CommandCenter®
Secure Gateway
CC-SG
User Guide
Release 3.1.1
Copyright © 2007 Raritan, Inc.
CC-0M-E
April 2007
255-80-3100
This page intentionally left blank
Copyright and Trademark Information
This document contains proprietary information that is protected by copyright. All rights reserved.
No part of this document may be photocopied, reproduced, or translated into another language
without express prior written consent of Raritan, Inc.
© Copyright 2007 Raritan, CommandCenter, RaritanConsole, Dominion, and the Raritan
company logo are trademarks or registered trademarks of Raritan, Inc. All rights reserved. Java is
a registered trademark of Sun Microsystems, Inc. Internet Explorer is a registered trademark of
Microsoft Corporation. Netscape and Netscape Navigator are registered trademarks of Netscape
Communication Corporation. All other marks are the property of their respective owners.
FCC Information
This equipment has been tested and found to comply with the limits for a Class A digital device,
pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection
against harmful interference in a commercial installation. This equipment generates, uses, and can
radiate radio frequency energy and if not installed and used in accordance with the instructions,
may cause harmful interference to radio communications. Operation of this equipment in a
residential environment may cause harmful interference.
VCCI Information (Japan)
Raritan is not responsible for damage to this product resulting from accident, disaster, misuse,
abuse, non-Raritan modification of the product, or other events outside of Raritan’s reasonable
control or not arising under normal operating conditions.
U
C
LI STED
1F61
US
L
I.T.E.
For assistance in North or South America, please contact the Raritan Technical Support Team
by telephone (732) 764-8886, by fax (732) 764-8887, or by e-mail
tech@raritan.com
Ask for Technical Support – Monday through Friday, 8:00am to 8:00pm, Eastern.
For assistance around the world, please see the last page of this guide for
regional Raritan office contact information.
Safety Guidelines
To avoid potentially fatal shock hazard and possible damage to Raritan equipment:
• Do not use a 2-wire power cord in any product configuration.
• Test AC outlets at your computer and monitor for proper polarity and grounding.
• Use only with grounded outlets at both the computer and monitor. When using a backup
UPS, power the computer, monitor and appliance off the supply.
Rack Mount Safety Guidelines
In Raritan products which require Rack Mounting, please follow these precautions:
• Operation temperature in a closed rack environment may be greater than room
temperature. Do not exceed the rated maximum ambient temperature of the appliances
(please see Appendix A in the CC-SG Administrator Guide for additional information).
• Ensure sufficient airflow through the rack environment.
• Mount equipment in the rack carefully to avoid uneven mechanical loading.
• Connect equipment to the supply circuit carefully to avoid overloading circuits.
• Ground all equipment properly, especially supply connections, such as power strips
(other than direct connections), to the branch circuit.
CONTENTS i
Contents
Chapter 1: Introduction....................................................................................................1
Prerequisites...............................................................................................................1
Terminology/Acronyms ...............................................................................................1
Chapter 2: Accessing CC-SG............................................................................................3
Before You Begin........................................................................................................3
Java Runtime Environment (JRE)......................................................................................................3
Disable Pop-up Blockers ...................................................................................................................3
Browser-Based Access via the CC-SG Director Client...............................................4
Browser Based Access via the CC-SG Access Client ................................................6
Possible Error Message in Internet Explorer .....................................................................................7
Thick Client Access.....................................................................................................8
Install the Thick Client........................................................................................................................8
Access CC-SG with the Thick Client..................................................................................................9
CC-SG Director Client Window Components............................................................ 10
CC-SG Access Client Window Components.............................................................11
Chapter 3: Connecting to and Using Nodes via the CC-SG Director Client..............13
Node Icons ......................................................................................................................................13
About Interfaces...............................................................................................................................14
About Connecting to Nodes......................................................................................14
Connect to a Node via a Serial Interface.........................................................................................14
Accessing a Serial Interface for the First Time................................................................................15
Connect to a Node via an Out-of-Band KVM Interface....................................................................16
Connect to a Node via an In-Band KVM Interface...........................................................................18
Managing Node Power via an In-Band Power Interface..................................................................19
Managing Power to an IPMI Server Node .......................................................................................20
Disconnect from a Node............................................................................................21
Node Views...............................................................................................................21
Tree View ........................................................................................................................................21
Custom View ...................................................................................................................................22
Node Sorting Options ......................................................................................................................24
Power Control for Nodes...........................................................................................25
Single Interface Power Control........................................................................................................25
Single Node Power Control .............................................................................................................26
Node Group Power Control .............................................................................................................27
Node Chat.................................................................................................................28
About Searching for Nodes.......................................................................................29
To search for nodes.........................................................................................................................29
Supported Wildcards for Node Search ............................................................................................30
Change My Profile.....................................................................................................31
Change Your Password...................................................................................................................31
Change Your Email Address ...........................................................................................................32
Change the CC-SG Font Size .........................................................................................................32
Set Search Preference ....................................................................................................................32
Chapter 4: Connecting to and Using Nodes Via the CC-SG Access Client................33
About Connecting to Nodes......................................................................................33
Connect to a Node via an Out-of-Band Serial Interface...................................................................34
Connect to a Node via an Out-of-Band KVM Interface....................................................................35
Connect to an iLO/RILOE-Enabled Node........................................................................................37
Managing an iLO/RILOE Power Interface........................................................................................38
Managing Power to an IPMI Server Node .......................................................................................38
Disconnect from a Node............................................................................................38
Power Control for Nodes...........................................................................................38
Single Node Power Control .............................................................................................................38
Node Group Power Control .............................................................................................................39
Node Lists.................................................................................................................40
All Nodes List...................................................................................................................................40
Favorite Nodes List..........................................................................................................................40
Recent Nodes List ...........................................................................................................................42
Custom Views...........................................................................................................42
ii CONTENTS
Add a new custom view...................................................................................................................42
Apply a custom view........................................................................................................................43
Change a custom view ....................................................................................................................43
Change a custom view’s name........................................................................................................43
Delete a custom view.......................................................................................................................43
Assign a default custom view ..........................................................................................................43
Assign a Default Custom View for All Users....................................................................................43
Search for Nodes......................................................................................................44
Supported Wildcards .......................................................................................................................44
Node Chat.................................................................................................................44
My Profile..................................................................................................................45
Change Your Password...................................................................................................................45
Change Your Email Address ...........................................................................................................45
Set Default Node List.......................................................................................................................45
Chapter 5: Generating Reports......................................................................................47
Active Nodes Report.................................................................................................47
User Data Report......................................................................................................48
Report Navigation Features......................................................................................48
Sort report data................................................................................................................................48
Resize column width........................................................................................................................48
Rearrange columns .........................................................................................................................48
View report details...........................................................................................................................48
Appendix A: Keyboard Shortcuts..................................................................................49
FIGURES iii
Figures
Figure 1 CC-SG Director Client Login Screen..............................................................................................4
Figure 2 CC-SG Director Client Home Screen.............................................................................................5
Figure 3 Access Client Login Screen...........................................................................................................6
Figure 4 CC-SG Access Client’s Home Screen...........................................................................................7
Figure 5 Thick Client IP Specification Window............................................................................................. 8
Figure 6 CC-SG Window Components......................................................................................................10
Figure 7 CC-SG Access Client Components .............................................................................................11
Figure 8 The Nodes Tab............................................................................................................................13
Figure 9 Node Profile Screen—Serial Interface.........................................................................................14
Figure 10 Raritan Serial Console............................................................................................................... 15
Figure 11 Node Profile Screen, Out-of-Band KVM Interface......................................................................16
Figure 12 Raritan Remote Client Window..................................................................................................16
Figure 13 Multi-Platform Client Window.....................................................................................................17
Figure 14 Virtual KVM Client Window........................................................................................................ 17
Figure 15 Node Profile Screen, In-Band KVM Interface.............................................................................18
Figure 16 HP's Remote Console Applet.....................................................................................................18
Figure 17 Node Profile Screen, In-Band Power Interface..........................................................................19
Figure 18 Power Control Screen, iLO/RILOE.............................................................................................19
Figure 19 Power Control Screen for an IPMI Server Node ........................................................................ 20
Figure 20 Nodes Tree in Standard Tree View............................................................................................21
Figure 21 Custom View Screen .................................................................................................................22
Figure 22 Add Custom View Window.........................................................................................................23
Figure 23 Edit Custom View Window.........................................................................................................23
Figure 24 Single Interface Power Control..................................................................................................25
Figure 26 Group Power Control Screen.....................................................................................................27
Figure 27 Chat Session .............................................................................................................................28
Figure 28 Search for Node--Left: Find Matching String; Right: Filter by Search Results ...........................29
Figure 29 My Profile Screen.......................................................................................................................31
Figure 30 CC-SG HTML Client-Node Details Screen ................................................................................33
Figure 31 Node Profile Screen—Out-of-Band Serial Interface...................................................................34
Figure 32 Raritan Serial Client Window ..................................................................................................... 34
Figure 33 Node Profile Screen—Out-of-Band KVM Interface....................................................................35
Figure 34 Raritan Remote Client Window..................................................................................................35
Figure 35 Multi-Platform Client Window.....................................................................................................36
Figure 36 Virtual KVM Client Window........................................................................................................ 36
Figure 37 Node Profile Screen—iLO/RILOE KVM Interface......................................................................37
Figure 38 HP's Remote Console Applet.....................................................................................................37
Figure 39 All Nodes List.............................................................................................................................40
Figure 40 Favorites List .............................................................................................................................41
Figure 41 Sort Favorites Window............................................................................................................... 41
Figure 42 Recent List.................................................................................................................................42
Figure 43 Active Ports Report....................................................................................................................47
Figure 44 All Users’ Data Report ...............................................................................................................48
This page intentionally left blank
CHAPTER 1: INTRODUCTION 1
Chapter 1: Introduction
This document is intended for users who have been granted the Nodes Access privilege and have
access to particular nodes that are attached to Raritan devices or IPMI servers. With the Nodes
Access privilege, you can connect to nodes, control power to nodes, create custom views, search
for nodes, and use node chat to talk to other users who are connected to the same node. The
Active Nodes and User Data reports are also available.
Prerequisites
Before connecting to a node, the nodes must be configured. The application that is used to
connect to the node must also be configured. Please see Raritan’s CommandCenter Secure
Gateway Administrator Guide for additional information on nodes and applications.
Terminology/Acronyms
Terms and acronyms found in this document include:
iLO/RILOE—Hewlett Packard’s Integrated Lights Out/Remote Insight Lights Out servers that
can be managed by CC-SG. Targets of an iLO/RILOE device are powered on/off and recycled
directly.
In-band Access—using the TCP/IP network to correct or troubleshoot a node in your network.
You can access nodes connected to KVM and Serial devices via these in-band applications:
RemoteDesktop Viewer, SSH Client, VNC Viewer.
IPMI Servers—Intelligent Platform Management Interface servers that can be controlled by CCSG.
Out-of-band Access—using applications such as Raritan Remote Client (RRC), Raritan Console
(RC), Multi-Platform Client (MPC), or Virtual KVM Client to correct or troubleshoot a node
connected to KVM and Serial devices in your network.
Ports—are connection points between a Raritan Device and a node. Ports exist only on Raritan
devices and identify a pathway from that device to a node.
Nodes—are the target systems, such as servers, desktop PCs, or other networked equipment, that
CC-SG users can access.
2 COMMANDCENTER SECURE GATEWAY USER GUIDE
This page intentionally left blank
CHAPTER 2: ACCESSING CC-SG 3
Chapter 2: Accessing CC-SG
You can access CC-SG in two ways, each described in this chapter:
• Through a browser: CC-SG supports numerous Web browsers. For a complete list of
browsers and platforms, please refer to the Compatibility Matrix on
http://www.raritan.com/support. Click Firmware Upgrades, then CommandCenter Family,
then Compatibility Matrix.. CC-SG offers two browser-based access options, a Javabased CC-SG Director Client and an HTML-based CC-SG Access Client.
• Through a thick client: You can install a Java Web Start thick client on your client
computer. The thick client functions exactly like the browser-based Java client.
Note: Multiple users can be connected simultaneously, using any client.
Before You Begin
CC-SG is accessed via a web browser from a user’s PC. Please verify the following.
Java Runtime Environment (JRE)
The browser must have the correct version of Java Runtime Environment installed for full
functionality.
To check the JRE version in a Windows OS
1. Open Control Panel.
2. Click Add or Remove Programs. Check the list of currently installed programs for the J2SE
or Java 2 Runtime Environment version number.
To verify that the JRE version is compatible with your CC-SG release
Please refer to the Compatibility Matrix on
Upgrades, then CommandCenter Family, then Compatibility Matrix.
To upgrade JRE
http://java.sun.com/products/archive.
Go to
http://www.raritan.com/support. Click Firmware
Disable Pop-up Blockers
The client PC and the browser should have all pop-up blockers disabled.
To disable the pop-up blockers in a Windows XP OS:
1. Open Control Panel.
2. Click Internet Options.
3. Click the Privacy tab.
4. Clear the Block Pop-ups checkbox.
5. Click Apply, and then click OK.
4 COMMANDCENTER SECURE GATEWAY USER GUIDE
Browser-Based Access via the CC-SG Director Client
The CC-SG Director client is a Java-based client provides a GUI for both administrative and
access tasks, depending on your permissions.
1. Using a supported Internet browser, type the URL of the CC-SG, and then type /admin:
https://<IP address>/admin. For example,
2. (Optional) You are warned if you are using an unsupported Java Runtime Environment
version on your machine. From the window that pops up, select whether you want to
download the correct JRE version from the CC-SG server (if available), download it from the
Sun Microsystems web site, or continue with the incorrect version, and then click OK.
3. The Login window appears.
https://10.0.3.30/admin.
Figure 1 CC-SG Director Client Login Screen
4. If the CC-SG Administrator has enabled the Restricted Service Agreement, read the
agreement text, and then check the I Understand and Accept the Restricted Service
Agreement checkbox.
5. Type your Username and Password, and then click Log In.
CHAPTER 2: ACCESSING CC-SG 5
6. Upon valid login, the CC-SG application window appears.
Figure 2 CC-SG Director Client Home Screen
6 COMMANDCENTER SECURE GATEWAY USER GUIDE
Browser Based Access via the CC-SG Access Client
The CC-SG Access client is an HTML-based client provides a GUI for access tasks, depending
on your permissions.
1. Using a supported Internet browser, type the URL of the CC-SG: https://<IP address>. For
example,
https://10.0.3.30. The login screen appears.
Figure 3 Access Client Login Screen
2. If the CC-SG Administrator has enabled the Restricted Service Agreement, read the
agreement text, and then check the I Understand and Accept the Restricted Service
Agreement checkbox.
3. Type your Username and Password.
4. Click Log In.
CHAPTER 2: ACCESSING CC-SG 7
5. Upon valid login, the CC-SG Access Client’s Home screen appears.
Figure 4 CC-SG Access Client’s Home Screen
Possible Error Message in Internet Explorer
If you are using Internet Explorer, and you have access to a large number of nodes, you may see
the following error message while CC-SG loads:
A script on this page is causing Internet Explorer to run slowly. If it continues to run, your
computer may become unresponsive. Do you want to abort the script?
This warning message occurs when a script is taking longer than the default time to run. Please
click No in the warning message to continue running the script. Depending on your particular
client and server speeds, and the amount of data loading, the message may recur.
You can change the default time that Internet Explorer will allow a script to run. Please refer to
Microsoft Knowledge Base article 175500 for instructions.
If you experience a similar message in Firefox, please refer to Firefox documentation for
resolution.
8 COMMANDCENTER SECURE GATEWAY USER GUIDE
Thick Client Access
The CC-SG thick client allows you to connect to CC-SG by launching a Java Web Start
application instead of running an applet through a web browser. The advantage of using the thick
client instead of a browser is that the client can outperform the browser in terms of speed and
efficiency. The CC-SG thick client provides the same functions as the Java-based Director Client;
a GUI for both administrative and access tasks, depending on your permissions
Install the Thick Client
1. To download the thick client from CC-SG, launch a web browser and type this URL:
http(s)://<IP_address>/install where <IP_address> is the IP address of the CC-SG.
2. If a security warning message appears, click Start to continue the download.
3. (Optional) If your client computer is running Java version 1.4, a Desktop Integration
window appears. If you want Java to add a shortcut icon for the thick client to your desktop,
click Yes.
4. When the download is complete, a new window in which you can specify the CC-SG IP
address appears.
Figure 5 Thick Client IP Specification Window
5. Type the IP address of the CC-SG unit you want to access in the IP to Connect field.
Once you have connected, this address will be available from the IP to Connect drop-down list.
The IP addresses are stored in a properties file that is saved to your desktop.
6. If the CC-SG is configured for secure browser connections, you must check the Secure
Socket Layer (SSL) checkbox. If the CC-SG is not configured for secure browser
connections, you must clear the Secure Socket Layer (SSL) checkbox. This setting must be
correct or the thick client will not be able to connect to CC-SG.
• To check the setting in CC-SG: On the Administration menu, click Security. In the
General tab, look at the Browser Connection Protocol field. If the HTTPS/SSL option
is selected, then you must check the Secure Socket Layer SSL checkbox in the thick
client’s IP address specification window. If the HTTP option is selected, then you must
clear the Secure Socket Layer SSL checkbox in the thick client’s IP address
specification window.
7. Click Start.
A warning message appears if you are using an unsupported Java Runtime Environment
version on your machine. Follow the prompts to either download a supported Java version, or
continue with the currently installed version.
CHAPTER 2: ACCESSING CC-SG 9
8. The login screen appears, and the thick client looks and behaves just like the browser-based
Java client. If the Restricted Service Agreement is enabled, read the agreement text, and then
check the I Understand and Accept the Restricted Service Agreement checkbox.
9. Type your Username and Password in the corresponding fields, and then click Login to
continue.
Access CC-SG with the Thick Client
Once the thick client is installed, there are 2 different ways to access it on your client computer.
These methods are determined by the Java version you are using.
a. Java 1.4.x
If your client computer is running Java version 1.4.x and you clicked Yes in the Desktop
Integration window when you installed the thick client, you can double-click the shortcut icon
on your desktop to launch the thick client and access CC-SG. If you do not have a shortcut icon,
you can create one at any time: search your client computer for AMcc.jnlp, and create a shortcut
to that file.
b. Java 1.5
If your client computer is running Java version 1.5, you can:
a. Launch the thick client from the Java Control Panel’s Java Application Cache Viewer.
b. Use the Java Control Panel’s Java Application Cache Viewer to install a shortcut icon on
your desktop for the thick client.
10 COMMANDCENTER SECURE GATEWAY USER GUIDE
CC-SG Director Client Window Components
3
2
1
5
4
Figure 6 CC-SG Window Components
1. Nodes Selection tab: Click the Nodes tab to display all nodes in a tree view. Interfaces are
grouped under their parent nodes. Click the + and - signs to expand or collapse the tree. Click
a node to view the Node Profile. Right-click an interface and select Connect to connect to
that interface. You can sort the nodes by Node Name (alphabetical) or Node Status (Available,
Busy, Unavailable). Right-click the tree view, click Node Sorting Options, and then click By
Node Name or By Node Status.
2. Quick Commands toolbar: This toolbar offers some shortcut buttons for executing common
commands rapidly.
3. Operation menu bar: These menus contain commands to operate CC-SG. You can also
access some of these commands by right-clicking on the icons in the Nodes selection tab. The
menus and menu items you see are determined by your user access privileges.
4. Main Display area: The commands you select from the menu bar and/or the tool bar display
in this main area. Displays here are referred to as screens. Screens may be broken down into
panels.
5. Server Time: The current time and time zone as configured on CC-SG. This time may be
different than the time used by the client.
Loading...