English dropdown-ico

APC Battery Management System manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of APC Battery Management System, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of APC Battery Management System one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of APC Battery Management System. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of APC Battery Management System should contain:
- informations concerning technical data of APC Battery Management System
- name of the manufacturer and a year of construction of the APC Battery Management System item
- rules of operation, control and maintenance of the APC Battery Management System item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of APC Battery Management System alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of APC Battery Management System, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the APC service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of APC Battery Management System.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the APC Battery Management System item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    ® USER’S GUIDE Battery Management System Contents I Features of th e System -- 1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Battery Manageme nt Capabilities . . . . . . . . . . . . . . . . . . . . . . . . . 2 System capacity 2 Battery management features 3 Netwo rk Manag emen t Featur es . . . . [...]

  • Page 2

    ® USER’S GUIDE Battery Management System II Battery Management -- 17 Main Screen . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 General system info rmation 17 Battery System and Devi ce Manager Me nus . . . . . . . . . . . . . . . . . 19 Displaying data an d alarms 19 Viewing details on alar ms 22 Interpret ing al[...]

  • Page 3

    ® USER’S GUIDE Battery Management System III System Me nu -- 61 Access Res trictions and Me nu Options . . . . . . . . . . . . . . . . . . . . 61 Purpose and acc ess 61 Menu options 62 Option Setting s . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63 User Manager 63 RADIUS 64 Identific ation 67 Date & Time 67 Tools [...]

  • Page 4

    ® USER’S GUIDE Battery Management System IV Email Option . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86 Requirements for using SMT P 86 DNS servers 87 SMTP settings 87 How to Co nfigure Individual E vents . . . . . . . . . . . . . . . . . . . . . . 88 Options to confi gure individua l events 88 Event list access 8[...]

  • Page 5

    ® USER’S GUIDE Battery Management System V Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114 Authenticat ion versus encryption 114 Encryp tion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115 Secure SHell (SSH) and Secur e CoPy (SCP) 115 Secure Sockets Layer (SSL) 117 Creati[...]

  • Page 6

    ® USER’S GUIDE Battery Management System VI APC Device IP Config uration Wiza rd -- 153 Purpose and Requi rements . . . . . . . . . . . . . . . . . . . . . . . . . . . 153 Purpose: config ure basic TCP/IP settings 153 System requirements 153 Install the Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154 Download the w[...]

  • Page 7

    ® USER’S GUIDE Battery Management System VII Troubleshooting -- 171 Management Card . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171 Access probl ems (Battery Management Sy stem Management Card) 171 SNMP issues (Battery Management Syst em Management Card) 173 Product Informat ion -- 174 Limited war ranty 174 Warranty limitat[...]

  • Page 8

    ® USER’S GUIDE Battery Management System 1 Featur es of the System Intr od uction The APC Battery Manag ement System pr ovides automated monito ring of large battery systems that supp ly backup for 120-, 240-, an d 480-volt power systems. The Battery Ma nagement Syste m provides battery manage ment for nominal 2 V , 4 V , 8 V , or 12 V lead-acid[...]

  • Page 9

    ® USER’S GUIDE Battery Management System 2 Battery Management Capabilities System capacity Using the APC Batter y Management System, you can monito r and maintain the batteries of one ma ster unit and up to five expansion units, each unit handling up to 64 indi vidual batteries. Five battery manageme nt expansion units can be connected in a grou[...]

  • Page 10

    ® USER’S GUIDE Battery Management System 3 Battery management featur es The system enables you to do the follow ing: • Identify weak or defective batteries that need replacement. • Optimize the charge state of batterie s within a string b y automated charging of individual b atteries with a low er voltage. Charging these batteries cause s th[...]

  • Page 11

    ® USER’S GUIDE Battery Management System 4 Network Management Featur es Supported network ma nagement applications An APC Network Manag ement Card (AP95 17SQD) is built into the m aster controller (AP9921X) tha t provides the n etwork connection. It is th e first battery manag ement unit in a group of one master unit and up to 5 expansion units [...]

  • Page 12

    ® USER’S GUIDE Battery Management System 5 Supported W eb br owsers As your browser , you can use Mi crosoft ® Internet Explorer (IE) 5. x or Netscape ® 7. x to access the Battery Management Sys tem through its Web interface. Other common ly available brows ers also may work but have not been fully tested by AP C. Data verification, the event [...]

  • Page 13

    ® USER’S GUIDE Battery Management System 6 Getting Started Initial Setup Config uring TCP/IP se ttings Y ou m ust define three TCP/IP s ettings for the Battery Ma nagement System’s built-in Management Card before the Battery Man agement System can be manage d over the netwo rk: • IP address of the Batt ery Management System • Subnet mask ?[...]

  • Page 14

    ® USER’S GUIDE Battery Management System 7 ‘ Useful terms Batteries : Sing le or multi-cell lead-acid or n ickel-cadmium blocks that a re connected together in series to create a string. Battery Management Sy stem : One comple te Battery Management System that is c omposed of one master u nit and up to five expansion units. Battery Management [...]

  • Page 15

    ® USER’S GUIDE Battery Management System 8 Accessing the User Interfaces Access Pr ocedur es Access priorities among the interfaces After the Battery Management Syste m network setting s are configured (as described in the Installation and Quick S tart Manual ), you can use the Battery Management S ystem remotely thro ugh its W eb , control cons[...]

  • Page 16

    ® USER’S GUIDE Battery Management System 9 We b i n t e r f a c e T o access and log on t o the Battery Manageme nt System’s W eb interface: 1. In the URL Location fie ld, do one of th e following. – If the Battery Man agement Syste m port is set to the default value o f 80, type http:// followed by the Battery Ma nagement System IP address.[...]

  • Page 17

    ® USER’S GUIDE Battery Management System 10 Contr ol console interface Y ou c an manage the Battery M anagement Syst em through the control console, using either T e lnet or the RS-232/485 p ort. Structur e. The control console provides menu options to manage the Battery Management S ystem over the ne twork. T o use an option, type it s n umber [...]

  • Page 18

    ® USER’S GUIDE Battery Management System 11 Local access to the contr ol console. Y ou can use a local compute r , a computer that connects to the Batt ery Management System through the serial port, to access the control console. 1. Select a serial port at the lo cal computer and d isable any service which uses that port. 2. Connect the serial c[...]

  • Page 19

    ® USER’S GUIDE Battery Management System 12 Te l n e t . T o access the Battery Ma nagement System’s control console using T elnet: 1. Use the command telnet and the IP address of th e Battery Management System. F or example: telnet 170.215.6.49 2. Press the E NTER key to open the T elnet session and display the U ser Name prompt. Logg ing on.[...]

  • Page 20

    ® USER’S GUIDE Battery Management System 13 Passwor d-pr otected Accounts Account ty pes and acces s The Battery Manageme nt System has th ree types of accounts, Administrator , D evice Manager an d Read-Only User . • The Administrator account can use all the menus in the cont rol console and in the Web interface. The default password and user[...]

  • Page 21

    ® USER’S GUIDE Battery Management System 14 How to r e cover from a lost passw or d Y ou c an use a local computer t hat connects to the Battery M anagement System through the se rial port on the rea r of the master unit. 1. Select a serial port at a local computer , and disable any s ervice that uses the port. 2. Reset the DIP switch #6 and #7 [...]

  • Page 22

    ® USER’S GUIDE Battery Management System 15 5. Press E NTER , repeatedly if necessary , to d isplay the User Name prompt. If you are unab le to display the User Name prompt, verify the following: – The serial port is not in use by another a pplication. – The terminal settings are correct as specif ied in step 4. – The correct cable is bein[...]

  • Page 23

    ® USER’S GUIDE Battery Management System 16 Wa t c h d o g F e a t u r e s Network inte rface watchdog mechanism The master unit’s built-in Management Ca rd implements internal watchdo g mechanisms to protect itself from beco ming inaccessible over the network. For example, if the man agement card do es not receive any netwo rk traf fic for 9.[...]

  • Page 24

    ® USER’S GUIDE Battery Management System 17 Batter y Management Main Scr een General system informat ion When you log on to th e Web interface or control console , the main screen provides basic informatio n about the Bat tery Management System: Information displayed in both interfaces. Both the Web and control console interfaces displa y the fo[...]

  • Page 25

    ® USER’S GUIDE Battery Management System 18 Information displayed in the contr ol console on ly . The ma in screen of the control console disp lays the following additional information. • V ersion inform ation : (In the Web interface, select About Sy stem from the Help m enu.) – Battery Manager III APP : The version of t he application (APP)[...]

  • Page 26

    ® USER’S GUIDE Battery Management System 19 Battery System and Device Manager Menus Displaying data and alarms Y ou ca n display battery information a nd view alarms and their causes in the Web interface, control console, or display interface. T o configure values related to the batteries, such as changing the thres hold values that define whe t[...]

  • Page 27

    ® USER’S GUIDE Battery Management System 20 We b i n t e r f a c e . Alarm category Alarms re ported Data c ausing the alarm Environment Ambient T emperature The air temperature i n the battery environment Charger S tring V oltage The voltage (VDC) of an entire battery strin g, discharge, and high pilot temperature. Batteries Discharge T e st Th[...]

  • Page 28

    ® USER’S GUIDE Battery Management System 21 Control console. Y ou c an use the control conso le to display battery inform ation and alarms. T o display battery data and active a larms: 1. On the main screen of the control conso le, identify the battery strin g about which you want to display informat ion. For each battery string a hyphen (-) ind[...]

  • Page 29

    ® USER’S GUIDE Battery Management System 22 Viewing details on alarms Y ou can display detailed information on active alarms f or any battery string . The alarm message text displayed for a c ategory indicates which ala rm details to select. W eb interface example. 1. On the main scree n, the Charg er column for a ba ttery string displays a red [...]

  • Page 30

    ® USER’S GUIDE Battery Management System 23 Interpr eting alarm details For an alarm category: • The Web interface displays detailed alarm da t a a nd any configure d threshold values on a s ingle page. For the three typ es of battery alarms, bar graphs are d isplayed. T o view or chang e the threshold values, you must use th e Configuration m[...]

  • Page 31

    ® USER’S GUIDE Battery Management System 24 Char ger alarms. Battery alarms. Category Det ails Diagnostics S tring V o ltages The voltage of a battery string is above or below the threshold. Problem: High or low string voltage indicates that the string charger ma y be defe ctive or imprope rly adjusted. If uncorrected, this condition can cause p[...]

  • Page 32

    ® USER’S GUIDE Battery Management System 25 Management Contr oller alarms. Charge T est When the Battery Managem ent System applied a test current, the batteries listed in the alarm message showed a high er than acceptable percentage deviation from the previous “benchmarked” values (wh ich are reset after any discharge). Problem: A per cent [...]

  • Page 33

    ® USER’S GUIDE Battery Management System 26 Monitor Relay St u c k A relay is stuck in the m aster uni t. Reset the unit using the recessed reset button on the back of the master unit. If problem persists, contact APC C ustomer Support at the phone numbe r located at the end of this manu al. Communication One or more units are not reporting to t[...]

  • Page 34

    ® USER’S GUIDE Battery Management System 27 Configur ation menu Battery T ype Selection. Choose nickel-cadmium or lead-acid batteries. Battery Configuration. Charger T ype (Silcon/ Othe r) A Silcon unit can have two strings per battery management master unit. Oth er requires a battery man agement ma ster unit for each new string . Number of S tr[...]

  • Page 35

    ® USER’S GUIDE Battery Management System 28 T e mperatur e Configuration. Alar m Co nfigu rat ion. Maximum Pilot T emperature Limit The m aximum surface tem perature of the pi lot battery in the string (the battery to whic h the pilot tem perature sensor is attached). Because the Battery M anagement System equalizes the charge for all batteries [...]

  • Page 36

    ® USER’S GUIDE Battery Management System 29 Calibration menu Select to calibrate eithe r a St ri n g or a U nit. String. Select the string you wish to calibrate. Unit. Select the unit you wish to calibrate. St r i n g X Each string will be listed. Select the string you wish to configure Ohmic Correction Set the overall Ohmic Correction value. Un[...]

  • Page 37

    ® USER’S GUIDE Battery Management System 30 Modbus Modbus lets you view the Battery Ma nagement System through your building management s ervices interface. It is read-only . The Modbus interface s upports 2-wire RS-485 with the following pin-out: • Pin 2: TX/RX + • Pin 3: TX/RX - • Pin 5: GND T o configure Modbus u sing the Web interface,[...]

  • Page 38

    ® USER’S GUIDE Battery Management System 31 Reset Disc har ge V olta ges Reset Lowest Dischar ge V oltages (contr o l console). The lowest discharge voltage is the low est voltage measured for each battery in a string during discharge. T o clear the stored lowest discharge voltage: 1. Select Device Manager 2. Select Reset Discharge V oltages 3. [...]

  • Page 39

    ® USER’S GUIDE Battery Management System 32 Network Menu Access Restrictions and Menu Options Access Only an Administrator ha s access to the Network menu. Menu options T o use the Network me nu options to configure th e network settings of the Battery Management S ystem, see the fo llowing descriptions: • TCP/IP • DNS • Ping utility (cont[...]

  • Page 40

    ® USER’S GUIDE Battery Management System 33 Option Settings TCP/IP This option accesses th e following setting s: • Boot mode setting : Selects the method used to def ine the TCP/IP values that a Battery M anagement Syste m needs to operate on the network: – System IP : The IP add ress of the Batt ery Management System – Subnet Mask : The [...]

  • Page 41

    ® USER’S GUIDE Battery Management System 34 Boot mode setting. This setting s elects which method will be used to define the Battery Man agement System’s TCP/IP settings whenever the Battery Management S ystem turns on, re set s, or restarts: • Manual : Three settings ( System IP , Subnet Mask , and Default Gateway ) which are available only[...]

  • Page 42

    ® USER’S GUIDE Battery Management System 35 Advanced setting s. The Boot mode affects which settings are availabl e: • T wo settings a re available for all Boot mode selections to de fine the Battery Management S ystem’s Hos t Nam e and Domain Name values. – Host Name: When an Ad ministrator configu res a host name here and a domain name i[...]

  • Page 43

    ® USER’S GUIDE Battery Management System 36 • Three settings are availa ble for all Boot mo de selections, except Manual , to identify the Management Card in BOOTP or DHCP communication: – V endor Class : Use s APC , by default. – Client ID : Uses the Battery Mana gement System’s MAC address, by default. – User Class : Us es the Batter[...]

  • Page 44

    ® USER’S GUIDE Battery Management System 37 DNS Use this option to defin e the IP address es of the primary and sec ondary Domain Name System (DN S) servers used b y the Battery Managemen t System’s e-mail feature. The primary DNS se rver will always be tried first. Send DNS Query (W eb interface). Use this option, ava ilable only through the [...]

  • Page 45

    ® USER’S GUIDE Battery Management System 38 • Enable or disable Reverse DNS Lookup . This feature is dis abled by default. Enabling this f eature is the reco mmended configuration, unless you have no DNS serve r configured or ha ve poor network performa nce because of heavy net work traffic. With Reverse DNS Lookup enabled, when a network-rela[...]

  • Page 46

    ® USER’S GUIDE Battery Management System 39 FT P S e r v e r Use the Access setting to enable or dis able the FTP server . The server is enabled by default. Use the Port setting to identify the TCP/IP port that the FTP server uses for communications with the Battery Manage ment System. The default Port setting is 21 . Y ou c an change the Port s[...]

  • Page 47

    ® USER’S GUIDE Battery Management System 40 T elnet/SSH Use the T elnet/ SSH option to p erform the following tasks: • Enable or disable T elnet or the Secure SHell (SSH) proto col for remote control console access. – While SSH is enabled, y ou cannot use T elnet to access the control console. – Enabling SSH enables SCP automatically . –[...]

  • Page 48

    ® USER’S GUIDE Battery Management System 41 • Display the fing erprint of the SSH host ke y for SSH versions 1 and 2. Most SSH clients display the fingerprin t at the start of a session. Compare the fingerprint displayed by the client to the fingerprint that you recorded from the Web inte rface or control console of the Battery Management Syst[...]

  • Page 49

    ® USER’S GUIDE Battery Management System 42 Option Des cription T elnet/S SH Network Configuration Access Enables or disables the access method selected in Prot ocol Mode . N OTE : Enabling SSH automatically disables T elnet. T o enable SSH, change the setting and then click Next>> in the Web interface or choose Accept Chang es in the cont[...]

  • Page 50

    ® USER’S GUIDE Battery Management System 43 T elnet/S SH Port Config uration T elnet Port Identifies the TCP/IP port used for communications by T elnet with the Battery Management System. The default is 23 . You can change the Port setting to the number of any unused port between 5000 and 3 2768 to enhance the protec tion provided b y User Name [...]

  • Page 51

    ® USER’S GUIDE Battery Management System 44 SSH Serv er Config uration SSHv1 Encryption Algorithms Enables or disables DES , and displays the status (always enabled) of Blowfish , two encryption algorithms (b lock ciphers) compatible with SSH, versi on 1, cli ent s. • DES : The key length is 56 bit s. • Blowfish : The key length is 128 bits.[...]

  • Page 52

    ® USER’S GUIDE Battery Management System 45 SSH User Host Key File S tatus The Statu s field indicates the st atus of the host key ( private key). In t he control console, you displa y host key status by selecting Ad vanced SSH Configur ation . • SSH Disabled: No h ost key in use : No host key has b een transferred to the Battery Management Sy[...]

  • Page 53

    ® USER’S GUIDE Battery Management System 46 SSH Host Key Fingerpri nt SSH v1 Displays the SSH version 1 fingerprint for the host key . The fingerprint is a unique identifier to further authenticate the host key . In the control console, choose Advanced SSH Config uration and then Host Ke y Information to display the fingerprint. SSH v2 Displays [...]

  • Page 54

    ® USER’S GUIDE Battery Management System 47 SNMP An Access op tion ( Settings in the contr ol console) enables (by de fault) or disables SNMP . When S NMP is enabled, the Access Control settin gs allow you to control how each of th e four available SNMP ch annels is used. T o define up to four NMS s as trap receivers, see T rap Receiver s ; to u[...]

  • Page 55

    ® USER’S GUIDE Battery Management System 48 Email Use the Email option t o do the followin g: • Define the SMTP server . • Configure e-mail recipien ts. . Access Ty p e Selects how the NMS defined by the NMS IP setting can use the channel, when that NMS us es t he c orrec t Community Name . Read The NMS can use GET s at any time, but it can [...]

  • Page 56

    ® USER’S GUIDE Battery Management System 49 Syslog By default, the Battery Management Sy stem can send messages to up to four Syslog servers when ever Battery Man agement System or the embedded manageme nt card events occur . The Syslog servers, which must be specifically iden tified by their IP a ddresses or domain name s, record the events in [...]

  • Page 57

    ® USER’S GUIDE Battery Management System 50 Syslog Server Settings Server IP/ Domain Name Uses specific IP addresses or domain names to identify which of up to four servers will receive Syslog messages se nt by t he Battery Manage ment System. N OTE : T o use the Syslog featur e, Server IP/Domain Name must b e defined for at least one server . P[...]

  • Page 58

    ® USER’S GUIDE Battery Management System 51 Syslog test (W eb interface). This option allo ws you to send a test message to the Syslog servers configured in the Syslog Server s ection. 1. Select the priority you w ant to assign to the test message. 2. Define the test messag e, using any text that is formatted as desc ribed in Syslo g message for[...]

  • Page 59

    ® USER’S GUIDE Battery Management System 52 W eb/SSL Use the Web/SSL menu to perform the fo llowing tasks. • Enable or disable the t wo protocols that provide access to the Web interface of the Battery Management Sy stem: – Hypertext T rans fer Protocol (HTTP) provides access by user n ame and password, but does not encryp t user names, pass[...]

  • Page 60

    ® USER’S GUIDE Battery Management System 53 • Display the configured parameters of a digital server certificate, if on e is installed. Creating and uploading a server certificate in advance reduces the time required to enable HTTPS (SS L/TLS). If no server certificate is loaded when you enab le HTTPS (SSL/ TLS), the Battery Manag ement System [...]

  • Page 61

    ® USER’S GUIDE Battery Management System 54 Opti on Descri ption Web/SSL Ne twork Con figuration Access Enables or disables the access met hod selected in Proto col Mode . Protocol Mode Choose one of the following: • HTTP: User names, passwords, and data are t ran smitted without encryption. • HTTPS (SSL): User names, passwords and data are [...]

  • Page 62

    ® USER’S GUIDE Battery Management System 55 HTTP/HTT PS Port Co nfigurati on HTTP Port Identifies the TCP/IP port used for communications by HTTP with the Battery Management System. The default is 80 . Y ou can change the Port setting to the number of any unused port between 5000 and 32768 to enhance the prot ection provid ed by User Name and Pa[...]

  • Page 63

    ® USER’S GUIDE Battery Management System 56 SSL Server Configura tion CipherSuite Enables or disables the fo llowing SSL encryption ciphers a nd hash algorithms. (T o access these op tions in the co ntrol console, choose Web/ SSL , th en Advanced SSL Configuratio n .) N OTE : All of these encryption cipher s and hash algorithms use the RSA publi[...]

  • Page 64

    ® USER’S GUIDE Battery Management System 57 SSL Server Certifica te S tatus: The Stat us field indicates whether a server certificate is i nstalled. (T o display the status in the control console, choose W eb/SSL , then Advanced SSL Configuration .) • Not installed : No certificate is installed on the Batte ry Manageme nt System. N OTE : If yo[...]

  • Page 65

    ® USER’S GUIDE Battery Management System 58 SSL Server Certifica te Filename: Y ou can create a server certif icate with the APC Security Wizard and then upload it to the Battery Management System by using the Web interface. Use the Brow se button f or the Filename field to lo cate the file, then click Apply . By default, the certificate is inst[...]

  • Page 66

    ® USER’S GUIDE Battery Management System 59 Parameter Descr iption Current Certifi cate Details Issued T o: Common Name (CN) : The IP Address or DNS name of the Battery Manageme nt System, except if t he se rver certificate was generated by default by the Battery Management System. For a default server certific ate, the Common Name (CN) f i eld [...]

  • Page 67

    ® USER’S GUIDE Battery Management System 60 Fingerprint: Each fingerprint is a long stri ng of alphan umeric characters punctuated by colons. A fingerprint is a unique identifier that you can use to furt h er authenticate the server . Record the fingerprin t s to compare with the fingerprints cont ained in the certificate, as displayed in the br[...]

  • Page 68

    ® USER’S GUIDE Battery Management System 61 System Menu Access Restrictions and Menu Options Purpose and access Use the System menu to do the followin g t asks: • Configure system identif ication, date and time settings, and acces s parameters for the Administrator , Device Mana ger , and Read-O nly User accounts. • Synchronize the Batter y [...]

  • Page 69

    ® USER’S GUIDE Battery Management System 62 Menu options See the following desc riptions of the set tings available from the System menu options: • User Manager • RADIUS • Identification • Date & T ime • T ools • Preferences (Web interface) • Links (Web interface) • About System (control c onsole)[...]

  • Page 70

    ® USER’S GUIDE Battery Management System 63 Option Settings User Manager Use this option to defin e the access valu es shared by the control console and Web interface. Setting Definition Auto Logout Defines (in minutes) how l ong you can be inactive w hile logged on to the control console or We b in terface before you a re logged off automatical[...]

  • Page 71

    ® USER’S GUIDE Battery Management System 64 RADIUS RADIUS (Remote Authentica tion Dial-In User Service) is an au thentication, authorization, and acco unting service. U se this option to centrally administer remote access for each Battery Management System. When a user accesses the Battery Management System, an authentication request is sent to [...]

  • Page 72

    ® USER’S GUIDE Battery Management System 65 RADIUS Setting Definition Access Local Only : RADIUS is disabled. Access to the Batt ery Management System is cont rolle d by the local user manager o nly . RADIUS then Loca l : RADIUS is enabled. Contact the RADIUS server first. If the RADIUS server fails to authenti cate the user , t he local user m [...]

  • Page 73

    ® USER’S GUIDE Battery Management System 66 Configuring the R ADIUS server . Y ou must configure you r RADIUS server to work with the B attery Manageme nt System. The following example is specific to AP C’s RADIUS server . 1. Define an APC vendor in your RADIUS se rver; 318 is APC’s Private Enterprise Number assig ned by the Intern et Assign[...]

  • Page 74

    ® USER’S GUIDE Battery Management System 67 Identifica tion Use this option to def ine the System Name , Location , and Cont act valu es used by the SNMP age nt for the manag ement card that is built in to the master controller of the Battery Managem ent System. The values d efined here are used for the M IB-II sysName , sysCont act , and sysLoc[...]

  • Page 75

    ® USER’S GUIDE Battery Management System 68 In the control console, u se the N TP Client option to enable or disable (the default) the NTP Server updates. In the Web interface, use the Set Manually o ption to disable t he updates. Setting Definition Primary NTP Server Identifies the IP address or domain name of the primary NTP server . Secondary[...]

  • Page 76

    ® USER’S GUIDE Battery Management System 69 To o l s Initiating an action. Use this drop-down list in the We b interfac e or the equivalent menu opt ions in the con trol console to restart the interfac e of the Battery Management S ystem, to reset so me or all of its configuration settings to their default values, or to de lete SSH Host Keys and[...]

  • Page 77

    ® USER’S GUIDE Battery Management System 70 Uploading an initialization file (W eb interface only). T o transfer configuration settings f rom a configured Battery Management Syst em master controller to the curre nt Battery Man agement System master controller , expo rt the .ini file from the con figured Battery Ma nagement System, select the To[...]

  • Page 78

    ® USER’S GUIDE Battery Management System 71 File T ransfer (control console only). The File T ransfer o ption of the T ools m enu provides two methods for file transfer o ver the network and one for file transfer thro ugh a serial conn ection to the Battery Man agement System. Pr efer ences (W eb interface) Use this option to selec t either Fahr[...]

  • Page 79

    ® USER’S GUIDE Battery Management System 72 Links (W eb interface) Use this option to modif y the links to APC W eb pages. Setting Definition Use r Links Name Defines the link na mes that appea r in the Links menu (by default, APC’ s Web Site , T estdrive Demo , and APC Monitoring ). URL Defines the URL addresses used by the links. By default,[...]

  • Page 80

    ® USER’S GUIDE Battery Management System 73 About System (control console) This option identifies ha rdware information for the Management Ca rd, including Model Number , Serial Number , Manufacture Date , Hardware Revision , MAC Address , and Flash T ype. The ha rdware information will never change. The About Syst em menu also includes fie lds [...]

  • Page 81

    ® USER’S GUIDE Battery Management System 74 Event-r elated Menus Intr od uction Overview Use the options of the Event s menu to do the following tasks: • Access the Event Log. • Define the acti ons to be taken when an event occu rs, based on the severity level of that eve nt. ( Y ou must use the Web interface to define which events will use [...]

  • Page 82

    ® USER’S GUIDE Battery Management System 75 Menu options T o access the event-rela ted options: • In the Web interface, use the E vent s menu. • In the control console: – Use the Email option i n the Network me nu to define the SMTP server and e-mail recipien ts. – Use the SNMP option in the Network menu to define the SNMP trap receivers[...]

  • Page 83

    ® USER’S GUIDE Battery Management System 76 Event Log Overview The Battery Manageme nt System suppo rt s ev ent logging. Use any of the following to view the Eve nt Log: • Web interface • Control console • FTP •S C P • Display interface Logged events The event log records n ormal and abnor mal Management Card (sys tem) events and Batte[...]

  • Page 84

    ® USER’S GUIDE Battery Management System 77 Accessi ng the log T o view or clear the Batt ery Management System’s event log, use t he Web interface, control conso le, or FTP . W eb interface. T o display the eve nts in reverse chronological order , use the Log option in the Events me nu. T o clear all events from the log, use t he Delete Log b[...]

  • Page 85

    ® USER’S GUIDE Battery Management System 78 How to use F TP or SCP to r etrieve log files If you are an Administr ator or Device Ma nager , you can use FTP or SCP to retrieve a tab-delineated event log f ile ( event.txt ) or d ata log file ( dat a.txt) that you can im port into a spreadsheet application. • The file reports all of the eve nts o[...]

  • Page 86

    ® USER’S GUIDE Battery Management System 79 T o u se SCP to r etrieve the file. T o use SCP to retrieve the event.txt file, use the following comma nd: scp username @ hostnam e_or_ip_address :data txt./data.txt T o u se F T P to r etrieve the file. T o use FT P to retrieve the event.tx t file: 1. At a command prompt, t ype ftp and the Batt ery M[...]

  • Page 87

    ® USER’S GUIDE Battery Management System 80 4. Y ou ca n use the del command to clear the con tents of the event log or data log. ftp>del event.txt or ftp>del data.txt Y ou w ill not be asked to confirm the deletion. – If you clear the data log, the event log records a de leted-log event. – If you clear the event log, a new event.txt f[...]

  • Page 88

    ® USER’S GUIDE Battery Management System 81 Actions Option (W eb interface only) Enabling and disabling event act ions Use the Actions option of the E vent s menu to e nable or disable the following for events that have a spe cified severity leve l: • Events Log •S N M P T r a p s •E m a i l Some Managem ent Card (system) events do not hav[...]

  • Page 89

    ® USER’S GUIDE Battery Management System 82 To u s e SN MP traps for event notifica tions, you must f irst identify the trap receivers (up to four) by their specific IP ad dresses. Email action By default, the Email action is enabled for severe events only . T o use e-mail for event notification, y ou must first defin e the e-mail recipients. Re[...]

  • Page 90

    ® USER’S GUIDE Battery Management System 83 Recipients Option Tr a p R e c e i v e r s Y ou can define up to four NMSs to be used as trap receivers when an event occurs that has SNMP t raps enabled. In the Web interface , use the T rap Receiver settings, available through the Recipients option of the Event s menu. In the control console, use the[...]

  • Page 91

    ® USER’S GUIDE Battery Management System 84 Email Recipients T o identify up to four e -mail recipients to be notified of events, use one of the following: • The Recipients option of the Web interface’s Event s menu • The Emai l option of th e control console’s Network Menu Setting Description To A d d r e s s Defines the user and domain[...]

  • Page 92

    ® USER’S GUIDE Battery Management System 85 When you select Local SMTP Server for the Send via se tting, do one of the following: • Make sure that forwarding is enabled at that server so that the se rver can route e-mail to exte rnal SMTP servers. (See your SMTP server ’s administrator before cha nging the config uration of your SMTP serv er[...]

  • Page 93

    ® USER’S GUIDE Battery Management System 86 Email Option Requir ements for using SMTP T o use the Simple Mail Transfer Protocol ( SMTP ) to send e-mail when an event occurs, you must define the follow ing settings: • The IP addres s of the domain name ser vice (DNS) server . • The DNS name of the S MTP server and t he From Address settings f[...]

  • Page 94

    ® USER’S GUIDE Battery Management System 87 DNS servers The Battery Mana gement Syste m cannot send a ny e-mail messages unless at least the IP address of the primary DNS server is defined. The Battery Manageme nt System will wait a maximum of 15 seconds for a response from the prima ry DNS server or th e secondary DNS server (if a secondary DNS[...]

  • Page 95

    ® USER’S GUIDE Battery Management System 88 How to Configur e Individual Events Optio ns to c onfigure individu al eve nts Y ou ca n configure individual events using the eve ntlist.htm page. See Event list access . Event list access T o access the event list , add /evntlist.htm to the Battery Managem ent System’s URL address value ( IP addres[...]

  • Page 96

    ® USER’S GUIDE Battery Management System 89 Event list format The evntlist.htm page defines the fo llowing for each e vent: • Code : The event’s unique event code. • Description : The text u sed for the even t. • Severity : The event’s default severity le vel. • Configuration : The hexad ecimal code that defines the actions to occur [...]

  • Page 97

    ® USER’S GUIDE Battery Management System 90 Bits 0 to 3. These bits represent the event’s severity: Bit 4 and bits 6 to 9. These bits enable (1) or disable (0) ev ent logging and trap receiv ers for the event: Bits 10 to 13. These bits enable (1) or disable (0) e-mail recipients for the event: Settings for Bit s 0 to 3 Severity 0000 No severit[...]

  • Page 98

    ® USER’S GUIDE Battery Management System 91 Event mask example Y ou e nter the hexadecimal cod e 3B08 00 as an ev ent mask. The event mask configu res the following bit settings: 0011 1011 0000 1000 0000 0000 The event is configured as follows: • The severity level is seve re. • The event will be logge d. • T raps generated by the eve nt w[...]

  • Page 99

    ® USER’S GUIDE Battery Management System 92 Management Car d and Battery Manage r Events Event generation The Management Card and Battery Man agement System both ge nerate events, which are logged in the eve nt log. Any event of either typ e generates a u nique code, which you ca n use in applications to identify the event. To u s e SN MP traps [...]

  • Page 100

    ® USER’S GUIDE Battery Management System 93 Severity levels defined Severity Definition Severe Requires im mediate action. Se vere events can cause incorrect operation of the Battery Manage ment System or can cause loss of power protection during a power failure. W arn ing Needs action if the condi tion wors ens, but do es not require immedia te[...]

  • Page 101

    ® USER’S GUIDE Battery Management System 94 Management Ca r d events Code Severity Description 0x0001 Severe System: Coldstart. (Th e Management Card was turned on.) 0x0002 Severe System: W armstart. (The Management Card was reset aft er it was already turned on.) 0x0003 W arnin g System: SNMP configuration change. 0x0004 Informational System: D[...]

  • Page 102

    ® USER’S GUIDE Battery Management System 95 0x001E None System: control consol e user logged out. 0x001F None System: Web user logged out. 0x0020 None System: FTP user logged out. 0x0021 None System: Set date o r time. 0x0024 None System: T race inform ation. 0x0025 W arnin g System: Modem dia l-out failed. 0x002A None System: Network service in[...]

  • Page 103

    ® USER’S GUIDE Battery Management System 96 Y ou ca nnot configure actions fo r Management Card even ts that have no severity lev el. Not all of the “System” ev ents listed in the table are supported by the Batte ry Management S ystem.[...]

  • Page 104

    ® USER’S GUIDE Battery Management System 97 Battery Management Sys tem events Code Severity Description 0x0801 Inform ational System: Comm unication establishe d. 0x0802 Seve re System: Commun ication lost. 0x080D Informational System: Co nfiguration has be en chang ed. 0x080E Severe Charge r: S tring voltage is low . 0x080F Informational Charge[...]

  • Page 105

    ® USER’S GUIDE Battery Management System 98 0x0821 Informationa l Battery: Dryout/sulfation no lo nger present. 0x0822 Severe Battery: Pilot temperature hig h. 0x0823 Informationa l Battery: High pilot temperature returned to normal. 0x0824 Seve re Environment: Ambi ent temperature high. 0x0825 Inform ational Environment: High ambie nt temperatu[...]

  • Page 106

    ® USER’S GUIDE Battery Management System 99 Data Logging (W eb interface) Description Use the Data menu to do the following tasks: • Access the data log. • Define the Discharge a nd Charge Data Log intervals. The Data Log displays inf ormation logged by each Battery Management unit. Each log entry dis plays the following data point s: T o cl[...]

  • Page 107

    ® USER’S GUIDE Battery Management System 100 Configuration Use this option t o change th e Discharge and Charge Log Interval settings which define how often data will be sampled and recorded in the d at a log.[...]

  • Page 108

    ® USER’S GUIDE Battery Management System 101 Boot Mode Intr od uction Overview In addition to using a BOOTP server or m anual settings, the Mana gement Card that the Battery M anagement Syste m master controller contains can use a dynamic host con figuration protoc ol (DHCP) server to provide t he settings it needs to op erate on a TCP/IP networ[...]

  • Page 109

    ® USER’S GUIDE Battery Management System 102 DHCP & BOOTP boo t pr ocess When Boot mode is set to its default DHCP & BO OTP setting, the following occurs when th e Management C ard is turned on or reset: 1. The Management Card makes up to five requests for it s ne twork assignment from any BO OTP server . If a valid BOOTP resp onse is re[...]

  • Page 110

    ® USER’S GUIDE Battery Management System 103 If a DHCP server responds w ith an invalid offer (for example, the offer does not contain the APC Co okie), the Ma nagement Card accepts the lease from that se rver on the last request of the sequence and then immediatel y releases that lease. This prevents the DHCP server from reserving the IP Addres[...]

  • Page 111

    ® USER’S GUIDE Battery Management System 104 DHCP Configuration Settings Management Ca r d settings Use the TCP/IP option in the Network me nu of either the Web interface or the control console to c onfigure the net work settings of the Mana gement Card that the Battery M anagement Syste m master controller contains. • The Port Spee d , Host N[...]

  • Page 112

    ® USER’S GUIDE Battery Management System 105 When Boot mode is set to DHCP & BOOTP , two options are available: • Af ter IP Assignment in the contro l console (or Remain in DH CP & BOOTP mode after accepting TCP/I P settings in the Web interface): By default, this option switches Boot mode to the selection based on the server that prov[...]

  • Page 113

    ® USER’S GUIDE Battery Management System 106 DHCP r esponse option s Each valid DHCP respon se contains options that prov ide the TCP/IP settings a Managemen t Card needs to o perate on a network and other information that affects the Battery Management Sys tem’s operation. The Management Card uses the V end or S pecific Informatio n option (o[...]

  • Page 114

    ® USER’S GUIDE Battery Management System 107 Boot Mode T rans ition. T ag 2, Len 1, Dat a 1 /2 This option 43 setting e nables or disable s the Af t er IP Assignment option which, by default, caus es the B oot mode option to base its setting on the server that provided the network assignm ent values ( DHCP Only or BOOTP Only ): • A data value [...]

  • Page 115

    ® USER’S GUIDE Battery Management System 108 TCP/IP o ptions. A Manageme nt Card contained in the Bat tery Management System ma ster controller use s the following options wit hin a valid DHCP response to define its TCP/IP settings: • IP Address (from the yi addr field of the D HCP response): The IP address that the DHCP server is leasing to t[...]

  • Page 116

    ® USER’S GUIDE Battery Management System 109 Other options. A Management Card contained in the Batter y Management System ma ster controller use s the following options wit hin a valid DHCP response to define NTP , DNS, hostname, and domain n ame settings: • NTP Server , P rimary and Secondary (option 42 ): Up to two NTP servers that can be us[...]

  • Page 117

    ® USER’S GUIDE Battery Management System 110 Security Security Featur es Planning and implementing secur i ty featur es As a network device tha t passes information across the networ k, the Network Management Ca rd in the master c ontroller of the Battery Management System is subject to the sa me exposure as other de vices on the network. Use th[...]

  • Page 118

    ® USER’S GUIDE Battery Management System 111 SNMP . File transfer pr otocols. Security Access Description Available method s: • Community Name • Domain Name • NMS IP filters • Agent Enable/Disable • 4 access communities with read/write/disable capability The domain name restrict s access only to the NMS as that location, and the NMS IP[...]

  • Page 119

    ® USER’S GUIDE Battery Management System 112 We b S e r v e r . Changing default user names and passwor ds immediately As soon as you comple te the installation and initial configurat ion of the Battery Management S ystem, immediately change the default use r names and passwords. Configuring unique user na mes and passwords is essential to estab[...]

  • Page 120

    ® USER’S GUIDE Battery Management System 113 User names, passwords, community names (SNM P) All user names, passwords, and comm unity names for SNMP are transferred over the ne twork as plain text . A user who is capable of monitoring the network t raffic can determine the user name s and passwords required to log on to the accoun ts of the cont[...]

  • Page 121

    ® USER’S GUIDE Battery Management System 114 Authentication Authentication ver sus encryption Y ou c an choose to use securit y features for the Battery Management System that control acce ss by providing b asic authentication throu gh user names, passwords, and IP addresse s, without using e ncryption. These basic security features a re suffici[...]

  • Page 122

    ® USER’S GUIDE Battery Management System 115 Encryption Secur e SHell (SSH) and Secur e CoPy (SCP) The Secure SHell (SSH) protocol provides a secure mechanism to ac cess computer consoles or shells remotely . The protocol authentic ates the server (in this case, the Batter y Management S ystem) and encrypts all transmissions be tween the SSH cli[...]

  • Page 123

    ® USER’S GUIDE Battery Management System 116 Secure CoPy (SCP) is a secure file transfe r application that you can use instead of FTP . SCP us es the SSH proto col as the underlying tran sport protocol for encryption o f user names, passwords, and files. • When you ena ble and configure SSH, y ou automatically enable a nd configure SCP . No fu[...]

  • Page 124

    ® USER’S GUIDE Battery Management System 117 Secur e Sockets Layer (SS L) For secure Web communication, you ena ble Secure Socke t s L ayer (SSL) by selecting HTTPS (SSL ) as the protoco l mode to use for access t o the Web interface of the Battery Manageme nt System. Hypert ext T ransfer Protocol over Secure So ckets Layer (HTTPS) is a Web prot[...]

  • Page 125

    ® USER’S GUIDE Battery Management System 118 Y ou c an use the APC Security Wizard, provided on the A PC Battery Management System Utility CD, to crea te a certificate sign ing request to an external Certificate Auth ority , or if you do not want to use an existing Certificate Authority , you can cre ate an APC root certificate to upload to a br[...]

  • Page 126

    ® USER’S GUIDE Battery Management System 119 Cr eating and Installing Digital Certificates Purpose For network communicatio n that requires a higher level of security th an password encryption, the Web interface of the Battery Management System supports the use of digital certificates with the Secure Soc kets Layer (SSL) protocol. Digital certif[...]

  • Page 127

    ® USER’S GUIDE Battery Management System 120 Choosing a method for your syste m Using the Secure Sockets Layer (SSL) protocol, you can choose any of the following methods for us ing digital certificates. Method 1: Use the Battery Management System’ s auto-generated default certificate. When you enable SSL, you must reboot the Management Card i[...]

  • Page 128

    ® USER’S GUIDE Battery Management System 121 – This method does not include the brows er-based authentication provided by a CA certific ate (a certificate s igned by a Certificate Authority) as Methods 2 and 3 provide. T here is no CA Certificate cached in the browser . Therefo re, whenever you log on t o the Battery Management S ystem, the br[...]

  • Page 129

    ® USER’S GUIDE Battery Management System 122 Method 2: Use the APC Security Wizar d to cr eate a CA certifica te and a server certificate. Y ou use the APC Security Wiz ard to create two digital certificates: •A CA ro ot certificate (Certi ficate Authori ty root certificate) that the APC Security Wizard uses to s ign all server certif icates a[...]

  • Page 130

    ® USER’S GUIDE Battery Management System 123 – The length of the public key (RSA key) th at is used for encryption when setting up an SS L session is 102 4 bits, providing more complex encryption a nd conseque ntly a higher level o f security than the public key used in Method 1. (This lo nger encryption key is also used in Method 3.) – The [...]

  • Page 131

    ® USER’S GUIDE Battery Management System 124 Method 3: Use the APC Security Wizard to cr eate a certificate-signing r equest to be signed by the r oot certificate of an external Certificate Authority and to cr eate a ser ver certificate. Y ou use the APC Security Wizard to create a reques t (a .csr f ile) to send to a Certificate A uthority . T [...]

  • Page 132

    ® USER’S GUIDE Battery Management System 125 consequently a higher level of security th an the public key used in Method 1 (This longer e ncryption key is a lso used in Method 2.) – The server certificate tha t you upload to the Management Card enables SSL t o authenticate that data are being re ceived from and sent to the correct Man agement [...]

  • Page 133

    ® USER’S GUIDE Battery Management System 126 Fir ew alls Although some methods of aut hentication provide a higher level of security than others, complete p rotection from se curity breaches is almost impossible to achieve . Well-configured firewalls are a n essential element in an overall security schem e. s[...]

  • Page 134

    ® USER’S GUIDE Battery Management SystemBattery 127 Using the APC Security Wizar d Overview Authentication Authentication verifie s the iden tity of a user or a network de vice (such a s an APC Network Manageme nt Card in the Ba ttery Management System master controller). Passwo rds typically ident ify computer users. Howeve r , for transactions[...]

  • Page 135

    ® USER’S GUIDE Battery Management System 128 Authentication of the s erver (in this case , the Management Card in the Battery Management S ystem master cont roller) occurs each time a connection is made from the browser to th e server . The bro wser checks to be sure that the server ’s certificate is signed by a Certificate Autho rity known to[...]

  • Page 136

    ® USER’S GUIDE Battery Management System 129 Files you cr eate for SSL and SSH s ecurity Use the APC Secu rity Wizard to create the following components of an SSL and SSH security system : • The server certificate for the Batte ry Management System, if you want the benefits of authentication that such a certificate provides.Y ou ca n create ei[...]

  • Page 137

    ® USER’S GUIDE Battery Management System 130 • An SSH host key that y our SSH client pro gram uses to authentica te the Management Card in the Battery Ma nagement System master controller when you log on to the contro l console interface. Only APC server manage ment and key ma nagement products can use server certificates, host k eys, and CA r[...]

  • Page 138

    ® USER’S GUIDE Battery Management System 131 Cr eate a Root Certificat e & Server Certificates Summary Use this procedure if yo ur comp a ny or agency do es not have it s own Certificate Authority and you do not want to use a commercial Certificate Authority to si gn your server c ertificates. • Create a CA root certifica te that will be u[...]

  • Page 139

    ® USER’S GUIDE Battery Management System 132 The pr ocedur e Cr eate the CA r oot certificate. Perform these ste p s. (Click Next to move from screen to screen.) 1. If the APC Security Wiza rd is not already i nst a lled on your comp uter , install it by running the installation program APC Security Wizard.exe from the APC Battery Ma nagement Sy[...]

  • Page 140

    ® USER’S GUIDE Battery Management System 133 6. On the next screen, re view the summary o f the certificate. Scroll downward to view the ce rtificate’s unique serial number an d fingerprints. T o make any changes to the information you prov ided, click Back , and revise th e information. 7. The last screen verifies t hat the certificate has be[...]

  • Page 141

    ® USER’S GUIDE Battery Management System 134 Cr eate an SSL Server User Certificate. Perform these steps. (Click Next to move from screen to screen.) 1. On the Windows Star t menu, se lect Programs , then APC Security Wiza rd , to start the Wizard program. 2. On the screen labeled S tep 1, select SSL Server Certificate as th e type of file to cr[...]

  • Page 142

    ® USER’S GUIDE Battery Management System 135 6. On the next screen, re view the summary o f the certificate. Scroll downward to view the ce rtificate’s unique serial number an d fingerprints. T o make any changes to the information you prov ided, click Back , and revise th e information. 7. The last screen verifies t hat the certificate has be[...]

  • Page 143

    ® USER’S GUIDE Battery Management System 136 Alternatively , you can use FTP or Secure CoPy (SCP) to transfer the server cert ificate to the M anagement Card. If yo u use FTP or SCP for the tran sfer , you must spec ify the correct location, sec , on the Management Card . For SCP , the command to transfer a ce rtificate named cer t.p 15 to a Ma[...]

  • Page 144

    ® USER’S GUIDE Battery Management System 137 Cr eate a Server Certificate and Signing Request Summary Use this procedure if yo ur comp a ny or agency ha s it s own Certificate Authority or if yo u plan to use a commerc ial Certificate Authority to sign your server certif icates. • Create a Certificate Sign ing Request (CSR ).The CSR contains a[...]

  • Page 145

    ® USER’S GUIDE Battery Management System 138 The pr ocedur e Cr eate the Certificate Signing Request (CSR). Perform these steps. (Click Next to move from s creen to screen.) 1. If the APC Security Wiza rd is not already i nst a lled on your comp uter , install it by running the installation program APC Security Wizard.exe from the APC Battery Ma[...]

  • Page 146

    ® USER’S GUIDE Battery Management System 139 6. On the next screen, re view the summary o f the certificate. Scroll downward to view the ce rtificate’s unique serial number an d fingerprints. T o make any changes to the information you prov ided, click Back , and revise th e information. 7. The last screen verifies t hat the certificate signin[...]

  • Page 147

    ® USER’S GUIDE Battery Management System 140 Import the signed certificate. When the external Cert ificate Authority returns the signed certif icate, perform the se steps to import the certificate. This procedure combine s the signed certi ficate and the private key into an SSL server certificate th at you then uplo ad to the Management C ard in[...]

  • Page 148

    ® USER’S GUIDE Battery Management System 141 Load the ser ver certificate to the Management Car d. Perform these steps: 1. On the Network menu o f the Web interface of the Batte ry Management System, s elect the Web/SSL option. 2. In the SSL Server Cer tificate section o f the page, browse to the server certificate, the .p15 file you created in [...]

  • Page 149

    ® USER’S GUIDE Battery Management System 142 Cr eate an SSH Host Key Summary This procedure is optional. If you select SSH encryption, but do not crea te a host key , the B attery Manageme nt System generates a 7 68-bit RSA key when it reboots. Host keys for SSH th at are created w ith the APC Security Wizard are 1024-bit RSA keys. • Use the A[...]

  • Page 150

    ® USER’S GUIDE Battery Management System 143 6. The summary screen disp lays the SSH vers ion 1 and version 2 fingerprints, which are uniqu e for each host key and identify the host key . After you load the host key onto the M anagement Card, you can verify that the correct ho st key was uploa ded by verifying that the fingerprints displayed her[...]

  • Page 151

    ® USER’S GUIDE Battery Management System 144 Load the host key to the Management Car d on the Battery Management System master contr oller . Perform these step s: 1. On the Network menu o f the Web interface of the Batte ry Management System, s elect the T elnet/SSH option. 2. In the SSH User Host Key File section of the page, browse to the host[...]

  • Page 152

    ® USER’S GUIDE Battery Management System 145 How to Export Configuration Settin gs Retrieving and Exporting the .ini file Summary of the pr ocedur e As an Administrator , you can ret rieve a dynamically genera ted .ini file of a Battery Management S ystem Manageme nt Card’ s current configura tion and export that file to another Battery M anag[...]

  • Page 153

    ® USER’S GUIDE Battery Management System 146 Contents of the .ini file The config.ini file that y ou retrieve from a Battery Management Sys tem Management Card contains the follo wing: • section headings , which are category names enclosed in brackets ([ ]), and under each sectio n heading, keyw ords, which are labels describing specific Batte[...]

  • Page 154

    ® USER’S GUIDE Battery Management System 147 Detail ed pr o cedures Use the following proced ures to retrieve t he settings of one Batte ry Management System Ma nagement Card and export them to one o r more other Battery Managem ent System Mana gement Card(s). Retrieving. T o set up and re trieve an .ini file to export : 1. Configure a Manageme [...]

  • Page 155

    ® USER’S GUIDE Battery Management System 148 Customizing. Y ou mus t customize the file to change at least the TCP/IP settings before you exp ort it. 1. Use a text editor to cus tomize the file. – Section headings, keyw ords, and pre-de fined values are not case - sensitive, but s tring values that you defin e are case-sensitive. – Use adjac[...]

  • Page 156

    ® USER’S GUIDE Battery Management System 149 – Retain the original customized file for future use. The fi le that you ret ain is the only record of your comments. They are removed automatically from the file that you export . Exporting the file to a single Batter y Management System Management Card. T o export the .ini file to another M anagem[...]

  • Page 157

    ® USER’S GUIDE Battery Management System 150 The event and its err or messages The following system even t occurs when the receiving Battery Managem ent System completes using the .ini file to up date its settings. Configuration file upload complete, with number valid values This event has no defa ult severity level. If a keyword, section name, [...]

  • Page 158

    ® USER’S GUIDE Battery Management System 151 Messages in config .ini A device associ ated with the Battery Man agement System from whic h you download the config.in i file must be disco vered successfully in orde r for its configuration to be incl uded. If the dev ice is not present or , for some othe r reason, is not discovere d, the config.ini[...]

  • Page 159

    ® USER’S GUIDE Battery Management System 152 Using the Device IP Configuration Wizar d On Windows operating s ystems, you can choose to update the b asic TCP/IP settings of the Battery Managemen t System’s Management Card by using the APC Device IP Configuration W izard.[...]

  • Page 160

    ® USER’S GUIDE Battery Management System 153 APC Device IP Configuration Wizar d Purpose and Requir ements Purpose: configur e basic TCP/IP settings Y ou can use the APC Device IP Configura tion Wizard to configure the basic TCP/IP settings (IP add ress, subnet mask , and default gateway) o f the following: • Network Management Ca rds • Devi[...]

  • Page 161

    ® USER’S GUIDE Battery Management System 154 Install the Wizar d Downlo ad the wizar d Y ou c an download the latest v ersion of the APC Device IP Configuration Wizard from the APC web site, www.apc.com and run setup.exe from the folder to which you dow nloaded it.[...]

  • Page 162

    ® USER’S GUIDE Battery Management System 155 Use the Wizar d Launch the Wiz ar d The installation creates a shortcut link in the Sta rt menu that you can use to launch the Wizard. Configur e the basic TCP/IP settings r emotely Pr epar e to configur e the settings. Before you run the Wizard, be sure that you have the info rmation you will ne ed d[...]

  • Page 163

    ® USER’S GUIDE Battery Management System 156 Run the Wizar d to perform the configuration. T o discover and configure, over the net work, installed or embedded Ne twork Management Cards that are not configured: 1. From the Star t menu, la unch the Wizard. The Wiza rd automatically detects the first Network Man agement Card that is not configured[...]

  • Page 164

    ® USER’S GUIDE Battery Management System 157 Configur e or r econfigur e the TCP/ IP settings locally T o configure a single Ne twork Management Card t hrough a serial connection: 1. Contact your network administrator to obtain valid TCP/IP settings. 2. Connect the serial conf iguration cable th at came with the Network Management Card or wit h [...]

  • Page 165

    ® USER’S GUIDE Battery Management System 158 File T ransfers Intr od uction Overview The Battery Manageme nt System Manag ement Card automatically recognizes binary firmware files. Each of th ese files contains a header and one or more Cyclical Red undancy Checks (CRCs) to ensure that the data contained in the file is not corrupted before or dur[...]

  • Page 166

    ® USER’S GUIDE Battery Management System 159 Upgrading Firmwar e Firm war e defined Broadly defined, firmware is highly specializ ed, reliable software that resides on a memory chip within a comput er or computer-related devi ce. Benefits of upgradin g firmwar e Upgrading the firmware o n the Battery Manageme nt System has th e following benefit[...]

  • Page 167

    ® USER’S GUIDE Battery Management System 160 Obtain the latest firmwar e version T o determine if updated firmware is available to do wnload, go to the “Software Downloads” page, www .apc.co m/tools/download , on the APC Web site. The firmware upgrade co nsists of the two modules: An APC Operating System (AOS) m odule and an application modu[...]

  • Page 168

    ® USER’S GUIDE Battery Management System 161 Firmwar e files (Battery Management System) The APC Operating Sys tem (AOS) and a pplication module files use d with the Battery Manageme nt System share t he same basic format: apc_hw0 x _ type_version .bin • apc : Indicates that this is an APC file. • hw0 x : Identifies the version of the Batter[...]

  • Page 169

    ® USER’S GUIDE Battery Management System 162 Firmwar e file transfer methods Y ou c an use FTP or SCP to up grade the firmware of one or more Battery Management System Ma nagement Cards over the network. Y ou c an use XMODEM to upgra de the firmware for a Mana gement Card that is not on the netw ork. When you use FTP or X MODEM t o upgrade the f[...]

  • Page 170

    ® USER’S GUIDE Battery Management System 163 Use F TP or SCP to upgr ade one Battery Managemen t System Management Car d For you to be able to u se FTP to upgra de a single Battery Manag ement System over the networ k: • The Battery Manageme nt System must b e connected to the netw ork. • The FTP server must be enabled at the Battery Managem[...]

  • Page 171

    ® USER’S GUIDE Battery Management System 164 3. T ype open and the Battery Manageme nt System’s IP address, and press E NTER . If the Por t setting for FTP S erver in the Network men u has changed from its default value of 21 , you must use the non-de fault value in the FTP comma nd. a. For some FTP clien ts, use a colon to a dd the port numbe[...]

  • Page 172

    ® USER’S GUIDE Battery Management System 165 T o use Secure CoPy (SC P) to upgrade the firmware for one Battery Management System Ma nagement Card: 1. Identify and locate the firmware modules described in the precedin g instructions for FTP . 2. Use an SCP command line to tra nsfer the AOS firmwa re module to the Battery Management S ystem. The [...]

  • Page 173

    ® USER’S GUIDE Battery Management System 166 Use F TP or SCP to upgrade mult iple Battery Management Syst em Management Car ds T o upgrade multiple Ba ttery Management System Management Cards using an FTP client or u sing SCP , write a script which automatically performs the pr ocedure. For FTP , use the steps in Use FTP or SCP to upgrade one Ba[...]

  • Page 174

    ® USER’S GUIDE Battery Management System 167 3. Run a terminal program ( such as HyperT erminal), and configure the selected port for 960 0 bps (or 19200 bps), 8 data bits, no p ar ity , 1 stop bit, and no flow control , and save the c hanges. 4. Press E NTER to display t he User Name prompt. 5. Enter your Administrator user name and password. T[...]

  • Page 175

    ® USER’S GUIDE Battery Management System 168 V erifying Upgrades and Updates Overview T o verify that the firmware upgrade was successful, see the Last T r ansfer Result message, availab le through the F TP Server option of the Network menu (in the control con sole only), or use an SNMP GET to the mfiletransferSt atusLas tT ransferResult OID. La[...]

  • Page 176

    ® USER’S GUIDE Battery Management System 169 Alarms Fault Alarm Criteria Fault LED Fault Criteri a Charger V oltage Low Charger Less than 2.1 volts per cell for lead-acid batteries, or as set by user . Charger V oltage High Charger Greater than 2.4 volts per cell for lead-acid batteries or as set by user . Shorted Cell Batteries Less than ((#Cel[...]

  • Page 177

    ® USER’S GUIDE Battery Management System 170 Alarm Relay and LED Operation Situ atio n/Co nditi on Ala rm R ela y St a tus LE Ds N OTE : Alarm Relay operates as a “Fail- Safe” device th at is energized durin g non-alarmed peri ods. Norma lly Open Con t acts ( de- energized) Managem ent Controller Bat ter ie s Char ger Env ir onm ent Normal O[...]

  • Page 178

    ® USER’S GUIDE Battery Management System 171 T r oubleshooting Management Car d Access pr oblems (Battery Management Syste m Management Ca r d) Problem S olution Unable to ping the Managem ent Card Is the Management Card’s S tatus LED (on the front p anel of t he master controller) green, indicating it is running its SNMP agent on the network?[...]

  • Page 179

    ® USER’S GUIDE Battery Management System 172 Cannot access the control console through a seria l connection Make sure that you did not change the baud rate. T ry 2400, 9600, 19200, or 38400. Cannot access the control console remotely • Make sure you are using the correct access method (T elnet or SSH). An Administrator can enable these access [...]

  • Page 180

    ® USER’S GUIDE Battery Management System 173 SNMP issues (Ba tter y Management Sys tem Management Ca r d) Problem S olution Unable to perform a GET 1 . V erify the read (GET) community name. 2 . Use the Control Consol e or Web interface to ensure that the NMS h as access. See T elnet/SSH . Unable to perform a SET 1 . V erify the read/write (SET)[...]

  • Page 181

    ® USER’S GUIDE Battery Management System 174 Pr oduct Information W arranty and Ser vice Limited warranty APC warrants the Battery Manageme nt System to be free from defects in materials and workmansh ip for a period of two years from the date o f purchase. Its obligation under this w arranty is limited to repairing or replacing, at its own sole[...]

  • Page 182

    ® USER’S GUIDE Battery Management System 175 Obtaining serv ice (service contracts) If you could not resolve the problem usin g the information in T roubleshootin g , contact APC Worldwide Customer Support at a phone number listed at the en d of this manual, and be ready to provide the following: • The Battery Manageme nt System’s serial num[...]

  • Page 183

    ® USER’S GUIDE Battery Management System 176 Life-Support Po licy General policy American Power Conversion (A PC) does not recomme nd the use of any of its products in the following situations: • In life-support applicatio ns where failure o r malfunction of the APC product can be reasonably e xpected to cause failure of the life -support devi[...]

  • Page 184

    ® USER’S GUIDE Battery Management System 177 Index A About menu option 73 Access Access Type setting for SNMP 48 FTP Server 39 limiting NMS SNMP access by IP address 47 locall y to the control console 11 securit y options for ea ch interface 110 troubles hooting 172 Account ty pes administr ator 13 default user names and passwo rds 13 device man[...]

  • Page 185

    ® USER’S GUIDE Battery Management System 178 BOOTP Afte r IP Assi gnm ent se tting 105 Communication setti ngs 36 DHCP & BOOTP boot process 102 Remain in DHCP & BOOTP mode setting 10 5 BOOTP Only b oot mode setting 3 4 Browse rs CA certificat es in browser’s store ( cache) 117 supported 5 C Cell max voltage limit 27 Cell min voltage li[...]

  • Page 186

    ® USER’S GUIDE Battery Management System 179 DHCP Afte r IP Assi gnm ent se tting 105 APC cookie 106 Communication setti ngs 36 Configurat ion 101 Cookie Is sett ing 105 DHCP & BOOTP boot process 102 Management Card settings 102 Remain in DHCP & BOOTP mode setting 10 5 Require vendor speci f ic cookie t o accept DHCP Address set ting 105[...]

  • Page 187

    ® USER’S GUIDE Battery Management System 180 F Facility (Syslog setting) 49 File transfers 7 1, 158 firmwa re f iles 161 methods 16 2 using F TP or SCP 16 3 using X MODEM 166 upgrading firmwar e 159 obtainin g latest firmware 160 verifying upgr ades and updates 168 Firewall, as es sential to secu rity 126 Firmware upgra de utility 160 Flas h typ[...]

  • Page 188

    ® USER’S GUIDE Battery Management System 181 Manage ment cont roller 7 alarms 2 5 Manua l boot mode sett ing 34 Manua l option to set d ate and time 67 Manufactu re date 73 Map to Syslog ’s Priorities 50 Master controller status c odes 18 Maximum ambient temp erature 28 Maximum pilo t temperature 28 Menus Battery System 18 Configurat ion 27 Da[...]

  • Page 189

    ® USER’S GUIDE Battery Management System 182 Preferen ces 71 Primar y NTP Ser ver 68 Protoco l Mode selecti ng for control conso le access 4 2 selecting f or Web access 54 R RADIUS setti ngs 64 Read access by an NMS 48 Read-o nly user 13 Reboot Manage ment I nterfac e 69 Receiver NMS IP /domain name 83 Recipient s, of traps 83 Resetting lowest d[...]

  • Page 190

    ® USER’S GUIDE Battery Management System 183 e-mail 86 e-mail sett ings 87 SNMP 47 Access Type settin g 48 Community name settin g 47 enabling and disa bling 47 interfa ce 12 NMS IP/Domain Name setting 47 SSH 127 configur ing 40 enabling 40, 42 encrypti on 115 host key as identi fier that c annot b e falsified 1 1 5 file name 45 file sta tus 45 [...]

  • Page 191

    ® USER’S GUIDE Battery Management System 184 setting port assi gnments for extr a securit y 112 subnet mask 33 , 34 system IP address 33, 34 User Class setting 36 , 10 4 Vendor Class sett ing 36, 104 Telnet enabling 42 Telnet interface 12 Telnet/ SSH Access option 42 host key finger prints display ing 46 modifying t he Port settings 43 option in[...]

  • Page 192

    ® USER’S GUIDE Battery Management System 185 V Vendor Class setting 36, 104 W Warning, severity le vel 93 Web int erface 9 enable or disabl e protocols 54 Modifying t he Port setting for FTP 39 for HTTP 55 for HTTPS 55 for SSH 43 for Telnet 43 troubles hooting access problems 172 Web/SS L 52– 60 Secure Sockets Layer . See SSL X XMOD EM 7 1[...]

  • Page 193

    ® USER’S GUIDE Battery Management System 186 APC W orldwide Customer Support Customer support for this or any other A PC product is available a t no charge in any of the following ways: • Visit the APC Web site to access documents in the APC Kn owledge Base and to submit c ustomer support requests. – www .apc.co m (Corporate Headquarte rs) C[...]

  • Page 194

    ® USER’S GUIDE Battery Management System 187 Copyright Entire contents © 2005 American Power Conversion. All rig ht s r eserved. Reproduction in whole o r in part without permission is p rohibited. APC and the APC logo are trade marks of American Power Conversion Corpora tion and may be registered in some jurisdiction s. All other trademarks, p[...]