User’s Guide Network Management Card AP9635
This manual is available in English on the enclosed CD. Dieses Handbuch ist in Deutsch auf der beiliegenden CD-ROM verfügbar. Este manual está disponible en español en el CD-ROM adjunto. Questo manuale è disponibile in italiano nel CD-ROM allegato. 동봉된 CD 안에 한국어 매뉴얼이 있습니다 . Instrukcja obsługi w języku polskim jest dostępna na CD. O manual em Português está disponível no CD-ROM em anexo.
Contents Introduction ..................................................................... 1 Product Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Initial setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Network management features . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Command Descriptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 ? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 about . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 alarmcount . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 boot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Home Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .30 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 Quick status icons . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 Recent Device Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 How to Use the Tabs, Menus, and Links . . . . . . . . . . . . . . . . . . . . . .31 Tabs . . . . . . . .
Logs ................................................................................ 43 Use the Event and Data Logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43 Event log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43 Data log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44 How to use FTP or SCP to retrieve log files . . . . . . . . . . . . . . . . . . 47 Syslog servers . . . . . . . . . . . .
FTP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .64 Administration: Notification ......................................... 65 Event Actions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .65 Types of notification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65 Configuring event actions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Use the Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77 Configure the basic TCP/IP settings remotely . . . . . . . . . . . . . . . . 77 Configure or reconfigure the TCP/IP settings locally . . . . . . . . . . 78 How to Export Configuration Settings ........................ 79 Retrieving and Exporting the .ini File . . . . . . . . . . . . . . . . . . . . . . . . 79 Summary of the procedure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Appendix A: List of Supported Commands ................ 91 Two-Year Factory Warranty . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .94 Terms of warranty . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Non-transferable warranty . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Exclusions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Warranty claims . . . . . . . . . . . . . . . . . . . . . . . . .
Introduction Product Description Features The American Power Conversion Network Management Card (AP9635) is a Web-based product that manages supported devices using multiple, open standards such as Hypertext Transfer Protocol (HTTP), Telnet, Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS), Secure SHell (SSH), Simple Network Management Protocol (SNMP), File Transfer Protocol (FTP), and Secure CoPy (SCP).
Initial setup You must define three TCP/IP settings for the Network Management Card before it can operate on the network: • IP address of the Management Card • Subnet mask • IP address of the default gateway Caution: Do not use the loopback address (127.0.0.1) as the default gateway. Doing so disables the card. You must then log on using a serial connection and reset TCP/IP settings to their defaults.
Access priority for logging on Only one user at a time can log on to the Management Card. The priority for access, beginning with the highest priority, is as follows: • Local access to the command line interface from a computer with a direct serial connection to the Management Card • Telnet or SSH access to the command line interface from a remote computer • Web access, either directly or through InfraStruXure Central Note: SNMP has Write + and Write access.
How to Recover from a Lost Password You can use a local computer that connects to the Management Card through the serial port to access the command line interface. 1. Select a serial port at the local computer, and disable any service that uses that port. 2. Connect the provided serial cable (part number 940-0299) to the selected port at the computer and to the configuration port at the Management Card. 3.
Front Panel Features 5 Item Description 1 USB ports Reserved for future use. 2 Universal I/O sensor port Connects external sensors to the Network Management Card. ( 3 Modem port Used for Tele Service Connect (TLS) (MGE Galaxy 300 and MGE Galaxy 7000 only). 4 Modbus connector Connects the Management Card to a Building Management System (BMS) 5 10/100 Base-T connector Connects the Management Card to the Ethernet network. 6 Reset button Resets the Management Card while power remains on.
Status LED This LED indicates the status of the Management Card. Condition Description Off One of the following situations exists: • The Management Card is not receiving input power. • The Management Card is not operating properly. It may need to be repaired or replaced. Contact APC Worldwide Customer Support. See “APC Worldwide Customer Support” on page 96. Solid green The Management Card has valid TCP/IP settings. Solid orange A hardware failure has been detected in the Management Card.
Watchdog Features Overview To detect internal problems and recover from unanticipated inputs, the Management Card uses internal, system-wide watchdog mechanisms. When it restarts to recover from an internal problem, a System: Warmstart event is recorded in the event log. Network interface watchdog mechanism The Management Card implements internal watchdog mechanisms to protect itself from becoming inaccessible over the network. For example, if the Management Card does not receive any network traffic for 9.
Command Line Interface How To Log On Overview You can use either a local (serial) connection, or a remote (Telnet or SSH) connection with a computer on the same network as the Network Management Card to access the command line interface. Use case-sensitive user name and password entries to log on (by default, apc and apc for an Administrator, or device and apc for a Device User). A Read-Only User cannot access the command line interface.
Local access to the command line interface. For local access, use a computer that connects to the Management Card through the serial port to access the command line interface: 1. Select a serial port at the computer and disable any service that uses the port. 2. Connect the provided serial cable (part number 940-0299) from the selected port on the computer to the configuration port at the Management Card. 3. Run a terminal program (e.g.
Up Time: 0 Days 21 Hours 21 Minutes • Two fields report when you logged in, by date and time. Date : 03/30/2009 Time : 5:58:30 • The User field reports whether you logged in through the Administrator or Device Manager account. (The Read Only User account cannot access the command line interface.) When you log on as Device Manager (equivalent to Device User in the Web interface), you can access the event log and view the number of active alarms. User : Administrator Main screen status fields.
Using the Command Line Interface Overview The command line interface provides options to configure the network settings and monitor the Management Card. To view the status of the UPS, you must access the Web interface of the Management Card. For more information, see “Web Interface” on page 28. Entering commands At the command line interface, use commands to configure the Management Card. To use a command, type the command and press ENTER.
Syntax examples A command that supports multiple options: user [-an ] [-ap ] In the preceding example, the user command accepts the option -an, which defines the Administrator user name, and the option -ap, which defines the Administrator password. To change the Administrator user name and password to XYZ: 1. Type the user command, one option, and the argument XYZ: user -ap XYZ 2.
Command Descriptions ? Access: Administrator, Device User Description: View a list of all the CLI commands available to your account type. To view help text for a specific command, type the command followed by a question mark. Example: To view a list of options that are accepted by the alarmcount command, type: alarmcount ? about Access: Administrator, Device User Description: View hardware and firmware information.
boot Access: Administrator only Description: Define how the Management Card will obtain its network settings, including the IP address, subnet mask, and default gateway. Then configure the BOOTP or DHCP server settings. Option Argument Description -b dhcp | bootp | manual Define how the TCP/IP settings will be configured when the Management Card turns on, resets, or restarts. The default setting is dhcp.
console Access: Administrator only Description: Define whether users can access the command line interface using Telnet, which is enabled by default, or Secure SHell (SSH), which provides protection by transmitting user names, passwords, and data in encrypted form. You can change the Telnet or SSH port setting for additional security. Alternately, disable network access to the command line interface.
Example 2: To define the date as October 30, 2010, using the format configured in the preceding example, type: date -d “2010-10-30” Example 3: To define the time as 5:21:03 p.m., type: date -t 17:21:03 delete Access: Administrator only Description: Delete the event or data log, or delete a file in the file system. Argument Description Type the name of the file to delete. Example: 1. Navigate to the folder that contains the file to delete.
eventlog Access: Administrator, Device User Description: View the date and time you retrieved the event log, the status of the UPS, and the status of sensors connected to the Management Card. View the most recent device events, and the date and time they occurred. Use the following keys to navigate the event log: Key Description ESC Close the event log and return to the command line interface. ENTER Update the log. Use this command to view events that were recorded after you last retrieved the log.
ftp Access: Administrator only Description: Enable or disable access to the FTP server. Optionally, change the port setting to the number of any unused port from 5001 to 32768 for added security. Option Argument Definition -p Define the TCP/IP port that the FTP server uses to communicate with the Management Card (21 by default). The FTP server uses both the specified port and the port one number lower than the specified port. -S enable | disable Configure access to the FTP server.
Option Argument Description -sr Set the scan rate for query packets in Master mode. (MGE Galaxy models only) -rep <# of repetitions> Set the number of repetitions for query packets in Master mode. (MGE Galaxy models only) -ResetToDef Reset the modbus settings to their default values. netstat Access: Administrator, Device User Description: View the status of the network and all active IPv4 and IPv6 addresses.
portSpeed Access: Administrator Description: Option Arguments Description -s auto | 10H | 10F | 100H | 100F Define the communication speed of the Ethernet port. The auto command enables the Ethernet devices to negotiate to transmit at the highest possible speed. See “Port Speed” on page 57 for more information about the port speed settings.
radius Access: Administrator only Description: View the existing RADIUS settings, enable or disable RADIUS authentication, and configure basic authentication parameters for up to two RADIUS servers. For a summary of RADIUS server configuration and a list of supported RADIUS servers, see “Configuring the RADIUS Server” on page 52. Additional authentication parameters for RADIUS servers are available at the Web interface of the Management Card. See “RADIUS” on page 51 for more information.
resetToDef Access: Administrator only Description: Option Arguments Description -p all | keepip Reset all configuration changes, including event actions and, optionally, TCP/IP configuration settings. Example: To reset all of the configuration changes except the TCP/IP settings for the Management Card, type: resetToDef -p keepip snmp, snmp3 Access: Administrator only Description: Enable or disable SNMP 1 or SNMP 3.
tcpip Access: Administrator only Description: Manually configure these network settings for the Management Card: Option Argument Description -S enable | disable Enable or disable TCP/IP.. -i Type the IP address of the Management Card, using the format xxx.xxx.xxx.xxx -s Type the subnet mask for the Management Card. -g Type the IP address of the default gateway. Do not use the loopback address (127.0.0.1) as the default gateway.
tls Access: Administrator only Description: Manually configure the TLS settings for the Management Card. TLS is an optional remote monitoring service available on the MGE Galaxy 300 and MGE Galaxy 7000 UPS systems.: Option Argument -p Description Display the configured parameters for the tls command -a enable | disable Enable or disable the TLS feature. -m Identify the valid alarms that cause an alert to be sent to the TLS service.
uio Access: Administrator, Device User Description: This command is available for an AP9631 and AP9635 Network Management Card with a connected Dry Contact I/O Accessory (AP9810). Option Argument Description -rc open | close Change the state of a connected output, and specify the UIO (universal input/ output) port number. -st | View the status of the sensors connected to the Dry Contact , I/O Accessory.
Option Argument Description -output | all Display the output measurements for the chosen phase of the UPS. Typing “all” displays the information for all phases of the UPS. voltage | current | load | power | percload | pf | frequency | all Specify the output measurement for the ups command. Example: ups -output 2 percload Displays the percentage of load for phase 2 of the UPS. -batt Display the battery status of the UPS -about Displays information about the UPS.
web Access: Administrator Description: Enable access to the Web interface using HTTP or HTTPS. For additional security, you can change the port setting for HTTP and HTTPS to any unused port from 5000 to 32768. Option Argument Definition -S disable | http | https Configure access to the Web interface. When HTTPS is enabled, data is encrypted during transmission and authenticated by digital certificate.
Web Interface Introduction Overview The Web interface provides options to manage the Management Card and view the status of its UPS. See “Web” on page 59 for information on how to select, enable, and disable the protocols that control access to the Web interface and to define the Web-server ports for the protocols. Note: All UPS settings and alarm thresholds must be configured at the user interface display of the UPS. Supported Web browsers You can use Microsoft® Internet Explorer® (IE) 7.
URL address formats Type the DNS name or IP address of the Management Card in the Web browser’s URL address field and press ENTER. When you specify a non-default Web server port in Internet Explorer, you must include http:// or https:// in the URL. Common browser error messages at log-on. Error Message Browser Cause of the Error “You are not authorized to view this page” or “Someone is currently logged in...” Internet Explorer, Firefox Someone else is logged on. “This page cannot be displayed.
Home Page Overview On the Home page of the interface, displayed when you log on, you can view active alarm conditions and the most recent events recorded in the event log. Quick status icons One or more icons and accompanying text indicate the current operating status of the UPS: Icon Description Critical: A critical alarm exists, which requires immediate action. Warning: An alarm condition requires attention and could jeopardize your data or equipment if its cause is not addressed.
How to Use the Tabs, Menus, and Links Tabs In addition to the tab for the Home page, the following tabs are displayed. Click a tab to display a set of menu options: • UPS: Display UPS status, configure PowerChute Network Shutdown, and view information about the UPS. • Sensor: View and configure temperature sensor data. (Only present if a Dry Contact Sensor (AP9810), Temperature Sensor (AP9335T), or Temperature and Humidity Sensor (AP9335TH) is connected.) • Logs: View and configure event and data logs.
Monitor the UPS and Configure Shutdowns Overview Page The Overview page is displayed by default when you click the UPS tab or when you click Overview on the left navigation menu of that tab. Operating state Below the UPS model name, icons and accompanying text indicate the operating state of the UPS: Operating State Icon Description Online No alarms present. In an alarm state (Accompanying text names the alarm condition and gives a brief description of the alarm.
• In a list: – Input Voltage: The AC voltage (VAC) being received by each phase of the UPS. – Output Voltage: The AC voltage (VAC) each phase of the UPS is providing to its load. – Ambient Temperature: The highest internal temperature reported by the power modules in the UPS. (Symmetra models only) – Runtime Remaining: How long the UPS can use battery power to support its attached equipment.
The PowerChute Option The PowerChute option, available in the left navigation menu of the UPS tab, enables you to use the PowerChute Network Shutdown utility to shut down a maximum of 50 servers on the network that use a client version of the utility. See these HTML files and flowcharts on the Management Card Utility CD: • PowerChute Network Shutdown Installation Guide in the \pcns folder • PowerChute Network Shutdown Release Notes in the \pcns folder • PCNS Shutdown Behavior.
PowerChute Network Shutdown configuration parameters Parameter Description Maximum Required Delay Displays the delay required to ensure that each PowerChute client has enough time to shut down safely when the UPS or the PowerChute client initiates a graceful shutdown. When Force Negotiation is selected, the Network Management Card polls each server listed as a PowerChute Network Shutdown client for information on the time it needs for a graceful shutdown.
The About Option This option provides the following information about the UPS: • Model: The model name of the UPS. • Serial Number: The unique identification number of the UPS, also provided on the UPS. • Firmware Revision: The revision numbers of the firmware modules installed on the UPS • Manufacture Date: The date on which the manufacturing of this UPS was completed.
Environmental Monitoring Note: If you install a Dry Contact I/O Accessory, AP9810, at your Network Management Card, the Environment tab displays two top menu bar options, Universal I/O and Environment. Except where noted, the settings described in this chapter are available for both options. Overview Page The Overview page lists the status of environmental monitoring devices associated with the AP9635 Network Management Card on a Symmetra-series or MGE Galaxy UPS.
Temperature and Humidity Page Brief status Click Temp & Humidity on the left navigation menu to display the name, alarm status, temperature, and humidity (if supported) for each sensor. Detailed status and configuration Click the name of a sensor for detailed alarm status or to configure its values: Identification and alarm status. Parameter Description Name A name for this sensor. Maximum: 20 characters. Location This physical location of the sensor. Maximum: 20 characters.
Example of falling but wavering temperature: The minimum temperature threshold is 55°F, and the temperature hysteresis is 3°F. The temperature drops below 55°F, violating the threshold. It then wavers up to 56°F and then down to 53°F repeatedly, but no clearing event and no new violation occur. For the existing violation to clear, the temperature would have to rise above 58°F (3°F past the threshold).
Input Contacts Page Brief status Click Input Contacts on the left navigation menu to display the name, alarm status, and state (open or closed) of each input contact. Detailed status and configuration Click the name of an input contact for detailed status or to configure its values: Parameter Description Input Contact Enable or disable this input contact. When disabled, the contact generates no alarm even when it is in the abnormal position Name A name for this input contact. Maximum: 20 characters.
Output Relay Page This option is only available for devices with installed Dry Contact I/O Accessories. Select the Environment tab, then Universal I/O from the top menu bar. Click Output Relay to display the status of the output relay and configure its values. Parameter Description Name A name for this output relay. Maximum: 20 characters. Location The location of this output relay. Maximum: 20 characters.
Configuring the Control Policy For an AP9631 Network Management Card with up to two connected Dry Contact I/O Accessories (AP9810), you can configure its outputs to respond to events, and you can configure the UPS and outputs to respond to input alarms. Configuring an output to respond to an event 1. Select the UPS tab, Control Policy in the top menu bar, and by event under Event Actions on the left navigation menu. 2.
Logs Use the Event and Data Logs Event log Path: Logs > Events > options You can view, filter, or delete the event log. By default, the log displays all events recorded during the last two days, in reverse chronological order. For lists of all configurable events and their current configuration, select the Administration tab, Notification on the top menu bar, and by event under Event Actions on the left navigation menu. See “Configuring by event” on page 66.
Note: Events are processed through the filter using OR logic. • Events that you do not select from the Filter By Severity list never display in the filtered event log, even if the event occurs in a category you selected from the Filter by Category list. • Events that you do not select from the Filter by Category list never display in the filtered event log, even if devices in the category enter an alarm state you selected from the Filter by Severity list.
To display the data log (Logs > Data > log): • By default, view the data log as a page of the Web interface. The most recent data item is recorded on page 1. From the navigation menu below the log: – Click a page number to open a specific page of the log. – Click Previous or Next to view the data recorded immediately before or after the data that is listed on the open page. – Click << to return to the first page of the log, or click >> to view the last page of the log.
Graphing large amounts of data may cause performance problems on the computer and Web browser you are using. Reducing the number of data points or data lines being graphed may improve performance. Parameter Description Graph Data To graph multiple data items, select the data items that correspond to the abbreviated column headings in the data log. Only four items can be selected at a time.
Parameter Description Delay X hours between uploads. The number of hours between uploads of data to the file. Upload every X minutes The number of minutes between attempts to upload data to the file after an upload failure. Up to X times The maximum number of times the upload will be attempted after an initial failure. Until Upload Succeeds Attempt to upload the file until the transfer is completed. To resize the data log (Logs > Data > size): By default, the data log stores 400 events.
To use SCP to retrieve the files. To use SCP to retrieve the event.csv file, use the following command: scp username@hostname_or_ip_address:event.csv ./event.csv To use SCP to retrieve the data.csv file, use the following command: scp username@hostname_or_ip_address:data.csv ./data.csv To use FTP to retrieve the files. To use FTP to retrieve the event.csv or data.csv file: 1. At a command prompt, type ftp and the Management Card’s IP address, and press ENTER.
Syslog servers Administrators can configure up to four Syslog servers to recieve notifications of events. Managing the Syslog servers (Logs > Syslog > servers): To add a new Syslog server, click Add Server. To modify an existing Syslog server, click the server’s name. Parameter Description Syslog Server The server's IP address or host name. Port The port number to which Syslog messages will be sent. The default and well known port is 514. Protocol Choose a protocol. Language Choose a language.
Administration: Security Local Users Setting user access Path: Administration > Security > Local Users > options The Administrator user account always has access to the Management Card. The Device User and Read-Only User accounts are enabled by default. To disable the Device User or Read-Only User accounts, select the user account from the left navigation menu, then clear the Enable check box. You set the case-sensitive user name and password for each account type in the same manner.
Select one of the following: • Local Authentication Only: RADIUS is disabled. Local authentication is enabled. • RADIUS, then Local Authentication: RADIUS and local authentication are enabled. Authentication is requested from the RADIUS server first. If the RADIUS server fails to respond, local authentication is used. • RADIUS Only: RADIUS is enabled. Local authentication is disabled.
Configuring the RADIUS Server Summary of the configuration procedure You must configure your RADIUS server to work with the Management Card. For examples of the RADIUS users file with Vendor Specific Attributes (VSAs) and an example of an entry in the dictionary file on the RADIUS server, see the Security Handbook. 1. Add the IP address of the Management Card to the RADIUS server client list (file). 2.
Inactivity Timeout Path: Administration > Security > Auto Log Off Use this option to configure the time (3 minutes by default) that the system waits before logging off an inactive user. If you change this value, you must log off for the change to take effect. Note: This timer continues to run if a user closes the browser window without first logging off by clicking Log Off at the upper right.
Administration: Network Features TCP/IP and Communication Settings TCP/IP settings Path: Administration > Network > TCP/IP > IPv4 settings The TCP/IP option on the left navigation menu, selected by default when you choose Network on the top menu bar, displays the current current IPv4 address, subnet mask, default gateway, MAC address, and boot mode of the Management Card. For information on DHCP and DHCP options, see RFC2131 and RFC2132.
DHCP response options Each valid DHCP response contains options that provide the TCP/IP settings that the Management Card needs to operate on a network, and other information that affects the Management Card’s operation. Vendor Specific Information (option 43). The Management Card uses this option in a DHCP response to determine whether the DHCP response is valid. This option contains up to two American Power Conversion-specific options in a TAG/LEN/DATA format: the APC Cookie and the Boot Mode Transition.
download the .ini file. After the download, the Management Card uses the .ini file as a boot file to reconfigure its settings. Path: Administration > Network > TCP/IP > IPv6 settings Setting Description Enable Enable or disable IPv6 with this check box. Manual Configure IPv6 manually by entering the IP address and the default gateway. Auto Configuration When the Auto Configuration check box is selected, the system obtains addressing prefixes from the router (if available).
Port Speed Path: Administration > Network > Port Speed The Port Speed setting defines the communication speed of the TCP/IP port. • For Auto-negotiation (the default), Ethernet devices negotiate to transmit at the highest possible speed, but if the supported speeds of two devices are unmatched, the slower speed is used.
• Select test to send a DNS query that tests the setup of your DNS servers: – As Query Type, select the method to use for the DNS query: • • • • by Host: the URL name of the server by FQDN: the fully qualified domain name by IP: the IP address of the server by MX: the Mail Exchange used by the server – As Query Question, identify the value to be used for the selected query type: Query Type Selected Query Question to Use by Host The URL by FQDN The fully qualified domain name, my_server.my_domain.
Web Path: Administration > Network > Web > options Option Description access To activate changes to any of these selections, log off from the Management Card: • Disable: Disables access to the Web interface. (To re-enable access, log in to the command line interface, then type the command http -S enable. For HTTPS access, type https -S enable.
Console Path: Administration > Network > Console > options Option Description access Choose one of the following for access by Telnet or Secure SHell (SSH): • Disable: Disables all access to the command line interface. • Enable Telnet (the default): Telnet transmits user names, passwords, and data without encryption. • Enable SSH: SSH transmits user names, passwords, and data in encrypted form, providing protection from attempts to intercept, forge, or alter data during transmission.
SNMP All user names, passwords, and community names for SNMP are transferred over the network as plain text. If your network requires the high security of encryption, disable SNMP access or set the access for each community to Read. (A community with Read access can receive status information and use SNMP traps.) When using InfraStruxure Central to manage a UPS on the public network of an InfraStruxure system, you must have SNMP enabled in the Management Card interface.
SNMPv3 Path: Administration > Network > SNMPv3 > options For SNMP GETs, SETs, and trap receivers, SNMPv3 uses a system of user profiles to identify users. An SNMPv3 user must have a user profile assigned in the MIB software program to perform GETs and SETs, browse the MIB, and receive traps. Note: To use SNMPv3, you must have a MIB program that supports SNMPv3. The Management Card supports SHA or MD5 authentication and AES or DES encryption.
Option Description access control You can configure up to four access control entries to specify which NMSs have access to this device. The opening page for access control, by default, assigns one entry to each of the four user profiles, but you can edit these settings to apply more than one entry to any user profile to grant access by several specific IP addresses, host names, or IP address masks.
FTP Server Path: Administration > Network > FTP Server The FTP Server settings enable (by default) or disable access to the FTP server and specify the TCP/IP port (21 by default) that the FTP server uses to communicate with the Management Card. The FTP server uses both the specified port and the port one number lower than the specified port. You can change the Port setting to the number of any unused port from 5001 to 32768 for added security.
Administration: Notification Event Actions Path: Administration > Notification > Event Actions > options Types of notification You can configure event actions to occur in response to an event or group of events. These actions notify users of the event in any of several ways: • Active, automatic notification. The specified users or monitoring devices are contacted directly. – E-mail notification – SNMP traps – Remote Monitoring Service – Syslog notification • Indirect notification – Event log.
Configuring by event. To define event actions for an individual event: 1. Select the Administration tab, Notification on the top menu bar, and by event under Event Actions on the left navigation menu. 2. In the list of events, review the marked columns to see whether the action you want is already configured. (By default, logging is configured for all events.) 3.
Active, Automatic, Direct Notification E-mail notification Overview of setup. Use the Simple Mail Transfer Protocol (SMTP) to send e-mail to up to four recipients when an event occurs. To use the e-mail feature, you must define the following settings: • The IP addresses of the primary and, optionally, the secondary Domain Name System (DNS) servers See “DNS” on page 57. • The IP address or DNS name for SMTP Server and From Address See “SMTP” on page 67.
E-mail recipients. Path: Administration>Notification>E-mail>recipients Identify up to four e-mail recipients. Setting Description To Address The user and domain names of the recipient. To use e-mail for paging, use the e-mail address for the recipient’s pager gateway account (for example, myacct100@skytel.com). The pager gateway will generate the page. To bypass the DNS lookup of the mail server’s IP address, use the IP address in brackets instead of the e-mail domain name, e.g., use jsmith@[xxx.xxx.x.
SNMP traps Trap Receivers. Path: Administration > Notification > SNMP Traps > trap receivers View trap receivers by NMS IP/Host Name. You can configure up to six trap receivers. • To open the page for configuring a new trap receiver, click Add Trap Receiver. • To modify or delete a trap receiver, first click its IP address or host name to access its settings.
To. Select the IP address or host name to which a test SNMP trap will be sent. If no trap receiver is configured, a link to the Trap Receiver configuration page is displayed. Remote Monitoring Service Path: Administration > Notification > Remote Monitoring The Remote Monitoring Service (RMS) is an optional service that monitors your system from a remote operation center 24 hours a day, 7 days a week, and notifies you of device and system events.
Syslog Settings. Path: Logs > Syslog > settings Setting Definition Message Generation Enables (by default) or disables the Syslog feature. Facility Code Selects the facility code assigned to the Management Card’s Syslog messages (User, by default). NOTE: User best defines the Syslog messages sent by the Management Card. Do not change this selection unless advised to do so by the Syslog network or system administrator.
Administration: General Options Identification Path: Administration > General > Identification Define the Name (the device name), Location (the physical location), and Contact (the person responsible for the device) used by InfraStruxure Central and the SNMP agent of the Management Card. These settings are the values used for the MIB-II sysName, sysContact, and sysLocation Object Identifiers (OIDs).
Daylight saving Path: Administration>General>Date & Time>daylight saving Enable traditional United States Daylight Saving Time (DST), or enable and configure a customized daylight saving time to match how Daylight Saving Time is implemented in your local area. DST is disabled by default. When customizing Daylight Saving Time (DST): • If the local DST always starts or ends on the fourth occurrence of a specific weekday of a month (e.g, the fourth Sunday), choose Fourth/Last.
Event Log, Temperature Units, and Log-In Page Path: Administration > General > Preferences Color-code event log text This option is disabled by default. Select the Event Log Color Coding check box to enable color-coding of alarm text recorded in the event log. System-event entries and configuration-change entries do not change color. Text Color Alarm Severity Red Critical: A critical alarm exists, which requires immediate action.
Reset the Management Card Path: Administration > General > Reset/Reboot Action Definition Reboot Management Interface Restarts the interface of the Management Card. Reset All1 Clear the Exclude TCP/IP check box to reset all configuration values; select the Exclude TCP/IP check box to reset all values except TCP/IP Reset Only1 TCP/IP settings: Set TCP/IP Configuration to DHCP & BOOTP, its default setting, requiring that the Management Card receive its TCP/IP settings from a DHCP or BOOTP server.
Device IP Configuration Wizard Capabilities, Requirements, and Installation How to use the Wizard to configure TCP/IP settings The Device IP Configuration Wizard configures the IP address, subnet mask, and default gateway of one or more Network Management Cards or American Power Conversion network-enabled devices (devices containing an embedded Management Card).
Use the Wizard Note: Most software firewalls must be temporarily disabled for the Wizard to discover unconfigured Network Management Cards. Configure the basic TCP/IP settings remotely Prepare to configure the settings. Before you run the Wizard: 1. Contact your network administrator to obtain valid TCP/IP settings. 2. If you are configuring multiple unconfigured Management Cards or network-enabled devices, obtain the MAC address of each one to identify it when the Wizard discovers it.
Configure or reconfigure the TCP/IP settings locally 1. Contact your network administrator to obtain valid TCP/IP settings. 2. Connect the provided serial configuration cable (part number 940-0299) from an available communications port on your computer to the serial port of the card or device. Make sure no other application is using the computer port. 3. From the Start menu, launch the Wizard application. 4.
How to Export Configuration Settings Retrieving and Exporting the .ini File Summary of the procedure An Administrator can retrieve the .ini file of a Network Management Card and export it to another Management Card or to multiple Management Cards. 1. Configure a Management Card to have the settings you want to export. 2. Retrieve the .ini file from that Management Card. 3. Customize the file to change at least the TCP/IP settings. 4.
Customizing. You must customize the file before you export it. 1. Use a text editor to customize the file. – Section headings, keywords, and pre-defined values are not case-sensitive, but string values that you define are case-sensitive. – Use adjacent quotation marks to indicate no value. For example, LinkURL1="" indicates that the URL is intentionally undefined. – Enclose in quotation marks any values that contain leading or trailing spaces or are already enclosed in quotation marks.
The Upload Event and Error Messages The event and its error messages The following event occurs when the receiving Network Management Card completes using the .ini file to update its settings. Configuration file upload complete, with number valid values If a keyword, section name, or value is invalid, the upload by the receiving Management Card succeeds, an additional event text states the error. Event text Description Configuration file warning: Invalid keyword on line number.
Related Topics On Windows operating systems, instead of transferring .ini files, you can use the Device IP Configuration Wizard to update the basic TCP/IP settings of the Management Card and configure other settings through its user interface. See “Device IP Configuration Wizard” on page 76.
File Transfers How to Upgrade Firmware Benefits of upgrading firmware When you upgrade the firmware on the Network Management Card: • You obtain the latest bug fixes and performance improvements. • New features become available for immediate use. Keeping the firmware versions consistent across your network ensures that all Management Cards support the same features in the same manner.
Note: In manual upgrades, load the boot monitor module first, then the American Power Conversion operating system module, and finally, the application module. To extract the firmware files: 1. Run the NMC2 Firmware Upgrade Utility. 2. At the prompts, click Next>, and then specify the directory location to which the files will be extracted. 3. When the Extraction Complete message displays, close the dialog box.
To transfer the files: 1. Open a command prompt window of a computer on the network. Go to the directory that contains the firmware files, and list the files: C:\>cd\apc C:\apc>dir For the listed files, xxx represents the firmware version number: • apc_hw05_aos_xxx.bin • apc_hw05_application_xxx.bin 2. Open an FTP client session: C:\apc>ftp 3. Type open and the IP address of the Management Card, and press ENTER.
Use FTP or SCP to upgrade multiple Management Cards. To upgrade multiple Network Management Cards using an FTP client or using SCP, write a script which automatically performs the procedure. Using the NMC2 Firmware Upgrade Utility for multiple upgrades After downloading from the American Power Conversion website, double click on the exe file to run the utility (which ONLY works with IPv4) and follow these steps to upgrade your firmware: 1.
Use a USB drive to transfer the files Note: Before starting the transfer, make sure the USB drive is formatted in FAT32. 1. Download the update files and unzip them. 2. Create a folder named apcfirm on the USB drive. 3. Place the extracted files in the apcfirm directory. 4. Insert the USB drive into any USB port on the Network Management Card 2. 5. Reset the Network Management Card 2 and wait for the card to reboot fully. 6.
Adding and Changing Language Packs Note: Language packs are not available for the MGE Galaxy 300 or MGE Galaxy 7000. The Symmetra PX 250 and Symmetra PX 500 do not support Italian or Japanese as options for the language packs. The Network Management Card 2 language pack files contain the information required to display the user interface in languages other than English.
Troubleshooting Management Card Access Problems For problems that are not described here, see the troubleshooting flowcharts on the APC Network Management Card Utility CD. Click the Troubleshooting link in the CD interface. If the problem still persists, see “APC Worldwide Customer Support” on page 96. 89 Problem Solution Unable to ping the Management Card If the Management Card’s Status LED is green, try to ping another node on the same network segment as the Management Card.
SNMP Issues Problem Solution Unable to perform a GET • Verify the read (GET) community name (SNMPv1) or the user profile configuration (SNMPv3). • Use the command line interface or Web interface to ensure that the NMS has access. See “SNMP” on page 61. Unable to perform a SET • Verify the read/write (SET) community name(SNMPv1) or the user profile configuration (SNMPv3).
Appendix A: List of Supported Commands ? about alarmcount [-p [all | warning | critical]] boot [-b ] [-c [enable | disable]] [-v ] [-i ] [-u ] cd console [-S ] [-pt ] [-ps ] [-b [2400 | 9600 | 19200 | 38400]] date [-d <“datestring”>] [-t <00:00:00>] [-f [mm/dd/yy | dd.mm.
tcpip [-S [enable | disable]] [-i ] [-s ] [-g ] [-d ] [-h ] tcpip6 [-S [enable | disable]] [-man [enable | disable]] [-auto [enable | disable]] [-i ] [-g ] [-d6 [router | stateful | stateless | never]] tls [-p] [-a [enable | disable]] [-m ] [-t [primary | secondary] ] [-si <# of connected UPS>...
web [-S ] [-ph ] [-ps ] xferINI xferStatus 93 Network Management Card User’s Guide
Two-Year Factory Warranty This warranty applies only to the products you purchase for your use in accordance with this manual. Terms of warranty APC warrants its products to be free from defects in materials and workmanship for a period of two years from the date of purchase. APC will repair or replace defective products covered by this warranty. This warranty does not apply to equipment that has been damaged by accident, negligence or misapplication or has been altered or modified in any way.
NO SALESMAN, EMPLOYEE OR AGENT OF APC IS AUTHORIZED TO ADD TO OR VARY THE TERMS OF THIS WARRANTY. WARRANTY TERMS MAY BE MODIFIED, IF AT ALL, ONLY IN WRITING SIGNED BY AN APC OFFICER AND LEGAL DEPARTMENT. Warranty claims Customers with warranty claims issues may access the APC customer support network through the Support page of the APC Web site, www.apc.com/support. Select your country from the country selection pull-down menu at the top of the Web page.
APC Worldwide Customer Support Customer support for this or any other APC product is available at no charge in any of the following ways: • Visit the APC Web site to access documents in the APC Knowledge Base and to submit customer support requests. – www.apc.com (Corporate Headquarters) Connect to localized APC Web sites for specific countries, each of which provides customer support information. – www.apc.com/support/ Global support searching APC Knowledge Base and using e-support.
