Linkskey LKV-9208IP User Manual

LKV-9208/16IP

8/16-PORT

IP KVM SWITCH

CASCADABLE RACKMOUNT

USB AND PS/2 TYPE

OSD, FRONT-PANEL BUTTONS, KEYBOARD HOTKEYS

User Guide

Revision 1.6

Prima IP User Guide Rev. 1.6

About this manual

This User Guide is the complete reference to the Prima IP KVM Switch, its functional features and usage. The User Guide can be found on the Prima IP Support CD-ROM disc.

Prima IP documentation List

Installation Guide Printout / Prima IP support CD-ROM disc User Guide Prima IP Support CD-ROM disc How to generate your own set of Certificates Prima IP Support CD-ROM disc

FCC Statement

This equipment has been tested and found to comply with the regulations for a Class B digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with this User Guide, may cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference in which case, the user will be required to correct the interference at his/her own expense.

CE Statement

This is a Class B product in a domestic environment, this product may cause radio interference, in which case the user may be required to take adequate measures.

Prima IP User Guide Rev. 1.6

TABLE OF CONTENTS

1 INTRODUCTION .............................................................................................................................. 1

1.1 P

1.2 S

1.3 P

2 PRIMA IP INTALLATION ............................................................................................................ 11

2.1 C

2.2 S

2.3 C

2.4 M

2.5 C

2.6 C

2.7 I

2.8 S

2.9 S

3 MAKING A VIEWER CONNECTION ......................................................................................... 27

3.1 I

3.2 I

3.3 I

3.4 S

3.5 E

3.6 M

3.7 S

3.8 WIN32 V

3.9 T

3.10 T

3.11 V

3.12 J

3.13 C

4 PRIMA IP MANAGEMENT OVER A SECURE HTTPS BROWSER CONNECTION……..47

4.1 WEB-

4.2 D

4.3 M

4.4 MAIN/S P

4.5 MAIN/TCP/IP S

4.6 M

4.7 KVM S

4.8 KVM S

4.9 KVM S

4.10 KVM S

4.11 KVM S

4.12 KVM S

RIMARY FEATURES

YSTEM

ARCHITECTURE

RIMA

IP E

XTERNAL

HECKLIST BEFORE ET UP THE ONFIGURE

ORE ONFIGURE ONFIGURE YOUR FIREWALL/ROUTER FOR ACCESSING

NSTALL

ELECT A ELECT A

NSTALL NSTALL MPORT CERTIFICATES TO

PECIFY THE

STABLISH THE VIEWER CONNECTION

OUSE AVE THE

ITLE HE

SELECT

IEWER

AVA

OMMON

OWNLOAD/VIEWERS

AIN/DATE

SYNCHRONIZATION

ASSWORD POLICIES

AIN

ETTINGS

OUSE ACCELERATION

PHYSICAL YOUR

TIPS FOR

CERTIFICATES ON

SECURITY USER

WIN JAVA

CURSORS

CONNECTION IEWER

BAR

INFORMATION

COMPUTER BOX

QUICK

VIEWER

VIDEO

BASED

MANAGEMENT

ECURITY

/WAN PPP – L

EVER/LOG ERVER/MAIN ERVER/VIEWER

..................................................................................................................................66

ERVER/COMPUTERS ERVER/POWER ERVER/LOCAL

.................................................................................................................... 4

............................................................................................................ 6

VIEWS

INSTALLATION

SERVERS FOR

SERVER

IP A

DDRESS AND

LEVEL FOR

PASSWORD

32 V

IEWER ON THE

VIEWER ON THE CLIENT COMPUTER

VIEWER

...................................................................................................... 8

......................................................................................... 11

CONNECTIONS

DESKTOP

PORT

PRIMA

POLICY

PRIMA

CONNECTION

.................................................................................... 12

CONNECTIONS TO

CONFIGURATION

BASE

............................................................................ 18

IP..................................................................................... 22

VIEWER

CONNECTION

....................................................................................... 25

CLIENT

COMPUTER

VIEWER ON THE CLIENT COMPUTER

OPTION BEFORE

.................................................................................... 31

SYNCHRONIZATION

OPTIONS

CHARACTERISTICS

........................................................................................................ 38

................................................................................... 33

.......................................................................................... 33

....................................................................................... 34

................................................................................................... 38

.............................................................................................................. 40

CHARACTERISTICS

DISPLAY

& T

IME

– C

ETTINGS

PROBLEM

– D

ATE

.................................................................................................................. 51

ERTIFICATES

....................................................................................………………..53

OGGING

– L

OGGING

SETTING

CONNECTION

CONTROL

CONSOLE

............................................................................................................75

........................................................................................... 44

TROUBLESHOOTING

INTERFACE OWNLOAD

, T

IME

– P

ORT AND

SERVER

– KVM S

– P

ORT AND

................................................................................. 47

PROGRAMS FOR

, G

LOBAL

TIME

INSTALLATION

SETTINGS

EVENTS

– V

– E

NABLE THE POWER CONTROL

– C

ONFIGURE

.................................................................... 58

................................................................... 62

ERVER

MAIN

IDEO

SERVER

SETTINGS

LOCAL

PRIMA

IP ............................................ 14

........................................................... 16

PRIMA

........................................................ 24

.......................................................... 27

................................................................ 27

MAKING A

.................................................... 44

VIEWERS

ZONE

SUPPORT AND

, V

IEWER

ENCRYPTION AND

.......................................................... 56

SETTINGS

NAME AND

........................................................ 69

CONSOLE

ACROSS INTERNET

............................ 28

CONNECTION

........................................ 50

NTP

........................................ 63

KEYBOARD

..................................... 72

AUTHENTICATION AND

....... 21

................. 30

SERVER

TYPE

Prima IP User Guide Rev. 1.6

4.13 KVM S Y

OUR VIDEO DISPLAY MODE DATABASE

4.14 U

4.15 U

4.16 U

4.17 U

4.18 U

4.19 A

4.20 A

4.21 A

4.22 M

4.23 M

4.24 M

4.25 M

4.26 M

4.27 A

5 LOCAL CONSOLE OPERATION................................................................................................. 99

5.1 C

5.2 L

SERS/LOCAL SERS/USER SERS/REMOTE SERS/RADIUS

CCOUNTING SERVER SERS/CURRENT LARMS/EMAILS LARMS LARMS/SELECTIONS

AINTENANCE/SOFTWARE

NFORMATION

AINTENANCE/SOFTWARE AINTENANCE/FIRMWARE AINTENANCE/CONFIGURATION

UPLOAD

AINTENANCE/REBOOT

PPLY

ERVERS

ONTROL

OCAL

ERVER/VIDEO

GROUPS

/SNMP – S

.....................................................................................................................................96

SETTINGS/RESTART

.................................................................................................................................. 98

INTERFACES

CONSOLE

MODE

DATABASE

– T

SERVERS

ACCOUNTING

.............................................................................................................86

STATUS

– S

ENDING

– S

DATABASE

- M

ANAGING THE

UNING IN WITH THE

– T

UNING IN WITH THE

– C

– S

HOWING THE

SNMP M

ELECT THE

VERSION

– K

EEPING

................................................................................ 77

ONFIGURE THE SETTINGS FOR THE

CURRENTLY

NOTIFICATIONS FOR

ESSAGES FOR

ALARM-TRIGGERING

– F

LASH

, M

USER

ACCOUNTS

REMOTE

CRITICAL

IMAGE AND

ODIFYING AND

AUTHENTICATION

CONNECTED

CRITICAL

SERVER

EVENTS

KVM F

AUGMENTING

.......................................... 79

RADIUS

USERS

SERVER

.................................... 91

IRMWARE

SERVERS

SERVERS.

................... 88

EVENTS

VERSION

.............. 90

.......................................................................................................................... 93

UPGRADE

– C

ONFIGURATION

SERVERS

............................................................................................................. 99

HOTKEY

OPERATIONS

–UPGRADING THE

SAVE AND

RESTORE

BACKUP AND UPLOAD

– V

ALIDATE

............................................................................... 103

SOFTWARE VIA

FIRMWARE VIA

– C

ONFIGURATION

NEW

SETTINGS

WEB

.................. 94

WEB

................... 95

BACKUP AND

..................................... 97

& R

ESTART

VIDEO

...... 81

..... 89

ii -

Prima IP User Guide Rev. 1.6

1 INTRODUCTION

The Prima IP 8 / Prima IP 16 is a 8/16-port IP-based KVM Switch with single-port KVM Link Extender over IP. In addition to the traditional local console, it provides a remote access over the LAN/Internet IP network. It is functionally versatile, robust and ultra-secure. It supports full 1024-bit PKI authentication, 256-bit SSL data encryption, LDAP, RADIUS as well Active Directory authentication and RADIUS accounting.

Prima IP KVM Switches

Today, the IP-based KVM Switch with multi-port capacity has been regarded as a reliable solution to address the critical issue of server rack management with admin’s ready access anytime anywhere. Prima IP 8 / Prima IP 16 is designed with a view to offer a cost-effective yet fullfeatured functionality under these scenarios.

Total server control from BIOS level up anytime anywhere

The Prima IP 8 / Prima IP 16 gives users total control over its total 8 / 16 server ports, from

preboot stage such as the BIOS-level CMOS setting up to the GUI applications and daily maintenance routines such as power cycling (power control unit required). And all these could be

nicely done either on local console or using a thin-client software viewer on any computer. All you need for accessing your computer remotely is to login, download the viewer, and get yourself connected to a whole bunch of servers in seconds.

Upgrade and Configuration Backup is just a breeze

The Prima IP 8 / Prima IP 16 is fully Web-enabled to allow software upgrade and configuration upload/backup over the Web Management Interface. All you need to do is upload the files from its web management interface, and restart it to work with latest functionalities within minutes and can be performed across oceans-by an SUPERADMIN remotely!

Total Control Anytime Anywhere

With Prima IP 8 / Prima IP 16, the server administrator can access enterprise server room or data center on his own seat without toils and troubles of going anywhere from across the street to oversea. Organizations can enjoy a centralized and cost-effective control over its dispersed servers in different branch offices around the world, saving money for outsourcing costs.

Rackmount Cascadable with OSD Menu Control

In addition to keyboard hotkeys and front-panel buttons, Prima IP 8 / Prima IP 16 also provides OSD Menu for intuitive KVM switching operations. Its cascadable feature can upscale the server number up to 256 by cascading with other PRIMA-4, PRIMA-8 or PRIMA-16 KVM Switch.

- 1 -

Prima IP User Guide Rev. 1.6

Both USB and PS/2 interface support on PC side offers maximum convenience in a computing environment that accommodates both newer USB-enabled computers and older computers with only PS/2 interfaces.

Versatile backup connection featuring a PPP Server or PPP Client

To provide a redundancy of a backup connection system while network might no longer function in critical situation, Prima IP also allows an easy and convenient PPP connection over the dial-in modem phone line. It could serve as a PPP server to accept a peer computer to make PPP connection request over a dial-in modem phone line. On the other hand, Prima IP could also serve as a PPP client to dial-in to your ISP or enterprise PPP serve r to connect to internet. Thus, the PPP server/client feature allows users a second backup system, which offers a direct cable/modem dial-in access to your connected servers via PSTN while your network is down.

Critical Advantage over other remote server management solution

The advantages of using Prima IP KVM Switch, as compared to the conventional software remote control solution is that: The hardware-based remote control solution such as Prima IP is capable of accessing the connected servers regardless of the server states while software remote control solution cannot be functional while the server is still in the POST or preboot stage or in a “blue screen of death”. The Prima IP offers a server management capacity of up to 256 connected servers by cascading with Prima KVM switches. There is no need to install any software utility on the server side. Prima IP also offers power on/off alternatives if used with a remote power control unit.

KVM Switch Management

Prima IP 8 / Prima IP 16 not only provides remote user access, but also plays the role of KVM management. It manages the software version of all KVM switches connected in the daisy-chain, and upgrades automatically any KVM switches whose software is not the latest. It displays the KVM error and information messages into its server log. It permits to setup remotely the name of computers that are displayed in the OSD, the local user name and password.

Stability and ultra-security with flexibility and convenience

The Prima IP distinguishes itself among its peer products not only in its stability and durable performance, but also in its industry-standard security features such as full 1024-bit PKI Authentication and 256-bit SSL data encryption. Together with 3 levels of viewer connection security levels in combination with 3 types of password policies plus three categories of user privileges, all these make Prima IP a ultra-powerful IP KVM Switch with ultra-flexibility for a customized balance between data safety and user convenience. On the other hand, the robustness and the ease of maintenance of the embedded systems involve zero costs for the unit management and maintenance.

Global Time Zone and Time Servers Support

To make Prima IP really comfortable with all the global time zones it will be deployed in, it is vital to provide a convenient Global Time Zone support for a correct time stamp to all logging events, alert e-mail notifications. This will not leave server administrators in troubles with calculating time differences. Additionally, the Prima IP also supports NTP time server and keep its time always sync with the timer server you specify. The Prima IP is even sophisticated enough to take care of the daylight saving time in each and every Time Zone/Region, thus saving troubles for updating time frame with daylight saving specifics every six months.

- 2 -

Prima IP User Guide Rev. 1.6

Upgrade and Configuration Backup is just a breeze

Prima IP is fully Web-enabled to allow software upgrade and configuration upload/backup over the Web Management Interface. All you need to do is to upload the files to Prima IP over Web interface and it is freshly restarted and begins working with those latest update functionalities and features. Web update can be easily performed across internet-by a remote SUPERADMIN!

Advantages Galore

With Prima IP, the server administrator can access enterprise server room or data center on his own seat without toils and troubles of going anywhere from across the street to oversea. And organizations can enjoy a uniquely centralized and cost-effective control over its dispersed servers in different branch offices around the world, saving money for outsourcing costs.

- 3 -

Prima IP User Guide Rev. 1.6

1.1 Primary Features

General features

▪ 8/16-port IP-based Cascadable 19” Rackmount USB PS/2 KVM Switch w/ OSD ▪ Provides 1 Ethernet port for remote control over IP ▪ Port capacity scalable up to a maximum of 256 computers with cascaded configuration of

other Prima KVM Switches (Prima 4/Prima 8/Prima 16)

▪ PS/2 local [analog] console for local rack server management ▪ USB and PS/2 Dual Interface Support on PC side ▪ Operation and channel selection by front-panel buttons, keyboard hotkeys, OSD menu and

Viewer interface

▪ Dual numerical LED displays and LED port indicators for easy bank/port status monitoring ▪ Autoscan mode for quick browsing of all connected computers ▪ Serial port for external modem/remote power control device ▪ Multiple users can login in a same remote server desktop ▪ Total control over the remote server from BIOS level up to GUI applications ▪ Remote Power On/Off support ▪ Ultra-security using full 1024-bit PKI Authentication / 256-bit SSL encryption ▪ Work with LDAP / RADIUS / Active Directory Servers ▪ Ethernet 10/100 and serial PPP server and client connections

TCP/IP remote connection

▪ 256-bit SSL-encrypted Web Management Interface for all settings and upgrade / backup

features

Thin-client Viewer Program

▪ Win-32 viewer and Java viewer for cross-platform compatibility ▪ Connection options configurable for optimized performance ▪ Shared, Non-Shared and View Only sessions ▪ Easy download and installation ▪ Multiple viewer instances can be run on a same client computer ▪ Options for Automatic video centering and optimization

Hi-Speed PPP Connection

▪ PPP Connection support over serial interface [RJ12] up to 1 Mbps ▪ PPP server enabling for PPP connection across a pair of modems for secure or backup direct

access

▪ PPP client enabling for PPP connection to the internet with a modem

Video server

▪ Support up to 1600 x 1200 @ 60 Hz resolution ▪ 8/16-bit color ▪ 3 Video Quality settings ▪ 4 Video Compression schemes ▪ 8-bit color reduction ▪ Configurable database to set up new or unknown VGA modes ▪ Virtually compatible to any KVM Switch through automatic video quality optimization

Power ON-OFF Control Support

▪ Remote power ON-OFF control over serial interface ▪ Serial commands configurable to fit serial power control devices ▪ Power ON-OFF privilege only for the SUPERADMIN users

- 4 -

Prima IP User Guide Rev. 1.6

Security

▪ 1024-bit Public key Authentication using certificates generated by an external CA ▪ 256-bit SSL Encryption for keyboard, mouse and video signal transmissions ▪ Remote authentication support for LDAP or RADIUS servers ▪ RADIUS accounting support ▪ 3 SSL security levels :

o No authentication – No encryption o Server Authentication – SSL encryption o Server & Client authentication – SSL encryption

▪ 3 password policies :

o No Password o One global password for all users o One different password for each user

Alarms and Notifications

▪ Alert e-mail notification and SNMP trap messages for critical server events such as No Video,

Blue Screen and NumLock Test Failure

User Management ▪ User login either by querying the local user database or by connection to remote LDAP or

RADIUS server

▪ 3 user privileges :

o SUPERADMIN – to access complete set of management features and user

features, including Power ON-OFF remote servers

o ADMIN – partial set of management and all user features o USER – only user features

User Group management

▪ Create specific user groups, each of which is assigned with privilege to access only those

computers that are within that group

Global Time Zone Support

▪ Time support for all continents and major cities ▪ Time synchronization by connection to any NTP time servers ▪ Automatic Daylight Saving management

Maintenance and KVM management

•

Manages the software version of all KVM switches connected in the daisy-chain

•

Upgrades automatically any KVM switch whose software is not the latest

•

Record the error and information messages of all KVM switches in the daisy-chain within its server log

•

Setup remotely the name of computers that are displayed in the OSD, the local user name and password

- 5 -

Prima IP User Guide Rev. 1.6

1.2 System Architecture

The Prima IP is based on an embedded Linux platform for computing power and rugged stability. The Prima IP employs a High speed Processor to ensure excellent video quality and fast keyboard / mouse response across the Internet, even when bandwidth availability is limited.

LAN/WAN Configurations The Prima IP KVM switch enables local and remote access of the connected computers / servers behind anytime anywhere.

Prima IP KVM Switch - Basic Configuration

The Prima IP KVM switch can be daisy-chained with multiple Prima KVM switches (up to 16 units) to upscale port capacity up to hundred computers/servers.

Prima IP KVM switch daisy-chained with other Prima KVM Switches.

- 6 -

Prima IP User Guide Rev. 1.6

Power Control Configuration The Prima IP KVM switch supports Serial Power Control device to facilitate the remote Power ON/OFF and power cycling of the connected computers/servers.

Prima IP connected to a Remote Power Control Device

PPP connections The Prima IP KVM switch can serve either as a PPP client or a PPP server to support PPP connection. The Prima IP offers a second backup connection over modem phone line in case the network is down.

Prima IP as PPP server to accept dial-in request from a remote PPP client via modem line

Prima IP as PPP client to dial-out to ISP for remote clients to access via internet

- 7 -

Prima IP User Guide Rev. 1.6

1.3 Prima IP External Views

Prima IP Front View

Prima IP 8 - Front-panel

Prima IP 16 - Front-panel

Status LEDs The Dual Numerical LED shows bank number of the Prima IP KVM Switch within a

Daisy-chain. The 10/100Mbps LED is lit as solid orange when the current digital link is running on 100Mbps speed. The Link/Act LED gives off solid green light when a network link is established and flashes whenever network transmission are perceived on the digital port. The Power LED indicates the Power On status when it is lit as solid red. The Video LED indicates the normal functioning of video server when it is blinking orange.

Prima IP Rear View

Prima IP 8 - Rear-panel

- 8 -

Prima IP User Guide Rev. 1.6

8/16 x PC ports The PC port is where you connect to your computer. The PC port is a HDB 15 connector integrated with USB and PS/2 keyboard, mouse and video. To connect PC port to one of your computer, you may either use USB-VGA KVM Combo Cable, or 3- in-1 USB PS/2 KVM Combo Cable, depending on your package option.

Prima IP 16 - Rear-panel

Local Console - PS/2 Keyboard port This is where you connect the PS/2 keyboard for local console.

Local Console - PS/2 Mouse port This is where you connect the PS/2 mouse for local console.

Local Console - Monitor Port (HDB-15) This is where you should plug in the Monitor for your local console on Prima IP.

Ethernet Port (RJ-45) The Ethernet port offers anytime anywhere access of Prima IP and subsequently the conventional KVM Switch(es) and servers/computers connected behind it to the remote login clients from LAN/Internet.

The Daisychain OUT Port (HDB-15) The Daisychain OUT port is of a HDB 15 female connector, where you can daisy- chain downstream to a Prima KVM switch.

Serial Port 1 (RJ-12) This is the so-called Console Management port, and it is where you connect the serial console cable for advanced console management of Prima IP unit via a serial terminal emulation utility such as Windows HyperTerminal or Minicom on Linux/Unix.

Serial Port 2 (RJ-12) The serial control port allows you to connect to either an external modem or a power

control unit or to a cascaded chain of power control units. When added with an external modem to its serial control port, Prima IP could serve either as a PPP server to

allow direct cable connection or dial-in connection from its peer computers, or as a PPP client to dial-in to the ISP or an enterprise PPP server. Furthermore, through serial commands sent over its serial control port, Prima IP can perform remote power on/off and power cycling task via the (cascaded) power control module(s).

- 9 -

Prima IP User Guide Rev. 1.6

Prima IP Power Receptacle You should use the DC9V 4A Adapter provided within the package. The center pin is

a positive polarity. Use of any other adapter will nullify the warranty.

Restore-to-Default Button The Restore-to-Default button is a tiny recessed button located to the left of the

Power Receptacle, and can only be accessed by prying down with a pointed needle tip. To depress the recessed button for over 5 seconds, and upon release, it will restore restore Prima IP to factory default – the default IP settings and user account settings that come with factory default.

10 -

Prima IP User Guide Rev. 1.6

PRIMA IP INTALLATION

Before installing the KVM switch, you should run through the following peripheral checklist

to ensure a proper setup of your KVM Switch….

2.1 Checklist Before Installation



Suitable KVM cables to connect the Prima IP KVM Switch to the keyboard, video and mouse ports of each of your PC. For each USB style (or PS/2 style) computer connected, you should have the USB-VGA KVM Combo Cable (all male), or the 3-in-1 USB PS/2 KVM Combo Cable. The 3-in-1 USB PS/2 KVM Combo Cable is highly recommended for your convenience.



A monitor with a standard D-sub 15-pin video connector (HDB-15) that you have verified to be working when connected directly to each of your PCs.



A standard PS/2 or USB style Microsoft or Logitech keyboard.



A standard PS/2 o r U S B style Microsoft or Logitech compatible 5-key mouse.



KVM Switch (Prima 4/Prima 8/Prima 16).



Switches.

Daisy-chain cable(s), necessary only if you need to connect to other Prima

Terminator, necessary only if you need to daisy-chain multiple Prima KVM

Figure 2-1 The USB-VGA KVM Combo Cable

Figure 2-2 The 3-in-1 USB PS/2 KVM Combo Cable

11 -

Prima IP User Guide Rev. 1.6

Figure 2-3 The Daisy-chain Cable [M-HDB15-to-HDB15-F]

Figure 2-4 The [Daisy-chain] Terminator

2.2 Set Up The Physical Connections

Step 1. Power on the Prima IP: Connect the Prima IP Power adapter to power on

the Prima IP KVM Switch.

Step 2. Set up a local console on Prima IP: If a local console (that is a physical keyboard, mouse and monitor connected to the Prima IP) is required, connect a keyboard and mouse to the Prima IP local console ports (that is keyboard, mouse and monitor port specifically).

Step 3. Connect to computers: If you have no intention to daisy-chain your Prima IP KVM switch with either of the Prima KVM switches (Prima 4/Prima 8/Prima 16).

just connect each PC port to a computer, using the

USB-VGA KVM Combo Cable

You

the 3-in-1 USB PS/2 KVM Combo Cable.

If you are using any PS/2 computer: Please make sure all of your PS/2 computers are

powered off before connecting to the KVM Switch. Otherwise, the non-PnP PS/2 interfaces might not recognize the PS/2 keyboard and mouse later. However, USB computers do not have this limitation.

12 -

Prima IP User Guide Rev. 1.6

Prima IP configuration – Single server mode

3.1 Make sure (at least the PS/2) computers that are to be connected to the KVM switch are powered off. If not, power them off before you proceed with the following steps.

If you use only one single Prima IP KVM switch in non-cascaded application, you should

ignore step 3.2, 3.3, and 3.4 then jump directly to step 4.

switch, go to step 3.2. You can daisy-chain up to 16 levels of KVM Switches.

3.2 Use the daisy-chain cable (M-HDB15-HDB15-F) to connect the DaisyChain O u t

Port Port (HDB 15 male) of the second Prima KVM switch. Then connect the power adapter cord to the second Prima KVM switch to power it on.

3.3 If you have yet another switch to be daisy-chained, just repeat step 3.2 to connect them. You can daisy-chain up to 16 units. Remember to plug a Terminator onto the Daisy-chain Out Port of the last Prima KVM switch unit.

If you want to daisy-chain multiple Prima KVM Switches to the [master] Prima IP KVM

(HDB 15 female) of the [master] Prima IP KVM Switch to the DaisyChain IN

The 3-in-1 USB PS/2 KVM Combo Cable

13 -

Prima IP User Guide Rev. 1.6

3.4 (Now your Prima IP KVM switch, and those Prima KVM Switches daisy-chained below should have been powered-up and initialized….) Connect each computer to a PC port on the backpanel of the KVM switch(es). You should use the special USB-VGA KVM Combo Cable (3-in-1 USB PS/2 KVM Combo Cable with the USB-to-PS/2 adapter) for connection to a USB computer (PS/2 computer). (Other types of cables may be used accordingly.)

a USB connector and a HDB video connector for the computer connection. When connecting with a USB computer, just plug the USB connector to it and leave the PS/2 connector free. When connecting with a PS/2 computer, just add a USB-to-PS/2 adapter to the USB connector and you’ll have a PS/2 connector for mouse. DO NOT try to connect both USB connector and PS/2 keyboard connector to a computer at the same time.

Step 4. Boot up connected computers (if they are not powered-on yet): After the computers has booted. Then, you can go forth to verify the connections with each of the connected computers. On the Prima local console you should switch to every computer and verify that the keyboard, mouse and monitor are all working on each of the connected server(s).

Now that you have set up your local console on Prima IP, you can now configure your connected servers just by using the ready access provided by Prima IP’s local console.

The special 3-in-1 USB PS/2 KVM Combo Cable provides a PS/2 keyboard connector,

2.3 Configure Your Servers For Connections

Prima IP

Mouse acceleration is not supported in Prima IP. Therefore, you must turn off mous acceleration on all your connected servers.

14 -

Prima IP User Guide Rev. 1.6

Turn off mouse acceleration and “Snap to” option

Windows XP Platform Access Control Panel/Mouse. On the Mouse Properties tab, select the Pointer Options page :

1. Adjust the pointer speed slide bar to the exact middle.

2. Uncheck the Enhance pointer precision option.

3. Uncheck the Automatically move pointer to the default button in dialog box.

Click OK.

Windows 2000 Platform Access Control Panel/Mouse. On the Mouse Properties tab, select the Pointer Options page :

1. Adjust the pointer speed slide bar to the exact middle.

2. Select the Acceleration as None.

3. Uncheck the Move pointer to the default button in dialog box.

Click OK.

- 15 -

Prima IP User Guide Rev. 1.6

Windows 98 Access Control Panel/Mouse. On the Mouse Properties tab, select the Motion page. Under the Pointer Speed category:

1. Adjust the pointer speed slide bar to the slowest (leftmost) position.

Click OK.

gives mouse acceleration option and some don’t. If you see any mouse acceleration option, please uncheck it. If there is no mouse acceleration available on the setting page, you can adjust the mouse speed slide bar to either x1 or the slowest position (such as on Linux platforms). But sometimes, it requires a middle position on the speed slide bar to make mouse synchronization on the viewer side, for example, Windows XP requires a middle position on mouse speed. Anyway, the worst case is that you have to make some trial and error to make your mouse acceleration off and the speed as x 1 (could be at the slowest position or the middle position).

The mouse setting page on different Windows platforms might be quite different, some

2.4

More Tips For Server Desktop Configuration

There are several aspects that have to be taken into consideration and maybe configured on your computers or servers for best performance:

(1) Resolution modes should refrain from too much peculiarity and better

adopt ones that are within Prima IP’s standard support.

(2) Turn off the Menu special transition effects on your operating system

(especially video refreshing effect, especially when you are using Medium or Low Video Quality as your video filter setting on Prima IP.

(3) Adjust the server desktop backgrounds as containing preferably plain, solid

colors with simple designs (only for improving video refreshing speed when bandwidth is critically limited. No need to do so when bandwidth is ample).

on Windows XP, if you are using any) such as fade for best

16 -

Prima IP User Guide Rev. 1.6

Configure display resolution on your server

some display po

Prima IP supports most display modes up

ssible prob

problems

lems are either no

when your display card is outpu

video or

abnormal

display on viewer screen.

To simplify the standard disp etc.

For the

display factor

lay

modes

suggested display

such as: 800 x 600 @

fore connection

modes,

please refer

1600 x 1200.

tting an

to Prima IP, we

60Hz/75Hz,

to the

However, you might encounter

unusual disp

1024 x 768 @

following table.

lay mode. These

suggest you use mo

60Hz/70Hz,

Note: These are suggested display modes for server desktop-connected Prima IP. However, the actual display modes for as specific server desktop will be dependent on its display card. Some display modes listed here might not be feasible with some display card. Try to do some trials to determine the best display mode for your desktop on Prima IP viewer.

Disable special transition effects on the screen outputs of your connected servers

Go to disable transition effects such as perform the same check on each of your connected servers.

effects might Low Video Qual screen, please turn off the

Control Panel / Display / Appearance / Effects

Fade

On Windows platforms such as Windows 98, 2000, XP and 2003 Server, some transition

yield

undesirable video refreshing artifacts, especia

ity as

your video filter

special transition effects.

settings. To avoid

for the menus and tool tips. You should

17 -

. And then uncheck the option to

lly when you

undesirable artifacts

are

using Medium or

from

appearing on your

Prima IP User Guide Rev. 1.6

Choose plain and solid server desktop backgrounds for your connected servers

To optimize the bandwidth efficiency and speed up video performance across bandwidth-limited environment, one should preferably adopt a server desktop which should be as plain as a color background with a solid and light-colored graphics. Complex patterns or color gradients should be avoided, if bandwidth is critical in your application, since they will create more bandwidth demands for their transmission across internet.

2.5 Configure IP Address And Port Base

Step 1. Connect your

The factory de

IP address : 192.168.1.200 Net mask : 255.255.255.0 Gateway : 192.168.1.254 DNS :

Step 2. Access the address box of your browser window on a remote client:

Prima IP

https://192.168.1.200:5908

Prima IP

fault network setti

192.168.1.254

Web Browser Management interface by typing the following

to the Ethernet LAN.

ngs for

Prima IP

are as

follows:

18 -

Prima IP User Guide Rev. 1.6

Step 3. A login screen will ask you for the account name and password. Use the default account and password:

User Name : superuser

Password : superu

After log in, you will see the

Prima IP

Web Browser Management Interface.

Step 4. Go to the Main / LAN TCPIP page on the

Prima IP

Browser Management Interface and modify the IP address and port base for your Prima IP KVM switch. For example, if you choose your IP setting for the Prima to be 192.168.1.210 with a port base of 5900. Refer to

Step 5. Apply the new setting by clicking

Step 6. Verify Connect to

Prima IP

Section 4.5, Main / TCP/IP Settings – Port and IP Settings.

Apply Settings

’s network connection.

by Web Management Interface using the new IP address. Note that the IP address should be followed immediately by a colon and the port base +8 for port number.

- 19 -

Prima IP User Guide Rev. 1.6

https://<IP_address>:<PortBase+8>

For example, if the IP address is 192.168.1.210 and the port base number is 5970, then you should enter

usual “h

If you

Reme

ttp”.

are

satisfied with

mber

Otherwise,

https://192.168.1.210:5978

that it’s a secure SSL

the

connection will

the

def

ault

port

crypted connection, so you

not be

base setting as

established.

5900, you can leave

should

the port

type “https” instead of

base

unmodified.

the

The default port base for port 5900 (port base) for viewer connection and port 5908 (port base + 8) for https web browser connection.

Prima IP

connection is set at 5900. This means it will use

<Port base> – used for viewer connection <Port base + 8> – used for secure browser connection

However, if you intend to use your own port base setting, just access the Web Management interface and configure the port base. For example, if you choose 5970 as your port base, then you have:

5970 – used for viewer connection 5978 – used for secure browser connection

Click

Submit

button and

Apply Settings

button to validate your new setting.

Now you have installed Prima IP within your Local Area Network environment, and can try to establish a remote viewer connection…

20 -

Prima IP User Guide Rev. 1.6

2.6 Configure

our

irewall/Router

or Accessing

Prima IP Across Internet

To allow access to the Prima IP behind corporate firewall/router, please configure the following settings on your firewall/router (not on your Prima IP):

Step 1. Configure a virtual server on your router:

your network administrator to configure for you) a virtual server as mapped to the Prima IP

Step 2. Open a port range (<port_base> ~ <port_base+9>) both inbound and outbound for the virtual server:

what you have configured as port base for Prima IP previously. Taking previous example, if you configure Prima IP as having a port base of 5970, then you should open port range 5970~5979 ( that is, <port_base> ~ <port_base +9>) both for inbound and outbound, in which,

local IP address.

you should open a port range according to

<port_base> = 5970 is the Prima IP viewer connection port

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

<port_base + 8> = 5978 is the browser SSL connection port <port_base + 9> = 5979 is for viewer internal communication, etc.

you should configure (or ask

For example:

Router internet IP  virtual server (port range open)  Prima IP local IP

61.232.134.120  virtual server (port 5970~5979 open)  192.168.1.7

Once you haved configure a virtual server with appropriate port range open (

<port_base> ~ <port_base_+_9>

across internet by using the public IP address and designated port number. For example, in this case,

), you can then try to access your Prima IP

Browser access: https://

Viewer access: 61.232.134.120:5970

61.232.134.120:5978

If you have domain name mapping to the public IP address, you can also use the domain name, for example:

Browser access: https://

Viewer access: www.mycompany.com:5970

www.mycompany.com:5978

Once you have changed

your

router

accordingly, if you want

the port b

internet

ase of yo

access

ur Prima IP, you should also

to come

21 -

across.

modify

the open port

range

Prima IP User Guide Rev. 1.6

2.7 Install Certificates

- authenticated connections as long as your network safety is not the other due file names and form However, if you simply use the your own certific ge Prima IP supp

You could use

practices

default certificates may

neration using XCA, please refer

within your Local Area Netw

precautions

ort

the

default set of certificates (could be found on CD

against network intrusions. Or if you have already

ats

required by Prima IP,

the

default set of certificates that comes with

estab

lish a connection

ates for

Prima IP

CD-ROM).

ork,

or go

forth

How to Generate Pr

which is su

you can

your servers. . So we strongly

generate

Prima IP

jeopardized. We advise that it is

pposed to be

then

use

them

ima IP Certificates using XCA (could

-ROM)

practice making

well secured

obtained a

them

for

Prima IP,

using software like XCA

with

adequate

set of certificates with

Prima IP

viewer

anybody who has a copy of

recommend

some

better to do

firewall

authenti

that you

…..

For

be found on the

cati

certificate

First you have to have these certificates ready on your client computers for uploading to Prima IP via a Web browser. If you haven’t obtained your own Prima IP certificates, you can use the default set of certificates (could be found on the Prima CD-ROM).

IP support

Certificates for the PKI Authentication to be installed on Prima IP: (1) the root certificate (root.crt) (2) the server certificate (server.crt), and (3) the server private key (serverkey.pem)

Certificates for the LDAP Authentication to be installed on Prima IP: (1) the LDAP certificate (ldapcert.crt) (2) the LDAP private key (ldapkey.pem)

Step 1:

Step 2:

certificate files ….

Access Prima IP Web Management Interface and go to the Security page.

Click the

Browse

Button and use the

Choose File

dialog box to browse to

22 -

your

PKI

and the

on.

tain

Prima IP User Guide Rev. 1.6

Step 3.

uploading is completed, you can then see the prompt page for reboot.

Click UPLOAD button to upload the root certificate to

Prima IP

. After the

Click

Reboot

server.crt

and wait till Prima IP is booted up, then likewise try to import the

and the

serverkey.pem

The certificate and key for LDAP authentication could be uploaded likewise.

do one complete reboot at the end when you finish uploading all of them. To return to the previous Security page for uploading another certificate without going to immediate reboot, you just click the Security page hyperlink on the left frame of the browser window.

You

don’t have to reboot each time when you finish uploading one certificate. You could

23 -

Prima IP User Guide Rev. 1.6

2.8 Select

Security Level For Viewer Connection

Step 1.

select a viewer connection security level. There are three security levels for choice:

Security level 1 offers a non-secured connection, and hence should be used with caution when Prima IP is intended to be accessed through external network. For level 1, there’s virtually no encryption. Security Level 2 offers a secured SSL connection that provides encryption for mouse, keyboard and video but uses no PKI-authentication. Security Level 3 offers a secured SSL connection that provides encryption for mouse, keyboard and video, and uses 1024-bit PKI-authentication.

most keep your servers safe from unauthorized

Go to the

• Level 1: No encryption (No SSL)

• Level 2: 256-bit encryption, no user certificate required for user authentication

• Level 3: 256-bit encryption, user certificate required for authentication (PKI)

The choice of a security level

portance,

Security

especia

page on the Prima IP Web management interface and

to be implemented

lly when your remote server connect

entries and/or network sniffers.

for the

Prima IP

ions

requires a high security that can

viewer connection is of

Step 1-a.

you have to select Level 3 viewer security connection on the Security page of your Prima IP browser interface.

If you choose to implement PKI authentication feature on Prima IP viewer,

Here you should enter the password that has encrypted the server private key file, here in order to make successful viewer connection with setting. If you use the standard set of certificates provided on the Support CD ROM disc, the password that encrypts the server private key is

serverkey.pem

. You should enter the correct server password

server private key

Prima IP

serverpwd

in level 3 security

in the

- 24 -

Prima IP User Guide Rev. 1.6

However, if you use your own set of certificates, you should get the correct server password from the Certificate Authority that issues those certificates.

Step 2.

your selection.

Go to the

Apply Setting

page and hit the

Apply Setting

button to validate

2.9 Select

User Password Policy

Step 1.

Prima IP

can select your password policy for viewer connections:

Select a User Password Policy.

offers three types of password policies On the drop-down combo box, you

• No Password

• Global Password

• User Password

No Password – the viewer will prompt you for no password. Anyone who is with the viewer and passes the security level check of the viewer could well establish the connection.

Global Password – the viewer will prompt you for a global password, which is used by all who want to make viewer connections to Prima IP.

User Password – the viewer will prompt you with user-specific password. With this setting, each login user will be checked against his or her corresponding password before allowing viewer connection.

Global user password : If you adopt the Global Password Policy. Here you should enter the password that is used when the global user password setting is enabled as your active password policy.

Step 2.

your selection.

that

are comb concern.

Go to the

There

available

ination of

Apply Setting

are

altogether

for a flexib

user

password policy and the

nine ( 3 x 3)

ility

page and hit the

possible combinations of Viewer Security

adapt

your secu

SSL /

rity

needs.

PKI Authentication

The

Apply Setting

Levels + Password

administrator can

according

button to validate

lic

choose an optimized

his security/convenience

ies

SL / PKI

should be used SSL authenti IP can establish a remote

Please note:

with due precaution: If you adopts No P

cati

on,

Either

anyone with a viewer and knowledge of the access IP and port

User Password Policy

Password Policy or Security

connection.

25 -

Level

(SSL/PKI authentica

assword Po

tion) settings

licy and No SSL encryption

number of

Prima

/No

Prima IP User Guide Rev. 1.6

Prima IP

Now your Prima IP is ready for a PKI-authenticated plus SSL-encrypted viewer connection! All you have to do is to distribute the followings to you remote connection client:

1. Certifidcates: as you have obtained from your CA (Certification Authority). They are required only if you select level 3 viewer security.

root.crt client_name.p12. (client_name is freely chosen)

2. Certificate password: as you have obtained from your CA. It is required only if you select level 3 viewer security.

clientpwd (if you use the default set of certificate provided on CD-ROM)

3. User account and password: as you have specified in the User Management page. It is required only if you choose User Password policy.

Superuser / superu Admin / 123456 User / 123456

(if you use the default user accounts/passwords)

4. Global Password: as you have specified in the Security Page. It is required only if you use the Global Password Policy.

(you will be prompted when choosing it as your password policy on the Security Page)

26 -

+ 81 hidden pages

Linkskey LKV-9208IP User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual