Basic Configuration | Western Telematic AFS-16-1 specs

Basic Configuration

5.9.8.2 Viewing LDAP Groups

If you need to examine an existing LDAP group definition, the "View LDAP Groups" function can be used to review the group's parameters and Circuit Access settings.

5.9.8.3. Modifying LDAP Groups

If you need to modify an existing LDAP Group in order to change parameters or circuit access rights, the "Modify LDAP Group" function can be used to reconfigure group parameters. To Modify an existing LDAP Group, access the AFS-16 command mode using a password that permits access to Administrator Level commands. Once you have accessed the Modify LDAP Group menu, use the menu options to redefine parameters in the same manner that is used for the Add LDAP Group menu, as discussed in Section 5.9.8.1.

Note: After you have defined LDAP Group parameters, make certain to save the changes before proceeding. In the Web Browser Interface, click on the "Modify LDAP Group" button to save parameters; in the Text Interface, press the [Esc] key several times until the "Saving Configuration" message is displayed.

5.9.8.4. Deleting LDAP Groups

The Delete LDAP Group function is used to delete LDAP Groups that are no longer needed. To delete an existing LDAP Group, you must access command mode using a password that permits access to Administrator Level commands.

5.9.8.5. LDAP Kerberos Set Up

Kerberos is a network authentication protocol, which provides a secure means of identity verification for users who are communicating via a non-secure network. To display the LDAP Kerberos Set Up menu, you must access command mode using a password that permits access to Administrator Level commands.

The LDAP Kerberos Setup menu allows you to define the following parameters:

•Port: (Default = 88.)

•Realm: (Default = Undefined.)

•Key Distribution Centers (KDC1 through KDC5): (Default = Undefined.)

•Domain Realms 1 through 5: (Default = Undefined.)

5-37

Image 58

Western Telematic AFS-16-1 manual Basic Configuration

Contents

AFS-16-1 Shock Hazard Do Not Enter Lithium Battery Secure Racking Two Power Supply Cables Disconnect Power Table of Contents Basic Configuration Telnet & SSH Functions Upgrading AFS-16 Firmware Command Reference Guide List of Figures Vii Security and Co-Location Features Introduction WTI Management Utility Typographic ConventionsEnvironmental Monitoring and Management Bold Font  Power Switch and on Indicator Dual Power Supply ModuleUnit Description Control Module Control Module Unit Description Circuit Module Circuit Module Getting Started Apply Power to the AFS-16Connect Your PC to the AFS-16 Communicating with the AFS-16 Fallback Switching Fallback Switching Text Interface Fallback Switching Web Browser Interface Connecting the Power Supply Cables Hardware InstallationConnecting the Network Cable Connecting a Local Control Device Connecting an External Modem Optional Circuit Module Set Up Module Set UpA/C/B Connectors Control Module SetUp Communicating with the AFS-16 Unit Basic ConfigurationText Interface Web Browser Interface Access Via PDA Configuration Menus Defining System Parameters Basic Configuration Real Time Clock and Calendar Invalid Access Lockout Feature Log Configuration Web Browser Interface Callback Security Basic Configuration Scripting Options Basic Configuration Command Access Levels User Accounts Granting Circuit Module Access Viewing User Accounts Managing User AccountsAdding User Accounts Basic Configuration Modifying User Accounts Deleting User Accounts Circuit Configuration Circuit Group Directory Viewing Circuit Groups Modifying Circuit Groups Adding Circuit GroupsDeleting Circuit Groups Communication Settings Serial Port ConfigurationSerial Port Configuration Menu 1. RS232 Port Modes Port Mode Parameters Network Configuration Network Port Parameters Network Parameters Basic Configuration IP Security Basic Configuration Except Net/Mask Pairs Static Route Domain Name Server Snmp Access Parameters Snmp Trap Parameters Ldap Parameters Group Membership Value Type Default = DN Basic Configuration Tacacs Parameters Basic Configuration Radius Parameters WTI-Super=2 WTI-Circuit-Access=0101WTI-Group-Access=111000 Example Email Messaging Parameters Restore Configuration Save User Selected Parameters Ping-No-Answer Fallback Switching Adding Ping-No-Answer Profiles Ping-No-Answer Fallback Switching Modifying Ping-No-Answer Profiles Viewing Ping-No-Answer ProfilesDeleting Ping-No-Answer Profiles Alarm Configuration Control Module AUX Connector Output Contacts Output Contacts Over Temperature Alarms Alarm Configuration Configuring the Ping-No-Answer Alarm Ping-No-Answer AlarmDefining Ping-No-Answer IP Addresses Alarm Configuration Invalid Access Lockout Alarm Alarm Configuration Power Cycle Alarm Monitor/Alarm Input Alarm Configuration Monitor Input Level Settings High Low Alarm Configuration Product Status Status ScreensNetwork Status Screen Circuit Status Screen Circuit Group Status Screen Event Logs Audit Log Alarm Log Temperature Log Operation A/B Switching Web Browser InterfaceCircuit Control Screen Web Browser Interface Circuit Group Control Screen Web Browser Interface Operation A/B Switching Text Interface Circuit Status Screen Text Interface TA 1 Enter or /TA Datacenter Enter 2. A/B Switching Commands Text InterfaceTB 2 Enter or /TB Servers Enter TB 1+3+4 Enter +3+4,B Enter B Enter or /T SERVERS,A EnterTA ROUTER,Y or /T 2,B,Y TA 13 Enter Logging Out of Command Mode Manual Operation Enter Telnet & SSH FunctionsSSH Encryption 10-1 Telnet 255.255.255.255 2000 raw Enter Creating an Outbound Telnet ConnectionTelnet ip port raw Enter 10-2 Username Creating an Outbound SSH ConnectionSSH ip -l username Enter SSH 255.255.255.255 -l employee Enter Syslog Messages Configuration11-1 Testing Syslog Configuration 11-2 Snmp Traps 12-1 Testing the Snmp Trap Function 12-2 UserTableuserAccessLevel Account access level AFS-16 Snmp Agent SNMPv3 Authentication and EncryptionConfiguration via Snmp Operation via Snmp Modifying Users Viewing UsersAdding Users Deleting Users Controlling Circuit Groups Circuit Control via SnmpControlling Circuits 13-3 155 Viewing AFS-16 Status via SnmpCircuit Status Unit Environment Status Sending Traps via Snmp 13-5 Setting Up SSL Encryption 14-1 Creating a Self Signed Certificate 14-2 Creating a Signed Certificate 14-3 Downloading the Server Private Key 14-4 Sending Parameters to a File Saving and Restoring Configuration Parameters15-1 Restoring Saved Parameters 15-2 Restoring Previously Saved Parameters 15-3 Upgrading AFS-16 Firmware 16-1 16-2 TA * Enter Command Reference GuideCommand Conventions 17-1 Command Summary 17-2 Display Circuit Group Status Screen Command SetDisplay Circuit Status Screen Display Network Status Display Site ID / Unit Information Exit Command ModeLog Functions Connect Toggle to B Position Toggle to a PositionTA 2+3,Y Enter TB 2+3,Y Enter +3,A,Y Enter Toggle CommandSet All Circuits to Default States Send Parameters to File Telnet Outbound Telnet Unlock Port Invalid Access LockoutSend SSH Key Format /TELNET ip port raw Enter Set System Parameters SSH Outbound SSHFormat /SSH ip -l username Enter Set Serial Port Parameters Circuit Group Parameters PNA Configure Ping-No-Answer FunctionAlarm Configuration Parameters Network Port Parameters Upgrade Firmware Reboot System DefaultTest Test Network Parameters Appendix A. Interface Description When connectedWhen not connected Serial Port RS232 Physical/Environmental Appendix B. SpecificationsSwitching Apx-2 Appendix C. Customer Service Apx-3 Trademarks and Copyrights Used in this Manual Trademark and Copyright InformationApx-4 Index Index-1 Index-2 Radius CLI Index-3 Ldap Index-4 Tacacs Index-5 NTP Index-6 Index-7 Snmp Index-8 SNMPV3