ype internationallSDNNu ipPhone isCriticalSystemO biect nicode String nicode String nicode String hicode String nicode String nicode Strin Integer Nu
44. on how to use these functions See Administration page 29 for details 103 CN8000 User Manual This Page Intentionally Left Blank 104 Chapter 6 The JavaClient Viewer Introduction The JavaClient Viewer makes the CN8000 accessible to all platforms that have the Java Runtime Environment JRE installed See System Requirements page 6 for the required JRE version The JRE is available for free download from the Java web site http java com To run the JavaClient Viewer after you log in see Logging In page 19 Click the Viewer link on the lower Sidebar panel shown below KVM over IP CNS000 LE Device Information Device Name CN8000 MAC Address Firmware Version 1Pv4 Address DNS Apply Note For the JavaClient Viewer to launch it must be set as the default viewer See User Preferences page 66 for details 105 CN8000 User Manual A second or two after you click the Viewer link the remote server s display appears as a window on your desktop Navigation You can work on the remote system via the screen display on your monitor just as if it were your local system You can maximize the window drag the borders to resize the window or use the scrollbars to move around the screen You can switch between your local and remote programs with Alt Tab Note 1 Due to net lag there might be a slight delay before your keystrokes show up You may also
45. pa Win Key 97 CN8000 User Manual Mouse Pointer Type The CN8000 offers a number of mouse pointer options when working in the remote display Click this icon to select the type that you would like to work with Pointer Note The icon on the Control Panel changes to match your choice E Mouse DynaSync Mode La Clicking this icon selects whether synchronization of the local and remote mouse pointers is accomplished either automatically or manually Automatic Mouse Synchronization DynaSync Mouse DynaSync provides automatic locked in synching of the remote and local mouse pointers eliminating the need to constantly resync the two movements The icon on the toolbar indicates the synchronization mode status as follows Icon Function This icon indicates that Mouse DynaSync is available and is ES enabled This is the default setting when Mouse DynaSync is available The over this icon indicates that Mouse DynaSync is available but is not enabled When Mouse DynaSync is available clicking the icon toggles its status between enabled and disabled If you choose to disable Mouse DynaSync mode you must use the manual synching procedures described in the next section 98 5 The WinClient Viewer Mac and Linux Considerations For Mac systems there is a second DynaSync setting to choose from If the default synchronization result is not satisfactory you can try
46. search Search excluding last results This is a secondary search performed on all the events in the database for the selected CN8000 excluding the events that resulted from the last search Server List CN8000 units are listed according to their IP address Select the unit that you want to perform the search on from this list You can select more than one unit for the search If no units are selected the search is performed on all of them Priority List Sets the level for how detailed the search results display should be Least is the most general Most is the most specific Least results appear in black Less results appear in blue Most results appear in red Start Date Select the date that you want the search to start from The format follows the YYYY MM DD convention as follows 2009 11 04 Start Time Select the time that you want the search to start from End Date Select the date that you want the search to end at End Time Select the time that you want the search to end at Pattern Key in the pattern that you are searching for here The multiple character wildcard is supported E g h ds would match hands and hoods Results Lists the events that contained matches for the search Search Click this button to start the search Print Click this button to print the search results Export Click this button to write the search results to a txt file Exit Click this button to exit the S
47. secure HTTPS SSL connection Disable HTTPS SSL If this is selected the CN8000 can be accessed via a browser over an ordinary HTTP login connection but not via a secure HTTPS SSL connection If Disable Authentication is checked no authentication procedures are used to check users attempting to log in Users gain Administrator access to the CN8000 simply by entering the correct IP address in their browser Note Enabling this setting creates an extremely dangerous result as far as security goes and should only be used under very special circumstances 55 CN8000 User Manual Console Management The Console Management page consists of two pages Serial Console and OOBC that are used to set up the operating parameters for the CN8000 s RS 232 serial port Use the radio buttons to access each page An explanation of the parameters and how to set them are given in the sections that follow Note Only one of these functions can be active at a time Selecting one automatically disables the other Serial Console When the Serial Console radio button at the top of the page is selected the screen looks similar to the one in the screenshot below Serial Port Setting O Serial Console OOBC Enable Port Property Settings Baud Rate 9600 bps Data Bits 8 bits Parity None Stop Bits 1 bit Flow Control None Enable Toggle DTR No Online Detect DSR Out CRLF Translation None Sus
48. syst me d alimentation sans coupure UPS Placez les c bles du syst me et les c bles d alimentation avec pr caution veillez ce que rien ne repose sur aucun des c bles Lors du branchement ou du d branchement des blocs d alimentation permettant la connexion chaud veuillez respecter les lignes directrices suivantes Installez le bloc d alimentation avant de brancher le c ble d alimentation celui ci D branchez le c ble d alimentation avant de retirer le bloc d alimentation Si le syst me pr sente plusieurs sources d alimentation d connectez le syst me de l alimentation en d branchant tous les c bles d alimentation des blocs d alimentation N ins rez jamais d objets de quelque sorte que ce soit dans ou travers les fentes du boitier Ils pourraient entrer en contact avec des points de tension dangereuse ou court circuiter des pi ces entra nant ainsi un risque d incendie ou de choc lectrique N essayez pas de r parer l unit vous m me Confiez toute op ration de r paration du personnel qualifi Si les conditions suivantes se produisent d branchez l unit de la prise murale et amenez la un technicien qualifi pour la faire r parer Le cordon d alimentation ou la fiche ont t endommag s ou raill s Du liquide a t renvers dans l unit 161 CN8000 User Manual L unit a t expos e la pluie ou l eau L unit
49. the Automatic For Mac 2 setting To select Mac 2 right click in the text area of the Control Panel and select Mouse Sync Mode Automatic for Mac 2 Video Settings Video AutoSync E Screen Mode fen Snapshot A Message Board mA Ctrl Alt Del Set To Grayscale fa Virtual Media On screen Keyboard ive Mouse Pointer mon smemos gt E Macro List gt E Manual lt Local Remote Share Mode gt Automatic For MAC 2 ES Customize Control Panel 9 Redhat AS3 0 Ea Admin Utility There is also an additional setting for Linux on the Mouse Sync Mode menu If the default synchronization method is not satisfactory you can try the Redhat AS3 0 setting Manual Mouse Synchronization If you are using Manual mouse synchronization instead of automatic DynaSync and the local mouse pointer goes out of sync with the remote system s mouse pointer there are a number of methods to bring them back into sync 1 Perform a video and mouse auto sync by clicking the Video Settings icon on the Control Panel see page 86 2 Perform an Auto Sync with the Video Adjustment function see Video Settings page 86 for details 3 Invoke the Adjust Mouse function with the Adjust Mouse hotkeys see Adjust mouse page 78 for details 4 Move the pointer into all 4 corners of the screen in any order 5 Drag the Control Panel to a different position on the screen 6 Set the mouse speed and acceleration for each problematic computer attac
50. the Log Server records log events for this CN8000 or not If the Recording check box is checked the field displays Recording and log events are recorded If the Recording check box is not checked the field displays Paused and log events are not recorded Note Even though a CN8000 is not the currently selected one if its Recording check box is checked the Log Server will still record its log events Address This is the IP Address or DNS name that was given to the CN8000 when it was added to the Log Server see Configure page 121 Port This is the port number that was assigned to the CN8000 when it was added to the Log Server see Configure page 121 Connection If the Log Server is connected to the CN8000 this field displays Connected If it is not connected this field displays Waiting This means that the Log Server s MAC address and or port number has not been set properly It needs to be set in the ANMS Event Destination settings see page 41 and specified in the Configure dialog box see Configure page 121 Days This field displays the number of days that the CN8000 s log events are to be kept in the Log Server s database before expiration see Configure page 121 Description This field displays the descriptive information given for the CN8000 when it was added to the Log Server see Configure page 121 The Tick Panel The lower panel displays tick information for the currently selected
51. the utility to your client computer do the following 1 Unzip the contents of IPInstaller zip to a directory on your hard drive 2 Double click ZPInstaller exe and the following screen appears 7 Network Device IP Installer Device list Device Name MAC Address IP Address CN8600 Windows_Sec_Ola KN4116 KM0932a test1231 N A Protocol IPv4 y IPv4 settings Obtain an IP address automatically DHCP Use the following IP address IP address Subnet mask Default gateway c Use the following DNS server addresses D 0 0 0 0 0 0 0 Preferred DNS server Altemate DNS server 255 255 255 0 00 48 54 00 77 8b 00 10 74 98 01 18 00 10 74 94 04 8d 00 10 74 91 01 83 00 48 01 CN8000 KH1516 084i PN9108 10 00 10 74 34 13 d2 172 17 17 21 172 17 17 23 172 17 18 52 172 17 17 27 172 17 18 13 IFZAFAFAIN 172 17 17 31 172 17 18 108 Enumerate Network adapter MAC bc ae c5 99 e9 3d IP 172 17 17 14 IPv6 settings Set IP Obtain an IPv6 address automatically DHCP C Use the following IPv6 address 172 17 17 10 172 17 17 254 Obtain DNS server address automatically C Use the following DNS server addresses 165 CN8000 User Manual Network Device IP Installer The way that the IP Installer works is that it searches and lists all compatible ATEN devices on your ne
52. when he has occupied the KVM Occupy Release Keyboard Mouse When you Occupy the KM other users can see the video but cannot input keyboard or mouse data The button is shadowed when the KM is occupied The icon displays next to the user s name in the User List panel when he has occupied the KM 114 6 The JavaClient Viewer L Message Board Esm crm administrator E All Users This system will go down in 5 minutes administrator User_Brett Message Display Panel User List Panel Compose Panel Send The names of all the logged in users appear in the User List panel Select the users that you want to post to before sending your message Users that aren t selected won t see the message To Hide Unhide the User List panel click on the arrows in the panel separator If a user has disabled Chat the Disabled Chat icon displays before the user s name to indicate so If a user has occupied the KVM or the KM the corresponding icon displays before the user s name to indicate so Key in the messages that you want to post to the board in the Compose panel Click Send to post the message to the board Messages that users post to the board as well as system messages display in the Message Display panel If you disable Chat however messages that get posted to the board do not appear If another user sends a message to the message board and y
53. window Note This feature is only available in windowed mode Full Screen Mode is off See Zoom page 95 for details aD Al El Click to bring up the on screen keyboard see The On Screen Keyboard page 96 for details si Mouse Pointer Click to select the mouse pointer type Note This icon changes depending on which mouse pointer type is selected see Mouse Pointer Type page 98 for details Click to toggle Automatic or Manual mouse sync When the selection is Automatic the icon to the right appears When the selection is Manual a appears over the icon See Mouse DynaSync Mode page 98 for details E El Macro List Click to display a dropdown Macro List of User macros Access and run macros more conveniently using this icon see Macros page 77 for details A Local Remote Click to select whether the current session has Share Local Occupy or Remote Occupy mode See Local Remote Share Mode page 65 for details Click to bring up the Customize Control Panel dialog box see Customize Control Panel page 100 for details 75 CN8000 User Manual Function To configure the PNO108 a Power Over the NET device click Power Management When a connection between the devices is established you can use the CN8000 to access the configuration screens of the PNO108 Clicking this button opens the login page of the device See Power Manage
54. you are asked to enter it again The two entries must match Description Additional information about the user that you may wish to include Admin Gives the user Administrator level access to the CN8000 All permissions except View Only are granted see Permissions below User Gives the user User level access to the CN8000 Windows Client Power Manager and Java Client permissions are granted see Permissions below Select Select is the default account type It allows the administrator to select which permissions the user will be allowed Permissions Click to place remove a check mark next to an item to grant withhold access to that aspect of the CN8000 s operation Win Client Checking Win Client allows a user to access the CN8000 via the Windows Client software Java Client Checking Java Client allows a user to access the CN8000 via the Java Client software View Only Checking View Only allows a user to view the video of the display of the computers attached to the ports of the KVM switch connected to the CN8000 but they are not allowed to perform any operations on the computers Configure Checking Configure gives a user Administrator privileges and allows the user to set up and modify the CN8000 s operating environment Power Management Checking Power Management allows a user to Power On Power Off Reset devices via an attached Power Over the NET unit Log Checking Log allows a user to vie
55. 00 include Windows 2000 and higher and other systems capable of running Sun s Java Runtime Environment JRE 6 Update 3 or higher Linux Mac Sun etc Supported operating systems for servers that connect to the CN8000 are shown in the table below OS Version Windows 2000 and higher Linux RedHat 7 1 and higher Fedora Core 5 and higher SuSE 9 0 and higher Mandriva Mandrake 9 0 and higher UNIX AIX 4 3 and higher FreeBSD 3 51 and higher Sun Solaris 8 and higher Novell Netware 5 0 and higher Mac OS 9 and higher DOS 6 2 and higher 1 Introduction Browsers Supported browsers for users that log into the CN8000 include the following Browser Version IE 6 and higher Firefox 1 5 and higher Mozilla 1 7 and higher Safari 2 0 and higher Opera 9 0 and higher Netscape 8 1 and higher See Mac Systems page 183 for further information regarding Safari CN8000 User Manual Components Front View 1 2 34 5 No Component Description 1 LAN Port The Cat 5e cable that connects the CN8000 to the LAN WAN or Internet plugs in here 2 Firmware 1 Pressing and releasing this switch performs a CN8000 Upgrade Reset system reset See Erratic operation page 179 Switch 2 Pressing and holding this switch for more than three seconds returns the CN8000 to its factory default configuration settings 3
56. 000 User Manual IP Address 21 Address determination 165 Installer 37 IP Installer 165 J Java Applet Navigation 106 Java Client AP 133 K Keyboard On Screen 96 117 Keyboard Emulation 171 Mac 171 L LDAP Permission attributes 146 Permission examples 147 LDAP Settings 46 Log Server Configure 121 Events 122 Installation 119 Main Screen 120 125 Maintenance 123 Menu Bar 121 Options 124 Search 122 Starting Up 120 Tick Panel 126 Log server 42 Logging in AP program 130 135 Browser 19 Login Invalid login 20 Login Failures 52 Login String 50 M MAC Address 36 Mac Keyboard Emulation 171 Macros 111 JavaClient 111 Search 83 113 System 83 112 User 79 112 WinClient 77 Main Webpage Elements 25 Message Board Java Applet 114 Windows Client 89 Modem operation 172 Mounting DIN Rail 14 Rack 13 Mouse DynaSync Mode 98 118 Synchronization 98 118 Mouse pointer type 98 117 Mouse Synchronization 184 N Network 37 Network Time 62 Network Transfer Rate 40 O Online Registration iv On Screen Keyboard 96 117 OOBC 58 OpenLDAP Server Configuration 150 192 Index Server Installation 149 Overview 1 P Port Access Sessions 32 Port Alert Settings 58 Port Forwarding 170 Port Property Settings 57 PPP 172 Private Certificates 178 R Rack Mounting 13 Safety information 159 RADIUS examples 45 RADIUS
57. 1 Valid entries for all of the Service Ports are from 1 65535 2 The service ports cannot have the same value You must set a different value for each one 3 If port numbers are not set to the default value any user trying to access the CN8000 from a Windows Client AP Java Client AP third party SSH or Telnet viewer or via web browser will need to specify the new port number for access 38 4 Administration Network Configuration Network Configuration IPv4 Configuration Enable IPv6 Configuration Obtain IP address automatically DHCP Obtain IP address automatically DHCP Set IP address manually Fixed IP Set IP address manually Fixed IP IP Address IP Address Subnet Mask Subnet Prefix Length Default Gateway Default Gateway Obtain DNS server address automatically Obtain DNS server address automatically Set DNS server address manually Set DNS server address manually Preferred DNS server Preferred DNS server Alternate DNS server Alternate DNS server m IPv4 Configuration IPv6 Configuration The CN8000 can either have its IPv4 or IPv6 address assigned dynamically at boot up DHCP or it can be given a fixed IP address IPv6 is disabled by default To enable IPv6 check Enable IPv6 Configuration For dynamic IP address assignment select the Obtain IP address automatically DHCP radio button This is the default setting To specify a fixed IP address select the Set IP address manually
58. AC Address Maintenance Advanced Setting Firmware Version D Information IPv4 Address Network DNS ANMS Security CN8000 onsole Management Date Time Customization Log r Prefer Remote C About Viewer Logout ATEN 24 3 Browser Login Main Webpage Elements The Main page consists of two sections the Sidebar and Interactive Display Panel as shown below Each section of the web browser is explained in detail in Chapter 4 Administration KVM over IP ATEN CNs000 Basic Setting Device Information User Management Device Name CN8000 Session Maintenance ene Advanced Setting Firmware Version Device Information IPv4 Address Network ANMS Security Console Management Date Time Apply Customization DNS Preferences User Preferences Log Remote Console About Viewer Logout Sidebar The Sidebar to the left provides a tree view menu of links to the Basic Settings Advanced Settings and Preferences that relate to the various options A lower bar provides two icons allowing you to Logout or launch the Viewer The next page provides a basic overview of each submenu Interactive Display Panel The screen to the right of the sidebar is your main work area The screens that appear reflect your sidebar menu choices and allow you to make changes to the CN8000 Note If a user doesn t have permission to perform a particular activity the menu
59. ATEN KVM On the NET CN8000 User Manual www aten com CN8000 User Manual EMC Information FEDERAL COMMUNICATIONS COMMISSION INTERFERENCE STATEMENT This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense The device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 this device may not cause harmful interference and 2 this device must accept any interference received including interference that may cause undesired operation FCC Caution Any changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to operate this equipment CE Warning This is a class A product In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures Suggestion Shielded t
60. CN8000 with a browser Remote View solves this problem lt opens a window on the user s desktop containing the remote server s display that is the same as the one that appears with the browser based Windows client Refer to Chapter 5 The WinClient Viewer for operation details Change Password Allows users to change their passwords without administrator intervention Refer to Chapter 5 The WinClient Viewer for operation details Exit Macro Exit Macro provides administrators with a non browser based method for creating exit macros Refer to System Macros page 83 for details Admin Utility The Administrator Utility provides administrators with a non browser based method for configuring and controlling CN8000 operations The Administrator Utility is discussed on the next page 131 CN8000 User Manual The Administrator Utility Clicking Admin Utility brings up a window that allows you to configure the CN8000 via AP based GUI with the web browser administrative functionalities The Admin Utility is the same as a web browser session and appears with menu options that depend on the permissions set for the user that is logged in For detailed information on how to use the options available here follow the instructions in Chapter 4 Administration KVM over IP CN8000 ATEN cN8000 00 10 74 51 01 e1 V23222 17217 17 10 0000 Save 132 8 AP Operation The Java Client AP The Java
61. Chapter 5 The WinClient Viewer explains how to connect to the CN8000 with the Windows Client software and describes how to use the OSD to access and control the computers connected to the switch Chapter 6 The JavaClient Viewer describes how to connect to the CN8000 with the Java Applet software and explains how to use the OSD to access and control the computers connected to the switch Chapter 7 The Log Server explains how to install and configure the Log Server Chapter 8 AP Operation describes how to operate the CN8000 using Windows and Java programs rather than with the browser method Chapter 9 LDAP Server Configuration explains how to configure the CN8000 for LDAP LDAPS authentication and authorization with Active Directory or OpenLDAP An Appendix provides specifications and other technical information regarding the CN8000 xii CN8000 User Manual Conventions This manual uses the following conventions Monospaced Indicates text that you should key in Indicates keys you should press For example Enter means to press the Enter key If keys need to be chorded they appear together in the same bracket with a plus sign between them Ctrl Alt Numbered lists represent procedures with sequential steps Bullet lists provide information but do not involve sequential steps Indicates selecting the option on a menu or dialog box for example that comes next For example Start gt Run
62. Client AP is provided to make the CN8000 accessible to all platforms Systems that have JRE 6 Update 3 or higher installed can connect If you don t already have Java it is available for free download from Sun s Java web site http java sun com Starting Up To connect to the CN8000 with the stand alone Java Client program copy iClientJ jar to a convenient location on your hard disk then double click its icon or key in the full path to the program on the command line to bring up the Java Client Connection screen Note If this is the first time that you are running the program a dialog box appears requesting you to input your serial number CET x Serial Number The serial number can be found on the CN8000 s CD case Key in the serial number 5 characters per box then click OK to bring up the CN8000 Connection Screen After performing this operation the first time you run the program this dialog box doesn t appear again you go directly to the Java Client Connection screen 133 CN8000 User Manual The Java Client Connection Screen Server List Name IP CN8000 10 0 1 214 Server IP Port 9000 To connect to the CN8000 1 Key in its IP address in the Server field 2 Ifthe port number shown isn t correct key in the correct number 3 Click Connect 134 8 AP Operation Logging In Once the CN8000 connects to the unit you specified a login window ap
63. Drives Read Write These drives can be mounted either as Drives or Removable Disks see Virtual Media page 91 Mounting them as removable disks allow booting the remote server if the disk contains a bootable OS In addition if the disk contains more than one partition the remote server can access all the partitions ISO Files Read Only Folders Read Write Smart Card Readers Java Applet Viewer Java Client AP ISO Files Read Only Folders Read Write 186 Appendix Administrator Login Failure If you are unable to perform an Administrator login because the Username and Password information has become corrupted or you have forgotten it for example there is a procedure you can use to clear the login information To clear the login information do the following 1 Power off the CN8000 and remove its housing 2 Use a jumper cap to short the jumper on the mainboard labeled J6 m Co u Power on the switch When the front panel LEDs flash power off the switch Remove the jumper cap from J6 D Ur A W Close the housing and power on the CN8000 After you start back up you can use the default Username and Password see page 20 and page 130 to log in 187 CN8000 User Mai nual Specifications Function CN8000 Connectors Console 1 x SPHD 18 Male Yellow KVM Computer 1 x SPHD
64. E User Macros System Macros I Enable Actions Hotkeys Exit Remote Location F2 F3 F4 E Adjust Video F5 F6 F7 al Toggle Control Panel F3 F4 F5 add Toggle Mouse Display F7 F8 F9 A Adjust Mouse F8 F7 F6 Delete Video AutoSync F6 F7 F8 Show Hide Local Cursor F4 F5 Edit F Substitute Ctrl Key Fil v Substitute Alt Key F12 Set Hotkey 4 w Search Macro By Name By Key If you find the default Hotkey combinations inconvenient you can reconfigure them as follows 1 Highlight an Action then click Set Hotkey 2 Press your selected Function keys one at a time The key names appear in the Hotkeys field as you press them You can use the same function keys for more than one action as long as the key sequence is not the same To cancel setting a hotkey value click Cancel to clear an action s Hotkeys field click Clear 3 When you have finished keying in your sequence click Save To reset all the hotkeys to their default values click Reset 77 CN8000 User Manual An explanation of the Hotkey actions is given in the table below Action Explanation Exit remote location Exits the remote view and goes back to the web browser Main Page This is equivalent to clicking the Exit icon on the Control Panel The default keys are F2 F3 F4 Adjust Video Brings up the Video Settings dialog box This is equivalent to clicking the Video Settings icon on the Control Panel The
65. Hotkey Macro L CtriLB Playback NoWait 3 NoWait TimeCtrl Search Macro By Name By Key Search gt Delete Edit Set Hotkey Import Export You can change the default choice by clicking on the current choice VoWait in the screenshot above and selecting the alternative choice Note 1 Information about the Search function is given on page 83 2 User Macros are stored on the Local Client computer of each user Therefore there is no limitation on the of number of macros the size of the macro names or makeup of the hotkey combinations that invoke them 82 5 The WinClient Viewer Search Search at the bottom of the dialog box lets you filter the list of macros that appear in the large upper panel for you to play or edit Click a radio button to choose whether you want to search by name or by key key in a string for the search then click Search All instances that match your search string appear in the upper panel System Macros System Macros are used to create exit macros for when you close a session For example as an added measure of security you could create a macro that sends the Winkey L combination which would cause the remote device s log in page to come up the next time the device was accessed To create the macro do the following 1 Select System Macros then click Add Macros Hotkeys User Macros Name Macro Re
66. Internet Protocol Version 6 32 bit address Appears only when IPv6 is enabled DNS The IP address of the Domain Name Server 36 4 Administration Network The Network page is used to specify the CN8000 s network environment IP Installer Enabled View Only Service Ports HTTP 80 Program HTTPS 443 Virtual Media Telnet Port 23 SSH Port Network Configuration IPv4 Configuration Obtain IP address automatically DHCP Set IP address manually Fixed 1P IP Address Subnet Mask Default Gateway Obtain DNS server address automatically Set DNS server address manually Preferred DNS server Alternate DNS server DDNS E Enable Host Name DDNS dyndns org Username Password DDNS Retry Time hour Network Transfer Rate 99999 IP Installer Disabled 9000 9003 22 D Enable 1Pv6 Configuration Obtain 1P address automatically DHCP Set IP address manually Fixed 1P IP Address Subnet Prefix Length Default Gateway Obtain DNS server address automatically Set DNS server address manually Preferred DNS server Alternate DNS server Apply The IP Installer is an external Windows based utility for assigning IP addresses IP Installer Enabled View Only Disabled Click one of the radio buttons to select Enabled View Only or Disable for the IP Installer utility See page 165 for IP Installer details Note 1 If you select View Only you w
67. N reserves the right to revise or update its product software or documentation without obligation to notify any individual or entity of such revisions or update For details about extended warranties please contact one of our dedicated value added resellers 189 CN8000 User Manual This Page Intentionally Left Blank 190 A Access Ports 38 Account Policy 51 Administration 29 ANMS 41 44 Customization 63 Firmware upgrading 33 Network 37 Administration Page Date Time 61 Administrator Login Failure 187 Administrator Utility 132 ANMS 41 44 AP Operation 127 Java Client 133 Windows Client 127 Authentication external 41 44 B Backup Configuration User Accounts 34 Benefits 3 C Cables 7 custom 12 CC Management 47 CN8000 Front view 10 Rear view 11 Configuration backup 34 restore 35 Console cable 12 Console Management Index OOBC 58 serial console 56 Control Panel Functions 74 108 JavaClient 107 WinClient 73 Corrupt Password 187 Customization 63 D Date Time Settings 61 Device Information 36 DIN Rail Mounting 14 Disable Local Authentication 44 DNS Server 22 39 DynaSync 98 118 Enable Dial Back 58 Enable Dial Out 59 Encryption 53 External authentication 41 44 F Features 3 Firmware upgrade 33 Forgotten Password 187 H Hardware Setup 15 Hotkeys 77 111 Windows Client 77 Installation 15 Invalid login 20 191 CN8
68. Pressing and holding this switch while powering on the switch returns the CN8000 to its factory default firmware level This operation should only be performed in the event of a firmware upgrade failure that results in the device becoming inoperable Note This switch is recessed and must be pushed with a thin object such as the end of a paper clip or a ballpoint pen 3 10 100 Mbps The LED lights ORANGE to indicate 10 Mbps data LED transmission speed It lights GREEN to indicate 100 Mbps data transmission speed 4 Link LED Flashes GREEN to indicate that a Client program is accessing the device 5 Power LED Lights ORANGE when the CN8000 is powered up and ready to operate 10 1 Introduction Rear View 12 3 4 5 6 No Component Description 1 Power Jack The power adapter cable plugs in here 2 Virtual Media Port The cable that connects the CN8000 to a USB port on your server or KVM switch plugs in here See Virtual Media page 91 for virtual media details 3 PC KVM Port The KVM cable supplied with this package that links the CN8000 to your server or KVM switch plugs in here 4 Console Port The CN8000 can be accessed via a local console as well as over the Net The cable for the local console keyboard monitor and mouse plugs in here The console can use either a PS 2 or USB keyboard and mouse Each connector is color coded and marked with an appropriate icon to indicat
69. Settings 44 refresh screen 87 Requirements Operating Systems 8 Restore Configuration User Accounts 35 S Safety Instructions General 157 Rack Mounting 159 screen refresh 87 Search Macros 83 113 Security 48 Login string 50 Self signed certificates 178 Serial Console 56 Serial number 133 serial number 128 Sessions 32 SJ T 11364 2006 iii SMTP Settings 41 SNMP Server 42 Sun Keyboard Emulation 171 Sun Systems Troubleshooting 182 Supported KVM Switches 186 Synchronization mouse 98 118 System Macros 83 112 System Requirements 6 T Technical Support 164 Telephone support iv Tick Panel 126 Time out control 63 Time settings 61 Troubleshooting General Operation 179 Java 181 Log Server 183 Mac Systems 183 Sun Systems 182 Windows 180 Trusted Certificates 174 U User Accounts backup 34 restore 35 User Macros 79 112 User Management 30 User Notice iv User Preferences 66 User Station Filters 48 V Video Settings JavaClient Viewer 113 193 CN8000 User Manual Windows Client 86 W Virtual Media WinClient Viewer 71 JavaClient 116 Windows Client WinClient 91 Installation 127 Virtual Media Support 186 Message Board 89 Starting up 71 Windows Client AP 127 194
70. aes E aca Random Video fl pes 3DES O aes El rca ET Random Virtual Media E pes Fl 3pes E aes E rca ET Random These flexible encryption alternatives for keyboard mouse video and virtual media data let you choose any combination of DES 3DES AES RC4 or a Random cycle of any or all of them Enabling encryption will affect system performance no encryption offers the best performance the greater the encryption the greater the adverse effect If you enable encryption the performance considerations going from best to worst are as follows RCA offers the least performance impact DES is next then 3DES or AES The RC4 DES combination offers the least impact of any combination Virtual Media The CN8000 s Virtual Media feature allows a drive folder image file removable disk or smart card reader on a user s system to appear and act as if it were installed on the remote server Virtual Media 9 Read Only Read Write Read Only refers to the redirected device being able to send data to the remote server but not to have data from the remote server written to it If Read Only is selected even users with Read Write permissions will only be able to read they will not be able to write Read Write refers to the redirected device being able to send data to the remote server as well as being able to have data from the remote server written to it The default is for Read Only If you want the redirected device t
71. al Media icon on my Control Panel The virtual media function only supports the Windows Client programs 181 CN8000 User Manual Sun Systems Problem Resolution Video display problems with HDB15 interface systems e g Sun Blade 1000 servers The display resolution should be set to 1024 x 768 Under Text Mode 1 Go to OK mode and issue the following com mands setenv output device screen r1024x768x60 reset all Under XWindow 1 Open a console and issue the following command m64config res 1024x768x60 2 Log out 3 Log in Video display problems with 13W3 interface systems e g Sun Ultra servers The display resolution should be set to 1024 x 768 Under Text Mode 1 Goto OK mode and issue the following com mands setenv output device screen r1024x768x60 reset all Under XWindow 1 Open a console and issue the following command m64config res 1024x768x60 2 Log out 3 Login The local and remote mouse pointers do not sync The default configuration is for the local and remote mouse pointers to automatically sync when you connect Automatic mouse sync only supports USB mice on Windows and Mac G4 or higher systems however You must select Manual as the Mouse DynaSync Mode choice and sync the pointers manually See Mouse DynaSync Mode page 98 for further details These solutions work for most common Sun VGA cards If using them fails to resol
72. al Mouse Synchronization Procedures If the mouse synchronization procedures mentioned in the manual fail to resolve mouse pointer problems for particular computers try the following Windows Note In order for the local and remote mice to synchronize you must use the generic mouse driver supplied with the MS operating system If you have a third party driver installed such as one supplied by the mouse manufacturer you must remove it 1 Windows 2000 a Open the Mouse Properties dialog box Control Panel Mouse gt Mouse Properties b Click the Motion tab c Set the mouse speed to the middle position 6 units in from the left d Set the mouse acceleration to None Mouse Properties 2 x Buttons Pointers Motion Hardware Speed m Acceleration ME Adjust how much your pointer accelerates as hE you move it faster C Low Medium High r Snap to default 0K Move pointer to the default button in dialog boxes Cancel Apply 2 Windows XP Windows Server 2003 a Open the Mouse Properties dialog box Control Panel gt Mouse 184 Appendix b Click the Pointer Options tab c Set the mouse speed to the middle position 6 units in from the left d Disable Enhance Pointer Precision Mouse Properties Buttons Pointers Pointer Options Wheel Hardware Motion J Enhance pointer precision Snap To a Automatically move
73. anagement plug its cable into the PON port CN8000 User Manual 5 Optional If you want to connect a serial console device or modem plug its cable into the RS 232 port 6 Plug the LAN or WAN cable into the CN8000 s LAN port 7 Plug the power adapter cable into the CN8000 s power jack then plug the power adapter into an AC power source This completes the hardware installation and you are ready to start up Note When starting up be sure to first power on the CN8000 then power on the server or KVM switch o Serial Console Device Router Switch Sunfire V100 Modem PN0108 2 Hardware Setup CIA IEA AAA D O ES Ep Ep Esp Esp Esp ED Em Ep Esp Esp Esp Esp Esp Esp o CL5708 CL5716 CS1708A CL1716A A el a El sx le le g 8 la E 17 CN8000 User Manual This Page Intentionally Left Blank Chapter 3 Browser Login The CN8000 can be accessed either from an internet browser via Windows and Java applicatio
74. are eee ea 122 A hid nla Pilate Peden eh Boeke De ne he hades 122 Maintenance 0 00 eee ee 123 OptlOnsi ceca les ee Chie a Peds ari ias 124 Heli ha sido andes 124 The Log Server Main Screen 125 OVEIVICW AS A O AAA 125 The List Panel cuca Ai a 126 The Tick Panel 2 126 8 AP Operation INTRODUCTION iene kiri easiest ee We dan ee 127 The Windows Client AP 127 Installation A Pee ew oh ee 127 Starting Upset it e ee ets Pete emake nn 128 The Windows Client Connection Screen 129 A ahoaleg mel EA Suchet ey REST Sop lieg ake waa N 130 The Administrator Utility 132 Me Java Client AP Saca Abs ral bate ete de 133 StantinquUp wee eset ra aa 133 The Java Client Connection Screen 134 Logging IM it A eee ae alee Sonn da eet bee 135 9 LDAP Server Configuration INTRODUCTION sr a o 0h ofan Ab tg ed eid ied hea pce SAD 137 Install the Windows 2003 Support Tools 137 Install the Active Directory Schema Snap in 138 Create a Start Menu Shortcut Entry 138 Extend and Update the Active Directory Schema 139 Creating a New Attribute 139 Extending the Object Class With the New Attribute 140 Editing Active Directory Users
75. ars at the end of the IPv6 address 168 Appendix IPv6 Stateless Autoconfiguration If the CN8000 s network environment contains a device such as a router that supports the IPv6 Stateless Autoconfiguration function the CN8000 can obtain its prefix information from that device in order to generate its IPv6 address For example 2001 74ff fe6e 59 As above the address is displayed at the bottom of the Basic Settings page Once you have determined what the IPv6 address is you can use it when logging in from a browser or the Win and Java Client AP programs For example If you are logging in from a browser you would key in http 2001 74ff fe6e 59 for the URL bar If you are logging in with the AP program you would key 2001 74ff fe6e 59 for the IP field of the Server panel see The Windows Client Connection Screen page 129 169 CN8000 User Manual Port Forwarding For devices located behind a router port forwarding allows the router to pass data coming in over a specific port to a specific device By setting the port forwarding parameters you tell the router which device to send the data coming in over a particular port to For example if the CN8000 connected to a particular router has an IP address of 192 168 1 180 you would log into your router s setup program and access the Port Forwarding sometimes referred to as Virtual Server configuration page You would then specify 192 168
76. at take place not just the most recent 512 set up the Log Server AP program see The Log Server page 119 To clear the log file click on the Clear Log icon at the lower right of the page 67 CN8000 User Manual Remote Console This section provides a preview screen that shows a snapshot of the server s display as follows Remote Console Preview E q HE KE Exit Macro None E l Open Power Management Clicking Refresh updates the snapshot of the remote display Exit Macro The Exit Macro panel contains a dropdown list box of user created System macros Select the Exit Macro you would like to use and click Save See System Macros page 83 for details on creating exit macros Telnet If the Serial Console is enabled and a user has telnet access rights then the Open Telnet Client button will appear on the Remote Console page Click this button to launch the built in telnet client AP Open Power Management To configure the PNO108 a Power Over the NET device click Open Power Management When a connection between the devices is established you can use the CN8000 to access the configuration screens of the PNO108 Clicking this button opens the login page of the PNO108 device Note 1 Connection to the PNO108 or a Power Over the NET PON device can be viewed and managed through the browser Windows and or Java application AP programs with the latest firmware version
77. ator All Users The system will shut down in 5 minutes administrator User_Brett User_Tom Message Display Panel User List Panel Compose Panel Exit 90 5 The WinClient Viewer Virtual Media The Virtual Media feature allows a drive folder image file or removable disk on a local client computer to appear and act as if it were installed on the remote server Virtual Media also supports a smart card reader function that allows a reader plugged into a local client computer to appear as 1f it were plugged into the remote server Virtual Media Icons The Virtual Media icon on the WinClient Control Panel changes to indicate whether the virtual media function is available or if a virtual media device has already been mounted on the remote server as shown in the table below Icon Function The icon displays in blue to indicate that the virtual media function is available Click the icon to bring up the virtual media dialog box device has been mounted on the remote server Click the icon to un mount all redirected devices The icon displays in blue with a to indicate that a virtual media Virtual Media Redirection To implement the virtual media redirection feature do the following 1 Click the Virtual Media icon to bring up the Virtual Media dialog box Virtual Media Control T Mx Write Mode Device Type Device Name Path it y 2 Click Add then select the m
78. automatically put in the Reset on Exit box To have the changes take effect log out and then log back in again A wait of approximately 30 to 60 seconds is necessary before logging in following a reset Note If the CN8000 s performance degrades reset it by putting a check in the Reset on Exit box and then log out log in 65 CN8000 User Manual Preferences This section provides three submenus User Preferences Log and Remote Console used to configure user log and console settings on the CN8000 User Preferences The User Preferences page allows users to set their own Default Settings and change their password Only users with configure permissions will have the Launch viewer after login option and when its enabled by any user account the option is enabled for all users not including the Administrator account Default Settings Set Language English X J Launch viewer after login Default Viewer Auto Java Apply Change Password Old Password New Password Confirm New Password Change Password The page settings are explained in the following table Setting Function Viewer You can choose which viewer is used when accessing a server Auto Detect will select the appropriate viewer based on the web browser used WinClient for Windows Internet Explorer Java Client for other web browsers Firefox etc Java will open the Java based viewe
79. ble Refresh Refresh every 2 seconds Enabled pu Detect Tolerance e High cc Basic lt lt Video Settings operation is the same under the JavaClient as it is under the RGB Red Gain i Green Gain SS a Blue Gain Set To Grayscale Reset Gamma Userdef 1 v Save As Reset WinClient See Video Settings page 86 for details 113 CN8000 User Manual Message Board The CN8000 supports multiple user logins which can possibly give rise to access conflicts To alleviate this problem a message board feature similar to an internet chat program allows users to communicate with each other The buttons table below E L Message Board AA i All Users dministrator Message Display Panel User List Panel Compose Panel Send on the Button Bar are toggles Their actions are described in the Enable Disable Chat When disabled messages posted to the board are not displayed The button is shadowed when Chat is disabled The icon displays next to the user s name in the User List panel when he has disabled Chat Occupy Release Keyboard Video Mouse When you Occupy the KVM other users cannot see the video and cannot input keyboard or mouse data The button is shadowed when the KVM is occupied The icon displays next to the user s name in the User List panel
80. ble above and the Macros section on page 111 Click to select whether the current session has Share Local Occupy or Remote Occupy mode See Local Remote Share Mode page 65 for details E ES Click to bring up the Control Panel Configuration dialog box See Control Panel Configuration page 118 for details on configuring the Control Panel N To configure the PN0108 a Power Over the NET device click Power Management When connection between the devices is established you can use the CN8000 to access the configuration screens of the PN0108 Clicking this button opens the login page of the device p2 Click this icon to open a Viewer based GUI with the web browsers administrative functionalities PAS vt Click to exit the remote view 109 CN8000 User Manual Icon Function These icons show the Num Lock Caps Lock and Scroll Lock status of the remote computer When the lock state is On the LED is bright green and the lock hasp is closed When the lock state is Off the LED is dull green and the lock hasp is open Click on the icon to toggle the status Note When you first connect the LED display may not be accurate To be sure click on the LEDs to set them Click to display information about the JavaClient Viewer version 110 6 The JavaClient Viewer Macros The Macros icon provides access to three functions found in the Macros
81. connect A maximum of 100 IP filters and 100 MAC filters are allowed To enable IP and or MAC filtering Click to put a check mark in the JP Filter Enable and or MAC Filter Enable checkbox Ifthe include button is checked all the addresses within the filter range are allowed access all other addresses are denied access If the exclude button is checked all the addresses within the filter range are denied access all other addresses are allowed access 48 4 Administration Adding Filters To add an IP filter do the following 1 Click Add A dialog box similar to the one below appears 2 Key the address you want to filter in the From field To filter a single IP address key the same address in the To field To filter a continuous range of addresses key in the end number of the range in the To field 3 After filling in the address click OK 4 Repeat these steps for any additional IP addresses you want to filter To add a MAC filter do the following 1 Click Add A dialog box similar to the one below appears MAC Address 000000000000 2 Specify the MAC address in the dialog box then click OK 3 Repeat these steps for any additional MAC addresses you want to filter m IP Filter MAC Filter Conflict Tf there is a conflict between an IP filter and a MAC filter for example where a computer s IP address is allowed by the IP filter but it s MAC address is e
82. cord Add Delete ect Search Macro By Name By Key ser s 2 In the dialog box that comes up replace the NewMacro text with a name of your choice for the macro Macros Mx Hotkeys User Macros 9 System Macros z Macro ta mm Crem Delete Edit Search Macro By Name By Key Search Ext 83 CN8000 User Manual 3 Click Record The dialog box disappears and a small panel appears at the top left of the screen 4 Press the keys for the macro To pause macro recording click Pause To resume click Record again Clicking Show brings up a dialog box that lists each keystroke that you make together with the amount of time each one takes see page 80 Note 1 Case is not considered typing A or a has the same effect 2 When recording the macro the focus must be on the remote screen It cannot be in the macro dialog box 3 Only the default keyboard characters may be used Alternate characters cannot be used For example if the keyboard is Traditional Chinese and default character is A the alternate Chinese character obtained via keyboard switching is not recorded 5 If you haven t brought up the Show dialog click Done when you have finished recording your macro You return to the Macros dialog box with your system macro key presses displayed in the Macro column Macros Lx Hotkeys User Macros System Macros Name Macro
83. ddress select Specify an IP address then fill in the information for IPv4 IP Address Subnet Mask and Gateway IPv6 IPv6 Address Subnet Prefix Length and Default Gateway 166 Appendix After you have made your changes click Set IP to set the IP address for the device you have selected Note The screen will freeze for a moment or two until the utility has finished setting the IP About Clicking the About button brings up a dialog box with information about the product including the current firmware version Browser 1 Set your client computer s IP address to 192 168 0 XXX Where XXX represents any number or numbers except 60 192 168 0 60 is the default address of the CN8000 2 Specify the switch s default IP address 192 168 0 60 in your browser and you will be able to connect 3 Assign a fixed IP address for the CN8000 that is suitable for the network segment that it resides on 4 After you log out reset your client computer s IP address to its original value AP Windows Client For computers running Windows the CN8000 s IP address can be determined with the Windows AP program see The Windows Client AP page 127 When you run the program it searches the network segment for CN8000 devices and displays the results in a dialog box similar to the one below ACTE 151 x Server List Name IP P 172 17 17 10 Port 9000 Login Logout You can now use this net
84. dialog box Hotkeys User Macros and System Macros Each of these functions is described in the following sections Hotkeys Various actions related to manipulating the remote server can be accomplished with hotkeys Selecting the Hotkeys radio button lets you configure which hotkeys perform the actions m Macros Hotkeys D User Macros System Macros lu Enable Actions T Hotkeys y ExitRemote Location F2F3F4 mm Adjust Video F5F6F7 m Toggle Control Panel _ F3F4F5 _ E O Adjust Mouse F8F7F6 O Video AutoSync F6F7F8 El O Show Hide Local Curs F4F5 O Substitute Ctrl Key An le Substitute Alt Key F12 Reset Set Hotkey Search Macro By Name By Key Search Hotkey operation is the same under the JavaClient as it is under the WinClient See Hotkeys page 77 for details Note Toggle Mouse Display is not available in the Java Viewer version 111 CN8000 User Manual User Macros User Macros are used to perform specific actions on the remote server To create the macro do the following 1 Select the User Macros radio button then click Add Macros lt Hotkeys System Macros Name Hotkeys aaao Playback Mode Play Il gt AAA E descritas Record Edit Set Hotkey k import Export Search Macro By Name D By Key l Search Exit User Macro operation is the same under t
85. e 64 you can use this button to occupy the KM When you Occupy the KM other users can see the video but cannot input keyboard or mouse data The button is shadowed when the KM is occupied The icon displays next to the user s name in the User List panel when the user has occupied the KM a 8 le Show Hide User List When you Hide the User List the User List panel closes The button is shadowed when the User List is open 89 CN8000 User Manual Message Display Panel Messages that users post to the board as well as system messages display in this panel If you disable Chat however messages that get posted to the board won t appear Compose Panel Key in the messages that you want to post to the board in this panel Click Send or press Enter to post the message to the board User List Panel The names of all the logged in users are listed in this panel Your name appears in blue other users names appear in black By default messages are posted to all users To post a message to one individual user select the user s name before sending your message Ifa user s name is selected and you want to post a message to all users select All Users before sending your message Ifa user has disabled Chat its icon displays before the user s name to indicate so Ifa user has occupied the KVM or the KM its icon displays before the user s name to indicate so Message Board 7 xl er E administr
86. e DDNS service you are registered with 4 Key in the Username and Password that authenticates you with your DDNS service 5 In the DDNS Retry Time field key in how many hours the CN8000 waits before it tries to reconnect to the DDNS server when the CN8000 fails to connect Network Transfer Rate This setting allows you to tailor the size of the data transfer stream to match network traffic conditions by setting the rate at which the CN8000 transfers data to remote computers The range is from 4 99999 Kilobytes per second KBps Finishing Up After making any network changes be sure Reset on exit on the Customization page see Customization page 63 has been enabled there is a check in the checkbox before logging out This allows network changes to take effect without having to power the CN8000 off and on 40 4 Administration ANMS Event Destination The Advanced Network Management Settings Event Destination page allows you to set up login authentication and authorization management from external sources It is divided into several sections described in the sections that follow SMTP Settings SMTP Settings Enable report from the following SMTP server SMTP Server Server requires authentication Account Name Password From To Report IP address Report system reboot Report user login Report user logout To have the CN8000 email reports from the SMTP server to you do the following 1 Enable the
87. e IP address and Port number for the unit you wish to connect to have been specified click Login to start the connection When you have finished with your session Click Logout to end the connection Login Starts the connection to the CN8000 Logout Remote View These buttons become active once you log into the CN8000 Change Password See page 130 for details Exit Macro Admin Utility 129 CN8000 User Manual Logging In Once the CN8000 connects to the unit you specified a login window appears x Li Edministrator Password M Remember password _x_ _ cows Provide a valid Username and Password then Click OK to continue Note The default Username is administrator the default Password is password For security we strongly recommend that you change these to something unique see User Management page 30 for details After you have successfully logged in the Connection screen reappears ARE Joj x Server List Server Remote View IP 172 17 17 10 Change Password Port 9000 Exit Macro Login Logout Admin Utility At this time there are five active buttons as described in the table below Button Action Logout Breaks the connection to the CN8000 130 8 AP Operation Button Action Remote View In some cases administrator s do not wish to have users connect to the
88. e Snapshot page 101 for details on configuring the Snapshot parameters Click to bring up the Message board see page 114 Click to send a Ctrl Alt Del signal to the remote system Click to toggle the remote display between grayscale and color Click to bring up the Virtual Media dialog box The over the icon will indicate that a media device has been mounted The icon changes back when the virtual media icon is clicked again and the device is unmounted See Virtual Media page 116 for specific details a NE 6 E O E 108 6 The JavaClient Viewer Function Click to zoom the remote display window Note This feature is only available in windowed mode Full Screen Mode is off See Zoom page 116 for details Click to bring up the on screen keyboard see The On Screen Keyboard page 117 El El MN Click to select the mouse pointer type Note This icon changes depending on which mouse pointer type is selected see Mouse Pointer Type page 117 G Click to toggle Automatic or Manual mouse sync When the selection is Automatic the icon to the right appears When the selection is Manual a appears over the icon See Mouse DynaSync Mode page 98 for a complete explanation of this feature Ez Click to display a dropdown list of User macros Access and run macros more conveniently rather than using the Macros dialog box see the Macros icon in the ta
89. e String Attribute Editor String Attribute Editor 7 Key in the desired CN8000 permission attribute values see The Permission Attribute Value page 146 for details For example String Attribute Editor 144 9 LDAP Server Configuration 8 Click OK When you return to the Attribute Editor page the permission entry now reflects the new permissions CN jason Properties 21x Attribute Editor Security IV Show mandatory attributes IV Show optional attributes TF Show only attributes that have values Attributes personal ile photo Octet String lt Not Set gt physicalDeliveryOffic Unicode String lt Not Set gt possiblelnferiors Object Identifier lt Not Set gt postal ddress Unicode String lt Not Seb postalCode Unicode String lt Not Set gt postOfficeBox Unicode String lt Not Set preferredDeliveryMet Integer lt Not Set gt preferredLanguage Unicode String lt Not Set gt preferredOU Distinguished lt Not Set gt primaryGrouplD Integer 513 OrimaryinternationallS Unicode Strina lt NotSet gt a Click Apply to save the change and complete the procedure b Repeat the Editing Active Directory Users procedure for any other Type 1 users you wish to add 145 CN8000 User Manual The Permission Attribute Value The attribute value for permission is made up of two parts 1 the IP address of the CN8000 a user will access and 2 a string that indicates the access
90. e itself 5 PON Port This port is made available for use with a Power over the NET remote power management module If you connect a PON device its cable plugs in here Refer to the User Manual that came with the PON device for operation details 6 RS 232 Port This serial port is provided for 1 Serial console management see Console Management page 56 for details or 2 Out of band modem operation see OOBC page 58 for details 11 CN8000 User Manual Custom KVM Cables E ahs W il I 1 O No Description 1 For use with PS 2 configuration servers or KVM switches 2 For use with USB configuration servers or KVM switches Note The advantage of using a USB cable is that it allows automatic locked in mouse synchronization See Mouse DynaSync Mode page 98 for details Custom Console Cable USB Keyboard USB Mouse Video PS 2 Keyboard PS 2 Mouse OS Note You can use any combination of keyboard and mouse connections For example you can use a PS 2 keyboard with a USB mouse 12 Chapter 2 Hardware Setup device is provided on page 157 Please review it before l 1 Important safety information regarding the placement of this proceeding 2 Make sure that the power to any device that you connect to the instal
91. eaning The device should be operated from the type of power source indicated on the marking label If you are not sure of the type of power available consult your dealer or local power company To prevent damage to your installation it is important that all devices are properly grounded The device is equipped with a 3 wire grounding type plug This is a safety feature If you are unable to insert the plug into the outlet contact your electrician to replace your obsolete outlet Do not attempt to defeat the purpose of the grounding type plug Always follow your local national wiring codes Do not allow anything to rest on the power cord or cables Route the power cord and cables so that they cannot be stepped on or tripped over If an extension cord is used with this device make sure that the total of the ampere ratings of all products used on this cord does not exceed the 157 CN8000 User Manual extension cord ampere rating Make sure that the total of all products plugged into the wall outlet does not exceed 15 amperes To help protect your system from sudden transient increases and decreases in electrical power use a surge suppressor line conditioner or un interruptible power supply UPS Position system cables and power cables carefully Be sure that nothing rests on any cables When connecting or disconnecting power to hot pluggable power supplies observe the following guidelines Install the power supply b
92. earch dialog box Maintenance This function allows the administrator to perform manual maintenance of the database if the CN8000 misses the automatic maintenance 123 CN8000 User Manual Options Network Retry allows you to set the number of seconds that the Log Server should wait before attempting to connect if the previous attempt to connect failed When you click this item a dialog box similar to the one below appears CT x Interval 30 seconds Key in the number of seconds then click OK to finish Help From the Help Menu click Contents to access the online Windows Help file The help file contains instructions about how to setup operation and troubleshoot the Log Server 124 7 The Log Server The Log Server Main Screen Overview The Log Server Main Screen is divided into two main panels The upper List panel lists the CN8000 units that have been selected for the Log Server to track see Configure page 121 The lower Event panel displays the log events for the currently selected CN8000 the highlighted one if there are more than one To select a CN8000 unit in the list simply click on it 4 109 Server 101 x Configure Events Optons Heb Recorder pr Pot Cornecton Days Descagtion DA 10 0 12 220 menor to bgn ea 125 CN8000 User Manual The List Panel The List panel contains six fields Field Explanation Recording Determines whether
93. edia source 91 CN8000 User Manual Virtual Media Control T Mx Write Mode Device Type Device Name Path go Drive ISO File o Folder Removable Disk USB Mass Storage Device E Remove Mount USB Mass Storage Device F Depending on your selection additional dialog boxes appear enabling you to select the drive file folder or removable disk you desire See Virtual Media Support page 186 for details about mounting these media types 3 To add additional media sources click Add and select up to three media sources Up to three virtual media choices can be mounted The top three in the list are the ones that are selected To rearrange the selection order highlight the device you want to move then click the Up or Down Arrow button to promote or demote it in the list 4 Read refers to the redirected device being able to send data to the remote server Write refers to the redirected device being able to have data from the remote server written to it The default is for Write to not be enabled Read only If you want the redirected device to be writable as well as readable click to put a check in the Enable Write checkbox Virtual Media Control T xi Write Mode Device Type Device Name Path E Enable Write Folder D Working Backup E Enable Write Disk USB Mass Storage Device E o 5 Enable Write Drive cal Add Remove Mount Note 1 If a redirected device cannot be written to or if a user does not have
94. eference menu A screen similar to the one below appears Log Information iv ee 19 42 18 DHCP ip_addr 10 3 56 58 net_mask 255 255 254 0 19 42 18 DHCP gate_addr 10 3 57 254 dns_addr 10 0 1 7 19 45 11 Local User administrator 10 3 41 52 logged in from web 20 00 17 Web User administrator 10 3 41 52 session timeout 20 06 26 Local User administrator 10 3 41 52 logged in from web 20 21 34 Web User administrator 10 3 41 52 session timeout 20 22 37 Local User administrator 10 3 41 52 logged in from web 20 43 27 Web User administrator 10 3 41 52 session timeout 20 45 43 Local User administrator 10 3 41 52 logged in from web 21 00 48 Web User administrator 10 3 41 52 session timeout 2013 09 13 13 22 14 Local User administrator 10 3 41 52 logged in from web 13 38 01 Web User administrator 10 3 41 52 session timeout 13 40 28 Local User administrator 10 3 41 52 logged in from web 14 12 23 Local User administrator 10 3 41 91 logged in from web 14 12 38 Client User administrator connected from 10 3 41 91 14 16 38 Client User administrator 0 0 0 0 logged out 14 31 40 Web User administrator 10 3 41 91 session timeout Clear Log A maximum of 512 events are kept in the log file As new events are recorded they are placed at the bottom of the list When a new event is recorded after there are 512 events in the log file the earliest event in the list is discarded Note To maintain and view a record of all the events th
95. efore connecting the power cable to the power supply Unplug the power cable before removing the power supply Ifthe system has multiple sources of power disconnect power from the system by unplugging all power cables from the power supplies Never push objects of any kind into or through cabinet slots They may touch dangerous voltage points or short out parts resulting in a risk of fire or electrical shock Do not attempt to service the device yourself Refer all servicing to qualified service personnel Tf the following conditions occur unplug the device from the wall outlet and bring it to qualified service personnel for repair The power cord or plug has become damaged or frayed Liquid has been spilled into the device The device has been exposed to rain or water The device has been dropped or the cabinet has been damaged The device exhibits a distinct change in performance indicating a need for service The device does not operate normally when the operating instructions are followed Only adjust those controls that are covered in the operating instructions Improper adjustment of other controls may result in damage that will require extensive work by a qualified technician to repair 158 Appendix Rack Mounting Before working on the rack make sure that the stabilizers are secured to the rack extended to the floor and that the full weight of the rack rests on the floor Insta
96. ended More information The security certificate can be trusted See Trusted Certificates page 174 for details 19 CN8000 User Manual 3 The CN8000 login page appears KVM over IP CN8000 ATEN Username Password E 4 Provide a valid Username and Password set by the CN8000 administrator then click Login to continue Note 1 If you are the administrator and are logging in for the first time use the default Username administrator and the default Password password For security purposes we strongly recommend you remove these and give yourself a unique Username and Password see User Management page 30 2 If you supplied an invalid login the authentication routine will return this message Invalid Username or Password Please try again If you see this message log in again being careful with the Username and Password 5 If this is a newer CN8000 model and you are logging in for the first time with the administrator account an Easy Installation Wizard will appear to help you setup the network configuration new password and default login settings If this is not the case skip to step 11 on page 24 20 3 Browser Login 6 Provide the Network Configuration parameters explained below and click Next CN8000 Installation Wizard Network Configuration IPv4 Configuration obtain IP address automatically DHCP O Set IP address manually Fixed IP IP Address Subnet Ma
97. er additional users may view the port s video display Share Users simultaneously share control over the port Input from the users is placed in a queue and executed chronologically Under these circumstances users can take advantage of the Message Board which allows a user to take control of the keyboard and mouse or keyboard mouse and video of a Share port see The Message Board page 89 64 4 Administration Parameter Explanation Local Remote Share Mode Defines how the CN8000 is to be controlled when multiple users have logged on as follows Share Enables both local and remote users to simultaneously share control over the CN8000 Commands are executed in a chronological order Local Occupy Grants exclusive control to the local user Remote users can still view the session but cannot execute commands Remote Occupy Grants exclusive control to the remote user s The local user can still view the session but cannot execute commands In Remote Occupy Mode users can take advantage of the Message Board which allows a user to take control of the keyboard and mouse or keyboard mouse and video of a Share port see The Message Board page 89 Reset Some configuration changes only take effect after a CN8000 reset These include changes on the Network page a Log Server port change enabling disabling browser access and upgrading the firmware When those changes are made a check is
98. er Type 98 Mouse DynaSync Mode 98 Automatic Mouse Synchronization DynaSync 98 Manual Mouse Synchronization 99 Customize Control Panel 100 Power Management 102 Admin Utility sc ap ns Te RE ded 103 6 The JavaClient Viewer Introduction 2244280 uen sauna nes bre demie 105 Navigation t sses pieg e LA Es a ok eM Be r La 106 The JavaClient Control Panel 107 Control Panel Functions 108 MACTOS EEE AR A LA te E 111 H tkeyS 2 ic di 111 System Macros 112 TEE OA PR A ae het ett a eas 113 Video Settings esea ein pak cent fe eel oe hee 113 viii CN8000 User Manual Message Board 114 Virtual Medias truco a a Ree 116 ZOOM a oi a Seb ESE ep eee te ee 116 The On Screen Keyboard 117 Mouse Pointer Type 117 Mouse DynaSync Mode 118 Control Panel Configuration 118 7 The Log Server Installation rs PRE PER Re M M en 119 Starting UP ea Sessa a a RE E gate PA a die NAT 120 The Menu Balice se bees te ee co ee A eee E 121 CONTIGUE oaaae ede ios 121 EVents 45 fe he Ae de ee b
99. ers ann A A A Te hee ee 9 COMPONENTS pe bike man ar ii r 10 FrOnt VIEW LE wage RE finie rat e te oia 10 Rear VIGW he ns A at Gate a mu nee 11 Custom KVM Cables 12 Custom Console Cable 12 Hardware Setup Mottin ceca de RA da 13 Rack Mounting 13 DIN Rail Mounting n s 255 52 crate ds ri oh wal meee a aed 14 Installation 28 252846 been ant inner na thd ay arbre wae 15 Browser Login Logging IM sree A aire E RE A ne 19 IP Address eee ed ce fees AE Monte ae ee 21 DNS Sel icici ee See rae eee ee ks 22 Default Settings 23 Main Webpage Elements 25 Sidebar rss eee ten ee ai het nas 25 Interactive Display Panel 25 Sidebar Submenu 26 vi CN8000 User Manual VIEWER it Se ae a AA a ae A AA ie 27 4 Administration Introduction 29 Basi Settings trios Ae nt 30 User Management 30 SESSION a E A rl nba a 32 Maintenance 33 Firmware Upgrade 33 Backups rean ee AR eee be 34 Resto 00 ds A ete A DA dde M A ai Steen 35 Advanced Settings 36 Device Information
100. et Allows the user to access the system via SSH gt xr Al z wo lt lt rj uc Z Allows the user to Allows the user to access the system via Telnet and SSH 146 9 LDAP Server Configuration Permission Examples Access rights examples are given in the table below User String Meaning User 10 0 0 166 amp w v 1 User has Windows Client and View Only rights on a CN8000 with an IP address of 10 0 0 166 2 User has no rights on any other CN8000 units administered by the LDAP server User2 10 0 0 164 amp p s 10 0 0 166 amp j c User has PON and Virtual Media rights on a CN8000 with an IP address of 10 0 0 164 2 User has Java Applet and Administra tor rights on a CN8000 with an IP address of 10 0 0 166 3 User has no rights on any other CN8000 units administered by the LDAP server User3 v 10 0 0 164 amp p 1 User has View Only and Log Informa tion rights on all CN8000 units admin istered by the LDAP server except for the one with an IP address of 10 0 0 164 2 User has PON and Java Applet rights on a CN8000 with an IP address of 10 0 0 164 User4 User has no access rights to any CN8000 units administered by the LDAP server User5 VW User has View Only and Windows Client rights on all CN8000 units administered by the LDAP server User6 v 10 0 0 1668 10 0 0 1644c j 1 User has View Only rights
101. et we are usually speaking from the user s point of view in which case the switch and the servers connected to it are considered remote xiv CN8000 User Manual Product Information For information about all ATEN products and how they can help you connect without limits visit ATEN on the Web or contact an ATEN Authorized Reseller Visit ATEN on the Web for a list of locations and telephone numbers International http www aten com North America http www aten usa com XV CN8000 User Manual xvi Chapter 1 Introduction Overview The CN8000 is a control unit that provides over IP capability to KVM switches that do not have built in over IP functionality It allows operators to monitor and access their computers from remote locations using a standard Internet browser or Windows and Java based application programs The CN8000 connects to the Internet an Intranet LAN or WAN using industry standard Cat 5e cable then uses a custom KVM cable to connect to a local KVM switch or server Because the CN8000 uses TCP IP for its communications protocol the server or KVM switch it is connected to can be accessed from any computer on the Net whether that computer is located down the hall down the street or half way around the world Operators at remote locations connect to the CN8000 via its IP address Once a connection has been established and authorization granted the remote computer can excha
102. et to Automatic change the setting to Manual and refer to the information provided 2 If you are in Manual mode use the AutoSync feature see Video Settings page 86 to sync the local and remote monitors 3 If that doesn t resolve the problem use the Adjust Mouse feature see Adjust mouse page 78 to bring the pointers back in step 4 If the above fails to resolve the problem refer to Addi tional Mouse Synchronization Procedures page 184 for further steps to take Part of remote window is off my monitor Use the AutoSync feature see Video Settings page 86 to sync the local and remote monitors Virtual Media doesn t work This problem sometimes arises on older computers Get the latest firmware version for your mainboard from the manufacturer and upgrade your mainboard firmware Under Virtual Media can mount an ISO file but camnot access it Virtual Media under the WindowsClient only supports ISO files less than 4G Bytes If the ISO file is 4GBytes or greater it cannot be accessed My antivirus program reports that there is a trojan after access the CN8000 with my browser and then open the Windows Client Viewer The Windows Client Viewer uses an ActiveX plugin windows ocx that some antivirus programs mistakenly see as a virus or trojan We have tested our firmware extensively and found no evidence of a virus or trojan You can add the plugin to your antivirus program s White L
103. fication authority CA daiming to represent Aten Windows cannot validate that the certificate is actually from Aten You should confirm its origin by contacting Aten The following number will assist you in this process Thumbprint sha 1 F3B66988 A134DD25 1E6FO9BC 895F6DCD B30FB7AF Warning If you install this root certificate Windows will automatically trust any certificate issued by this CA Installing a certificate with an unconfirmed thumbprint is a security risk If you dick Yes you acknowledge this risk Do you want to install this certificate Click Yes 175 CN8000 User Manual 13 Next click Finish to complete the installation then click OK to close the dialog box Certificate Trusted The certificate is now trusted Security Alert xl Information you exchange with this site cannot be viewed or Q changed by others However there is a problem with the site s security certificate iv The security certificate date is valid The name on the security certificate is invalid or does not match the name of the site Do you want to proceed te ev cate When you click View Certificate you can see that the red and white X logo is no longer present further indication that the certificate is trusted Certificate xl General Details Certification Path me This certificate is intended for the following purpose s Ensures the identity of a remote computer
104. gement authentication RADIUS Settings RADIUS Settings Enable Primary RADIUS Server IP Port Alternate RADIUS Server IP Port Timeout seconds Retries Shared Secret at least 6 characters To allow authentication and authorization for the CN8000 through a RADIUS server do the following 1 Check Enable 2 Fill in the IP addresses and port numbers for the Preferred and Alternate RADIUS servers 3 In the Timeout field set the time in seconds that the CN8000 waits for a RADIUS server reply before it times out 4 In the Retries field set the number of allowed RADIUS retries 5 In the Shared Secret field key in the character string that you want to use for authentication between the CN8000 and the RADIUS Server Continues on next page 44 4 Administration 6 On the RADIUS server set the access rights for each user according to the information in the table below Character Meaning C Grants the user administrator privileges allowing the user to configure the system w Allows the user to access the system via the Windows Client program j Allows the user to access the system via the Java applet p Allows the user to Power On Off Reset devices via an attached PN0108 l Allows the user to access log information via the user s browser v Limits the user s access to only viewing the video display s Allows the user to use the Virtual Media func
105. h ok cancel Userdefi Saveas Reset The meanings of the adjustment options are given in the table below Option Usage Screen Position Adjust the horizontal and vertical position of the remote computer window by clicking the Arrow buttons Auto Sync Click Auto Sync to have the vertical and horizontal offset values of the remote screen detected and automatically synchronized with the local screen Note 1 If the local and remote mouse pointers are out of sync in most cases performing this function will bring them back into sync 2 This function works best with a bright screen 3 If you are not satisfied with the results use the Screen Position arrows to position the remote display manually 5 The WinClient Viewer Option Usage RGB Drag the slider bars to adjust the RGB Red Green Blue values When an RGB value is increased the RGB component of the image is correspondingly increased If you enable Set to Grayscale the remote video display is changed to grayscale Gamma This section allows you to adjust the video display s gamma level This function is discussed in detail in the next section Gamma Adjustment Performance Select the type of internet connection that exists between the Local Client computer and the CN8000 The CN8000 will use that selection to automatically adjust the Video Quality and Detect Tolerance settings to opt
106. hat gives an equal degree of protection Include your proof of purchase in the packaging and the RMA number clearly marked on the outside of the package This warranty becomes invalid if the factory supplied serial number has been removed or altered on the product This warranty does not cover cosmetic damage or damage due to acts of God accident misuse abuse negligence or modification of any part of the product This warranty does not cover damage due to improper operation or maintenance connection to improper equipment or attempted repair by anyone other than ALTUSEN This warranty does not cover products sold AS IS or WITH FAULTS IN NO EVENT SHALL ALTUSEN S LIABILITY EXCEED THE PRICE PAID FOR THE PRODUCT FURTHER ALTUSEN SHALL NOT BE RESPONSIBLE FOR DIRECT INDIRECT SPECIAL INCIDENTAL OR CONSEQUENTIAL DAMAGES RESULTING FROM THE USE OF THE PRODUCT ITS ACCOMPANYING SOFTWARE OR ITS DOCUMENTATION ALTUSEN SHALL NOT IN ANY WAY BE RESPONSIBLE FOR WITHOUT LIMITATION LOSS OF DATA LOSS OF PROFITS DOWNTIME GOODWILL DAMAGE OR REPLACEMENT OF EQUIPMENT OR PROPERTY AND ANY EXPENSES FROM RECOVERY PROGRAMMING AND REPRODUCTION OF ANY PROGRAM OR DATA ALTUSEN makes no warranty or representation expressed implied or statutory with respect to its products contents or use of this documentation and all accompanying software and specifically disclaims its quality performance merchantability or fitness for any particular purpose ALTUSE
107. hat you specify is up A setting of zero means it is always on line Dial Out Mail Configuration This section provides email notification of the CN8000 s IP address once its been obtained from the ISP Note This email notification differs from the one configured under SMTP Settings page 41 in that it uses the ISP mail server rather than the internal company s mail server Key in the IP address or domain name of your SMTP server in the SMTP Server IP Address field Key in the email address of the person responsible for the SMTP server or some other equally responsible administrator in the Email From field Key in the email address addresses of where you want the report sent to in the To field If you are sending the report to more than one email address separate the addresses with a comma or a semicolon If your server requires authentication put a check in the My server requires authentication checkbox then key in the appropriate account name and password in the fields below When you have finished making your settings on this page click Apply 60 4 Administration Date Time The Date Time dialog page sets the CN8000 time parameters Time Zone GMT 12 00 Eniwetok Kwajalein 7 Daylight Savings Time Date September lt 2013 gt September 2013 2 3 4 5 6 Mem s 7 s 1 2 MEN Time 13 47 22 Network Time E
108. he KVM functions Advanced Security Advanced security features include password protection whereby a valid username and password must be given before the client software will run and advanced encryption technologies such as secure 128 bit SSL Supports SSL 128 bit data encryption and RSA 1024 bit certificates for secure users logging in from a browser Flexible encryption design allows users to choose any combination of 56 bit DES 168 bit 3DES 256 bit AES 128 bit RC4 or Random for independent KB Mouse video and virtual media data encryption Support for IP MAC Filter Supports strong password protection Private CA External Authentication Support In addition to its own security protection the CN8000 allows you to set up log in authentication and authorization management from a external sources such as RADIUS LDAP LDAPS and MS Active Directory Event Logging The CN8000 can record all the events that take place on it and write them to a searchable database Administrators and selected users can search for events containing specific words or strings and retrieve them according to date and order of significance Console Management Serial console management serial terminal access Access the CN8000 via a built in serial viewer or via third party software such as PuTTY for Telnet and SSH sessions Out of Band Support via dial up modem support Access the CN8000 thro
109. he JavaClient as it is under the WinClient See User Macros page 79 for details System Macros System Macros are used to create exit macros for when you close a session For example as an added measure of security you could create a macro that sends the Winkey L combination which would cause the remote device s login page to come up the next time the device was accessed To create the macro do the following 1 Select System Macros then click Add Macros x Hotkeys User Macros System Macros Name Macro Record Search Macro By Name gt By Key Search Exit System Macro operation is the same under the JavaClient as it is under the WinClient See System Macros page 83 for details 112 6 The JavaClient Viewer Search Search allows you to find previously created macros and have them listed in the large upper panel for you to play or edit The Search operation is the same under the JavaClient as it is under the WinClient See Search page 83 for details Video Settings The Video settings dialog box allows you to adjust the placement and picture quality of the remote screen display on your monitor Performance Color depth control Low Low Screen Position t AutoSync le a Preset Custom lt Video Quality gt Fair i Excellent Low 100M Ethernet High Max Video Quality gt Ena
110. he manufacturer s software described in this manual is sold or licensed as is Should the programs prove defective following their purchase the buyer and not the manufacturer its distributor or its dealer assumes the entire cost of all necessary servicing repair and any incidental or consequential damages resulting from any defect in the software The manufacturer of this system is not responsible for any radio and or TV interference caused by unauthorized modifications to this device It is the responsibility of the user to correct such interference The manufacturer is not responsible for any damage incurred in the operation of this system if the correct operational voltage setting was not selected prior to operation PLEASE VERIFY THAT THE VOLTAGE SETTING IS CORRECT BEFORE USE CN8000 User Manual Package Contents The basic CN8000 package consists of CN8000 Custom KVM Cable Sets Custom Console Cable Set 1 2 1 1 USB 2 0 Virtual Media Cable 1 Power Adapter 1 Mounting Kit 1 Software CD 1 User Instructions Check to make sure that all the components are present and that nothing got damaged in shipping If you encounter a problem contact your dealer Read this manual thoroughly and follow the installation and operation procedures carefully to prevent any damage to the unit and or any of the devices connected to it Features may have been added to the CN8000 since this manual was published
111. hed to the switch See Additional Mouse Synchronization Procedures page 184 for instructions 99 CN8000 User Manual Customize Control Panel Py Clicking the Customize Control Panel icon brings up a dialog box that allows you to configure the items that appear on the Control Panel as well as its graphical settings Customize Control Panel Customize Control Panel gt gt Always On Top Y N Macro v HT video Settings FI Elvideo AutoSync E screen Mode 7 EN Snapshot WI message Board MEA Cui at 08 v set To Grayscale Y Virtual Media M LO Zoom on screen Keyboard V lA Mouse Pointer v E mouse Sync Mode Y S Macro List V 9 Local Remote Share Mode Y E customize Control Panel 7 about xi Control Panel Style Transparent icon Screen Options Full Screen Mode Keep Screen Size User Info Show User Numbers Snapshot Path OS Format JPEG Quality BMP Lowest 75 Highest JPEG Y Keyboard Pass Through Enable SS Go The dialog box is organized into six main sections as described in the table below Item Description Customize Control Panel Allows you to select which icons display in the Control Panel Control Panel Enabling Transparent makes the Control Panel semi transparent Style so that you can see through it to the display underneath Enabling Icon causes the Control Panel to disappear and display you mouse
112. ient AP programs are provided for non browser GUI access They allow IP connection and login from anywhere on the net Inclusion of a Java based client ensures that the CN8000 is platform independent and is able to work with practically all operating systems The client software allows access to and control of the connected servers Once an operator successfully connects and logs in his screen displays what is running on the remote unit attached to the CN8000 a KVM OSD display a server s desktop or arunning program for example and he can control it from his console just as if he were there The Log Server records all the events that take place on selected CN8000 units for the administrator to analyze Your CN8000 investment is protected through the ability of its firmware to be upgraded over the internet You can stay current with the latest functionality improvements by downloading firmware update files from our website as they become available and then using the utility to quickly and conveniently perform the upgrade 1 Introduction Features and Benefits The features and benefits provided by a CN8000 deployment are described in the following table Features Benefits Over IP Protects your original KVM switch investment No need to Capability for purchase new KVM switches to achieve the benefits of over IP Legacy KVM connectivity Switches Configuration and Operation Ease An easy to navigate graphical
113. ient Java Client View Only Configure Power Management F Log Enable Telnet SSH Telnet z Enable Virtual Media Read Only x Reset Add Update Remove Apply To add a user profile fill in the information asked for in the right panel then click Add The new user s name appears in the left panel To delete a user profile select it from the names displayed in the left panel and click Remove The user s name is removed from the panel To modify a user profile first select 1t from the list in the left panel change the information that appears in the right panel then click Update Note The user s password is not displayed the Password and Confirm password fields are filled with round bullets If you do not want to change the user s password simply leave the two fields as is The Admin and User radio buttons select automatically configured permissions If you wish to modify these permissions choose the Select radio button then specify the permissions individually 30 4 Administration An explanation of the profile items is given in the table below Item Explanation Username From 1 to16 characters are allowed depending on the Account Policy settings See Account Policy page 51 Password From 0 to16 characters are allowed depending on the Account Policy settings See Account Policy page 51 Confirm Password To be sure there is no mistake in the password
114. ilable When the remote server is running Fedora the mouse pointer on the remote server does not move whether am accessing it from the local console or a local client computer If the remote server is connected with a PS 2 cable log into the CN8000 with a browser open a viewer on the control panel set Mouse DynaSync to Manual See page 98 for details 179 CN8000 User Manual Windows Problem Resolution When log in the browser generates a CA Root certificate is not trusted or a Certificate Error response _ The certificate s name is not found on Microsoft s list of Trusted Authorities The certificate can be trusted See Trusted Certificates page 174 for details 2 You can eliminate this message by importing a certificate issued by a recognized third party certificate authority see Obtaining a CA Signed SSL Server Certificate page 54 After import the site s certificate still get a message warning me about the site when log in Certificate security checking noticed a certificate address mismatch however the certificate can be trusted You can click Continue to the website not recommendea to go on or you can disable mismatch checking See Mismatch Considerations page 177 for a complete explanation of this topic Remote mouse pointer is out of step 1 Check the status of the Mouse DynaSync Mode setting see Mouse DynaSync Mode page 98 If it is s
115. ill be able to see the CN8000 in the IP Installer s Device List but you will not be able to change the IP address 2 For security we strongly recommend that you set this to View Only or Disabled after using it 37 CN8000 User Manual Service Ports If a firewall is being used the Administrator can specify the port numbers that the firewall will allow and set the firewall accordingly Ifa port other than the default is set users must specify the port number as part of the IP address when they login from a WinClient or Java Client AP program If not an invalid port number or no port number is specified the CN8000 will not be found Service Ports HTTP 80 Program 9000 HTTPS 443 Virtual Media 9003 Telnet Port 23 SSH Port 22 An explanation of the fields is given in the table below Field Explanation HTTP The port number for a browser login The default is 80 HTTPS The port number for a secure browser login The default is 443 Telnet Port The port for Telnet access The default is 23 Program This is the port number for connecting to the CN8000 from the Windows Client and Java Applet Viewers and from the Windows and Java AP programs The default is 9000 Virtual Media This is the port number used for data transfer using the CN8000 s virtual media feature Valid entries are from 1 65535 The default is 9003 SSH Port The port for SSH access The default is 22 Note
116. imize the quality of the video display Since network conditions vary if none of the pre set choices seem to work well you can select Customize and use the Video Quality and Detect Tolerance slider bars to adjust the settings to suit your conditions Video Quality Drag the slider bar to adjust the overall Video Quality The larger the value the clearer the picture and the more video data goes through the network Depending on the network bandwidth a high value may adversely effect response time Enable Refresh The CN8000 can redraw the screen every 1 to 99 seconds eliminating unwanted artifacts from the screen Select Enable Refresh and enter a number from 1 through 99 The CN8000 will redraw the screen at the interval you specify This feature is disabled by default Click to put a check mark in the box next to Enable Refresh to enable this feature Note 1 The switch starts counting the time interval when mouse movement stops 2 Enabling this feature increases the volume of video data transmitted over the network The lower the number specified the more often the video data is transmitted Setting too low a value may adversely affect overall operating responsiveness Color Depth Control This setting determines the richness of the video display by adjusting the amount of color information Detect Tolerance This setting also relates to video quality It governs detecting or ignoring pixel changes A high
117. in the text row changes to describe the icon s function In addition if a message from another user is entered in the message board and you have not opened the message board the message will appear in the text row If the User Info function has been enabled under Customize Control Panel see User Info page 101 the total number of users currently logged into the CN8000 displays to the right of the video resolution in the text row Right clicking in the text row area brings up a menu that allows you to select options for the Screen Mode Zoom Mouse Pointer type Mouse Sync Mode Macro List and Local Remote Share Mode These functions are discussed in the sections that follow IG 103 5658 WinClient A 0 x E EA EE MEANS E a 10 3 56 58 1600x1200860 73 CN8000 User Manual Control Panel Functions The Control Panel functions are described in the table below Note Clicking the T button at the top right of the windows that appear for the control panel functions brings up a slider bar to adjust the transparency of the dialog box After making your adjustment click anywhere in the dialog box to dismiss the slider Icon Function This is a toggle Click to make the Control Panel persistent i e it always displays on top of other screen elements Click again to have it display normally When you click this icon the Control Panel collapses into 4 categories Keyboard Mouse Video Macro and
118. ing usernames and passwords Account Policy Minimum Username Length 6 Minimum Password Length 6 Password must contain at least One upper case letter One lower case letter One number Disable Duplicate Login The meanings of the Account Policy entries are explained in the table below Entry Explanation Minimum Username Length Sets the minimum number of characters required for a username Acceptable values are from 1 16 The default is 6 Minimum Password Length Sets the minimum number of characters required for a password Acceptable values are from 0 16 A setting of O means that no password is required and users can login with only a Username The default is 6 Password Must Contain At Checking any of these items requires users to Least include at least one uppercase letter one lowercase letter or one number in their password Note This policy does not affect existing user accounts Only new user accounts created after this policy has been enabled and users required to change their passwords are affected Disable Duplicate Login Check this to prevent users from logging in with the same account at the same time 51 CN8000 User Manual Login Failures For increased security the Login Failures section allows administrators to set policies governing what happens when a user fails to log in successfully Login Failures V Enable Allowed 5 Timeout 3 minutes V Lock Client PC V
119. ing a third party certificate authority CA signed certificate To obtain a third party signed certificate go to a CA Certificate Authority website to apply for an SSL certificate After the CA sends you the certificate save it to a convenient location on your computer E Importing the Private Certificate To import the private certificate do the following 1 Click Browse to the right of Private Key browse to where your private encryption key file is located and select it 2 Click Browse to the right of Certificate browse to where your certificate file is located and select it 54 4 Administration 3 Click Upload to complete the procedure Note Both the private encryption key and the signed certificate must be imported at the same time Others Others Browser Service Disable Browser Disable Authentication Browser Service allows the administrator to limit the scope of browser access to the CN8000 Put a check in the checkbox to enable this function then select the browser limitation in the drop down list box Choices are explained in the following table Item Explanation Disable Browser If this is selected the CN8000 cannot be accessed via a browser It can only be accessed from the AP programs see AP Operation page 127 Disable HTTP If this is selected the CN8000 can be accessed via a browser but not from an ordinary HTTP login connection it can only be accessed over a
120. ing the utility a dialog box appears requesting you to input your serial number Serial Number xj Cancel The serial number can be found on the CN8000 s CD case Key in the serial number 5 characters per box then click OK to bring up the CN8000 Connection Screen Note 1 Letters in the serial number must be entered in capitals 2 This dialog box only appears the first time you run the program In the future you go directly to the Windows Client Connection screen 128 8 AP Operation The Windows Client Connection Screen AR lol xj Server List Name IP E CN8000 10 0 100 80 Server ui IP 172 17 17 10 Port 9000 Login Logout ton 3 Admin Dl A description of the Connection Screen is given in the following table Item Description Server List Each time the CN8000 program is run it searches the user s local LAN segment for CN8000 units and lists whichever ones it finds in this box If you want to connect to one of these units select it then click Login When you have finished with your session Click Logout to end the connection Server This area is used when you want to connect to a CN8000 at a remote location If the IP address that appears isn t the one you want or if there is no entry at all key in the IP address you want Next key in the Port number in the Port field If you don t know the Port number contact the Administrator When th
121. iph riques sont correctement mis la terre L unit est quip e d une fiche de terre trois fils Il s agit d une fonction de s curit Si vous ne parvenez pas ins rer la fiche dans la prise murale contactez votre lectricit afin qu il remplace cette derni re qui doit tre obsol te N essayez pas d aller l encontre de l objectif de la fiche de terre Respectez toujours les codes de c blage en vigueur dans votre r gion pays 160 Appendix L quipement doit tre install proximit de la prise murale et le dispositif de d connexion prise de courant femelle doit tre facile d acc s La prise murale doit tre install e proximit de l quipement et doit tre facile d acc s Veillez ce que rien ne repose sur le cordon d alimentation ou les c bles Acheminez le cordon d alimentation et les c bles de sorte que personne ne puisse marcher ou tr bucher dessus En cas d utilisation d une rallonge avec cette unit assurez vous que le total des amp rages de tous les produits utilis s sur cette rallonge ne d passe pas l amp rage nominal de cette derni re Assurez vous que le total des amp rages de tous les produits branch s sur la prise murale ne d passe pas 15 amp res Pour contribuer prot ger votre syst me contre les augmentations et diminutions soudaines et transitoires de puissance lectrique utilisez un parasurtenseur un filtre de ligne ou un
122. irectory data 150 9 LDAP Server Configuration Starting the OpenLDAP Server To start the OpenLDAP Server run slapd the OpenLDAP Server executable file from the command line slapd supports a number of command line options the most important option is the d switch that triggers debug information For example a command of slapd d 256 would start OpenLDAP with a debug level of 256 as shown in the following screenshot Command Prompt slapd d 256 D Program FilesiOpenLDAPislapd d 256 main new debug level is 256 main new config file is slapd conf OpenLDAP slapd 2 2 29 Oct 21 2005 16 01 14 MMohr BELTIRA openidap 2 2 29 servers slapd bdb_db_init Initializing BDB database slapd starting Note For details about slapd options and their meanings refer to the OpenLDAP documentation 151 CN8000 User Manual Customizing the OpenLDAP Schema The schema that slapd uses may be extended to support additional syntaxes matching rules attribute types and object classes In the case of the CN8000 the CN8000 User class and the permission attribute are extended to define a new schema The extended schema file used to authenticate and authorize users logging in to the CN8000 is shown in the figure below ATEN OID 1 3 6 1 4 1 21317 attributetype 1 3 6 1 4 1 21317 1 1 4 2 2 NAME permission EQUALITY caselgnoreMatch SUBSTR caselgnoreSubstringsMatch SYNTAX 1
123. ist and use the Viewer safely If you are reluctant to use the Windows Client Viewer however you can simply use the Java Client Viewer instead 180 Appendix Java For mouse synchronization problems see Macros page 111 Mouse DynaSync Mode page 118 and Sun Linux page 185 For other problems see the table below Problem Resolution Java Applet won t connect to the CN8000 1 Java 6 Update 3 or higher must be installed on your computer 2 Make sure to include the correct login string when you specify the CN8000 s IP address 3 Close the Java Applet reopen it and try again have installed the latest Java JRE but am having performance and stability problems There may be issues with the latest version because it is so new Try using a Java version that is one or two updates earlier than the latest one Java Applet performance deteriorates Exit the program and start again National language characters don t appear Use the CN8000 s On Screen Keyboard and be sure that the local and remote computers are set to the same language See The On Screen Keyboard page 117 When log in the browser generates a CA Root certificate is not trusted or a Certificate Error response The certificate s name is not found on Microsoft s list of Trusted Authorities The certificate can be trusted See Trusted Certificates page 174 for details There is no Virtu
124. l and click on the Virtual Media icon All mounted devices are automatically unmounted 93 CN8000 User Manual Smart Card Reader The smart card reader function allows a reader plugged into a local client computers USB port to be redirected and appear as if it were plugged into the remote server One purpose of smart cards Common Access Cards for example is to allow authentication to the remote server from the local client When a smart card reader is connected to the local client computer an entry for it appears when you bring up the Virtual Media dialog box and click Add Virtual Media Control Write Mode Device Type Device Name Path Drive ISO File y CardMan 6121 Static Driver CardMan 6121 Make your selection then click Mount to complete the redirection Note If you mount a smart card reader you cannot mount any other virtual media device If any virtual media devices are already mounted you must unmount them before you can mount the smart card reader 94 5 The WinClient Viewer Zoom a The Zoom icon controls the zoom factor for the remote view window Settings are as follows Setting Description 100 Sizes and displays the remote view window at 100 75 Sizes and displays the remote view window at 75 50 Sizes and displays the remote view window at 50 25 Sizes and displays the remote view window at 25 1 1 Sizes and displays the remote view window
125. lation has been turned off You must unplug the power cords of any computers that have the Keyboard Power On function Mounting Rack Mounting For convenience and flexibility the CN8000 can be mounted on a system rack To rack mount the unit do the following 1 Remove the two original screws from the bottom of the unit near the rear of the unit 2 Using the screws provided with the rack mount kit screw the mounting bracket into the CN8000 as shown in the diagram below Phillips hex head M3 x 8 CN8000 User Manual 3 Screw the bracket into any convenient location on the rack A Note Rack screws are not provided Use screws that are appropriate for your rack DIN Rail Mounting To mount the CN8000 on a DIN rail 1 Screw the mounting bracket to the back of the CN8000 as described in steps 1 and 2 of the wall mounting procedure 2 Use the larger screws supplied with the Rack Mount Kit to screw the DIN rail brackets to the mounting bracket as shown in the diagram below PP 3 Hang the unit on the DIN rail 2 Hardware Setup Installation To install the CN8000 refer to the installation diagrams on the next two pages the numbers correspond to the numbers of the steps and do the following 1 Use the Console cable provided with this package to connect the CN8000 s Console port to the local console keyboard monitor and mouse No
126. ll front and side stabilizers on a single rack or front stabilizers for joined multiple racks before working on the rack Always load the rack from the bottom up and load the heaviest item in the rack first Make sure that the rack is level and stable before extending a device from the rack Use caution when pressing the device rail release latches and sliding a device into or out of a rack the slide rails can pinch your fingers After a device is inserted into the rack carefully extend the rail into a locking position and then slide the device into the rack Do not overload the AC supply branch circuit that provides power to the rack The total rack load should not exceed 80 percent of the branch circuit rating Make sure that all equipment used on the rack including power strips and other electrical connectors is properly grounded Ensure that proper airflow is provided to devices in the rack Ensure that the operating ambient temperature of the rack environment does not exceed the maximum ambient temperature specified for the equipment by the manufacturer Do not step on or stand on any device when servicing other devices in a rack 159 CN8000 User Manual Consignes de s curit G n ral Ce produit est destin exclusivement une utilisation l int rieur Veuillez lire la totalit de ces instructions Conservez les afin de pouvoir vous y r f rer ult rieurement Respectez l
127. llow maximum data throughput in low bandwidth situations PPP modem dialup support ensures reliable connectivity for out of band and low bandwidth situations Multi Platform Multi Protocol Support Windows and Java client software ensures that the CN8000 and the equipment that connects to it can be accessed from most of the operating systems in use today Windows Linux Unix Sun Mac The CN8000 also supports a broad range of communication protocols such as TCP IP HTTP HTTPS UDP DHCP SSL ARP DNS ICMP CHAP PPP 10Base T 100Base T CN8000 User Manual Features Benefits Multi Keyboard The CN8000 supports multiple keyboard language input including Language English French German Italian Spanish Japanese Korean and Support Traditional Chinese There is no need to have a separate keyboard On Screen for each language you can input key data in any of these Keyboard languages with the CN8000 s convenient on screen keyboard Multi Users The CN8000 supports up to 64 user accounts and allows up to 32 Multi Logins concurrent user logins for single bus access Message Board To alleviate the possibility of access conflicts that may result from multiple user logins and facilitate communication among the logged in users a message board similar to an Internet chat program allows users to communicate with each other and provides mechanisms for a user to take exclusive control of t
128. means to open the Start menu and then select Run Indicates critical information xiii CN8000 User Manual Terminolo Throughout the manual we make reference to the terms Local and Remote in regard to the operators and equipment deployed in a CN8000 installation Depending on the point of view users and servers can be considered Local under some circumstances and Remote under others Switch s Point of View Remote users We refer to a user as a Remote user when we think of him as someone who logs into the switch over the net from a location that is remote from the switch Local Console The keyboard mouse and monitor connected directly to the switch Servers The servers attached to the switch via custom KVM cables User s Point of View Local client users We refer to a user as a Local client user when we think of him as sitting at his computer performing operations on the servers connected to the switch that is remote from him Remote servers We refer to the servers as Remote servers when we think of them from the Local Client User s point of view since although they are locally attached to the switch they are remote from him When we describe the overall system architecture we are usually speaking from the switch s point of view in which case the users are considered remote When we speak about operations users perform via the browser viewers and AP programs over the n
129. ment page 102 for details Click this icon to open a Viewer based GUI with the web browser administrative functionalities See Admin Utility page 103 for details Click to exit the remote view and go back to the web browser Main Page These icons show the Num Lock Caps Lock and Scroll Lock status of the remote computer When the lock state is On the icon is highlighted in blue When the lock state is Off the icon is not highlighted Click on the icon to toggle the status Note These icons and your local keyboard icons are in sync Clicking an icon causes the corresponding LED on your keyboard to change accordingly Likewise pressing a Lock key on your keyboard causes the icon s color to change accordingly Click to display information about the Windows Client version 76 5 The WinClient Viewer Macros The Macros icon provides access to three functions found in the Macros dialog box Hotkeys User Macros and System Macros Each of these functions is described in the following sections Hotkeys Various actions corresponding to clicking the Control Panel icons can be accomplished directly from the keyboard with hotkeys Selecting the Hotkeys radio button lets you configure which hotkeys perform the actions The actions are listed to the left their hotkeys are shown to the right Use the checkbox to the left of an action s name to enable or disable its hotkey Macros En
130. merical String Unicode String Boolean Cancel lt Not Set gt lt Not Set gt lt Not Set gt lt Not Set gt lt Not Set gt lt Not Set gt 4 lt Not Set gt lt Not Set gt lt Not Set gt 148 9 LDAP Server Configuration c Click Apply to save the change and complete the procedure Jason now has the same permissions as user d Repeat the Editing Active Directory Users procedure for any other users you wish to add OpenLDAP OpenLDAP is an Open source LDAP server designed for Unix platforms A Windows version can be downloaded from http download bergmans us openldap openldap 2 2 29 openldap 2 2 29 db 4 3 29 openssl 0 9 8a win32_Setup exe OpenLDAP Server Installation After downloading the program launch the installer select your language accept the license and choose the target installation directory The default directory is c Program FileNOpenLDAP When the Select Components dialog box appears select install BDB tools and install OpenLDAP slapd as NT service as shown in the diagram below 2 Setup OpenLDAP loj xj Select Components Which components should be installed Select the components you want to install clear the components you do not want to install Click Next when you are ready to continue Full installation install OpenLDAP openidap 2 2 29 install BDB tools install OpenLDAP slapd as NT service O install OpenLDAP slurpd as NT service
131. n AP program or by PPP modem dial in The next several chapters describe browser based operations AP access is discussed in Chapter 8 PPP modem login is discussed on page 172 Logging In To operate the CN8000 from an Internet browser begin by logging in 1 Open your browser and specify the IP address of the CN8000 you want to access in the browser s URL location bar Note 1 For security purposes a login string may have been set by the administrator If so you must include a forward slash and the login string along with the IP address when you log in For example 192 168 0 100 CN8000 If you don t know the IP address and login string ask your Administrator If you are the administrator and are logging in for the first time the various ways to determine the CN8000 s IP address are described in the Appendix on page 165 2 Ifa Security Alert appears click Continue to this website x There is a problem with this website s security certificate The security certificate presented by this website was not issued by a trusted certificate authority The security certificate presented by this w was issued for a different website s address Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server We recommend that you close this webpage and do not continue to this website Click here to close this webpage Continue to this website not recomm
132. n for log details in the Service Port field The valid port range is 1 65535 The default port number is 9001 Note The port number must be different than the one used for the Program port see Program page 38 SNMP Server SNMP Server Enable SNMP Agent Server IP Service Port To be notified of SNMP trap events do the following 1 Check Enable SNMP Agent 2 Key in the Server IP address and Service Port number of the computer to be notified of SNMP trap events The valid port range is 1 65535 Note The following SNMP trap events are sent System Power On Login Failure and System Reset 42 4 Administration Syslog Server Syslog Server Enable Server IP Service Port To record all the events that take place on the CN8000 and write them to a Syslog server do the following 1 Check Enable 2 Key in the Server IP address and Service Port number of the Syslog server The valid port range is 1 65535 43 CN8000 User Manual ANMS Authentication The Advanced Network Management Settings Authentication page allows you to set up login authentication and authorization management from external sources It is divided into several sections which are described in the sections that follow Disable Local Authentication Selecting this option will disable local login authentication on the CN8000 The switch can only be accessed using LDAP LDAPS MS Active Directory RADIUS or CC Mana
133. n Properties x General Relstionshf Attributes Detauk Security Co _ cos aro 5 On the Attributes page click Add person Properties General Relationship Attrbutes Defaut Securty Be pe Mandatory acoessPort atributeCertificateAttnbute seeAlso Remove serialNumber sn telephoneNumber usePassword 141 CN8000 User Manual 6 In the list that comes up select permission then click OK to complete step 2 of the procedure Select Schema Object 2 x Select a schema object partial ttibuteS et pekKeyChangeinterval pekList pendingC Cetficates dingPsentCA perMsgDislogDisplayT able peiRecpDislogDispilayT able personalT ile photo physicalDeliveryDficeName PUE xpeationPeriod pKEMendedKeyU sage PKiKeyLisage PKIMasdssumgDepth PKIO verlapPeriod Editing Active Directory Users Type 1 For Type 1 users both authentication and authorization parameter settings are supported on the LDAP server To edit a Type 1 Active Directory user do the following Run ADSI Edit Installed as part of the Support Tools 1 2 Open domain and navigate to the cn users dc aten dc com node 142 9 LDAP Server Configuration 3 Locate the user you wish to edit Our example uses jason Active Directory Users and Computers LDAP aten com MAPA E BY aten com E Batin E Computers 16 42 Domain Controllers
134. n to shrink the non functioning pointer See page 78 for details Mouse movement extremely slow There is too much data being transferred for your connection to keep up with Lower the video quality see Video Settings page 86 so that less video data is transmitted Changing Mouse Sync Mode to Manual makes the CN8000 crash The CN8000 hasn t crashed You can wait approximately 5 minutes for normal operations to resume or you can reset the CN8000 to get it going right away see Firmware Upgrade Reset Switch page 10 point 1 can t access my PN9108 when click the Power Management icon Since the PN9108 already has over IP functionality there is no need for the CN8000 to provide it Therefore only PON devices that don t have their own over IP functionality such as the PNO108 are supported When am in a web browser session and making configuration changes and am timed out the settings changes have made are lost If you don t click Apply the CN8000 isn t aware that you are working and times you out Without clicking Apply none of your changes are recognized You must click Apply as you go along in order to have the settings saved on the CN8000 and reset the timeout counter The Windows Client link doesn t appear in the Remote Console Display when log in with Firefox The Windows Client link requires ActiveX Since Firefox doesn t support ActiveX only the Java Applet is ava
135. n you have made your selections click Restore After the file is restored a message appears to inform you that the procedure succeeded 35 CN8000 User Manual Advanced Settings This section provides 7 submenus Device Information Network ANMS Security Console Management Date Time and Customization used to configure device settings for the CN8000 Device Information The Device Information page is the first of the Advanced Settings pages and provides information about the CN8000 s status Device Information Device Name MAC Address Firmware Version IPv4 Address DNS CN8000 Apply An explanation of each of the fields is given in the table below Field Explanation Device Name To make it easier to manage installations that have more than one CN8000 each one can be given a name To assign a name for the CN8000 key in one of your choosing here 50 characters max then click Apply MAC Address The CN8000 s MAC Address is displayed here Firmware Version Indicates the CN8000 s current firmware version level New versions of the CN8000 s firmware can be downloaded from our website as they become available see Firmware Upgrade page 33 You can reference this number to see if there are newer versions available on the website IPv4 Address Displays the CN8000 s Internet Protocol Version 4 32 bit address IPv6 Address Displays the CN8000 s
136. nable auto adjustment Preferred time server BE ntp2 oma be Preferred custom server IP Alternate time server AU ntp1 cs mu OZ AU Bb u C Alternate custom server IP Adjust time every 1 days Adjust Time Now Set the parameters according to the information below Time Zone To establish the time zone that the CN8000 is located in drop down the Time Zone list and choose the city that most closely corresponds to where it is at If your country or region employs Daylight Saving Time Summer Time check the corresponding checkbox 61 CN8000 User Manual Date Select the month from the dropdown list box Click lt or gt to move backward or forward by one year increments In the calendar click on the day Time To set the time key in the numbers using the 24 hour HH MM SS format Click Set to save your settings Network Time To have the time automatically synchronized to a network time server do the following 1 Check the Enable auto adjustment checkbox 2 Drop down the time server list to select your preferred time server OT Check the Preferred custom server IP checkbox and key in the IP address of the time server of your choice 3 If you want to configure an alternate time server check the Alternate time server checkbox and repeat step 2 for the alternate time server entries 4 Key in your choice for the number of days between sy
137. nation of the items in the Enable Dial Back section is given in the table below Item Action ISP Settings Specify the telephone number account name username and password that you use to connect to your ISP 59 CN8000 User Manual Item Action Dial Out Schedule This entry sets up the times you want the CN8000 to dial out over the ISP connection Every provides a listing of fixed times from every hour to every four hours If you select Every two hours for example the CN8000 will start dialing out every two hours beginning at the next complete hour if it is now 13 10 it will start dialling at 14 00 If you don t want the CN8000 to dial out on a fixed schedule select Never from the list Daily at will dial out once a day at a specified time Use the hh mm format to specify the time PPP online time specifies how long you want the ISP connection to last before terminating the session and hanging up the modem A setting of zero means it is always on line Emergency Dial Out If the CN8000 gets disconnected from the network or the network goes down this function puts the CN8000 on line via the ISP dial up connection If you choose PPP stays online until network recovery the PPP connection to the ISP will last until the network comes back up or the CN8000 reconnects to it If you choose PPP online time the connection to the ISP will terminate after the amount of time t
138. nchronization procedures 5 If you want to synchronize immediately click Adjust Time Now Note After checking the Enable auto adjustment checkbox you must click Adjust Time Now or Set to save the change Otherwise the setting will be lost 62 4 Administration Customization The Customization page allows the Administrator to set Client Timeout Control Working Mode USB IO Settings Multiuser Mode Local Remote Share Mode Login failure and Reset parameters Client Timeout Control Timeout 15 minutes Working Mode V Enable ICMP V Enable Multiuser Disable Auto Sync USB IO Settings OS Win Language English X Multiuser Mode Multiuser Mode Share Z Local Remote Share Mode Local Remote Share Mode Share X Reset Reset on exit Y Enable Device List L Force All to Grayscale An explanation of the Customization parameters is given in the table below Parameter Explanation Client Timeout Control If there is no user input for the amount of time specified here the user is automatically logged out and must log in again before the CN8000 can be accessed The default is 3 minutes CN8000 User Manual Parameter Explanation Working Enable If ICMP is enabled the CN8000 can be pinged If it is not Mode ICMP enabled the device cannot be pinged The default is Enabled Enable If this item
139. nd 2 Default is 1 which is the default for the majority of serial devices Flow Control This allows you to choose how the data flow will be controlled Choices are None Hardware RTS CTS and XON XOFF Set this to match the flow control setting of the connected device Default is None Enable Toggle DTR Enabling this parameter allows the DTR signal to toggle between disabled and enabled when the port is occupied Choices are No and Yes Default is No Note For some devices in order for Enabled to work correctly you must first disable DTR select No then click Update then Enable it select Yes then click Update Online Detect This allows you to set the DSR signal to detect online status or not Choices are None and DSR Default is DSR Out CRLF Translation This allows you to select whether to send a Carriage Return and Line Feed signal CRLF or only a Carriage Return signal CR Choices are None which sends CRLF and CRLF CR which only sends CR Default is None Note If your device outputs double spaced lines it means that a line feed is automatically added to a carriage return signal In that case choose CRLF gt CR Suspend Character The Suspend character is used to bring up the Suspend Menu in Telnet sessions see Permissions page 31 Note Valid characters are from A Z except H I J and M Those four characters may not be used 57 CN8000 User Manual
140. nd a small panel appears at the top left of the screen 4 Press the keys for the macro To pause macro recording click Pause To resume click Record again Clicking Show brings up a dialog box that lists each keystroke that you make together with the amount of time each one takes Hotke User Macros System Macros Recording Key Time Interval Press L Ctrl 10935 stop Press L Shift 172 Release P 374 FE Release L Shift 125 Release L Ctrl 0 Delete cancel Search Macro By Name By Key Clicking Cancel cancels all keystrokes When you have finished click Stop This is the equivalent of clicking Done in Step 5 Note 1 Case is not considered typing A or a has the same effect 2 When recording the macro the focus must be on the remote screen It cannot be in the macro dialog box 3 Only the default keyboard characters may be used Alternate characters cannot be used For example if the keyboard is Traditional Chinese and default character is A the alternate Chinese character obtained via keyboard switching is not recorded 80 5 The WinClient Viewer 5 If you haven t brought up the Show dialog click Done when you have finished recording your macro You return to the Macros dialog box with the macro keys that you pressed displayed in the Macro column Macros EA ES Hotkeys 9 User Macros System Macros Name Hotkey Macro Playback Play gt
141. ndows running put the CN8000 software CD that came with this product into the CD DVD drive 2 Navigate to the Log Server AP Installer folder on the CD 3 Click the Log Server icon to execute LogServerSetup exe and start the installation Welcome to the LogServer Setup This program will install the LogServer on your computer We strongly recommend that you exit all Windows programs before running this program 4 Click Next Then follow the on screen instructions to complete the installation and have the Log Server program icon placed on your desktop 119 CN8000 User Manual Starting Up To bring up the Log Server either double click the program icon or key in the full path to the program on the command line The first time you run it a screen similar to the one below appears inix Configwe Events Options Help Recording Address Pot Connection Days Description Note 1 The MAC address of the Log Server computer must be specified in the ANMS Event Destination settings see Log Server page 42 for details 2 The Log Server requires the Microsoft Jet OLEDB 4 0 driver See The Log Server program does not run page 183 if the program doesn t start The screen is divided into three components A Menu Bar at the top A panel that will contain a list of CN8000 units in the middle see The Log Server Main Screen page 125 for details A panel that will contain an Event
142. ne to its original diagonal position Click OK to save your changes and close the dialog box Click Cancel to abandon your changes and close the dialog box Note For best results change the gamma while viewing a remote computer 88 5 The WinClient Viewer The Message Board To alleviate the possibility of access conflicts resulting from multiple user logins the CN8000 provides a message board that allows users to communicate with each other Message Board z x e mE g All Users administrator Message Display Panel User List Panel Compose Panel Exit The Button Bar The buttons on the Button Bar are toggles Their actions are described in the table below Button Action Enable Disable Chat When disabled messages posted to the board are not displayed The button is shadowed when Chat is disabled The icon displays next to the user s name in the User List panel when the user has disabled Chat Occupy Release Keyboard Video Mouse When a port is set to Occupy mode see Multiuser Mode page 64 you can use this button to occupy the KVM When you Occupy the KVM other users cannot see the video and cannot input keyboard or mouse data The button is shadowed when the KVM is occupied The icon displays next to the user s name in the User List panel when the user has occupied the KVM Occupy Release Keyboard Mouse When a port is set to Occupy mode see Multiuser Mode pag
143. nge keyboard video and mouse signals with the server or servers on a KVM switch installation just as if they were physically present and working on the equipment directly ani nil PE KVM Switch PERE The CN8000 expands on previous models by providing a dedicated RS 232 port for modem access or serial console management a PON port to attach a Power Over the NET device and USB 2 0 virtual media capability CN8000 User Manual With its advanced security features the CN8000 is the fastest most reliable most cost effective way to remotely access and manage widely distributed multiple computer installations The Administrator and Client software included with the CN8000 make it easy to install maintain and operate System administrators can handle a multitude of tasks with ease from installing and running GUI applications to BIOS level troubleshooting routine monitoring concurrent maintenance system administration rebooting and even pre booting functions The Administrator Utility is available in a browser based version as well as Windows based and Java application versions The utility is used to configure the system limit access from remote computers manage users and maintain the system with firmware and software module updates A Windows Client Viewer and a Java Applet Viewer are available for browser access while Windows Client AP and Java Cl
144. ngs see Log Server page 42 Description This field is provided so that you can put in a descriptive reference for the unit to help identify it Limit This specifies the number of days that an event should be kept in the Log Server s database before it expires and it is cleared out Fill in or modify the fields then click OK to finish Events The Events Menu has two items Search and Maintenance Search Search allows you to search for events containing specific words or strings When you access this function a screen similar to the one below appears Search Options Server List Priority List New search 10 3 42 140 Least Search last results C Search excluding last results Less Start date Start time End date End time Patter 2009 11 2 i 03 54 36 2009 11 11 03 54 36 amp Result erver 10 3 42 140 2009 11 08 10 16 51 Ntp Send Data socket receive failed 1 2009 11 08 10 16 51 Ntp Send Data socket ip address failed bon Bat 122 7 The Log Server A description of the items is given in the table below Item Explanation New search This is one of three radio buttons that define the scope of the search If it is selected the search is performed on all the events in the database for the selected CN8000 Search last results This is a secondary search performed on the events that resulted from the last
145. nizationalPerson Note The example above shows the permissions for a Type 1 Schema For a Type 2 Schema change the permissions line to su user Where user represents the Username of a CN8000 user whose permissions reflect the permissions you want steve to have 154 9 LDAP Server Configuration The following figure illustrates an LDIF file that defines the OpenLDAP group for the CN8000 dn cn judy1 cn Users de aten dc com A gbjectclass top userPassword password dn en ccc de aten dc com objectClass groupOfNames gn ccc member cn judy1 cn users dc aten dc com dn co bbb dc aten dc com objectClass groupOfNames cn bbb member cn ccc dc aten dc com dn cn aaa dc aten dc com objectClass groupOfNames cm aaa Continues on next page 155 CN8000 User Manual Continued from previous page Using the New Schema To use the new schema do the following 1 Save the new schema file e g cn8000 schema in the OpenLDAP schema directory 2 Add the new schema to the slapd conf file as shown in the figure below ucdata path ucdata include schema core schema include schema cosine schema include schema inetorgperson schema include schema openldap schema include schema cn8000 schema Define global ACLs to disable default read access access to dn children 0u Users dc aten dc com by dn cn Manager dc aten dc com write by self read by ano
146. nymous auth none pidfile ran slapd_pid argsfile ran slapd args BDB database definitions bdb dc aten dc com cn Manager dc aten dc com secret Idata Restart the LDAP server Write the LDIF file and create the database entries in init ldif with the Idapadd command as shown in the following example ldapadd f init ldif x D cn Manager dc aten dc com w secret 156 Appendix Safety Instructions General This product is for indoor use only Read all of these instructions Save them for future reference Follow all warnings and instructions marked on the device Do not place the device on any unstable surface cart stand table etc If the device falls serious damage will result Do not use the device near water Do not place the device near or over radiators or heat registers The device cabinet is provided with slots and openings to allow for adequate ventilation To ensure reliable operation and to protect against overheating these openings must never be blocked or covered The device should never be placed on a soft surface bed sofa rug etc as this will block its ventilation openings Likewise the device should not be placed in a built in enclosure unless adequate ventilation has been provided Never spill liquid of any kind on the device Unplug the device from the wall outlet before cleaning Do not use liquid or aerosol cleaners Use a damp cloth for cl
147. o be writable as well as readable click to put a check in the Enable Write checkbox Continues on next page 53 CN8000 User Manual Note 1 This policy operates on the device level If Read Only is selected the device will only be able to be read regardless of a user s Read Write user account permissions 2 If Read Write is selected the ability of a user to write depends on the user s Read Write user account permissions Private Certificate When logging in over a secure SSL connection a signed certificate is used to verify that the user is logging in to the intended site For enhanced security the Private Certificate section allows you to use your own private encryption key and signed certificate rather than the default ATEN certificate Private Certificate Private Key Browse Certificate Browse Restore default There are two methods for establishing your private certificate generating a self signed certificate and importing a third party certificate authority CA signed certificate E Generating a Self Signed Certificate If you wish to create your own self signed certificate a free utility openssl exe is available for download over the web See Self Signed Private Certificates page 178 for details about using OpenSSL to generate your own private key and SSL certificate E Obtaining a CA Signed SSL Server Certificate For the greatest security we recommend us
148. ore clicking Upgrade Firmware After the upload completes a message appears on the screen to inform you that the operations succeeded Click Logout at the bottom left of the Main web page 33 CN8000 User Manual 6 In the screen that comes up click Yes to confirm that you want to exit and reset the CN8000 Note You will need to wait a bit before logging back in Upgrading to Firmware Version 2 5 241 To upgrade the firmware do the following 1 Please ensure that the CN8000 is using firmware version 2 3 227 2 Download version 2 5 241 of the firmware to your computer 3 Use WinClient or JavaClient to upgrade the CN8000 s firmware from version 2 3 277 to 2 5 241 Do not attempt the upgrade process through the system s web interface Backup The Backup section of the Backup Restore page gives you the ability to back up the CN8000 s configuration and user profile information Firmware Upgrade Backup Restore Backup Password Backup To perform a backup do the following 1 Optional In the Password field key in a password for the file Note If you set a password make a note of it since you will need it to be able to perform restore operations with the file 2 Click Backup 3 When the browser asks what you want to do with the file select Save then save it in a convenient location Note The CN8000 saves all its backup files as CN8000BKUP conf If you want to save mo
149. our message board is not open a window showing the message pops up on your screen 115 CN8000 User Manual Virtual Media The Virtual Media feature allows a folder or image file on a local client computer to appear and act as 1f it were installed on the remote server Virtual Media also supports a smart card reader function that allows a reader plugged into a local client computer to appear as if it were plugged into the remote server To implement this redirection feature do the following 1 Click the Virtual Media icon to bring up the Virtual Media dialog box 16 Virtual Media Control Sa Write Mode Device Type Device Name Path 1 1 Add Remove Mount Exit Virtual Media operation is the same under the JavaClient as it is under the WinClient See Virtual Media page 91 for details Note Only the ZSO File and Folder virtual media functions are supported with the Java Viewer Zoom 4 The Zoom icon controls the zoom factor for the remote view window Settings are as follows Setting Description 100 Sizes and displays the remote view window at 100 75 Sizes and displays the remote view window at 75 50 Sizes and displays the remote view window at 50 25 Sizes and displays the remote view window at 25 1 1 Sizes and displays the remote view window at 100 The difference between this setting and the 100 setting is that when the remote view window i
150. over the icon the full panel comes up This function G as an icon shown left on the screen until you mouse over it When only works when the Control Panel is dragged out of its default position top center or bottom center of the screen 100 5 The WinClient Viewer Item Description Screen Options If Full Screen Mode is enabled the remote display fills the entire screen If Full Screen Mode is not enabled the remote display appears as a window on the local desktop If the remote screen is larger than what is able to fit in the window scrollbars will appear If Keep Screen Size is enabled the remote screen is not resized Ifthe remote resolution is smaller than that of the local monitor its display appears like a window centered on the screen Ifthe remote resolution is larger than that of the local monitor its display is scaled to the local size If Keep Screen Size is not enabled the remote screen is resized to fit the local monitor s resolution User Info If Show User Numbers is enabled the total number of users logged into the CN8000 displays in the text row of the Control Panel See the Control Panel diagram on page 73 for an example Snapshot These settings let the user configure the CN8000 s screen capture parameters see the Snapshot description under Control Panel Functions page 74 Path lets you select a directory that the captured screens automatically get
151. pears x Username administratol Password eccccces y Remember password cane Provide a valid Username and Password then Click OK Note The default Username is administrator the default Password is password For security we strongly recommend that you change these to something unique see User Management page 30 for details After you have successfully logged in the Connection screen reappears this time with 5 active buttons lala Server List Name IP CN8000 10 0 1 214 Server r gt IP 172 17 17 10 Remote View Port 9000 Change Password Exit Macro n Logout Admin Utility These function the same way as the ones described in the Windows Client AP section See page 130 for details Java Client AP operation is essentially the same as Windows Client AP operation Refer to the relevant Windows Client AP sections for operation details 135 CN8000 User Manual This Page Intentionally Left Blank 136 Chapter 9 LDAP Server Configuration Introduction The CN8000 allows log in authentication and authorization through external programs This chapter describes how to configure Active Directory and OpenLDAP for CN8000 authentication and authorization To allow authentication and authorization for the CN8000 via LDAP or LDAPS the Active Directory s LDAP Schema must be extended so that an extended attribute name for the CN8000
152. pend Character Port Alert Settings Alert String 1 Alert String 2 Alert String 3 Alert String 4 Alert String 5 Alert String 6 Alert String 7 Alert String 8 Alert String 9 Alert String 10 Continues on next page 56 4 Administration To set up the serial communications parameters put a check in the Enable checkbox and make your parameter selections according to the information provided in the table below Port Property Settings The meanings of the property settings are given in the following table Setting Baud Rate Meaning This sets the port s data transfer speed Choices are from 300 115200 drop down the list to see them all Set this to match the baud rate setting of the connected device Default is 9600 which is a basic setting for many serial devices Data Bits This sets the number of bits used to transmit one character of data Choices are 5 6 7 and 8 Set this to match the data bit setting of the connected device Default is 8 which is the default for the majority of serial devices Parity This bit checks the integrity of the transmitted data Choices are None Odd Even Set this to match the parity setting of the connected device Default is None which is the default for the majority of serial devices Stop Bits This indicates that a character has been transmitted Set this to match the stop bit setting of the connected device Choices are 1 a
153. pointer to the default button in a dialog box SS Visibility Na Display pointer trails Hide pointer while typing Show location of pointer when press the CTRL key 3 Windows ME Set the mouse speed to the middle position disable mouse acceleration click Advanced to get the dialog box for this 4 Windows NT Windows 98 Windows 93 Set the mouse speed to the slowest position Sun Linux Open a terminal session and issue the following command Sun xset m 1 Linux xset m 0 or xset m 1 If one doesn t help try the other 185 CN8000 User Manual Supported KVM Switches The KVM switches that can be used in a cascaded installation are as follows ACS1208A ACS1216A CS1308 CS1316 CS1708A CS1716A CS1754 CS1758 CS228 CS428 Note 1 Some of the CN8000 s features may not be supported depending on the functionality of the cascaded KVM switch For example some switches do not support virtual media 2 Some features found on the cascaded KVM switches may not be supported on the CN8000 For example the CS1754 s audio and the CS1708A CS1716A must use PS 2 connectors when cascading Virtual Media Support WinClient ActiveX Viewer WinClient AP IDE CDROM DVD ROM Drives Read Only IDE Hard Drives Read Only USB CDROM DVD ROM Drives Read Only USB Hard Drives Read Write USB Flash Drives Read Write USB Floppy
154. r example pressing F11 5 would appear to the remote system as Ctrl 5 The default key is F11 Note When Keyboard Pass Through is enabled Alt Tab can be sent directly to the remote system see Customize Control Panel page 100 for details Substitute Alt key Although all other keyboard input is captured and sent to the remote system Alt Tab and Ctrl Alt Del work on your local computer In order to implement their effects on the remote system another key may be substituted for the Alt key If you substitute the F12 key for example you would use F12 Tab and Ctrl F12 Del The default key is F11 Note When Keyboard Pass Through is enabled Alt Tab can be sent directly to the remote system see Customize Control Panel page 100 for details 78 5 The WinClient Viewer User Macros User Macros are used to perform specific actions on the remote server To create the macro do the following 1 Select the User Macros radio button then click Add 9 By Name By Key 2 In the dialog box that comes up replace NewMacro with a name of your choice for the macro L Mx Hotkeys 9 User Macros System Macros Hotkey Macro Playback Play gt osete ese Set Hotkey import ep _ Search Macro 9 By Name By Key Exit 79 CN8000 User Manual 3 Click Record The dialog box disappears a
155. r regardless of the web browser being used Check Launch viewer after login to have the remote viewer application automatically open every time you log in When this option is enabled by any user account it enables the option for all user accounts You must uncheck the option in all user accounts before it will be disabled After making your choice click Apply 66 4 Administration Setting Function Language Selects the language that the interface displays in Drop down the list to make your selection Selecting Auto causes the CN8000 to display the pages in the same language that the browser is set to Note If your browser is set to a non supported language the CN8000 looks to what your server s operating system is set to If the operating system is set to a supported language it will use that language to display its pages If the operating system is set to a non supported language the CN8000 defaults to English After making your choice click Apply Change To change your password key the new password into the New Password Password input box key the exact same characters into the Confirm New Password input box then click Change Password to set the new password Log The CN8000 logs all the events that take place on it Following a reset it writes them to a log file which can be used as a searchable database with a log server To view the contents of the log file click Log under the Pr
156. re configuration to match the diagram below 5 demo dt Serial Modem Cable Serial Modem Cable a Phone Line 7 Remote Operator Modem Modem 2 From your computer use your modem terminal program to dial into the CN8000 s modem Note 1 If you don t know the CN8000 modem s serial parameters get them from the CN8000 administrator 2 An example of setting up a modem terminal program under Windows XP is provided on the next page 3 Once the connection is established open your browser and specify 192 168 192 1 in the URL box From here operation is the same as if you had logged in from a browser or with the AP programs 172 Appendix Connection Setup Example Windows XP To set up a dial in connection to the CN8000 under Windows XP do the following 1 From the Start menu select Control Panel Network Connections gt Create a New Connection 2 When the Welcome to the New Connection Wizard dialog box appears click Next to move on 3 In the Network Connection Type dialog box select Connect to the network at my workplace then click Next 4 In the Network Connection dialog box select Dial up connection then click Next 5 In the Connection Name dialog box key in a name for the connection for example TPE CN8000 01 then click Next 6 In the Connection Availability dialog box
157. re than one backup file simply rename the file to something convenient when you save it 34 4 Administration Restore Backed up User Account and Configuration information can be restored with the Restore section of the page Information currently configured on the CN8000 will be replaced with the information that you restore Restore Restore File Browse Password All User Account 9 User Select Y Device Information Y Network Service Ports Y Network IP Address Y Network DNS Server ANMS Y Security Y Console Management V Customization Y Date Time Y User Account Restore To restore a previous backup do the following 1 If a password was set when the backup was made key the same password that you used to save the backup file in the Password field If a password wasn t set you can leave this field blank Click Browse navigate to the file and select it Note If you renamed the file you can leave the new name There is no need to return it to its original name Select which parts of the backup you wish to restore Select the Al radio button to restore both User Account and all Configuration information Select the User Account radio button to only restore User Account information Select the User Select radio button to choose which parts of the backed up information you wish to restore then click the checkboxes to select deselect the restore elements Whe
158. re the ones the users log into the switch with from remote locations over the internet see Terminology page xiv The following equipment must be installed on these computers For best results we recommend that the computers used to access the switch have at least a P III 1 GHz processor with their screen resolution set to 1024 x 768 Browsers must support 128 bit SSL encryption For best results a network transfer speed of at least 128 kbps is recommended For the Windows Client AP at least 25 MB of memory must be available after installation For the Java Client AP the latest version of Sun s Java Runtime Environment JRE must be installed and at least 55 MB of memory must be available after installation For the browser based WinClient Viewer at least 60 MB of memory must be available after installation For the browser based Java Applet Viewer the latest version of Sun s Java Runtime Environment JRE must be installed and at least 130 MB of memory must be available after installation For the Log Server you must have the Microsoft Jet OLEDB 4 0 or higher driver installed Servers Servers are the computers connected to the switch via KVM Cables see Terminology page xiv The following equipment must be installed on these servers A VGA SVGA or multisync port For USB KVM Cable Connections a Type USB port and USB host controller For PS 2 KVM Cable Connections 6 pin Mini DIN keyboard and
159. rights the user has on the CN8000 at that IP address For example 192 168 0 808c w 3 192 168 0 1888v 1 The makeup of the permission entry is as follows An ampersand 8 connects the CN8000 s IP with the access rights string The access rights string is made up of various combinations of the following characters c w j p 1 v s The characters can be entered in upper or lower case The meanings of the characters is provided in the Permission String Characters table below The characters in the access rights string are separated by a comma There are no spaces before or after the comma Ifa user has access rights to more than one CN8000 each permission segment is separated by a semicolon There are no spaces before or after the semicolon Permission String Characters Character Meaning C Grants the user administrator privileges allowing the user to configure the system Allows the user to access the system via the Windows Client program Allows the user to access the system via the Java applet Allows the user to Power On Off Reset devices via an attached PN0108 Allows the user to access log information via the user s browser Limits the user s access to only viewing the video display Allows the user to use the Virtual Media function Read Only Allows the user to use the Virtual Media function Read Write Allows the user to access the system via Teln
160. rk Time 62 CustomiZationss ji A a a dat ene re 63 vii CN8000 User Manual Preferences voca a Soc o ee 66 User Preferences 66 LOG EE PR cadet vo eel eee eee te ay 67 Remote Console sasainn aii Aa 68 Exit Macro cocoa ii id elisa 68 A O ea eek Pep Sat Aue Ste ayes OS GU 68 Open Power Management 68 ADO Earle ase oth Dl dl Ue ela Aer ado lo pt ea 69 5 The WinClient Viewer StartingUD 020050 a o A AA o A 71 Navigation erter A eee ee Ge oe ed 72 The WinClient Control Panel 73 Control Panel Functions 74 Macros econ oie a pl Ags ti cade 77 Hotkeys cia HAR EAR a ed a deci en ech ey 77 System Macros 83 Video Settings nse Aia a a A 86 The Message Board 89 The Button Bar 89 Message Display Panel 90 Compose Panel 90 WserlistPanel 24 esi sth se nd de ne nn ME Rene 90 Virtual Medid creniero redana imaa adai E pe hie ie ep e SASE e da 91 Virtual Media Icons 91 Virtual Media Redirection 91 ZOOM 2 ee ee hoe ape eee 8 ee ed ee E E E E 95 The On Screen Keyboard 96 Mouse Point
161. rs must wait until the timeout setting has expired and the system logs you out before the CN8000 can be accessed see Disable Duplicate Login page 51 26 3 Browser Login Viewer You can connect to the remote server by clicking the Viewer icon from the lower section of the sidebar KVM over IP CNS000 Device Information Dewee Name cns000 MAC Address Firmware Versicn 1Pv4 Address ONS After clicking the Viewer icon If you are logged in with a browser other than Windows Internet Explorer a Java Applet Viewer application will open your remote server session If you are logged in with IE as your browser and you chose Auto as your Default Viewer a WinClient Viewer application will open your remote server session If you are logging in with IE as your browser and you chose Java as your Default Viewer a Java Applet Viewer application will open your remote server session Clicking the Viewer icon opens the remote server s display on your desktop Information on Java Applet Viewer operation is discussed in Chapter 6 WinClient Viewer operation is discussed in Chapter 5 27 CN8000 User Manual This Page Intentionally Left Blank 28 Chapter 4 Administration Introduction Administration of the CN8000 using a web browser is divided into 3 sections Basic Settings Advanced Settings and Preferences Each section is listed on the sidebar with submenus that are used
162. s List at the bottom Each of the components is explained in the sections that follow 120 7 The Log Server The Menu Bar The Menu bar consists of four items Configure Events Options Help These are discussed in the sections that follow Note If the Menu Bar appears to be disabled click in the CN8000 List window to enable it Configure The Configure menu contains three items Add Edit and Delete They are used to add new CN8000 units to the CN8000 List edit the information for units already on the list or delete CN8000 units from the list To add a CN8000 to the CN8000 List click Add To edit or delete a listed CN8000 first select the one you want in the CN8000 List window then open this menu and click Edit or Delete When you choose Add or Edit a dialog box similar to the one below appears x Address EETRERRSIIERS Port 9001 Description Server Description Limit 100 Days Cancel 121 CN8000 User Manual A description of the fields is given in the table below Field Explanation Address This can either be the IP address of the CN8000 or its DNS name if the network administrator has assigned it a DNS name Key in the value specified for the CN8000 in the ANMS settings see ANMS Event Destination page 41 Port Key in the port number that was specified for the Log Server s Service Port in the ANMS setti
163. s name yourcompany com openssl reg new newkey rsa 1024 days 3653 nodes x509 keyout CA key out CA cer config openssl cnf subj C CA ST BC L Richmond O ATEN International OU ATEN CN ATEN emailAddress eservice aten com tw Importing the Files After the openssl exe program completes two files CA key the private key and CA cer the self signed SSL certificate are created in the directory that you ran the program from These are the files that you upload in the Private Certificate panel of the Security page see page 54 178 Appendix Troubleshooting General Operation Problem Resolution Erratic operation The CN8000 needs to be started before the KVM switch 1 If the CN8000 is connected to a KVM switch make sure to power it on before powering on the switch 2 If the KVM switch was started before the CN8000 reset or restart the KVM switch The CN8000 needs to be reset see Firmware Upgrade Reset Switch page 10 point 1 can t access the CN8000 even though have specified the IP address and port number correctly If the CN8000 is behind a router the router s Port Forwarding also referred to as Virtual Server feature must be configured See Port Forwarding page 170 for details Mouse pointer confusion If you find the display of two mouse pointers local and remote to be confusing or annoying you can use the Toggle Mouse Display functio
164. s resized its contents don t resize they remain at the size they were To see any objects that are outside of the viewing area move the mouse to the window edge to have the screen scroll 116 6 The JavaClient Viewer wy The On Screen Keyboard EMA The CN8000 supports an on screen keyboard available in multiple languages with all the standard keys for each supported language Click this icon to pop up the on screen keyboard On screen Keyboard i j English US v On Screen Keyboard operation is the same under the JavaClient as it is under the WinClient See The On Screen Keyboard page 96 for details y Mouse Pointer Type N The CN8000 offers a number of mouse pointer options when working in the remote display Click this icon to select the type that you would like to work with A OS gt ES dual i E 10 3 56 58 1600x1200 60 1 o A crosshairs O Single Note The icon on the Control Panel changes to match your choice 117 CN8000 User Manual Mouse DynaSync Mode Lai ES Clicking this icon selects whether synchronization of the local and remote mouse pointers is accomplished either automatically or manually DynaSync operation is the same under the JavaClient as it is under the WinClient See Mouse DynaSync Mode page 98 for details Control Panel Configuration Clicking the Control Panel icon brings up a dialog box that allows you to configure the items that
165. saved to Click Browse navigate to the directory of your choice then click OK If you don t specify a directory here the snapshot is saved to your desktop Click a radio button to choose whether you want the captured screen to be saved as a BMP or a JPEG JPG file If you choose JPEG you can select the quality of the captured file with the slider bar The higher the quality the better looking the image but the larger the file size Keyboard Pass When this is enabled the Alt Tab key press is passed to the remote Through server and affects that server If it is not enabled Alt Tab acts on your local client computer 101 CN8000 User Manual Power Management EA Clicking the Power Management icon brings up the power manager window allowing you to log in and configure devices connected to a PNO108 Power Over the NET device 4 Power Manager fe PNO108 Login Username Password toga AUTUSEN Searching for devices j For information on configuring Power Over the NET devices see the PNO108 s user manual 102 5 The WinClient Viewer Admin Utility Si Clicking the Admin Utility icon brings up a window that allows you to configure the CN8000 via Viewer based GUI with the web browser administrative functionalities KVM over IP CN8000 The sidebar menu items available on this page are based upon the user s permissions For information
166. setting can result in a lower quality display due to less data transfer A lower setting will result in better video quality but setting the threshold too low may allow too much data to be transferred negatively impacting network performance 87 CN8000 User Manual Gamma Adjustment If it is necessary to correct the gamma level for the remote video display use the Gamma function of the Video Adjustment dialog box For greater control clicking the Advanced button brings up the following dialog box Video Settings T x RGB Screen Position E ade e i FRERE y e Red Gain e gt Green Gain Preset Custom y Blue Gain g Fair lt Video Quality gt Excellent Set To Grayacale _ Reset Performance D Gamma Low 100MEthernet High Defaut zj Min Max Video Quality Enable Refresh Refresh every 2 seconds Color depth control Enabled Low High Detect Tolerance i Low High ok cama Userdefi Saveas Reset There are ten preset and four user defined levels to choose from Drop down the list box and choose the most suitable one Click and drag the diagonal line at as many points as you wish to achieve the display output you desire Click Save As to save up to four user defined configurations derived from this method Saved configurations can be recalled from the list box at a future time Click Reset to abandon any changes and return the gamma li
167. sk Default Gateway obtain DNS server address automatically O set DNS server address manually Preferred DNS server Alternate DNS server IP Address The CN8000 can either have its IP address assigned dynamically DHCP or it can be given a fixed IP address For dynamic IP address assignment select the Obtain an IP address automatically radio button This is the default setting To specify a fixed IP address select the Set IP address manually radio button and fill in the IP address Subnet Mask and Default Gateway Note 1 If you choose Obtain IP address automatically when the switch starts up it waits to get its IP address from the DHCP server If it hasn t obtained the address after one minute it automatically reverts to its factory default IP address 192 168 0 60 2 If the CN8000 is on a network that uses DHCP to assign network addresses and you need to ascertain its IP address see IP Address Determination page 165 for information 21 CN8000 User Manual DNS Server The CN8000 can either have its DNS server address assigned automatically or a fixed address can be specified For automatic DNS Server address assignment select the Obtain DNS server address automatically radio button To specify a fixed address select the Set DNS server address manually radio button and fill in the required information Note Specifying at the alternate DNS Server address
168. te 1 The Console cable comes with connectors for both PS 2 and USB mice and keyboards use the ones appropriate for your installation 2 You can use any combination of keyboard and mouse connections For example you can use a PS 2 keyboard with a USB mouse 2 Use the KVM cable provided with this package to connect the CN8000 s PC KVM port to the keyboard video and mouse ports of the server or KVM switch s port or KVM cable that you are installing Note 1 The diagram shows a connection to a KVM switch with PS 2 mouse and keyboard ports using a PS 2 KVM cable set The CN8000 can also connect to a server or KVM switch that uses a USB connection by using a USB KVM cable set See Cables page 7 for cable option information 2 If you are using a PS 2 configuration KVM cable refer to page 184 for mouse pointer synchronization information 3 If you are using a USB configuration KVM cable see Mouse DynaSync Mode page 98 for mouse pointer synchronization information 4 The CN8000 s virtual media features may not be supported depending on the functionality of the cascaded KVM switch see Supported KVM Switches page 186 3 Optional If you want to use the virtual media function see Virtual Media page 91 use the USB 2 0 Virtual Media Cable provided with this package to connect a USB port on the server to the CN8000 s Virtual Media port 4 Optional If you want to connect a PON device for remote power m
169. tion in Read Only mode m Allows the user to use the Virtual Media function in Read Write mode t Allows the user to access the system via a Telnet session h Allows the user to access the system via an SSH session a Allows the user to access the system via a Telnet or SSH session su user Where user represents the Username of a CN8000 user whose permissions reflect the permissions you want the RADIUS authorized user to have Note 1 The characters are not case sensitive Capitals or lower case work equally well 2 Characters are comma delimited RADIUS Examples RADIUS Server access rights examples are given in the table below String Meaning C W p User has administrator privileges user can access the system via the Windows Client user can access the attached PNO108 w j User can access the system via the Windows Client user can access the system via the Java Applet user can access log information via the user s browser 45 CN8000 User Manual LDAP Settings LDAP Settings Enable LDAP LDAP Server IP Timeout seconds LDAPS Enable Authorization Port LDAP Administrator DN LDAP Administrator Password Search DN Admin Group To allow authentication and authorization for the CN8000 via LDAP LDAPS refer to the information in the table below Item Action Enable Put a check in the Enable checkbox to allow LDAP LDAPS authentication and a
170. tion of forcing a user logout by selecting the user and clicking End Session 32 4 Administration Maintenance The Maintenance page allows the Administrator to upgrade the CN8000 s firmware and to backup and restore the CN8000 s configuration settings and user profile information Firmware Upgrade As new versions of the CN8000 firmware become available they can be downloaded from our website Check the website regularly to find the latest information and packages To upgrade the firmware do the following 1 Download the new firmware file to your computer Note If you are upgrading to firmware version 2 5 241 please see Upgrading to Firmware Version 2 5 241 page 34 Open your browser log in to the CN8000 and click the Maintenance link to bring up the Firmware File dialog box Firmware Upgrade Backup Restore Check Firmware Version Firmware File _ Browse Upgrade Firmware Click Browse navigate to the directory that the new firmware file is in and select the file Click Upgrade Firmware If Check Firmware Version is enabled when you perform an upgrade the current firmware level is compared with that of the upgrade file If the current version is higher than or equal to the upgrade version a message appears informing you of the fact and the procedure stops Note If you want to install an older firmware version you must uncheck the Check Firmware Version checkbox bef
171. to configure the CN8000 s operating environment This chapter discusses each of them in turn KVM over IP ATEN CN8000 i Basic Setting Device Information User Management Daane CN8000 Session Maintenance RES E Advanced Setting Firmware Version Device Information 1Pv4 Address Network ANMS Security Console Management Date Time Apply Customization DNS F Preferences User Preferences Log Remote Console About Dr Viewer Logout Note 1 As you make your configuration changes in each section click Apply to save them 2 Some configuration changes only take effect after the CN8000 is reset When those changes are made a check is automatically put in the Reset on Exit box see Customization page 63 To have the changes take effect log out and then log back in again 3 If you don t have Configuration privileges see User Management page 30 the Administration configuration dialogs are not available 29 CN8000 User Manual Basic Settings This section provides 3 submenus User Management Sessions and Maintenance used to manage user accounts and perform system maintenance on the CN8000 User Management The User Management page is used to create and manage user profiles Up to 64 user profiles can be established User Management administrator test123 Username test1234 test12345 Password Confirm password Description Admin User 0 Select Permissions Win Cl
172. twork You can select a model from the Device List and set it s IP Address settings using the options listed below then click Set IP to implement the change on the device Device List When the IP Installer main window comes up the utility scans the network for devices and lists the ones it finds in the device list panel The device list panel consists of four columns as shown in the following table Heading Details Device Name Displays the device name assigned to the switch Model Name Displays the switches model name CN8000 PN9108 SNO116 etc MAC Address Displays the device s MAC address IP Address Displays the device s current IP address Clicking Enumerate causes the utility to broadcast an Enumerate command and wait for replies from all the devices It then refreshes the list based on the response it receives Protocol Use this drop down box to select the type of protocol IPv4 or IP v6 you are using for the network adapters on your LAN Network Adapter The Network Adapter selection box located just below the Device List pertains to computers that have more than one network adapter installed Users can use this to select the adapter that they want Enumerate to be directed to Set IP There are two methods of specifying an IP address Dynamic and Static If you want to obtain an IP address dynamically select Obtain an IP address automatically DHCP Ifyou want to use a static IP a
173. ugh its RS 232 port using a dial up connection 1 Introduction Features Benefits Upgradeable Firmware over the Internet No need to add yet another cable to your installation stay current with the latest functionality improvements and updates all over the Internet Remote Power Control You can add a PON Power Over the NET power management unit and remotely control the power status of devices on your installation including monitoring their current status as well as turning servers On Off and Rebooting them Mouse DynaSync No need to re sync your mouse Mouse DynaSync provides automatic locked in synching of the remote and local mouse pointers eliminating the need to constantly resync the two movements Your local console mouse movement becomes the remote unit s mouse movement Full Screen or Sizable Remote Desktop Window Get a full screen even if your monitor s resolution is lower than the remote computer s resolution In full screen mode the remote desktop display scales to the user s monitor display size Supports up to 1600 x 1200 60Hz 24 bit color depth for remote sessions DDNS Allows the mapping of a dynamic IP address assigned by a DHCP server to a hostname End session Administrators can terminate running sessions CN8000 User Manual System Requirements Remote User Computers Remote user computers also referred to as client computers a
174. user interface makes for convenient intuitive configuration and operation Web based Windows and Java implementations allow the remote equipment to be controlled from industry standard web browsers Windows and Java AP client software using the same convenient GUI are also included to provide access where a browser environment is not desired Superior Video With its enhanced fps throughput for crisp responsive video display the CN8000 offers resolutions of up to 1600 x 1200 60Hz vibrant 24 bit color depth for rich remote session display The remote desktop can appear full screen or in a window In full screen mode the remote desktop display scales to the user s monitor display size Virtual Media USB 1 1 and 2 0 devices Floppy drives CDROMs Flash drives etc folders and image files on a user s local system appear and act as if they were installed on the remote server for ease and convenience when performing software installation and system updates across the entire Installation Virtual Remote On screen keyboard with multilanguage support Deskto p Exit Macros support BIOS level access Smart Card CAC To meet advanced security requirements the CN8000 s Virtual Reader Support Media function allows a Smart Card CAC reader on a user s local system to be mapped to a remote server Low Bandwidth Optimization Bandwidth optimization via grayscaling and video quality settings a
175. uthorization LDAP LDAPS Click a radio button to specify whether to use LDAP or LDAPS Enable Authorization Select whether to enable Enable Authorization or not 1 Ifenabled the box is checked the LDAP LDAPS server directly returns a permission attribute and authorization for the user that is logging in With this selection the LDAP schema must be extended See LDAP Server Configura tion page 137 for details 2 If not enabled no check in the box the result the server returns indicates whether the user that is logging in belongs to the CN8000 Admin Group If the result is yes the user has full access rights if the result is no the user only has limited access rights Note Consult the LDAP LDAPS administrator to ascertain whether to enable the Enable Authorization function or not LDAP Server IP and Port Fill in the IP address and port number for the LDAP or LDAPS server For LDAP the default port number is 389 for LDAPS the default port number is 636 Timeout Set the time in seconds that the CN8000 waits for an LDAP or LDAPS server reply before it times out LDAP Administrator DN Consult the LDAP LDAPS administrator to ascertain the appropriate entry for this field For example the entry might look like this cn LDAPAdmin ou cn8000 dc aten dc com LDAP Administrator Password Key in the LDAP administrator s password 46 4 Administration
176. ve the problem consult the Sun VGA card s manual 182 Appendix Mac Systems Problem Resolution The local and remote mouse pointers do not sync There are two USB I O settings for the Mac Mac 1 and Mac 2 see Date Time page 61 In general Mac 1 works with older operating system versions whereas Mac 2 works with the newer ones In some cases however the reverse is true If you experience pointer sync problems try selecting the other mode When log in to the switch with my Safari browser it hangs when use the Snapshot feature Force close Safari then reopen it Don t use the Snapshot feature in the future To use the Snapshot feature with Safari upgrade to Mac OS 10 4 11 and Safari 3 0 4 The Log Server Problem Resolution The Log Server program does The Log Server requires the Microsoft Jet OLEDB 4 0 not run driver in order to access the database This driver is automatically installed with Windows ME 2000 and XP For Windows 98 or NT you will have to go to the Microsoft download site http www microsoft com data download htm to retrieve the driver file MDAC 2 7 RTM Refresh 2 70 9001 0 Since this driver is used in Windows Office Suite an alternate method of obtaining it is to install Windows Office Suite Once the driver file or Suite has been installed the Log Server will run 183 CN8000 User Manual Addition
177. w the contents of the log file Enable Telnet SSH If Serial Console management is enabled see Console Management page 56 checking Enable Telnet SSH allows a user to open a Telnet and or SSH session Drop down the list to select the type of login allowed Enable Virtual Media Checking Enable Virtual Media allows a user to utilize the CN8000 s Virtual Media capabilities see Virtual Media page 91 for details Drop down the list to select whether the user has Read Write or Read Only permission The Reset button clears all the information shown in the right panel When you have made all your changes click Apply 31 CN8000 User Manual Session The Session page lets the administrator see at a glance all the users currently logged into the CN8000 and provides information about each of their sessions i Select Login Name Client IP Login Time Service Category Idle Time End Session Refresh The meanings of the headings at the top of the page are fairly straightforward The Client IP heading refers to the IP address that the user has logged in from The Service heading refers to the means the user employed to connect to the CN8000 Browser WinClient AP JavaClient AP etc The Category heading lists the type of user who has logged in Admin Administrator User or Select See User Management page 30 for details about user types This page also gives the administrator the op
178. wisted pair STP cables must be used with the unit to ensure compliance with FCC amp CE standards KCC Statement TA AS A 717 4728 BS 54 7171 ARE are A 42554 877 NEA Roy Zz LE Aeae e SE 4 42 FAHA 8 74 99 194 448345 AS 5903 ut RoHS This product is RoHS compliant CN8000 User Manual SJ T 11364 2006 The following contains information that relates to China ES BBR Fa aaa ARE O RRKASA MEAR AAA EAST 11363 20061 E REEK To O ATHAKENHRAR BRESSE PRENDERAM ERMA AHS BAST 11363 2006 R EEK X RIVAS EUR 2 ERA e EA HSJ T 11363 2006 R E EKo CN8000 User Manual User Information Online Registration Be sure to register your product at our online support center International http eservice aten com Telephone Support For telephone support call this number International 886 2 8692 6959 China 86 10 5255 0110 Japan 81 3 5615 5811 Korea 82 2 467 6789 North America 1 888 999 ATEN ext 4988 United Kingdom 44 8 4481 58923 User Notice All information documentation and specifications contained in this manual are subject to change without prior notification by the manufacturer The manufacturer makes no representations or warranties either expressed or implied with respect to the contents hereof and specifically disclaims any warranties as to merchantability or fitness for any particular purpose Any of t
179. work address or you can change it by clicking Login logging in or clicking Admin Utility and then clicking Network under the Advanced Settings menu See Network page 37 for details 167 CN8000 User Manual IPv6 At present the CN8000 supports two IPv6 address protocols Link Local IPv6 Address and IPv6 Stateless Autoconfiguration Link Local IPv6 Address At power on the CN8000 is automatically configured with a Link Local IPv6 Address for example fe80 210 74ff fe61 lef To find out what the Link Local IPv6 Address is log in with the CN8000 s IPv4 address and click the Basic Settings icon The address is displayed at the bottom of the Basic Settings page see page 30 Once you have determined what the IPv6 address is you can use it when logging in from a browser or the Win and Java Client AP programs For example If you are logging in from a browser you would key in http fe80 2001 74ff fe6e 59 5 for the URL bar If you are logging in with the AP program you would key fe80 2001 74ff fe6e 59 5 for the IP field of the Server panel see The Windows Client Connection Screen page 129 Note 1 To log in with the Link Local IPv6 Address the client computer must be on the same local network segment as the CN8000 2 The 5 is the interface used by the client computer To see your client computer s IPv6 address from the command line issue the following command ipconfig all The value appe
180. write permissions it appears in gray and cannot be selected 2 See Virtual Media Support page 186 for a list of supported virtual media types 92 5 The WinClient Viewer 3 To remove an entry from the list select it and click Remove 4 After you have made your media source selections click Mount The dialog box closes The virtual media devices that you have selected are redirected to the remote system where they show up as drives files and folders on the remote file system My Computer File Edit View Favorites Tools Help deak gt gt Qsearch Eirodes 9 MG a deal Address KE my Computer z Pu y m7 2d 3 Floppy A SeSystemME C EeSystem2KAS D My Computer STORAGE E Select an item to view its descriptioh JRemovable Disk G xT Control Panel Displays the files and folders on your computer See also My Documents My Network Places Network and Dial up Connections 7 object s E my computer E Once mounted you can treat the virtual media as if they were really on the remote server drag and drop files to from them open files on the remote system for editing and save them to the redirected media etc Files that you save to the redirected media will actually be saved on your local system Files that you drag from the redirected media will actually come from your local system 5 To end the redirection bring up the Control Pane
181. xcluded by the MAC filter then that computer s access is blocked In other word s if either filter blocks a computer then the computer is blocked no matter what the other filter is set to 49 CN8000 User Manual E Modifying Filters To modify a filter select 1t in the IP Filter or MAC Filter list box and click Modify The Modify dialog box is similar to the Add dialog box When it comes up simply delete the old address es and replace it with the new one s E Deleting Filters To delete a filter select it in the IP Filter or MAC Filter list box and click Delete E Login String The Login String lets the Administrator specify a login string that users must include in addition to the IP address when they access the CN8000 with a browser For example 192 168 0 126 CN8000 The following characters are allowed 0 9 az AZ amp _ 3 lt gt 1 The following characters are not allowed 2 Space Compound characters etc Note 1 There must be a forward slash between the IP address and the string 2 If no login string is specified here anyone will be able to access the CN8000 login page using the IP address alone This makes your installation less secure For security purposes we recommend that you change this string occasionally 50 4 Administration Account Policy In the Account Policy section system administrators can set policies govern
182. you can select either Anyone s use or My use only depending on your preferences then click Next Note If you are the only user on this computer this dialog box won t appear 7 In the Phone Number to dial dialog box key in the phone number of the modem connected to the CN8000 be sure to include country and area codes if necessary then click Next 8 In the Completing the New Connection Wizard dialog box check Add a shortcut to this connection on my desktop then click Finish This completes the connection setup Double click the desktop shortcut icon to make a PPP connection to the CN8000 173 CN8000 User Manual Trusted Certificates Overview When you try to log in to the device from your browser a Security Alert message appears to inform you that the device s certificate is not trusted and asks if you want to proceed Information you exchange with this site cannot be viewed or Y changed by others However there is a problem with the site s security certificate A The security certificate was issued by a company you have not chosen to trust View the certificate to detemine whether you want to trust the certifying authority iv The security certificate date is valid 4 The name on the security certificate is invalid or does not match the name of the site Do you want to proceed ve ven cerea The certificate can be trusted but the alert is triggered because the certificate s name

Download Pdf Manuals

Related Search

Related Contents

2 Toque - Alpine Europe  PDFファイル／174KB  October 20, 2009 at 0800 (8am)  Installation User and Service Manual Release R.1.0 Uk  取扱説明書  Weider WEEVSY2909 User's Manual  experience testing energyplus with the iea hvac bestest e100  di tutto il volume  EIERKOCHER EGG BOILER  

Copyright © All rights reserved. Failed to retrieve file