Choosing a method for your system | APC Battery Management System

Battery Management System

USER’S GUIDE

®

Choosing a method for your system

Using the Secure Sockets Layer (SSL) protocol, you can choose any of the following methods for using digital certificates.

Method 1: Use the Battery Management System’s auto-generated

default certificate. When you enable SSL, you must reboot the Management Card in the Battery Management System master controller. During rebooting, if no server certificate exists on the Management Card, the Management Card generates a default server certificate that is self- signed but that you cannot configure.

This method has the following advantages and disadvantages:

•Advantages:

–Before they are transmitted, the user name and password for Battery Management System access and all data to and from the Battery Management System are encrypted.

–You can use this default server certificate to provide encryption- based security while you are setting up either of the other two digital certificate options, or you can continue to use it for the benefits of encryption that SSL provides.

•Disadvantages:

–The Management Card in the Battery Management System master controller takes up to 5 minutes to create this certificate, and the Web interface is not available during that time. (This delay occurs the first time you log on after you enable SSL.)

120

Image 127

APC Battery Management System manual Choosing a method for your system, Advantages, Disadvantages

Contents

Contents Battery Management System Menu Data Logging Web interface Using the APC Security Wizard Alarms Index Introduction Features of the System System capacity Battery Management Capabilities Battery management features Network Connection Access Description Network Management FeaturesSupported network management applications Supported Web browsers Configuring TCP/IP settings Initial SetupGetting Started Useful terms Access priority for logging on Accessing the User InterfacesAccess Procedures Access priorities among the interfaces Web interface Keystrokes Actions Control console interface Battery Management System Snmp interface Account types and access Password-protected Accounts How to recover from a lost password Battery Management System Resetting the network timer Watchdog FeaturesNetwork interface watchdog mechanism Main Screen Battery ManagementGeneral system information Battery Manager III APP The version of the application APP Displaying data and alarms Battery System and Device Manager Menus Web interface Alarm Alarms reported Data causing the alarm Category Select Device Manager Select String Details Control console Web interface example Viewing details on alarms Category Details Diagnostics Interpreting alarm detailsProblem Charger alarms Management Controller alarms Battery Management System Configuration menu Temperature Configuration Calibration menu A spreadsheet .\doc\en\AP9920MBRegMap xx.xls Select Modbus from the Battery System menuModbus Select Device Manager Reset Charge Current Deviation Benchmark Reset Discharge Voltages Menu options Access Restrictions and Menu OptionsAccess Network Menu TCP/IP Option Settings Battery Management System Battery Management System Battery Management System DNS Ping utility control console FTP Server Telnet/SSH Battery Management System Option Description Telnet SSH Server Configuration Apply ConfigurationKey, and the SSH server is not accessible during that time SSH User Host Key File Console, choose Advanced SSH Configuration and then Host Key Snmp Setting Definition Use the Email option to do the following Syslog Severe is mapped to Critical Informational is mapped to Info Battery Management System Web/SSL Battery Management System Web/SSL Network Configuration Http//171.215.12.1145000 Name and Password settings SSL Server Configuration SSL Server Certificate Advanced SSL Configuration SSL server is not available during that time System can take up to 5 minutes to create this certificate Organization O and Organizational Unit OU The name Parameter Description Battery Management System System Menu Purpose and access Radius Users, device for Device Manager users, and readonly for User ManagerRead-Only User Radius Primary Server Secret Radius Setting Definition AccessTimeout Primary Server Administrator Device Manager Read-Only User Date & Time Identification Setting Definition Action Definition TCP/IP to DefaultsOTE WIth Boot mode set to Dhcp & Bootp , its default Tools Battery Management System Xmodem Preferences Web interface Links Web interface Setting Definition User LinksAPC’s Web Site , Testdrive Demo , and APC Monitoring About System control console Overview Event-related Menus Menu options Logged events Event Log Accessing the log How to use FTP or SCP to retrieve log files Scp username@hostnameoripaddressdata txt./data.txt Ftpdel event.txt or Ftpdel data.txt Event Log action Actions Option Web interface onlyEnabling and disabling event actions Severity levels of events Related topics Email action Trap Receivers Recipients OptionNMS identified by the Receiver NMS IP/Domain Name Generation Setting Description To AddressEmail Recipients Send via Email Test Email Option Requirements for using Smtp From Address Smtp settingsSetting Description Smtp Server DNS servers Options to configure individual events How to Configure Individual EventsEvent list access Event list format Event mask settings Bit number Action enabled or disabled for the event Settings for Bits 0 to Severity Event mask example Discharge cycle counter Event generation Severity Definition Severity levels defined Code Severity Description Management Card events Battery Management System Battery Management System Battery Management System events Battery Management System Description Data Logging Web interfaceDefine the Discharge and Charge Data Log intervals Configuration Boot Mode See Management Card settings Dhcp & Bootp boot process 103 Management Card settings Dhcp Configuration Settings 105 Dhcp response options Cookie Is settingAPC Cookie. Tag 1, Len 4, Data 1APC See Dhcp & Bootp boot process Boot Mode Transition. Tag 2, Len 1, Data 1/2 108 109 Security Access Description Security FeaturesPlanning and implementing security features Summary of access methods Snmp Port assignments Changing default user names and passwords immediately User names, passwords, community names Snmp Authentication versus encryption Authentication Secure SHell SSH and Secure CoPy SCP Encryption 116 Secure Sockets Layer SSL 118 Purpose Creating and Installing Digital Certificates Advantages Choosing a method for your systemDisadvantages 121 122 Disadvantage 124 125 Firewalls Authentication Using the APC Security WizardOverview 128 Files you create for SSL and SSH security 130 Summary Create a Root Certificate & Server Certificates \Program Files\American Power Conversion\APC Security Wizard Procedure 133 134 135 Scp cert.p15 apc@156.205.6.185\sec\cert.p15 Create a Server Certificate and Signing Request 138 139 Cer or .crt file 141 Create an SSH Host Key 143 Scp cert.p15 apc@156.205.6.185\sec\hostkey.p15 Retrieving and Exporting the .ini file Summary of the procedure Contents of the .ini file Detailed procedures NTPEnable=enabled Ftp put filename.ini Event text Description Event and its error messages Errors generated by overridden values Messages in config.ini Using the Device IP Configuration Wizard Purpose and Requirements Purpose configure basic TCP/IP settingsSystem requirements Download the wizard Install the Wizard Use the Wizard Configure the basic TCP/IP settings remotelyLaunch the Wizard Select Remotely over the network, and click Next Select Locally through the serial port, and click Next Configure or reconfigure the TCP/IP settings locally File Transfers Firmware defined Upgrading FirmwareBenefits of upgrading firmware Obtain the latest firmware version See Firmware files Battery Management System Firmware files Battery Management System Firmware file transfer methods Apchw02aos264.bin Apchw02app260.bin \cd\apc Ftp put apchw02aos264.bin Ftp open 150.250.6.10 AOS module of apchw02aos264.bin 166 167 Last Transfer Result codes Verifying Upgrades and UpdatesCode Description Fault Criteria AlarmsFault Alarm Criteria Fault Situation/Condition Alarm Relay Status LEDs Alarm Relay and LED Operation Management Card TroubleshootingAccess problems Battery Management System Management Card Problem Solution Browsers Query the MIB mconfigTrapReceiverTable OIDs to Snmp issues Battery Management System Management Card Product Information Warranty and ServiceLimited warranty Warranty limitations Obtaining service service contracts General policy Life-Support PolicyExamples of life-support devices Index About menu option Access Bootp Dhcp Facility Syslog setting File transfers 158 Management controller Smtp Snmp Telnet Xmodem APC Worldwide Customer Support Copyright