APC AP7900 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of APC AP7900, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of APC AP7900 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of APC AP7900. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of APC AP7900 should contain:
- informations concerning technical data of APC AP7900
- name of the manufacturer and a year of construction of the APC AP7900 item
- rules of operation, control and maintenance of the APC AP7900 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of APC AP7900 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of APC AP7900, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the APC service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of APC AP7900.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the APC AP7900 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    ® USER’S GUIDE Switched Rack PDU Contents I Introducti on -- 1 Prod uct D escr iption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Access Pr oced ures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 How to Re cover From a L ost Passwor d . . . . . . . . . . . . . . . . . . . . . 6 Upgrading Firm[...]

  • Page 2

    ® USER’S GUIDE Switched Rack PDU II Data Me nu (Web Int erface Only) -- 69 Log Opti on . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 Configuration Option . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70 Network Me nu -- 71 Intr odu ction . . . . . . . . . . . . . . . . . . . . . . . . . . . . [...]

  • Page 3

    ® USER’S GUIDE Switched Rack PDU III How to Export Configuration Settings -- 153 Retrieving and Exporting the .ini File . . . . . . . . . . . . . . . . . . . . 153 The Upl oad Ev ent a nd Er ror Message s . . . . . . . . . . . . . . . . . . . 158 Using the APC Device IP Configuration Wizard . . . . . . . . . . . . . . 160 File Transfers -- 161 I[...]

  • Page 4

    ® USER’S GUIDE Switched Rack PDU 1 Intr oduction Pr oduct Description Featur es of the Switched Rack PDU The APC ® Switched Rack Power Distribution Unit (PDU) is a stand-alone, network-manageable de vice that provide s current monitoring and a llows programmable control of eight, sixteen, o r twenty-four power outlets (depending on the mo del).[...]

  • Page 5

    ® USER’S GUIDE Switched Rack PDU 2 • Four levels of user acce ss accounts—Administrator , Device Manager , Read Only User , and Outlet Use r • Event and data logging—the even t log is accessible by T elnet, Secure CoPy (SCP), File Transfer Protocol (FTP), serial conne ction, or Web browser (using HTTPS ac cess with SSL, or using HTTP acc[...]

  • Page 6

    ® USER’S GUIDE Switched Rack PDU 3 Access Pr ocedur es Overview The Switched Rack PDU has two internal i nterfaces (control console and Web interface) that allow you to manage the Rack PDU. The SNMP interface also allows you to us e an SNMP browser with th e PowerNet ® Manag ement Information Base ( MIB) to manage t he Rack PDU. Access priority[...]

  • Page 7

    ® USER’S GUIDE Switched Rack PDU 4 T ypes of user accounts The Rack PDU has four levels of access (A dministrator , Devic e Manager , Read-Only User , and Outlet Use r), all of which are protected by password and user name requirem ents. • An Administrator can us e all of the mana gement menus available in the control console and the Web inter[...]

  • Page 8

    ® USER’S GUIDE Switched Rack PDU 5 Y ou must use the Web interface to conf igure values for th e Read-Only User , and you must us e the control console to configure values for an O utlet User .[...]

  • Page 9

    ® USER’S GUIDE Switched Rack PDU 6 How to Recover Fr om a Lost Passwor d Y ou can use a local co mputer , a computer that connects to the Rack PDU or other device through the serial port to access the control conso le. 1. Select a serial port at th e local computer , and disable an y service that uses that port. 2. Connect the serial cable (990-[...]

  • Page 10

    ® USER’S GUIDE Switched Rack PDU 7 7. From the Control Console menu, select Sy stem , then User Manager . 8. Select Administrator , and chan ge the U ser Name and Password settings, both of which are now defined as apc . 9. Press C TRL -C , log off, reconnect any serial cable you d isconnected, and restart any service you disabled .[...]

  • Page 11

    ® USER’S GUIDE Switched Rack PDU 8 Upgrading Firmwar e thr ough a Serial Connection Y ou can use a local co mputer that conn ect s to the Rack PDU through the serial port on the front panel of the unit. 1. Select a serial port at th e local computer , and disable an y service which uses that port. 2. Use the supplied serial c able (940-0144) to [...]

  • Page 12

    ® USER’S GUIDE Switched Rack PDU 9 9. In the terminal program, send the file usin g the XMODEM protocol. When the transfer finish es, the console will prompt you to restore th e baud rate to normal. The Rack PDU will restart when the do wnload is complet e. Cautio n Do not interrupt the dow nload. Upgrading the firmware will not interfe re with [...]

  • Page 13

    ® USER’S GUIDE Switched Rack PDU 10 Fr ont Panel Single-phase Thr ee-phase Three-phase Switched R ack PDUs have o ne of the following two fro nt panels:[...]

  • Page 14

    ® USER’S GUIDE Switched Rack PDU 11 Ite m Function  Load Indicator LED Identifies overlo ad and warn ing conditions for the displayed ph ase or bank. See Load indicato r LED .  Input Selector On 3-phase models, press the input selector to monitor the current of the next phase or bank. For either 1 - or 3-phase u nits, press and hold the in[...]

  • Page 15

    ® USER’S GUIDE Switched Rack PDU 12 Link-RX /TX (10/ 100) LE D This LED indicates the n etwork status.  Digital Display Displays the curren t (amps) for the phase o r bank indicated by the illumi nated Load Indica tor LED. On 3-phase units, the Digital Display will cycle through the phases or banks, displayin g the current for each for 3 seco[...]

  • Page 16

    ® USER’S GUIDE Switched Rack PDU 13 Status LED This LED indicates the n etwork status of the Rack PDU . Load indicator LED The load indicator LED identifies overload and warning conditions for the displayed phas e or bank. Condition Descriptio n Off The Rack PDU has no power . Solid Green Th e Rack PDU has valid TCP/IP settings. Flashing Green T[...]

  • Page 17

    ® USER’S GUIDE Switched Rack PDU 14 Wa t c h d o g F e a t u r e s Overview T o detect int ernal problems and reco ver from unant icip ated inputs, the Rack PDU uses internal, syste m-wide watchdog mechanisms. When it restarts itself to recover from an internal proble m, a System: W armst art event is recorded in the event lo g. Network inte rfa[...]

  • Page 18

    ® USER’S GUIDE Switched Rack PDU 15 Contr ol Console How to Log On Overview Y ou can use either a l ocal (serial) conne ction, or a remote (T elnet o r SSH) connection to access th e control console . Use case-sensitive U ser Name and Password entries to log on (by default, apc and apc f or an Administrato r , or device and apc for a Device Mana[...]

  • Page 19

    ® USER’S GUIDE Switched Rack PDU 16 Remote access to the cont r ol console Y ou can access the co ntrol console thro ugh T elnet or Secure SH ell (SSH), depending on which is enabled. (An A dministrator can enable th ese access methods through the T elnet/SSH op tion of the Net work menu.) By default, T elnet is enabl ed. Enabling SSH automa tic[...]

  • Page 20

    ® USER’S GUIDE Switched Rack PDU 17 Local access to the contr o l consol e Y ou can use a local co mputer that conn ect s to the Rack PDU through the serial port on the front panel of the unit. 1. Select a serial port at th e local computer , and disable an y service which uses that port. 2. Use the supplied serial c able (940-0144) to connect t[...]

  • Page 21

    ® USER’S GUIDE Switched Rack PDU 18 Main Scr een Example main scr e en The main screen that is dis played when you lo g on to the control console of a Rack PDU: User Na me : apc Passwor d : *** America n Po wer Co nver sion Net work Manag emen t Card AOS v2 .6.4 (c) Copyr ig ht 200 2 Al l Ri gh ts Res er ve d Rack PD U AP P v2.6.6 ------- ---- -[...]

  • Page 22

    ® USER’S GUIDE Switched Rack PDU 19 Infor matio n an d sta tus fi elds Main scr e en info rmat ion fie lds. • T wo fields iden tify the A PC operating system (AOS) and a pplication (APP) firmware ve rsions. The appl ication firmware uses a nam e that identifies the ty pe of device that conne ct s to the network. In the Example main sc reen , t[...]

  • Page 23

    ® USER’S GUIDE Switched Rack PDU 20 Main scr een status fields. •A Stat field rep orts the Rack PDU status. Stat : P+ N+ A+ • A Rack PDU mo del and name field reports the status of the Rack P DU. For example: Switched Rack PDU: Communication Established P+ The APC operating system (AOS) is functioning properly . N+ The n etwork is functioni [...]

  • Page 24

    ® USER’S GUIDE Switched Rack PDU 21 Contr ol Console Menus Menu stru ctur e The menus in the contr ol console list opt ions by number and name . T o use an option, type the co rresponding numb er and press E NTER , the n follow any on-screen instructio ns. For menus that allow yo u to change a se tting, you must use the Accept Changes option to [...]

  • Page 25

    ® USER’S GUIDE Switched Rack PDU 22 Main menu The main control consol e menu has optio ns that provide access to the management features of the control con sole: 1- Device Manager 2- Network 3- System 4- Logout s Dev ice Manag er opt ion This option accesses th e Device Manage r menu. Select the comp onents you want to manage fro m this menu. T [...]

  • Page 26

    ® USER’S GUIDE Switched Rack PDU 23 Network op tion T o do any of t he following tasks, see Network Menu : • Configure the TCP/IP se ttings for the Ra ck PDU or , when the Rack PDU will obtain its TCP/IP settings from a serv er , configure the settings for the type of server (D HCP or BOOTP) to be used. • Use the Ping utility . • Define se[...]

  • Page 27

    ® USER’S GUIDE Switched Rack PDU 24 We b I n t e r f a c e How to Log On Overview Y ou can use the DNS name or System IP address of the Switched Rack PDU for the URL addres s of the Web interface. Use your case-sensitive u ser name and password settin gs to log on. The default user name differs by account typ e: • apc for an Administrator • [...]

  • Page 28

    ® USER’S GUIDE Switched Rack PDU 25 Supported W eb br owsers As your browser , you can use Mi crosoft ® Internet Explorer (IE) 5.0 (and higher) or Ne tscape ® 4.0.8 (and higher , exce pt Net scape 6. x ) to acc ess the Rack PDU through its Web interface. Other commonly a vailable browsers also may work but have not been fully te sted by APC. D[...]

  • Page 29

    ® USER’S GUIDE Switched Rack PDU 26 URL addr ess formats T ype the Rack PDU’s DNS name or IP address in t he W eb browser ’s URL address field and p ress E NTER . E xcept when you spe cify a non-def ault web server port in Internet E xplorer , http:// or https:// is automatically added by the browser . • For a DNS name of W eb1, the entry [...]

  • Page 30

    ® USER’S GUIDE Switched Rack PDU 27 Summar y Page When you log on to the Web interface at the Switched Rack PDU , the status view is at the right side o f the screen, the quick status ta b is at the upper right, and the navigatio n menu is at the lef t. Status The St atus view has th ree sections: • The Device St atus se ction reports any acti[...]

  • Page 31

    ® USER’S GUIDE Switched Rack PDU 28 Quick status tab The quick status tab is displayed at the upper rig ht on every page in the Web interface. The tab shows active alarms a nd warnings and a link to the online help. Click the help icon to access the online help for the displa yed page. Click the green “device operating norm ally” icon to ret[...]

  • Page 32

    ® USER’S GUIDE Switched Rack PDU 29 Navigation Menu Overview On the Web interface, the navi gation menu (left frame) has the followin g elements: • IP address of the Rack PDU • Menus to manage the Rack PDU and its components: – Switched Rack PD U menu wi th Configuration and Schedul ing as options – Outlet s menu with Contro l , Configur[...]

  • Page 33

    ® USER’S GUIDE Switched Rack PDU 30 Selecting a menu to perform a task • T o do the follo wing, see Switched Rack P DU Settings : – Configure the overload and low load thre sholds for each phase o r bank. – Configure the Overlo ad Outlet Restric tion for each phase or bank. – Set the Name , Location , and Coldstart Delay for the Rack PDU[...]

  • Page 34

    ® USER’S GUIDE Switched Rack PDU 31 • T o do the follo wing, see Network Menu : – Configure new TCP/IP s ettings for the Ra ck PDU. – Identify the Domain Nam e System (DNS) S erver , test its network connection, and enab le or disable DNS Reverse Lookup Event Logging (which logs the doma in name of the device associated with each event). ?[...]

  • Page 35

    ® USER’S GUIDE Switched Rack PDU 32 Links menu Provides three user-defi nable URL link op tions. By default, these lin ks access the following AP C Web p age s: • APC’ s Web Site accesses the A PC home page. • T estdrive Demo accesse s a demonstration page where you ca n use samples of APC Web-enabled pr oducts. • APC Monitoring a ccesse[...]

  • Page 36

    ® USER’S GUIDE Switched Rack PDU 33 Device and Outlet Management Menus How to Configur e and Contr ol Outlet Gr oups Outlet gr oup terminology An outlet group consists of outlets that are logically linked togethe r on the same Switched Rack PD U. Outlets that are in an outle t group turn on, turn off, and reboot in a synchronized mann er , i.e.,[...]

  • Page 37

    ® USER’S GUIDE Switched Rack PDU 34 Purpose and benefits of outlet gr oups By using groups of synchronized ou tlets on Switched Rack PDUs, y ou can ensure that outlets turn on, turn off, and reboot in a synchronized ma nner . Synchronizing control gr oup actions throu gh outlet groups provides the following benefits. • Synchronized shutdown an[...]

  • Page 38

    ® USER’S GUIDE Switched Rack PDU 35 System r e quir ements for outlet gr oups T o set up and use synchronized outlet c ontrol groups: • Y ou need a 10/100B ase-T TCP/IP net work, with an Ethernet hu b or switch that has a powe r source not share d by the computers or ot her devices being synchron ized. • If outlets groups are to be synchroni[...]

  • Page 39

    ® USER’S GUIDE Switched Rack PDU 36 Rules for configuring outlet gr oups For a system that uses o utlet groups, the following rule s apply: • A Switched Rack PDU can have more tha n one outlet group, but an outlet can belong to o nly one outlet gr oup. • A local outlet group, wh ich has no globa l outlet, must consist of tw o or more outlets[...]

  • Page 40

    ® USER’S GUIDE Switched Rack PDU 37 How to enable outlet gr oups From the Outlets menu in the Web interface, select Outlet G roup s , configure the following parameters, and click A pply . Enable cr eation of outlet gr o ups. Enable support for global outlet groups (linked gr ou ps). How to cr eate a local outlet gr oup (W eb interface) 1. From [...]

  • Page 41

    ® USER’S GUIDE Switched Rack PDU 38 How to cr eate multiple global outlet gr oups (W eb int erface) T o set up multip le global outlet groups that link to ou tlet groups on other Switched Rack PDUs: 1. From the Outlets menu in the Web interface, select Outlet G roup s . 2. Make sure outlet groups are enabled and that the Multicast p arameters (n[...]

  • Page 42

    ® USER’S GUIDE Switched Rack PDU 39 T y pical outlet gr oup configurations The following configurat ion shows two Sw itched Rack PDUs, each wi th eight outlet groups. Each outlet gro up consists of a single global outlet. Each outlet group  on the first Switched Rack PDU is linked to the outlet group  in the same loc ation on the seco nd S[...]

  • Page 43

    ® USER’S GUIDE Switched Rack PDU 40 The following configurat ion shows three s et s of synchr onized outlets. Global outlets are shown in black. Ou tlet groups are enclosed in re d rectangles.  These four global outlet groups synchronize a total of 19 outlets.  These two global outlet groups synchronize 6 outlets, 2 in one group and 4 in t[...]

  • Page 44

    ® USER’S GUIDE Switched Rack PDU 41 V erify your setup and configur ation for gl obal outlet gr o ups T o ensure that your setup meets all system requiremen ts for outlet group and that you have con figured the outle t groups correctly , sele ct Outlet Group s from the Outlet s menu in the Web interface t o view the groups and their connections:[...]

  • Page 45

    ® USER’S GUIDE Switched Rack PDU 42 Outlet Settings for Outlets a nd Outlet Gr ou ps How to initiate a contro l action We b i n t e r f a c e . T o control the outlets on your Switched R ack PDU 1. Select Outlets , and then Control on the navigation menu . 2. Mark the check-boxes fo r each individual outlet or outlet group to control, or select [...]

  • Page 46

    ® USER’S GUIDE Switched Rack PDU 43 Control a c tions you can select. t Opti on Descript ion No Action (Web interface only) Do nothing. On Imme diate Apply p ower to the sele cted outlets. On De layed Apply power to ea ch se lected out let ac cording t o its value for Power On De lay . † Off Im mediate Remove power from the se lected outlets. [...]

  • Page 47

    ® USER’S GUIDE Switched Rack PDU 44 How to configur e outlet settings and outlet na me Settings that you can configur e. Th e following settings are av ailable in both the Web interface and control con sole unless othe rwise indicated: Setting Description Power On De lay Set the num ber of sec onds that the Rack PDU waits af ter a command is iss[...]

  • Page 48

    ® USER’S GUIDE Switched Rack PDU 45 We b I n t e r f a c e . T o co nfigure the outle t settings or outlet names , select Configuration on the Out let s menu, and click the Configure button in the Outlet Settings section o r in the Outlet Na me Configuration section. • Configure outlet setting s in the top sect ion of the next screen: – Sele[...]

  • Page 49

    ® USER’S GUIDE Switched Rack PDU 46 Switched Rack PDU Settings Configur e L oad Thr eshold s We b i n t e r f a c e . 1. Select Switched Rack P DU from the navi gation menu. 2. Click Configure in the Loa d Management section. 3. S et Ov erload Alarm Threshold , Near Overl oad W arning Thresh old , Low Load W arni ng Threshold , and Overlo ad Out[...]

  • Page 50

    ® USER’S GUIDE Switched Rack PDU 47 How to configur e Device Settings We b i n t e r f a c e . Se lect Configuration on the Switched Rack P DU menu. Then, under Device Settings, click th e Configure butto n and co nfigure the Name and Location fields for the Rack PD U, and set the Coldst art Delay . Control console. 1. Select Outlet Control/Con [...]

  • Page 51

    ® USER’S GUIDE Switched Rack PDU 48 Power Supply Status (co ntr ol cons ole only) Select Power Supply Status from the Device Manager menu to d isplay the status of the power supplies of the Switched Rac k PDU. Setting Description Name Set th e name of the Rack PDU. Location Set the location of the Rack PDU. Coldstart Delay The time that the Swit[...]

  • Page 52

    ® USER’S GUIDE Switched Rack PDU 49 Scheduling Outlet Actions (W eb Interface Only) Actions you can schedule For any outlets you select, you ca n schedule any of the following actions to occur daily; at intervals o f one, two, four , or eight weeks; o r only once. T o config ure values for Power On Delay , Power Off D elay , a nd Reboot Duration[...]

  • Page 53

    ® USER’S GUIDE Switched Rack PDU 50 Off D elayed Remove po wer from each selected outlet according to its value for Power Off Delay . † Reboot PDU Immediate Remove power from each selected outlet. Then apply power to each of these outlets according to its value for Rebo ot Dur atio n . † Reboot PDU Delayed Remove power from each selected out[...]

  • Page 54

    ® USER’S GUIDE Switched Rack PDU 51 How to schedule an outlet event 1. From the menus o f the Web interface, sele ct Switched R ack PDU and then Scheduli ng . 2. On the Outlet Sche duling page, select how often the event will occur: Daily , Weekly , or One-Time . 3. On the scheduling page, in the Name of event text box, replace the default name,[...]

  • Page 55

    ® USER’S GUIDE Switched Rack PDU 52 How to edit, disable, enable, or delete an out let event 1. From the menus o f the Web interface, sele ct Switched R ack PDU and then Scheduli ng . 2. In the event list in the Summary section of the Outlet Sc heduling page, click on the name of the eve nt. 3. On the Scheduled Eve nt Det ails page, you can do a[...]

  • Page 56

    ® USER’S GUIDE Switched Rack PDU 53 Event-Related Menus Intr od uction Overview The Events menu provides access to the options that you use to do the following tasks: • Access the event log • Define the acti ons to be taken when an event occu rs, based on the severity level of that eve nt: – Event logging – Syslog message notifica tion ?[...]

  • Page 57

    ® USER’S GUIDE Switched Rack PDU 54 In the control console, access the availa ble events-related options as follows: • Use the Ema il option in the Netw ork menu to define the SMTP serv er and e-mail recipients. • Use the SNMP option in the Network men u to define the SNMP tra p receivers. • Use C TRL -L to access the event lo g from any m[...]

  • Page 58

    ® USER’S GUIDE Switched Rack PDU 55 Event Log Overview The Rack PDU supports event-logging for all embedded management card application firmware mod ules. T o record an d display embedded management card and Rack PDU events, use any of the following to view the event log: • Web interface • Control console • FTP •S C P[...]

  • Page 59

    ® USER’S GUIDE Switched Rack PDU 56 Logged events By default, any event which causes an SNM P trap will be logged, exce pt for SNMP authent ication failures. Ad ditionally , the Rack PDU will log its abnormal internal syste m events. However , you can use the Actio ns option in the Web interface’s Event s menu to d isable the loggin g of event[...]

  • Page 60

    ® USER’S GUIDE Switched Rack PDU 57 How to use F TP or SCP to r etrieve a log file If you have Administrato r or Device Manag er access, you can use SCP or FTP to retrieve a tab-delineated eve nt log file ( event. txt ) or data log file ( data.txt ) that you can import into a spreadsheet app lication. • The file reports all of the eve nts or d[...]

  • Page 61

    ® USER’S GUIDE Switched Rack PDU 58 Secure CoPy (S CP). T o use SCP to retrieve the e vent.txt file, use the following comman d: scp username@hosthame_or_ip_address :event.txt ./event.txt T o use SCP to retrieve the data.txt file, use t he following comm and: scp username@hosthame_or_ip_address :data.txt ./data.txt File T ransfer Pr otocol (F TP[...]

  • Page 62

    ® USER’S GUIDE Switched Rack PDU 59 3. Use the get com mand to transmit the text version of the ev ent or data log to your local drive. ftp>get event.txt or ftp>get data.txt 4. Y ou can use the del command to clear the contents of the ev ent or data log. ftp>del event.txt or ftp>del data.txt – If you clear the data log, a Delete d [...]

  • Page 63

    ® USER’S GUIDE Switched Rack PDU 60 Event Actions (W eb Interface Only) Overview The Actions option is a vailable only on th e W eb interface’s Event s menu. This option allows you to select which actions will occu r for events that have a specified severity leve l: • Event Log selects which severity levels cause an event to be reco rded in [...]

  • Page 64

    ® USER’S GUIDE Switched Rack PDU 61 Severity levels Except for some System (embedded management card) events that do not have a severity level, eve nts are assigned a default se verity level based on their seriousness: • Informational: Indicates an event that re quires no action, such as a notification of a return from an abnormal condition. ?[...]

  • Page 65

    ® USER’S GUIDE Switched Rack PDU 62 Syslog action By default, the Syslog action is enable d for all events that have a severity level. However , before you can use this feature to send S yslog messages when events occur , you mu st configure it. SNMP traps action By default, the SNMP T raps action is enabled for all even ts that have a severity [...]

  • Page 66

    ® USER’S GUIDE Switched Rack PDU 63 Event Recipients Overview The Web interface and control c onsole both have option s that allow you to define up to four trap receivers and up to four e-mail addresses to be used when an event occurs that has SNMP tra p s or e-mail enabled. T rap Receiver settings T o access the T rap Re ceiver se ttings that a[...]

  • Page 67

    ® USER’S GUIDE Switched Rack PDU 64 E-mail Featur e Overview Y ou can use the Simple Mail Transfer Protocol (SMTP) to send e-mail to up to four recipients when an event occ urs. T o use the e-m ail feature, you must defin e the following s ettings: • The IP addresses of the primary and se condary Domain Name System (DNS) servers • The DNS na[...]

  • Page 68

    ® USER’S GUIDE Switched Rack PDU 65 DNS servers The Rack PDU cannot send any e-mail messages unless the IP address of the primary DNS server is defined. The Rack PDU will wait a maximum of 15 se conds for a response from the primary or (if specified) the secondary DNS server . If the Rac k PDU does not receive a response within that time, e -mai[...]

  • Page 69

    ® USER’S GUIDE Switched Rack PDU 66 In the Web interface, use the Recipients option in the Events me nu or the Configure the Email rec ipient s lin k in the “Email Con figuration” page to identify up to four e-ma il recipients. Use the Email T est option to send a test message to a conf igured recipient. In the control console, us e the Emai[...]

  • Page 70

    ® USER’S GUIDE Switched Rack PDU 67 SMTP Server Selects one of the following methods for routing e-mail: • Through the SMTP server provided with the Rack PDU (the recommended option, Local ) . This option ensures that the e-mail is sent before the 20-second time-out for the Rack PDU, and, if necessary , is retried several time s. Also do one o[...]

  • Page 71

    ® USER’S GUIDE Switched Rack PDU 68 How to Configur e Individual Events Event List page The Actions option in th e Events menu opens the “Event Action Configuration” page on the Web interface. Use the Details button in this page to access a complete list of th e events that can be reported by your Switched Rack PDU. Each event is identified [...]

  • Page 72

    ® USER’S GUIDE Switched Rack PDU 69 Data Menu (W eb Interface Only) Log Option Use this option to acce ss a log that store s information about the S witched Rack PDU: • Iout: The power being o utput by the Rac k PDU. • Ioutmax: The maximum p ower output by th e Rack PDU since its output power was last re corded. • Ioutmin: The minimum powe[...]

  • Page 73

    ® USER’S GUIDE Switched Rack PDU 70 Configuration Option Use this option to acce ss the “Data Log Configuration ” p age. which reports how much data can be stor ed in the data log. If you change the Log Interval setting, which defin es how often data will be sampled and recorded in the data log, the report updates based on the n ew setting. [...]

  • Page 74

    ® USER’S GUIDE Switched Rack PDU 71 Network Menu Intr od uction Overview Use the Network menu to do the followin g t asks: • Define TCP/IP settings, including DHCP o r BOOTP server settings, when one of those typ es of servers is us ed to provide the require d TCP/IP values • Use the Ping utility • Define and display sett ings that affect [...]

  • Page 75

    ® USER’S GUIDE Switched Rack PDU 72 Menu options Unless noted, the following opt ions are available in the control console and Web interface: • TCP/IP • DNS • Send DNS Query (Web interface) • Ping utility (control conso le only) • FTP Server • T elnet/SSH • SNMP • Email • Syslog • Web/SSL (W eb /SSL/TLS in the control console[...]

  • Page 76

    ® USER’S GUIDE Switched Rack PDU 73 Option Settings TCP/IP This option accesses th e following setting s: • A Boot mode setting se lects the method used to de fine the TCP/IP values that a R ack PDU needs to opera te on the network : – The IP address of the Rack PDU – The subnet mask value – The IP address of the default gateway • Adva[...]

  • Page 77

    ® USER’S GUIDE Switched Rack PDU 74 Boot mode setting. This setting s elects which method will be use d to define the Rack PDU’s TCP/IP settings wh enever the Rack PDU turns on, resets, or restart s: • Manual : Three settings ( System IP , Subnet Mask , and Default Gateway ), whic h are available only wh en Manual is us ed to define the need[...]

  • Page 78

    ® USER’S GUIDE Switched Rack PDU 75 Rack PDU will add this do main name when only a hostname is entered. •A Port Speed setting is availab le for all Boot mode selection s to define the TCP/IP port ’s communication speed ( A uto-negotiate , by default). • Three settings are availa ble for all Boot mo de selections, except Manual , to identi[...]

  • Page 79

    ® USER’S GUIDE Switched Rack PDU 76 – On Retry Failure : Defines what TCP/IP settings will be used by the Rack PDU when it fails to discover a BOOT P server ( Use Prior Settings , by default). DNS Configur e Domain Name System Settings fields. Use these fields to define the IP addresse s of the primary a nd secondary Domain Nam e System (DNS) [...]

  • Page 80

    ® USER’S GUIDE Switched Rack PDU 77 –F o r Host , iden tify the URL –F o r IP , identify the IP address –F o r FQDN , ide ntify the fully qualified dom ain name, format ted as myserver . mydomain .com . –F o r MX , identify the Mail Exchange add ress • Enable or disable Rev erse DNS Lookup , which is disabled by def ault. Enable this f[...]

  • Page 81

    ® USER’S GUIDE Switched Rack PDU 78 Use the Port setting to identify the TCP/IP port that the FTP server uses for communications with the Rack PDU. The d efault Port setting is 21 . Y ou can change the Port setting to an y unused port from 5000 to 32768 to enhance the protectio n provided by Us er Name and Password settings. Y ou must then use a[...]

  • Page 82

    ® USER’S GUIDE Switched Rack PDU 79 – Do not enable both versions of SS H unless you require that both be activated at the same t ime. (Security prot ocols use extensive processing pow er .) • Configure the port sett ings for T elnet an d SSH. • Select one or more data encryption algorithms for SSH versio n 1, SSH version 2, or both. • I[...]

  • Page 83

    ® USER’S GUIDE Switched Rack PDU 80 If you are using SSH vers ion 2, expect a n oticeable delay when logging on to the control console o f the Rack PDU. Although the delay is no t long, it can be mist aken for a problem because there is no explanatory message. Option Des cription T elnet/S SH Network Configuration Access Enables or disables the [...]

  • Page 84

    ® USER’S GUIDE Switched Rack PDU 81 T elnet/S SH Port Config uration T elne t Port Identifies the TCP/IP port used for communications by T elnet with the Rack PDU. The default is 23 . You can change the Port setting to the number of any unused port between 5000 and 3 2768 to enha nce the prote ction provided b y User Name a nd Passwor d settings[...]

  • Page 85

    ® USER’S GUIDE Switched Rack PDU 82 SSH Serv er Config uration SSHv1 Encryption Algorithms Enables or disables DES , and displays the status (always enabled) of Blowfish , two encryption algorithms (b lock ciphers) compatible with SSH, ver sion 1, cli ents . • DES : The key length is 56 bit s. • Blowfish : The key length is 128 bits. Y ou ca[...]

  • Page 86

    ® USER’S GUIDE Switched Rack PDU 83 SSH User Host Key File S tatus: The Statu s field Indicates the st atus of the host key ( priv at e key). In the control console, you display host key stat us by selecting Ad vanced SSH Configur ation . • SSH Disabled: No h ost key in use : No host key has b een transferred to the Rack PDU, or a host key has[...]

  • Page 87

    ® USER’S GUIDE Switched Rack PDU 84 SNMP An Access option (the Settings option in the control console) en ables (by default) or disables SNM P . When SNMP is enabled, the Ac cess Control settings allow you to control how each of the four available SNMP channels is used. SSH Host Key Fingerpri nt SSH v1: Displays the SSH version 1 fingerprint for[...]

  • Page 88

    ® USER’S GUIDE Switched Rack PDU 85 Email Use this option to defin e two SMTP settin gs ( SMTP Server and Fro m Address ) used by the e -mail feature of th e Switched Rack PDU. NMS IP/ Domain Name Limits access to the NMS s pecified by a domain name or to the NMSs specified by the format used for the IP a ddress: • A domain name allows only th[...]

  • Page 89

    ® USER’S GUIDE Switched Rack PDU 86 An Access option (the Settings option in the control console) en ables (by default) or disables SNM P . When SNMP is enabled, the Ac cess Control settings allow you to control how each of the four available SNMP channels is used. Syslog By default, the Rack PD U can send mess ages to up to four Syslog servers [...]

  • Page 90

    ® USER’S GUIDE Switched Rack PDU 87 Syslog test (W eb interface). This option allows you to send a test message to the Syslog servers configured in the Syslog S erver section. Syslog Server Settings Server IP/ Domain Name Uses specific IP addresses o r domai n na mes to identify whi ch of up to four servers will receive Syslog messages sent by t[...]

  • Page 91

    ® USER’S GUIDE Switched Rack PDU 88 1. For Priority , select the priority to assign to the test messag e. 2. For T e st Message, use any text that meets the format describ ed in Syslog message format — for exa mple, APC: Test message . 3. Click Apply to have the Rack PDU send a Syslog message that use s the defined Prior ity and T est M essage[...]

  • Page 92

    ® USER’S GUIDE Switched Rack PDU 89 • Configure the ports that each of th e two protocols wil l use. • Select the encryption c iphers that SSL w ill use. • Identify whether a serve r certificate is installed on the Rack PDU. If a certificate has been cre ated with the AP C Security Wizard but is no t installed: – In the Web interface, br[...]

  • Page 93

    ® USER’S GUIDE Switched Rack PDU 90 Opti on Descri ption Web/SSL Ne twork Con figuration Access Enables or disables the access met hod selected in Proto col Mode . Protocol Mode Choose one of the following: • HTTP: User name s, p asswords, and data are transmitt ed without encryption. • HTTPS (SSL/TLS): User names, pa sswords, and data are t[...]

  • Page 94

    ® USER’S GUIDE Switched Rack PDU 91 HTTP/HTT PS Po rt Configur ation HTTP Port Identifies the TCP/IP port used for communications by HTTP with the Rack PDU. The default is 80 . Y o u can change the Port setting to the number of any unused port between 5000 and 32768 to enhance the prot ection provid ed by User Name and Password settings. Y o u m[...]

  • Page 95

    ® USER’S GUIDE Switched Rack PDU 92 SSL/TSL Server Configura tion CipherSuite Enables or disab les the fo ll owing SSL encryption ciphers and hash algorithms. (T o access the se options in the control con sole, choose Web/ SSL , th en Advanced SSL/TLS Configur ation .) N OTE : All of these encryption cipher s and hash algorithms use the RSA publ[...]

  • Page 96

    ® USER’S GUIDE Switched Rack PDU 93 SSL/TLS Server Certificate S tatus: The Stat us field indicates whether a server certificate is installed. (T o display the status in the control console, choose W eb/SSL/TLS , t hen Advanced SSL /TLS Configuration .) • Not inst alled : No certificate is installed on the Rack PDU. N OTE : If you install a ce[...]

  • Page 97

    ® USER’S GUIDE Switched Rack PDU 94 Parameter Descr iption Current Certifi cate Details Issued to: Common Name (CN) : The IP Address or DNS name of the Rack PDU, except if the server certificate w as generated by default by the Rack PDU. For a default server certif icate, the Common Name (CN) field displays the Rack PDU’ s serial number . N OT[...]

  • Page 98

    ® USER’S GUIDE Switched Rack PDU 95 WA P Use this option to disab le (the default) o r enable the Wireless App lication Protocol (W AP). W AP is a standard for providing cellular phones, p ag ers and other handheld d evices with secure access to e-mail and text- based Web p age s. W AP runs on a ll major wireless networks an d is device- indepen[...]

  • Page 99

    ® USER’S GUIDE Switched Rack PDU 96 System Menu Intr od uction Overview Use the System menu to do the followin g t asks: • Configure system identif ication, date and time settings, and Administrator , R ead-Only User , Device manager , and Outle t User access • Centrally administer remot e access for each Rack PDU by using RADIUS (Remote Aut[...]

  • Page 100

    ® USER’S GUIDE Switched Rack PDU 97 Menu options Unless noted, the follow ing menu option s are available in the con trol console and Web interface: • User Manager • Outlet User Manager • RADIUS • Identification • Date & T ime • T ools • Links (Web interface) • Modem (not supported) • About System The About System o ption i[...]

  • Page 101

    ® USER’S GUIDE Switched Rack PDU 98 Option Settings User Manager Use this option to defin e access values s hared by the control con sole and Web interface. Setting Definition V alues aff ectin g all user s Auto Logout The numb er of minutes (3, by default) before a user is automatically logged off because of inactivity . Sep arate val ues fo r [...]

  • Page 102

    ® USER’S GUIDE Switched Rack PDU 99 Outlet User Mana ger Use the Outlet User Manager option to s et up user accou nt s that hav e access only to specified outlets. We b i n t e r f a c e . Ch oose a user name, or cho ose Add New Use r to edit accounts. Setting Definition User Name The name of this user account. N OTE : A user name in orang e ind[...]

  • Page 103

    ® USER’S GUIDE Switched Rack PDU 100 Control console. Select System from the Contro l Console menu. Then select Manage Outlet Users from the Use r Manager menu. Setting Definition Add Outlet User Account or Edit Outlet User Accoun t User Name: The user nam e for logging on to this user account. Password: Case-sensitive password for this user acc[...]

  • Page 104

    ® USER’S GUIDE Switched Rack PDU 101 RADIUS RADIUS (Remote Authentica tion Dial-In User Service) is an au thentication, authorization, and accoun ting service. APC sup ports the authentication and authorization functions of RADIUS. Use th is option to centrally adm inister remote access for each Rack PDU. When a user accesses t he Switched Rac k[...]

  • Page 105

    ® USER’S GUIDE Switched Rack PDU 102 Configuring the R ack PDU. RADIUS Setting Definition Access Local Only : RADIU S is disabled. Local authentication is enabled . RADIUS then Loca l : RADIUS is enabled, and local authentication is enabled. Authentica tion is requested from the RADIUS server first; loca l auth enticat ion is u sed only if RADIU[...]

  • Page 106

    ® USER’S GUIDE Switched Rack PDU 103 Configuring the R ADIUS server . Y ou m ust configure your RADIUS server to work with the R ack PDU. The follo wing example shows how t o configure a RADIUS serv er for use with a R ack PDU. APC supports authentication and au thorization of use rs by various RADIUS serve rs and does not recomm end a specific [...]

  • Page 107

    ® USER’S GUIDE Switched Rack PDU 104 3. V endor specifi c attributes (VSA) can also be used. This re quires some dictionary entries. VSAs take precedence over standard RADIUS attributes. Example: (RADIUS, dictio nary .apc) Example: (RADIUS users file with VSAs) For more informatio n on user perm ission levels, see T ypes of user accounts . # # d[...]

  • Page 108

    ® USER’S GUIDE Switched Rack PDU 105 Identifica tion Use this option to def ine the System Name , Contact , a nd Location values used by the SNMP age nt for the Rack P DU. The option’s settings provide the values used for the MIB-II s ysName , sysContact , and sysLocation Object Identifications (O IDs). . Date & T im e Use this option to s[...]

  • Page 109

    ® USER’S GUIDE Switched Rack PDU 106 Synchr onize with Netw ork T ime Pr ot ocol (NTP) Server . Use this option on the Web interface, or Network Time Protocol (NTP) on the control console, to hav e an NTP Server a utomatically update the Date and Tim e settings for the S witched Rack PDU . In the control conso le, use the NTP C lient option to e[...]

  • Page 110

    ® USER’S GUIDE Switched Rack PDU 107 To o l s Use this option to perfo rm the following a ctions. Action Definition No Action (W eb Interface only) No change to the Rack PDU. Reboot Mana gement Inte rfa ce Restart s the user interface of the Rack PDU . Reset to Defaults Resets all configuration sett ings. This option will reset the TCP / IP sett[...]

  • Page 111

    ® USER’S GUIDE Switched Rack PDU 108 Links (W eb interface) Use this option to modif y the links to APC Web p ages . . Modem (not supported) This option, shown only in the control co nsole, is not supported fo r Rack PDUs. About System This option identifies th e following hardwa re information for the Rac k PDU: Model Number , Serial N umber , [...]

  • Page 112

    ® USER’S GUIDE Switched Rack PDU 109 This screen also displays the Name , Ve r s i o n , Date , and Tim e for the Application Module and AOS. This information is set at the factory and cannot be changed. The control console also includes fields fo r system Flash T ype , and Ty p e , Sector , and CRC16 for each mo dule. In the Web interface, exce[...]

  • Page 113

    ® USER’S GUIDE Switched Rack PDU 110 Boot Mode Intr od uction Overview In addition to using a BOOTP server or manual settings, the Sw itched Rack PDU can use a dynamic host configuratio n protocol (DHCP) server to provide the settings tha t it needs to op erate on a TCP/IP networ k. The method used to p rovide the networ k settings for the Rack [...]

  • Page 114

    ® USER’S GUIDE Switched Rack PDU 111 DHCP & BOOTP boo t pr oces s When Boot mode is set to its default DHCP & BO OTP setting, the following occurs when th e Switched Rack PDU is started or reset: 1. The Rack PDU makes up to five requests for it s networ k assignment from any BOOTP server . If a valid BOOTP re sponse is received, the Rack[...]

  • Page 115

    ® USER’S GUIDE Switched Rack PDU 112 DHCP Configuration Settings Switched Rack PDU sett ings The TCP/IP option in th e Network menu of the Web interface and control console accesses the n etwork settings fo r the Switched Rack PDU . Three settings ( Ethernet Port Speed , Host Name , and Doma in Na me ) are available regardless of the T CP/IP opt[...]

  • Page 116

    ® USER’S GUIDE Switched Rack PDU 113 When Boot mode is set to DHCP Only , two options are available: • DHCP Cookie Is in the c ontrol console (or Require vendor specific cookie to accept DHCP Address in the Web interface): By default, this option requires tha t the DHCP respon ses include the APC coo kie in order to be valid. • Retry Then S [...]

  • Page 117

    ® USER’S GUIDE Switched Rack PDU 114 DHCP r esponse option s Each valid DHCP respon se contains options that prov ide the TCP/IP settings that the Switch ed Rack PDU nee ds to operate on a netw ork, and other information that a ffect s the o peration of the R ack PDU. The Rack PDU uses the V endor S pecific Info rmation option (option 43) in a D[...]

  • Page 118

    ® USER’S GUIDE Switched Rack PDU 115 Boot Mode T rans ition. T ag 2, Len 1, Dat a 1/2 This option 43 setting e nables or disable s the Af t er IP Assignment option which, by default, caus es the B oot mode option to use the setting that reflects the server that provided the TCP/IP settings ( DHCP Only or BOOTP Only ): • For a data value of 1, [...]

  • Page 119

    ® USER’S GUIDE Switched Rack PDU 116 TCP/IP opti ons. The Swit ched Rack PDU uses the following options within a valid DHCP respo nse to define its TCP/IP settin gs: • IP Address (from the yi addr field of the D HCP response): Provides the IP address that th e DHCP server is le asing to the Rack PDU. • Subnet Mask (option 1): Provides the su[...]

  • Page 120

    ® USER’S GUIDE Switched Rack PDU 117 Security Security Featur es Planning and implementing secur i ty featur es As a network device tha t passes information across the networ k, the Switched Rack PDU is su bject to the same exposure as other device s on the network. Use the information in th is section to plan and implement the secu rity feature[...]

  • Page 121

    ® USER’S GUIDE Switched Rack PDU 118 SNMP . File transfer pr otocols. Security Access Description Available method s: • Community Name • Domain Name • NMS IP filters • Agent Enable/Disable • 4 access communities with read/write/disable capability The domain name restrict s access only to the NMS as that location, and the NMS IP filters[...]

  • Page 122

    ® USER’S GUIDE Switched Rack PDU 119 We b S e r v e r . RADIUS. Changing default user name s and p assw or ds i mmed iatel y As soon as you comple te the installation and initial co nfiguration of the Rack PDU, immediately ch ange the defau lt user names and passwords. Configuring unique use r names and passwords is esse ntial to establish basic[...]

  • Page 123

    ® USER’S GUIDE Switched Rack PDU 120 Port assignments If a T elnet, FTP , SSH/SCP , or Web/SSL/TLS serv er uses a non-standard port, a user must specif y the port when using the client interface, such as a Web browser . The non -st andard port addres s becomes an ex tra “password,” hiding the server to provid e an additional level of securit[...]

  • Page 124

    ® USER’S GUIDE Switched Rack PDU 121 T o ensure that data and communication between th e Switched Rack PDU and the client interfaces, such as the control console and the Web i nterface, cannot be intercepted , you can provide a greater level of security by using one or more of the follo wing encryption-b ased methods: • For the Web interface, [...]

  • Page 125

    ® USER’S GUIDE Switched Rack PDU 122 Encryption Secur e SHell (SSH) and Secur e CoPy (SCP) The Secure SHell (SSH) protocol provides a secure mechanism to ac cess computer consoles or shells remotely . The protocol authenticates the server (in this case, the Switch ed Rack PDU) and encrypts all transmissions between the SSH clien t and the server[...]

  • Page 126

    ® USER’S GUIDE Switched Rack PDU 123 Secure CoPy (SCP) is a secure file transfe r application that you can use instead of FTP . SCP uses the S SH protocol as the unde rlying transport protocol for encryption o f user names, passwords, and files. • When you ena ble and configure SSH, y ou automatically e nable and configure SCP . No further con[...]

  • Page 127

    ® USER’S GUIDE Switched Rack PDU 124 Secur e Sockets Layer (SS L)/T r ansport Layer Security (TLS) For secure Web communication, you ena ble Secure Socke t s Layer (SSL) and T ransport Layer Security (TLS) by sele cting HTTPS (SSL /TLS) as the protocol mode to use f or access to the Web interface o f the Switched Rack PDU. Hypertext Transfer Pro[...]

  • Page 128

    ® USER’S GUIDE Switched Rack PDU 125 Y ou can use the APC Security Wizard, p rovided on the APC Rack Power Distribution Unit Utility CD that came with you r Rack PDU, to create a certificate signing reque st to an external Certificate Authority , or if you do not want to use an existing C ertificate Authority , you can create an APC roo t certif[...]

  • Page 129

    ® USER’S GUIDE Switched Rack PDU 126 Cr eating and Installing Digital Certificates Purpose For network communicatio n that requires a higher level of security th an password encryption, the Web interface of the Switch ed Rack PDU supports the use of digital certificates with the Secure Soc kets Layer (SSL) protocol. Digital certificates can auth[...]

  • Page 130

    ® USER’S GUIDE Switched Rack PDU 127 Choosing a method for your syst em Using the Secure Sockets Layer (SSL) protocol, you can choose any of the following methods for us ing digital certificates. Method 1: Use the auto-generated default certificate. When you enable SSL, you must reboot the Rack PDU. During rebooting, if n o server certificate ex[...]

  • Page 131

    ® USER’S GUIDE Switched Rack PDU 128 PDU can control access to its W eb int erface by user na me, password, and account type (e.g., Administrator , Devic e Manager , or Read Only U ser ), the browser cannot authenticate what Rack PDU is sending or receiv ing data. – The length of the pub lic key (RSA key) th at is used for encryption when sett[...]

  • Page 132

    ® USER’S GUIDE Switched Rack PDU 129 Method 2: Use the APC Security Wizar d to cr eate a CA certificat e and a server certificate. Y ou use the APC S ecurity Wizard to cr eate two digital certificates: •A CA ro ot certificate (Certificate Authori ty root certificate) that the APC Security Wizard uses to s ign all server certif icates and which[...]

  • Page 133

    ® USER’S GUIDE Switched Rack PDU 130 – The server certificate that y ou upload to the Rack PDU enables SSL to authenticate that d ata are being received from an d sent to the correct Rack PDU. This pr ovides an extra le vel of security beyond the encryption of the u ser name, password, and tran smitted data. – The root certificate that you i[...]

  • Page 134

    ® USER’S GUIDE Switched Rack PDU 131 Method 3: Use the APC Security Wizard to cr eate a certificate-signing r equest to be signed by the r oot certificate of an external Certificate Authority and to cr eate a ser ver certificate. Use the A PC Security Wizard to create a reques t (a .csr f ile) to send to a Certificate A uthority . The Certificat[...]

  • Page 135

    ® USER’S GUIDE Switched Rack PDU 132 – The server certificate that y ou upload to the Rack PDU enables SSL to authenticate that d ata are being received from an d sent to the correct Rack PDU. This pr ovides an extra le vel of security beyond the encryption of the u ser name, password, and tran smitted data. – The browser matches th e digita[...]

  • Page 136

    ® USER’S GUIDE Switched Rack PDU 133 Fir ew alls Although some methods of aut hentication provide a higher level of security than others, complete p rotection from se curity breaches is almost impossible to achieve . Well-configured firewalls are a n essential element in an overall security schem e.[...]

  • Page 137

    ® USER’S GUIDE Switched Rack PDU 134 Using the APC Security Wizar d Overview Authentication Authentication verifie s the iden tity of a user or a netwo rk device (such a s an APC Switched Rack PDU ). Passwords typica lly identify computer users . However , for tra nsactions or comm unications requiring more stringent security methods on the Inte[...]

  • Page 138

    ® USER’S GUIDE Switched Rack PDU 135 Authentication of the s erver (in this case , the Rack PDU) occurs eac h time a connection is made from the brow ser to the server . The browser checks to be sure that the server ’s certificate is signed by a Certificate Autho rity known to the browser . For this a uthentication to occur: • Each Switched [...]

  • Page 139

    ® USER’S GUIDE Switched Rack PDU 136 – A server certificate signe d by a custom CA root certificate also create d with the APC Security W izard. Use this met hod if your company or agency does not have its own Certificate Authority an d you do not want to use an external Cert ificate Authority to sign the server certificate . – A server cert[...]

  • Page 140

    ® USER’S GUIDE Switched Rack PDU 137 Cr eate a Root Certificat e & Server Certificates Summary Use this procedure if yo ur comp any or agency do es not have its own Certificate Authority and you do not want to use a commercial Certificate Authority to si gn your server c ertificates. • Create a CA root certifica te that will be us ed to si[...]

  • Page 141

    ® USER’S GUIDE Switched Rack PDU 138 The pr ocedur e Cr eate the CA r oot certificate. Perform these ste p s. (Click Next to mo ve from screen to screen.) 1. If the APC Security Wiza rd is not already i nst alled on your comp uter , install it by running the installation program APC Security Wizard.exe from the APC Rack PDU Utility CD that came [...]

  • Page 142

    ® USER’S GUIDE Switched Rack PDU 139 7. The last screen verifies t hat the certificate has been created and instructs you on the next tasks. – This screen displays the location and na me of the .p15 fil e that you will use to sign the serve r certificates. – This screen also displays the location and name of the .crt file, which is the CA ro[...]

  • Page 143

    ® USER’S GUIDE Switched Rack PDU 140 Cr eate an SSL Server User Certificate. Perform these steps. (Click Next to move from screen to screen.) 1. On the Windows Star t menu, se lect Programs , then APC Security Wiza rd , to start the Wizard program. 2. On the screen labeled S tep 1, select SSL Server Certificate as th e type of file to cr eate. 3[...]

  • Page 144

    ® USER’S GUIDE Switched Rack PDU 141 7. The last screen verifies t hat the certificate has been created and instructs you on the next task, to load the server certificate to the Switched Rack PDU. It d isplays the locatio n and name of the Serve r Certificate, which has a .p 15 file extension and contains the Rack PDU private key and public ro o[...]

  • Page 145

    ® USER’S GUIDE Switched Rack PDU 142 Cr eate a Server Certificate and Signing Request Summary Use this procedure if yo ur comp any or agency ha s it s own Certificate Authority or if yo u plan to use a commerc ial Certificate Authority to sign your server certif icates. • Create a Certificate Sign ing Request (CSR ).The CSR contains all the in[...]

  • Page 146

    ® USER’S GUIDE Switched Rack PDU 143 2. On the Windows Star t menu, se lect Programs , then APC Security Wiza rd , to start the Wizard program. 3. On the screen labeled “S tep 1,” select Certificate R equest as the type of file to create. 4. Enter a name for the fi le that will contain the Switched Rack PDU’s private key . The file name mu[...]

  • Page 147

    ® USER’S GUIDE Switched Rack PDU 144 8. Send the certificat e signing req uest to an extern al Certificate Authority , either a commercial Certifi cate Authority or , if applicable, a C ertificate Authority managed by your own company or agency . Import the signed certificate. When the external Cert ificate Authority returns the signed certif ic[...]

  • Page 148

    ® USER’S GUIDE Switched Rack PDU 145 7. The last screen verifies t hat the certificate has been created and instructs you on the next task, to load the server certificate to the Switched Rack PDU. It d isplays the locatio n and name of the serve r certificate, which has a .p15 file extension and contains the Rack PDU’s private key and the publ[...]

  • Page 149

    ® USER’S GUIDE Switched Rack PDU 146 Cr eate an SSH Host Key Summary This procedure is optional. If you select SSH encryption, but do not crea te a host key , the Switched Rack PDU generates a 76 8-bit RSA key when it reboots. Host keys for SSH that are c reated with the A PC Security Wizard are 1024-bit RSA keys. • Use the APC Security Wi zar[...]

  • Page 150

    ® USER’S GUIDE Switched Rack PDU 147 the correct host key was uploaded by ve rifying that the fingerprints displayed here match th e SSH fingerprints on the Rac k PDU, as displayed by your SSH c lient program. 7. The last screen verifies t hat the host key has been created and instructs you on the next task, to load the host key to the Switche d[...]

  • Page 151

    ® USER’S GUIDE Switched Rack PDU 148 APC Device IP Configuration Wizar d Purpose and Requir ements Purpose: configur e basic TCP/IP settings Y ou can use the APC Device IP Configuration Wizard to configure the basic TCP/IP settings (IP add ress, subnet mask , and default gateway) o f the following: • Network Management Ca rds • Devices that [...]

  • Page 152

    ® USER’S GUIDE Switched Rack PDU 149 Install the Wizar d Automated installat ion If autorun is enabled on your C D-ROM drive, the installation program start s automatically when you insert the CD. Manual instal lation If autorun is not enabl ed on your CD-RO M drive, run setup.exe in t he Wizard directory on the C D, and follow the on-screen ins[...]

  • Page 153

    ® USER’S GUIDE Switched Rack PDU 150 Use the Wizar d Launch the Wiz ar d The installation creates a shortcut link in the Sta rt menu that you can use to launch the Wizard. Configur e the basic TCP/IP settings r emotely Pr epar e to configur e the set tings. Be fore you run the Wizard, be sure that you have the info rmation you will ne ed during [...]

  • Page 154

    ® USER’S GUIDE Switched Rack PDU 151 Run the Wizar d to perform the configuration. T o discover and configure, over the net work, installed or embedded Ne twork Management Cards that are not configured: 1. From the Star t menu, la unch the Wizard. The Wizard automatically detects the first Network Man agement Card that is not configured. 2. Sele[...]

  • Page 155

    ® USER’S GUIDE Switched Rack PDU 152 Configur e or r econfigur e the TCP/ IP settings locally T o configure a single Network Manageme nt Card through a serial connection: 1. Contact your network administrator to obtain valid TCP/IP settings. 2. Connect the serial conf iguration cable th at came with the Network Management Card or wit h the devic[...]

  • Page 156

    ® USER’S GUIDE Switched Rack PDU 153 How to Export Configuration Settin gs Retrieving and Exporting the .ini File Summary of the pr ocedur e As an Administrator , you can ret rieve a dynamically generated .ini file of a Switched Rack PDU’s current configuration and export tha t file to another Switched Rack PDU or to multiple Switched Rack PDU[...]

  • Page 157

    ® USER’S GUIDE Switched Rack PDU 154 Contents of the .ini file The config.ini file that you retrieve from a Switc hed Rack PDU contains the following: • section headings , which are category names enclosed in brackets ([ ]), and under each sectio n heading, keyw ords, which are labels describing specific Rack PDU settings. • Each keyword is [...]

  • Page 158

    ® USER’S GUIDE Switched Rack PDU 155 Detail ed pr ocedu r es Use the following proced ures to retrieve t he settings of one Switch ed Rack PDU and export them to one or more oth er Switched Rack PDUs. Retrieving. T o set u p and retrieve an .ini file to export: 1. Configure a Rack PDU w ith the settings yo u want to export. 2. Use FTP to retriev[...]

  • Page 159

    ® USER’S GUIDE Switched Rack PDU 156 Customizing. Y ou must customiz e the file to chan ge at least the TCP/IP settings before you exp ort it. 1. Use a text editor to cus tomize the file. – Section headings, keyw ords, and pre-de fined values are not case - sensitive, but s tring values that you defin e are case-sensitive. – Use adjacent quo[...]

  • Page 160

    ® USER’S GUIDE Switched Rack PDU 157 Exporting the file to a single Rack PDU. T o ex port the .ini file to another Switched Rack PDU, use any of the file tr ansfer protocols supporte d by Switched Rack PDUs (incl uding FTP , FTP C lient, SCP , and T FTP). The following example uses FTP: 1. From the folder containing the custo mized .ini file and[...]

  • Page 161

    ® USER’S GUIDE Switched Rack PDU 158 The Upload Event and Err or Messages The event and its err or messages The following system event occurs when the receiving Switched Rack PDU completes using the .in i file to update its settings. Configuration file upload complete, with number valid values This event has no defa ult severity level. If a keyw[...]

  • Page 162

    ® USER’S GUIDE Switched Rack PDU 159 Messages in confi g.ini A feature might not be su pported for the d evice from which you retrieve the configuration settings or m ight not be suppo rted for the device to which y ou export the configuration settings. In this case, the user configurat ion file contains, under the section name fo r that feature[...]

  • Page 163

    ® USER’S GUIDE Switched Rack PDU 160 Using th e APC Device IP C onfiguration Wizar d On Windows operating s ystems, instead o f using the preceding pro cedure for exporting .ini files, yo u can choose to update the basic TCP/IP settings of Rack PDUs by using t he APC Device IP Configuration Wizard. See APC Device IP Configuration Wizard for a de[...]

  • Page 164

    ® USER’S GUIDE Switched Rack PDU 161 File T ransfers Intr oduction Overview The Switched Rack PDU automatically reco gnizes binary firmware files. Each of these files con tains a header and one or mo re Cyclical Redundancy Checks (CR Cs) to ensure tha t the data contained in the file is not corrupted before o r during the trans fer operation. Wh[...]

  • Page 165

    ® USER’S GUIDE Switched Rack PDU 162 Upgrading Firmwar e: Methods and T ools Benefits of upgradin g firmwar e Upgrading the firmware o n the Switched R ack PDU has the following benefits: • New firmware has the latest bug fixes and p erformance improvements. • New features become a vailable for immed iate use. • Keeping the fir mware versi[...]

  • Page 166

    ® USER’S GUIDE Switched Rack PDU 163 Obtain the latest firmwar e version Automated upgrade tool for Microsoft Windows systems. An automated sel f-extracting executable tool combines th e firmware modules that you need to auto mate your upgra des on any supported Win dows operating system • The version of the tool on the APC Rack PDU Utility CD[...]

  • Page 167

    ® USER’S GUIDE Switched Rack PDU 164 Manual upgrad es, primarily for Linux systems. If all computers on yo ur network are running Lin ux, you must upg rade the firmware of your R ack PDUs manually , i.e., by using the separate APC firmware module s (AOS module and application module). Y ou can obtain the individual firmwa re modules you n eed fo[...]

  • Page 168

    ® USER’S GUIDE Switched Rack PDU 165 Firmwar e file transfer methods T o upgrade th e firmware of a Switched Ra ck PDU: • From a networked compu ter running a Mic rosoft Windows operating system, you can use the automated firmware upg rade tool on your CD or downloaded from the APC Web site. • From a networked compu ter on any supp orted ope[...]

  • Page 169

    ® USER’S GUIDE Switched Rack PDU 166 Use F TP or SCP to upgrade one Rack PDU Instructions for usin g F TP . For you to be able to use FTP to upgrade a single Switched Rack PD U over the netwo rk: • The Switched R ack PDU must be connect ed to the network. • The FTP server must be enabled at the Switched Rack PDU. • The Switched Rack PDU mu[...]

  • Page 170

    ® USER’S GUIDE Switched Rack PDU 167 21000 , you would use the following com mand for a Windows FTP client transferring a file t o a Rack PDU with an IP address of 150.250.6.10. ftp> open 150.250.6.10 21000 4. Log on using the Adm inistrator user nam e and password. ( apc is the default for both.) 5. Upgrade the A OS. For example: ftp> bin[...]

  • Page 171

    ® USER’S GUIDE Switched Rack PDU 168 Use F TP or SCP to upgrade multiple Rack PDUs. T o upgrade multip le Switched Rack PDUs usin g an FTP client or using SCP , write a script which automatically perform s the procedure. For FTP , use the steps in Use FTP or SCP to upgrade one R ack PDU . Use XMODEM to upgrade one Rack PDU T o use XMODEM to u pg[...]

  • Page 172

    ® USER’S GUIDE Switched Rack PDU 169 2. Select a serial port at the lo cal computer and d isable any service which uses that port. 3. Connect the smart-sign aling cable tha t came with the Rack P DU to the selected port and to th e serial port at th e Rack PDU. 4. Run a terminal program ( such as HyperT erm inal), and configu re the selected por[...]

  • Page 173

    ® USER’S GUIDE Switched Rack PDU 170 V erifying Upg rades and Updates Overview T o verify that th e firmware upgrade was su ccessful, see the Last T ransfer Result message, availab le through the F TP Server option of the Network menu (in the control con sole only), or use an SNMP GET to the mfiletransferSt atusLas tT ransferResult OID. Last T r[...]

  • Page 174

    ® USER’S GUIDE Switched Rack PDU 171 Pr oduct Information W arranty and Ser vice Limited warranty APC warrants the Switched Rack PDU to be free from d efects in materials and workmanship for a p eriod of two yea rs from the date of purcha se. Its obligation under this wa rranty is limited to rep airing or replacing, at its own sole option, any s[...]

  • Page 175

    ® USER’S GUIDE Switched Rack PDU 172 Obta ining s ervic e T o obtain support for problem s with your Switched Rack PDU: 0 1. Note the serial number a nd date of purc hase. For the serial numb er , see the About System menu op tion or the label on the b ottom of the unit. 2. Contact Customer Support at a pho ne number locate d at the end of this [...]

  • Page 176

    ® USER’S GUIDE Switched Rack PDU 173 Life-Support Po licy General policy American Power Conversion ( APC) does not recomme nd the use of any of its products in the following situations: • In life-support applicatio ns where failure o r malfunction of the APC product can be reasonably e xpected to cause failure of t he life-support device or to[...]

  • Page 177

    ® USER’S GUIDE Switched Rack PDU 174 Index A About S ystem 31 Access FTP Server 77 limiting NMS SNMP access by IP ad- dress 85 securit y options for ea ch interface 11 7 Access setting for RADIUS 102 Access Type setting 85 Actions 6 0 Advanc ed setti ngs Client ID 75, 112 Domain Name 74 , 112 Ethernet Port Speed 112 Host Name 74, 112 On Retry Fa[...]

  • Page 178

    ® USER’S GUIDE Switched Rack PDU 175 navigati ng menus 21 refreshi ng menus 21 Cookie APC 114 Customi zing u ser configur ation f iles 156 D Data log configur ation 70 Log Interval settin g 7 0 using FTP to retrieve 57 data.txt f ile, importing into spreadsheet 57 Date & Time settings 105, 1 06 Delete SSH Host Keys and SSL Certificates 107 D[...]

  • Page 179

    ® USER’S GUIDE Switched Rack PDU 176 with SSL 88 Error me ssages for f irmw are fil e tr ansfe r 170 from overridden val ues during .ini f ile tr ansf er 159 Ethe rnet Por t Speed sett ing 112 Event Log accessing 21 disabling 61 errors from overridden values during .ini f ile tr ansf er 159 using FTP del command 59 using FTP to retrieve 57 event[...]

  • Page 180

    ® USER’S GUIDE Switched Rack PDU 177 ini files, Se e User co nfigur ation f iles Initiato r outlet gr oups 33 IP addr esses of DNS server for e-mai l 64 of tra p receiver s 63 to li mit access to specified NMSs 85 K keywords user configur ation file 154 L Life suppo rt polic y 173 Link (as a n outle t setting) 4 4 Links redirect ing user- defina[...]

  • Page 181

    ® USER’S GUIDE Switched Rack PDU 178 enabling 37 follower 33 global 33 initia tor 33 local 33 purpose and benefit s 34 rule s for conf iguring 36 system requ irements 3 5 typical co nfigurations 39 Outlet Nam e 44 Outlet sett i ngs configur ing 44 controll ing outlet s 42 Outlets global 33 Overr ide keyw ord, in user co nfigur ation file 154 P P[...]

  • Page 182

    ® USER’S GUIDE Switched Rack PDU 179 123 Seco ndar y NTP S erver 10 6 Seco ndary Server for RADIUS 10 2 Secondary Server Secret fo r RADIUS 102 Section headi ngs, user configuration file 154 Secu re CoPy . See SCP. Secure Ha sh Algorit hm (SHA) 92 Secure SHe ll. See SSH. Secure Sockets L a yer. Se e SSL. Secu rity authentic ation authen tication[...]

  • Page 183

    ® USER’S GUIDE Switched Rack PDU 180 authentic ation through di gital certif icates 124 certif icate signi ng requests 12 5 encrypti on ciphers and hash al gorithms 92 Stat us in Web in terface 27 on control console ma in screen 20 Syslog defining Server IP addresses/do m ain names 87 enabling and disa bling 86 Faci lity s ettin g 86 message for[...]

  • Page 184

    ® USER’S GUIDE Switched Rack PDU 181 U Up Time control cons ole main screen 19 Web interf ace 27 Update In terval 106 Upgr ading f i rmwar e without usi ng a utility 1 62 Upload a user config uratio n file 1 07 URL address fo rmats 26 User access identification, c ontrol consol e interface 19 User Class sett i ng 75, 112 User co nfigurat ion f i[...]

  • Page 185

    ® USER’S GUIDE Switched Rack PDU 182 APC W orldwide Customer Support Customer support for th is or any other AP C product is available at n o charge in any of the fo llowing ways: • Visit the APC Web site to access documents in the APC Know ledge Base and to submit cu stomer support req uests. – www .apc.com (Corporate Headquarters) Connect [...]

  • Page 186

    ® USER’S GUIDE Switched Rack PDU 183 Copyright Entire contents © 2005 American Power Conversion. All rig ht s reserved. Reproduction in whole o r in part without permission is p rohibited. APC, the APC logo, InfraS truXure, and Powe rNet are trademarks of American Power Conversion Corporation and may be regis tered in some jurisdictions. All ot[...]