Avocent PS/2 KVM manual Security settings, SSL Certificate Management

Page 26

Single port PS2 KVM over IP

 

Figure 5.8: Security settings

 

 

Parameter

Description

Force HTTPS

If this option is enabled access to the web front-end is only possible using

 

an HTTPS connection. PS/2 KVM over IP switch won’t listen on the

 

HTTP port for incoming connections. In case you want to create your own

 

SSL certificate that is used to identify this PS/2 KVM over IP switch refer

 

to Section 5.4.1.1.

KVM encryption

This option controls the encryption of the RFB protocol, the protocol used

 

by the Remote Console to transmit the screen data to the administrator

 

machine and keyboard and mouse data back to the host.

 

If set to ‘Off’ no encryption will be used.

 

If set to ‘Try’ the applet tries to make an encrypted connection. In case

 

connection establishment fails for any reason an unencrypted connection

 

will be used.

 

If set to ‘Force’ the applet tries to make an encrypted connection. An error

 

will be reported in case connection establishment fails.

 

Table 5.3: Security parameters

5.4.1.1 SSL Certificate Management

PS/2 KVM over IP switch uses the SSL protocol for any encrypted network traffic between itself and a connected client. During connection establishment, PS/2 KVM over IP switch has to expose its identity to a client using a cryptographic certificate. Upon delivery, this certificate is the same for all PS/2 KVM over IP switches ever produced and certainly won’t match the network configurations that will be applied to the devices by its user. The certificate’s underlying secrete (private) key is also used for securing the SSL handshake. Hence, this is a security risk (but far better than no encryption at all).

However, it is possible to generate and install a new certificate that is unique for a particular device. In order to do that, PS/2 KVM over IP switch is able to generate a new cryptographic key and the associated so called Certificate Signing Request that needs to be certified by a so called certification authority (CA). A certification authority verifies that you are who you claim you are and signs and issues a SSL certificate to you.

The following steps are necessary to create and install a PS/2 KVM over IP switch SSL certificate:

1.Create a SSL Certificate Signing Request using the panel shown in Figure 5.9 (Security Settings -> SSL Settings -> Create your own SSL certificate). You need to fill out a number of fields that are explained above. Once this is done, click ‘Create CSR’ which will initiate the

Page 25 Page 27
Image 26
Page 25 Page 27
Contents USER’S Manual RevTable of Contents Troubleshooting PIN Assigments Certificates PS/2 KVM over IP hardware installation Quick Installation GuideInstallation Initial IP configurationWeb interface Remote ConsoleSingle port PS2 KVM over IP When the server is up and running IntroductionWhen the server is dead FeaturesSingle port PS/2 KVM over IP Switch Package contentsTechnical specifications Model No VGA Cable Cable diagrams PS/2 CableSystem requirement Model No AT to PS/2 keyboard adapter OptionalStep Hardware installationOperation Overview Connecting the External Reset/Power Option Initial Configuration ConfigurationConnecting Ethernet Initial configuration via Dhcp serverMouse, Keyboard and Video configuration Initial configuration via serial interfaceIP autoconfiguration Host system mouse settingsUsage PrerequisitesLogin into PS/2 KVM over IP switch and logout Internet Explorer showing the encryption key lengthMain Screen Single port PS2 KVM over IP Logout from PS/2 KVM over IP switch Remote Console Show Remote ConsoleCtrl Alt Description of Remote Console OptionsSingle port PS2 KVM over IP 3 PS/2 KVM over IP switch Mouse Synchronization Introduction Auto mouse speed and mouse synchronizationVideo Settings through the HTML-Frontend Single and Double Mouse ModeVideo settings Limitations of the mouse synchronizationVideo Settings through the remote console PC SettingSSL Settings Security settings SSL Certificate ManagementOrganization Common nameOrganizational unit Locality/CityState/Province Challenge PasswordMouse / Keyboard Settings Host Interface CountryUSB Mouse Type Mouse Mode -Fixed mouse speedEnable local video port Noise filterUser select box User Specific SettingsVideo quality and speed Remote Console TypeNetwork Settings Primary DNS Server IP address IP auto configurationGateway IP address Secondary DNS Server IP addressTelnet port Disable Enterprise ManagementHttp port Bandwidth limitationSingle port PS2 KVM over IP Inline power module Serial SettingsConfiguration login ModemSerial line speed Modem SettingsUser Settings Modem Init StringExisting user PasswordConfirm password User nameMaintenance features 5.8.2.1 Event Log Maintenance1 PS/2 KVM over IP switch Board Summary Event Log Settings Internal Log Smtp LogLog Event Assignments Snmp LogNFS Log Date/Time Setting Update FirmwareSingle port PS2 KVM over IP Cls Access via TelnetHelp LogoutTroubleshooting TerminalCertificates CE CertificatePin Assignments Single port PS2 KVM over IP Key Codes Table C.1 Key Names

PS/2 KVM specifications

The Avocent PS/2 KVM switch is a versatile, cost-effective solution designed to enable users to manage multiple computers from a single keyboard, mouse, and monitor. With its robust design and array of advanced features, the KVM switch simplifies the task of accessing various servers and workstations while providing significant flexibility and ease of use.

One of the main features of the Avocent PS/2 KVM is its ability to support multiple connections, typically allowing users to manage anywhere from two to 16 computers simultaneously. This is particularly beneficial in data centers and server rooms where space and resources are limited. Users can seamlessly switch between connected devices using simple keystrokes or a designated button on the KVM switch, which enhances productivity and streamlines operations.

The technology behind the Avocent PS/2 KVM switch includes advanced signal processing, ensuring high-quality video output and keyboard/mouse responsiveness. These switches are compatible with standard PS/2 connections, making them a reliable choice for legacy systems and environments where PS/2 interfaces are still prevalent. The switches also feature built-in video circuitry that enhances resolution and clarity, allowing users to maintain optimal visual experiences even when managing multiple computers.

Another noteworthy aspect of the Avocent PS/2 KVM switch is its support for various operating systems, including Windows, Linux, and Unix. This versatility allows IT professionals to utilize the KVM across different platforms, ensuring compatibility with diverse computing environments. The KVM switch is designed to minimize downtime, featuring hot-plug capabilities that allow users to add or remove computers without having to power down the entire system.

Security is a prime concern in today's digital landscape, and the Avocent PS/2 KVM switch addresses this with advanced built-in security features. Users have the option to set up password protection, restricting access to authorized personnel only. This is particularly important in sensitive environments where data protection is crucial.

Furthermore, the reliable construction of these KVM switches contributes to their long-lasting performance. Designed for continuous use in demanding environments, the Avocent PS/2 KVM switch promises durability and functionality, making it an invaluable asset for both small offices and large enterprise settings.

In summary, the Avocent PS/2 KVM switch stands out for its flexibility, advanced technology, security features, and reliable performance, making it an essential tool for anyone needing to manage multiple systems efficiently.
Top Page Image Contents