125 | APC Battery Management System specification

Battery Management System

USER’S GUIDE

®

consequently a higher level of security than the public key used in Method 1 (This longer encryption key is also used in Method 2.)

–The server certificate that you upload to the Management Card enables SSL to authenticate that data are being received from and sent to the correct Management Card. This provides an extra level of security beyond the encryption of the user name, password, and transmitted data.

–The browser matches the digital signature on the server certificate that you uploaded to the Management Card with the signature on the CA root certificate that is already in the browser’s certificate cache to provide additional protection from unauthorized access.

•Disadvantages:

–Setup requires the extra step of requesting a signed root certificate from a Certificate Authority.

–An external Certificate Authority may charge a fee for providing signed certificates.

125

Image 132

APC Battery Management System manual 125

Contents

Contents Battery Management System Menu Data Logging Web interface Using the APC Security Wizard Alarms Index Features of the System Introduction Battery Management Capabilities System capacity Battery management features Network Management Features Network Connection Access DescriptionSupported network management applications Supported Web browsers Initial Setup Configuring TCP/IP settingsGetting Started Useful terms Accessing the User Interfaces Access ProceduresAccess priorities among the interfaces Access priority for logging on Web interface Control console interface Keystrokes Actions Battery Management System Snmp interface Password-protected Accounts Account types and access How to recover from a lost password Battery Management System Watchdog Features Resetting the network timerNetwork interface watchdog mechanism Battery Management Main ScreenGeneral system information Battery Manager III APP The version of the application APP Battery System and Device Manager Menus Displaying data and alarms Alarm Alarms reported Data causing the alarm Category Web interface Control console Select Device Manager Select String Details Viewing details on alarms Web interface example Interpreting alarm details Category Details DiagnosticsProblem Charger alarms Management Controller alarms Battery Management System Configuration menu Temperature Configuration Calibration menu Select Modbus from the Battery System menu ModbusSelect Device Manager A spreadsheet .\doc\en\AP9920MBRegMap xx.xls Reset Discharge Voltages Reset Charge Current Deviation Benchmark Access Restrictions and Menu Options AccessNetwork Menu Menu options Option Settings TCP/IP Battery Management System Battery Management System Battery Management System DNS Ping utility control console FTP Server Telnet/SSH Battery Management System Option Description Telnet SSH Server Configuration Configuration Key, and the SSH server is not accessible during that timeSSH User Host Key File Apply Console, choose Advanced SSH Configuration and then Host Key Setting Definition Snmp Use the Email option to do the following Syslog Severe is mapped to Critical Informational is mapped to Info Battery Management System Web/SSL Battery Management System Web/SSL Network Configuration Name and Password settings Http//171.215.12.1145000 SSL Server Configuration Advanced SSL Configuration SSL Server Certificate System can take up to 5 minutes to create this certificate SSL server is not available during that time Parameter Description Organization O and Organizational Unit OU The name Battery Management System Purpose and access System Menu Radius User Manager Users, device for Device Manager users, and readonly forRead-Only User Radius Radius Setting Definition Access TimeoutPrimary Server Primary Server Secret Administrator Device Manager Read-Only User Identification Date & Time Setting Definition TCP/IP to Defaults OTE WIth Boot mode set to Dhcp & Bootp , its defaultTools Action Definition Battery Management System Preferences Web interface Xmodem Setting Definition User Links Links Web interfaceAPC’s Web Site , Testdrive Demo , and APC Monitoring About System control console Event-related Menus Overview Menu options Event Log Logged events Accessing the log How to use FTP or SCP to retrieve log files Scp username@hostnameoripaddressdata txt./data.txt Ftpdel event.txt or Ftpdel data.txt Actions Option Web interface only Enabling and disabling event actionsSeverity levels of events Event Log action Email action Related topics Recipients Option Trap ReceiversNMS identified by the Receiver NMS IP/Domain Name Setting Description To Address Email RecipientsSend via Generation Email Test Requirements for using Smtp Email Option Smtp settings Setting Description Smtp ServerDNS servers From Address How to Configure Individual Events Options to configure individual eventsEvent list access Event mask settings Event list format Settings for Bits 0 to Severity Bit number Action enabled or disabled for the event Event mask example Event generation Discharge cycle counter Severity levels defined Severity Definition Management Card events Code Severity Description Battery Management System Battery Management System Battery Management System events Battery Management System Data Logging Web interface DescriptionDefine the Discharge and Charge Data Log intervals Configuration Boot Mode Dhcp & Bootp boot process See Management Card settings 103 Dhcp Configuration Settings Management Card settings 105 Cookie Is setting Dhcp response optionsAPC Cookie. Tag 1, Len 4, Data 1APC Boot Mode Transition. Tag 2, Len 1, Data 1/2 See Dhcp & Bootp boot process 108 109 Security Features Planning and implementing security featuresSummary of access methods Security Access Description Snmp Changing default user names and passwords immediately Port assignments User names, passwords, community names Snmp Authentication Authentication versus encryption Encryption Secure SHell SSH and Secure CoPy SCP 116 Secure Sockets Layer SSL 118 Creating and Installing Digital Certificates Purpose Choosing a method for your system AdvantagesDisadvantages 121 122 Disadvantage 124 125 Firewalls Using the APC Security Wizard AuthenticationOverview 128 Files you create for SSL and SSH security 130 Create a Root Certificate & Server Certificates Summary Procedure \Program Files\American Power Conversion\APC Security Wizard 133 134 135 Scp cert.p15 apc@156.205.6.185\sec\cert.p15 Create a Server Certificate and Signing Request 138 139 Cer or .crt file 141 Create an SSH Host Key 143 Scp cert.p15 apc@156.205.6.185\sec\hostkey.p15 Summary of the procedure Retrieving and Exporting the .ini file Contents of the .ini file Detailed procedures NTPEnable=enabled Ftp put filename.ini Event and its error messages Event text Description Messages in config.ini Errors generated by overridden values Using the Device IP Configuration Wizard Purpose configure basic TCP/IP settings Purpose and RequirementsSystem requirements Install the Wizard Download the wizard Configure the basic TCP/IP settings remotely Use the WizardLaunch the Wizard Select Remotely over the network, and click Next Configure or reconfigure the TCP/IP settings locally Select Locally through the serial port, and click Next File Transfers Upgrading Firmware Firmware definedBenefits of upgrading firmware See Firmware files Battery Management System Obtain the latest firmware version Firmware files Battery Management System Firmware file transfer methods \cd\apc Apchw02aos264.bin Apchw02app260.bin Ftp open 150.250.6.10 Ftp put apchw02aos264.bin AOS module of apchw02aos264.bin 166 167 Verifying Upgrades and Updates Last Transfer Result codesCode Description Alarms Fault Alarm CriteriaFault Fault Criteria Alarm Relay and LED Operation Situation/Condition Alarm Relay Status LEDs Troubleshooting Access problems Battery Management System Management CardProblem Solution Management Card Browsers Snmp issues Battery Management System Management Card Query the MIB mconfigTrapReceiverTable OIDs to Warranty and Service Limited warrantyWarranty limitations Product Information Obtaining service service contracts Life-Support Policy General policyExamples of life-support devices About menu option Access Index Bootp Dhcp Facility Syslog setting File transfers 158 Management controller Smtp Snmp Telnet Xmodem APC Worldwide Customer Support Copyright