Avocent PS/2 IP user manual Unblocking users, Certificate

Page 51

8/16/32 PS/2 KVM over IP switch

Unblocking users

There are two possibilities to unblock a blocked user.

A parent user may go to the user management settings (see the Section called Users And Groups) and press the button “ Unblock ” for the user.

It is also possible to use the serial console as for the initial configuration (see Table 4-1) and login as the user “unblock“. The PS/2 IP-KVM switch will ask for the super user password and present a list of blocked users, which may be unblocked.

6.4.4Certificate

Figure 6-23. Certificate Settings

The PS/2 IP-KVM switch uses the Secure Socket Layer (SSL) protocol for any encrypted network traffic between itself and a connected client. During the connection establishment the PS/2 IP-KVM switch has to expose its identity to a client using a cryptographic certificate. Upon delivery, this certificate and the underlying secret key is the same for all PS/2 IP-KVM switch ever produced and certainly will not match the network configuration that will be applied to the PS/2 IP-KVM switch cards by its user. The certificate's underlying secret key is also used for securing the SSL handshake. Hence, this is a security risk (but far better than no encryption at all).

However, it is possible to generate and install a new certificate that is unique for a particular PS/2 IP-KVM switch card. In order to do that, the PS/2 IP-KVM switch is able to generate a new cryptographic key and the associated Certificate Signing Request (CSR) that needs to be certified by a certification authority (CA). A certification authority verifies that you are the person who you claim you are, and signs and issues a SSL certificate to you.

The following steps are necessary to create and install a SSL certificate for the PS/2 IP-KVM switch:

Create a SSL Certificate Signing Request using the panel shown in Figure 6-23. You need to fill out a number of fields that are explained below. Once this is done, click on the button “ Create ” which will initiate the Certificate Signing Request generation. The CSR can be downloaded to your administration machine with the “Download CSR” button (see Figure 6-24).

Send the saved CSR to a CA for certification. You will get the new certificate from the CA after a more or less complicated traditional authentication process (depending on the CA).

Upload the certificate to the PS/2 IP-KVM switch using the “Upload” button as shown in Figure 6-24.

51

Page 50 Page 52
Image 51
Page 50 Page 52
Contents Rev PS/2 IP-KVM Switch USER’S ManualTable of Contents Menu Options Video modes Quick Installation GuideInstallation Initial IP configurationRemote Console Web interfaceDefault settings for all video modes or only the current one When the server is up and running When the sever is deadIntroduction Features Package contents Model No port PS/2 IP-KVM switch Technical specifications Model No Port PS/2 IP-KVM SwitchPort System requirement Model No Ports PS/2 IP-KVM switch Model No Ports PS/2 IP-KVM switchCable diagrams PS/2 Cable VGA Cable AT to PS/2 keyboard adapter OptionalPS/2 to DB9 adapter Optional 16/32 PS/2 KVM over IP switch Step Hardware installationConnecting PS/2 IP-KVM switch to the host system Operation OverviewLocal console Internet OptionalConnecting the External Reset/Power Option PS/2 IP-KVM switch Setup Tool ConfigurationInitial Configuration Initial configuration via Dhcp serverPS/2 IP-KVM switch setup tool AuthenticationIP address Initial configuration via serial consoleIP autoconfiguration Keyboard, Mouse and Video configurationAuto mouse speed and mouse synchronization 3.1 PS/2 IP-KVM switch keyboard settingsRemote Mouse Settings Host system mouse settingsActive Desktop Windows XP Mouse SettingsSingle and Double Mouse Mode Special Mouse DriverUsage PrerequisitesTelnet Internet Explorer displaying the encryption key length Login into the PS/2 IP-KVM switch and logoutMain NavigationRemote Console General description Logout from the PS/2 IP-KVM switchRemote Console Control Bar Main Window16/32 PS/2 KVM over IP switch Exclusive Access Monitor OnlyScaling Local Cursor Mouse HandlingRemote Console Options MenuCursor Video SettingsBrightness PhaseReset this Mode Reset all ModesSoft Keyboard Undo Changes14. Remote Console Confirmation Dialog Remote Console Status LineMenu Options Remote Control KVM ConsoleTelnet Console 16/32 PS/2 KVM over IP switch Users And Groups Change PasswordUser Console KVM Settings15. User Console Settings Part 16/32 PS/2 KVM over IP switch 16. Power Control Power ControlKeyboard/Mouse 17. Keyboard and Mouse SettingsVideo 18. Video SettingsNetwork 4Device Settings16/32 PS/2 KVM over IP switch 20. Dynamic DNS Dynamic DNS16/32 PS/2 KVM over IP switch 22. Device Security SecurityAnti Brute Force Setting Certificate Unblocking users24. SSL Certificate Upload 25. Serial Port Serial Port16/32 PS/2 KVM over IP switch 27. Date and Time Date And Time29. Event Log Event LogBoard Summary Device Information32. Event Log List Reset Functions33. Update Firmware Update Firmware34. Unit Reset Unit ResetTroubleshooting CE Certificate CertificatesPin Assignments Single port PS2 KVM over IP Key Codes Table B.1 Key Names Video Modes

PS/2 IP specifications

The Avocent PS/2 IP KVM (Keyboard, Video, Mouse) switch is a sophisticated solution designed to provide remote access and management capabilities for servers and devices located in data centers or remote locations. As IT environments grow increasingly complex, the need for seamless and efficient management tools becomes essential. The Avocent PS/2 IP addresses this need by integrating high-end features and technologies that streamline operation and enhance productivity.

One of the standout features of the Avocent PS/2 IP is its ability to facilitate secure, remote access to connected devices through an IP network. This enables administrators to control servers and troubleshoot issues from virtually anywhere, eliminating the need to be physically present in the server room. The system supports multiple simultaneous user sessions, allowing multiple administrators to connect and manage devices at the same time, which is crucial for teamwork in large IT environments.

In terms of security, the Avocent PS/2 IP employs robust authentication mechanisms, including user-level access control and encrypted remote sessions. This ensures that only authorized personnel can access sensitive systems, significantly reducing the risk of unauthorized access or data breaches.

The Avocent PS/2 IP is designed to support a wide range of operating systems and server hardware, making it an extremely versatile solution for diverse IT infrastructures. It is compatible with various PS/2 devices and incorporates advanced video quality technologies to deliver high-definition video output, ensuring that administrators receive a clear and accurate representation of the connected systems.

Additionally, the device features built-in monitoring and alerting capabilities. These functionalities allow IT teams to keep track of device status, receive notifications of potential issues, and proactively address problems before they escalate into major outages. The ease of integration with existing management software also enhances its effectiveness.

Another significant characteristic of the Avocent PS/2 IP is its scalability. Organizations can easily expand their KVM infrastructure as their needs grow, allowing for the addition of more servers or devices without requiring a complete system overhaul. This flexibility makes it a cost-effective choice for businesses aiming to future-proof their IT operations.

In conclusion, the Avocent PS/2 IP KVM switch combines advanced remote access capabilities, strong security features, and broad compatibility, making it an essential tool for efficient IT management in today’s fast-paced technological landscape. Its design focuses on enhancing productivity and minimizing downtime, proving beneficial for organizations seeking streamlined operations and superior control over their server environments.
Top Page Image Contents