Installer/User Guide: For Technical Support

CCM
Installer/User Guide
For Technical Support:

www.avocent.com/support
Avocent Corporation
4991 Corporate Drive
Huntsville, Alabama 35805-6201 USA
Tel: +1 256 430 4000
Fax: +1 256 430 4031
Avocent International Ltd.

Avocent House, Shannon Free Zone
Shannon, County Clare, Ireland
Tel: +353 61 715 292
Fax: +353 61 471 871
Avocent Asia Pacific

Singapore Branch Office
100 Tras Street, #15-01
Amara Corporate Tower
Singapore 079027
Tel: +656 227 3773
Fax: +656 223 9155
Avocent Germany
Gottlieb-Daimler-Strae 2-4
D-33803 Steinhagen
Germany
Tel: +49 5204 9134 0
Fax: +49 5204 9134 99
Avocent Canada
20 Mural Street, Unit 5
Richmond Hill, Ontario
L4B 1K3 Canada
Tel: +1 877 992 9239
Fax: +1 877 524 2985
590-434-501E
USA Notification
Warning: Changes or modifications to this unit not expressly approved by the party responsible for compliance
could void the users authority to operate the equipment.
Note: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant
to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference when the equipment is operated in a commercial environment. This equipment generates, uses and
can radiate radio frequency energy and, if not installed and used in accordance with the instruction manual, may
cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to
cause harmful interference in which case the user will be required to correct the interference at his own expense.
Canadian Notification
This digital apparatus does not exceed the Class A limits for radio noise emissions from digital apparatus set out
in the Radio Interference Regulations of the Canadian Department of Communications.
Le prsent appareil numrique nmet pas de bruits radiolectriques dpassant les limites applicables aux
appareils numriques de la classe A prescrites dans le Rglement sur le brouillage radiolectrique dict par le
Ministre des Communications du Canada.
Japanese Approvals
European Union
Warning: This is a Class A product. In a domestic environment, this product may cause radio interference in
which case the user may be required to take adequate measures.
Taiwanese Notification
avocent.book Page i Tuesday, March 14, 2006 12:33 PM
CCM
Avocent, the Avocent logo, The Power of Being There, DSView and
AVWorks are registered trademarks of Avocent Corporation or its
affiliates. All other marks are the property of their respective owners.
2006 Avocent Corporation. All rights reserved. 590-434-501E
avocent.book Page ii Tuesday, March 14, 2006 12:33 PM
Instructions
This symbol is intended to alert the user to the presence of important operating and maintenance
(servicing) instructions in the literature accompanying the appliance.
avocent.book Page iii Tuesday, March 14, 2006 12:33 PM
iii
T A B L E O F C ON T E N T S
Table of Contents
List of Figures ................................................................................................................. ix
List of Tables ................................................................................................................... xi
Chapter 1: Product Overview.......................................................................................... 1
Features and Benefits ........................................................................................................................ 1
Safety Precautions ............................................................................................................................. 4
Rack mount safety considerations .............................................................................................. 4
Chapter 2: Installation and Configuration ..................................................................... 5
Hardware Overview........................................................................................................................... 5
CCM850 and 1650 appliance hardware .................................................................................... 5
CCM485x appliance hardware................................................................................................... 6
Installing the CCM Appliance ........................................................................................................... 7
Configuring the CCM Appliance ....................................................................................................... 8
Configuring the network address settings .................................................................................. 8
Initial CCM appliance login..................................................................................................... 10
Rebooting and Reinitializing the CCM Appliance........................................................................... 11
Rebooting.................................................................................................................................. 11
Reinitializing............................................................................................................................. 11
Configuring the Appliance for AV Operation or DS Operation ...................................................... 12
Chapter 3: Operations ................................................................................................... 13
Overview .......................................................................................................................................... 13
Configuring Global Settings ............................................................................................................ 13
Updating the Appliance Clock ......................................................................................................... 14
Configuring Port Settings ................................................................................................................ 15
Physical port settings................................................................................................................ 15
Port access................................................................................................................................ 17
Managing groups...................................................................................................................... 18
Virtual port settings .................................................................................................................. 19
Displaying port settings............................................................................................................ 20
Connecting to Serial Devices........................................................................................................... 21
Connecting to devices using Telnet .......................................................................................... 21
avocent.book Page iv Tuesday, March 14, 2006 12:33 PM
iv
CCM Installer/User Guide
Connecting to devices from the console port............................................................................ 22

Configuring and using dial-in connections .............................................................................. 23
Using PPP ................................................................................................................................ 23
Using SSH................................................................................................................................. 24
Enabling plain text Telnet and SSH connections...................................................................... 27
Session sharing and preemption............................................................................................... 27
CLI Mode ......................................................................................................................................... 30
Ending Device Sessions ................................................................................................................... 31
Session time-out ........................................................................................................................ 31
Managing User Accounts................................................................................................................. 32
Access levels and rights ............................................................................................................ 33
Using Authentication Methods......................................................................................................... 34
Console port session and connection authentication ............................................................... 36
Authentication summary ........................................................................................................... 38
Using security lock-out ............................................................................................................. 40
Managing Port History .................................................................................................................... 40
Using the local history buffer ................................................................................................... 41
NFS history files ....................................................................................................................... 43
Managing the CCM Appliance Using SNMP .................................................................................. 46
Chapter 4: Using CCM Appliance Commands ............................................................ 51
Accessing the CLI ............................................................................................................................ 51
Entering Commands ........................................................................................................................ 51
When commands take effect...................................................................................................... 52
Understanding Conventions ............................................................................................................ 52
Command syntax....................................................................................................................... 52
Syntax conventions.................................................................................................................... 54
Command Summary ......................................................................................................................... 55
Chapter 5: CCM Appliance Commands ....................................................................... 61
Connect Command........................................................................................................................... 61
Disconnect Command ...................................................................................................................... 62
Group Commands ............................................................................................................................ 63
Group Add command................................................................................................................ 63
Group Delete command............................................................................................................ 64
avocent.book Page v Tuesday, March 14, 2006 12:33 PM
Table of Contents
Group Set command ................................................................................................................. 64

Help Command ................................................................................................................................ 65
IPMI Command................................................................................................................................ 65
NFS Command ................................................................................................................................. 66
NTP Command................................................................................................................................. 67
Port Commands ............................................................................................................................... 68
Port Add command ................................................................................................................... 69
Port Alert Add command .......................................................................................................... 70
Port Alert Copy command ........................................................................................................ 71
Port Alert Delete command ...................................................................................................... 71
Port Break command ................................................................................................................ 72
Port Delete command ............................................................................................................... 72
Port History command.............................................................................................................. 73
Port Logout command .............................................................................................................. 73
Port NFS command................................................................................................................... 73
Port Refresh command ............................................................................................................. 75
Port Set command..................................................................................................................... 75
Port Set In/Out command ......................................................................................................... 79
Quit Command ................................................................................................................................. 80
Resume Command............................................................................................................................ 80
Server Commands ............................................................................................................................ 81
Server CLI command ................................................................................................................ 81
Server Flash command ............................................................................................................. 83
Server Init command................................................................................................................. 84
Server LDAP Auth command.................................................................................................... 85
Server LDAP Primary|Secondary command ............................................................................ 85
Server LDAP Query command ................................................................................................. 86
Server LDAP Search command ................................................................................................ 87
Server Ping command............................................................................................................... 87
Server PPP command ............................................................................................................... 88
Server RADIUS command ........................................................................................................ 89
Server Reboot command ........................................................................................................... 90
Server Security command ......................................................................................................... 90
Server Set command ................................................................................................................. 92
Server Share command ............................................................................................................. 92
avocent.book Page vi Tuesday, March 14, 2006 12:33 PM
vi
Server SNMP command............................................................................................................ 93

Server SNMP Community command ........................................................................................ 93
Server SNMP Manager command ............................................................................................ 94
Server SNMP Trap command ................................................................................................... 94
Server SNMP Trap Destination command ............................................................................... 95
Server SSH command ............................................................................................................... 96
Show Commands.............................................................................................................................. 97
Show Group command.............................................................................................................. 97
Show NFS command ................................................................................................................. 98
Show NTP command................................................................................................................. 98
Show Port command ................................................................................................................. 99
Show Port In/Out command.................................................................................................... 103
Show Server command............................................................................................................ 104
Show Server CLI command .................................................................................................... 105
Show Server LDAP command................................................................................................. 105
Show Server PPP command ................................................................................................... 106
Show Server RADIUS command............................................................................................. 106
Show Server Security command.............................................................................................. 106
Show Server SNMP command ................................................................................................ 107
Show User command .............................................................................................................. 107
SPC Command ............................................................................................................................... 109
SPC Socket Command ................................................................................................................... 110
User Commands............................................................................................................................. 111
User Add command................................................................................................................. 112
User Delete command............................................................................................................. 113
User Logout command............................................................................................................ 113
User Set command .................................................................................................................. 114
User Unlock command ........................................................................................................... 116
Appendices................................................................................................................... 117
Appendix A: Technical Specifications ........................................................................................... 117
Appendix B: Device Cabling.......................................................................................................... 119
Appendix C: Supported Traps........................................................................................................ 125
Appendix D: NFS Error Codes and Port Status ............................................................................ 131
Appendix E: Using the BMU ......................................................................................................... 138
avocent.book Page vii Tuesday, March 14, 2006 12:33 PM
Table of Contents
vii
Appendix F: Ports Used................................................................................................................. 147

Appendix G: Technical Support..................................................................................................... 148
Index.............................................................................................................................. 149
avocent.book Page viii Tuesday, March 14, 2006 12:33 PM
viii
avocent.book Page ix Tuesday, March 14, 2006 12:33 PM
ix
LIST OF FIGU RES
List of Figures
Figure 2.1: CCM1650 Appliance Front Panel .................................................................................. 5
Figure 2.2: CCM1650 Appliance Back Panel ................................................................................... 6
Figure 2.3: CCM485x Appliance Front Panel .................................................................................. 6
Figure 2.4: CCM485x Appliance Back Panel ................................................................................... 7
Figure B.1: CAT 5 and CAT 6 Cable Adaptor Pin Assignments ................................................... 121
Figure B.2: Reversing Cable Adaptor Pin Assignments................................................................ 123
Figure B.3: 8-wire RJ-45 Reversing Cable ................................................................................... 124
avocent.book Page x Tuesday, March 14, 2006 12:33 PM
avocent.book Page xi Tuesday, March 14, 2006 12:33 PM
xi
LIST OF TABLES
List of Tables
Table 2.1: CCM485x Appliance LAN LED Values............................................................................ 7
Table 3.1: Appliance Feature Reference ......................................................................................... 14
Table 3.2: Default Physical Port Settings ...................................................................................... 15
Table 3.3: Default Virtual Port Settings .......................................................................................... 19
Table 3.4: SSH Authentication Methods.......................................................................................... 25
Table 3.5: Access Rights .................................................................................................................. 33
Table 3.6: Port History Mode Commands....................................................................................... 41
Table 3.7: Substitution Strings in NFS Filename Specification ...................................................... 44
Table 4.1: Line Editing Operations for VT100 Compatible Devices .............................................. 51
Table 4.2: Line Editing Operations for ASCII TTY Devices ........................................................... 52
Table 4.3: Command Syntax Types in Example Command ............................................................. 52
Table 4.4: CCM Appliance Command Summary............................................................................. 55
Table 5.1: Connect Command Parameters...................................................................................... 61
Table 5.2: Group Command Summary ........................................................................................... 63
Table 5.3: Group Add Command Parameters ................................................................................. 63
Table 5.4: Group Delete Command Parameter............................................................................... 64
Table 5.5: Group Set Command Parameters................................................................................... 64
Table 5.6: Help Command Parameter............................................................................................. 65
Table 5.7: IPMI Command Parameter ............................................................................................ 66
Table 5.8: NFS Command Parameters............................................................................................ 66
Table 5.9: NTP Command Parameters............................................................................................ 67
Table 5.10: Port Command Summary ............................................................................................ 68
Table 5.11: Port Add Command Parameters .................................................................................. 69
Table 5.12: Port Alert Add Command Parameters ......................................................................... 71
Table 5.13: Port Alert Copy Command Parameters ....................................................................... 71
Table 5.14: Port Alert Delete Command Parameter ....................................................................... 72
avocent.book Page xii Tuesday, March 14, 2006 12:33 PM
xii
Table 5.15: Port Delete Command Parameter ................................................................................ 72

Table 5.16: Port Logout Command Parameter ............................................................................... 73
Table 5.17: Port NFS Command Parameters.................................................................................. 74
Table 5.18: Port Refresh Command Parameter .............................................................................. 75
Table 5.19: Port Set Command Parameters .................................................................................... 76
Table 5.20: Port Set In/Out Command Parameters ........................................................................ 80
Table 5.21: Server Command Summary .......................................................................................... 81
Table 5.22: Server CLI Command Parameters ............................................................................... 82
Table 5.23: Server Flash Command Parameters ............................................................................ 84
Table 5.24: Server Init Command Parameter ................................................................................. 84
Table 5.25: Server LDAP Auth Command Parameter .................................................................... 85
Table 5.26: Server LDAP Primary|Secondary Command Parameters ........................................... 85
Table 5.27: Server LDAP Query Command Parameters ................................................................ 86
Table 5.28: Server LDAP Search Command Parameters ............................................................... 87
Table 5.29: Ping Command Parameter ........................................................................................... 88
Table 5.30: Server PPP Command Parameters .............................................................................. 88
Table 5.31: Server RADIUS Command Parameters ....................................................................... 89
Table 5.32: Server Security Command Parameters ........................................................................ 91
Table 5.33: Server Set Command Parameters................................................................................. 92
Table 5.34: Server Share Command Parameter.............................................................................. 92
Table 5.35: Server SNMP Command Parameter............................................................................. 93
Table 5.36: Server SNMP Community Command Parameters........................................................ 93
Table 5.37: Server SNMP Manager Command Parameters ........................................................... 94
Table 5.38: Server SNMP Trap Command Parameter.................................................................... 95
Table 5.39: Server SNMP Trap Destination Command Parameters............................................... 96
Table 5.40: Server SSH Command Parameters............................................................................... 96
Table 5.41: Show Command Summary............................................................................................ 97
Table 5.42: Show Group Command Parameter .............................................................................. 97
avocent.book Page xiii Tuesday, March 14, 2006 12:33 PM
List of Tables
xiii
Table 5.43: Show NFS Command Display Fields ........................................................................... 98

Table 5.44: Show NTP Command Display Fields ........................................................................... 99
Table 5.45: Show Port Command Parameter.................................................................................. 99
Table 5.46: Show Port Command Display Fields for a Physical Port with TD=Console ............ 100
Table 5.47: Show Port Command Display Fields for a Virtual Port ............................................ 101
Table 5.48: Show Port Command Display Fields for TD=SPC.................................................... 103
Table 5.49: Show Server Command Display Fields ...................................................................... 104
Table 5.50: Show Server CLI Command Display Fields............................................................... 105
Table 5.51: Show Server Security Command Display Fields ........................................................ 106
Table 5.52: Show Server SNMP Command Display Fields........................................................... 107
Table 5.53: Show User Command Parameter ............................................................................... 108
Table 5.54: Show User Command Display Fields......................................................................... 108
Table 5.55: Show User All Command Display Fields ................................................................... 109
Table 5.56: SPC Command Parameters........................................................................................ 110
Table 5.57: SPC Socket Command Parameters ............................................................................ 110
Table 5.58: User Command Summary........................................................................................... 111
Table 5.59: User Add Command Parameters................................................................................ 112
Table 5.60: User Delete Command Parameter ............................................................................. 113
Table 5.61: User Logout Command Parameter ............................................................................ 114
Table 5.62: User Set Command Parameters ................................................................................. 114
Table 5.63: User Unlock Command Parameter ............................................................................ 116
Table A.1: CCM Appliance Technical Specifications ................................................................... 117
Table B.1: Port Pin Assignments ................................................................................................... 119
Table B.2: Adaptors for Use with CAT 5 and CAT 6 Cable .......................................................... 119
Table B.3: Reversing Adaptors and Cables .................................................................................. 122
Table C.1: CCM Appliance Enterprise Traps ............................................................................... 125
Table D.1: NFS Error Codes ......................................................................................................... 131
Table D.2: NFS Port Status Values ............................................................................................... 137
Table E.1: IPMI Shortcut and BMU Command Summary ............................................................ 138
avocent.book Page xiv Tuesday, March 14, 2006 12:33 PM
List of Tables
xiv
Table E.2: IPMI Shortcut and BMU Alert Command Parameters................................................ 140
Table E.3: BMU Help Command Parameter................................................................................. 140
Table E.4: IPMI Shortcut and BMU Identify Command Parameters............................................ 140
Table E.5: IPMI Shortcut and BMU Pet Command Parameters .................................................. 141
Table E.6: IPMI Shortcut and BMU Power Command Parameters ............................................. 142
Table E.7: IPMI Shortcut and BMU Sel Command Parameters ................................................... 143
Table E.8: IPMI Shortcut and BMU Sensor Command Parameters ............................................. 143
Table E.9: IPMI Shortcut and BMU Sol Command Parameters................................................... 144
Table E.10: IPMI Shortcut and BMU Sysinfo Command Parameters .......................................... 145
Table E.11: IPMI Shortcut and BMU User Command Parameters .............................................. 146
Table F.1: Ports Used by CCM Appliance .................................................................................... 147
avocent.book Page 1 Tuesday, March 14, 2006 12:33 PM
CHAPTER
Product Overview
Features and Benefits

Overview
The CCM console management appliance provides non-blocked access and control for devices
(also called target devices) such as serial-managed Linux (or other UNIX) servers, routers, power
management devices and firewalls. This includes Avocent SPC power control devices that provide
advanced power management.
The CCM850 appliance has 8 serial ports. A single 10/100 Mbps Ethernet port provides network connectivity on each appliance. Two CCM850 appliances may be mounted in 1U of vertical space in a standard 19 inch rack.
The CCM1650 appliance has 16 serial ports. A single 10/100 Mbps Ethernet port provides network connectivity on each appliance. Two CCM1650 appliances may be mounted in 1U of
vertical space in a standard 19 inch rack.
The CCM485x appliance has 48 serial ports. A single 10/100/1000 Mbps Ethernet port provides network connectivity on each CCM appliance. One CCM485x appliance may be
mounted in 1U of vertical space in a standard 19 inch rack.
Each appliance has a console port that uses a Command Line Interface (CLI) for configuration,
management and optionally, connection to other ports.
In addition to the physical serial ports, you may configure and use up to 16 virtual serial ports on
each CCM appliance. Once a virtual port is established, it functions in a similar manner as a
physical port, except there is no need for physical cabling. A virtual port is accessed through the
Baseboard Management Controller (BMC) on a target device. The CCM appliance acts as an
Intelligent Platform Management Interface (IPMI) management console that allows users to
retrieve BMC-based status, statistics, logs and tracking information. If a target device experiences a
system failure, CCM appliance users may issue BMC Management Utility (BMU) commands to
virtual serial ports to determine the cause of the failure and reboot the device if necessary, even
when the devices operating system and keyboard are not available.
AV or DS operation
The CCM appliance supports two separate Flash application images: one for AV operation and one
for DS operation.
AV operation - CCM appliances are Flash loaded at the factory with an image that supports
standalone operation and the Avocent AVWorks cross-platform management application. The
AVWorks software is bundled with the CCM appliance and may be used to simplify installation,
configuration and subsequent session launching. When using this image, user authentication
requires user accounts to be maintained within the CCM appliance or within external authentication
servers which it can access.
DS operation - CCM appliances may be Flash loaded with an image that supports standalone
operation and the DSView 3 management software. When using this image, user authentication
includes user accounts maintained within the DSView 3 software server or within external
authentication servers which it can access. The CCM may be configured with other authentication
methods, if desired.
See Configuring the Appliance for AV Operation or DS Operation on page 12 for
more information.
NOTE: Hereafter, the phrase AV operation or DS operation will be used to identify features and commands that
are supported only when the CCM appliance is Flashed with an application image that supports that operation.
Whether the appliance is Flashed for AV or DS operation, you may perform most of the operations
that are described in this manual. This manual describes how to manage a CCM appliance by
entering commands using the CLI.
The AVWorks Installer/User Guide describes how to manage a CCM appliance using the
AVWorks software graphic interface.
The DSView Installer/User Guide describes how to manage a CCM appliance using the
DSView 3 software graphic interface.
NOTE: DSView 2 software is not supported on the CCM850, 1650 or 485x appliances. References to DSView
software and DS operation always refer to DSView 3 management software.
Serial device access options for physical ports

The CCM appliance and its attached devices are accessible over in-band, LAN-based connections
using Telnet and SSH (Secure Shell) client software. The CCM appliance and its attached devices
are also accessible over out-of-band, serial-based connections using the CCM appliances console
port. Out-of-band connectivity includes: terminal access (using supported terminal types such as
VT100), terminal emulation programs (such as HyperTerminal) and IP-based clients such as SSH
and Telnet. The console port offers modem handling, including a PPP (Point to Point Protocol)
communications interface that will accept a third party application that connects to the
CCM appliance.
The AVWorks software offers a built-in enhanced Telnet client and an SSH client application
The DSView 3 software offers a built-in enhanced Telnet/SSH client applet
Third party Telnet clients and third party SSH clients may be used during standalone operation
When the CCM appliance is Flashed for AV operation, third party Telnet and third party SSH
clients may be configured and used from within the AVWorks software
Chapter 1: Product Overview
When session sharing is enabled, the CCM appliance supports multiple concurrent sessions.
Preemption criteria is based upon configured user access levels (for AV operation) or configured
preemption levels (for DS operation).
Device access using virtual ports
Target devices with onboard BMCs may be configured through their Basic Input/Out System
(BIOS) to redirect serial console data from the local COM port to the serial interface on the BMC.
The BMC is further configurable for transferring this serial information to remote clients using the
Remote Management Control Protocol (RMCP). Transfer of RMCP messages between the BMC
and the RMCP client is called Serial over LAN (SoL). The CCM appliance contains an RMCP
client that supports a proprietary version of the IPMI 1.5 SoL protocol.
The CCM appliance serves as a gateway, allowing RMCP serial data to securely traverse nonsecure networks to remote clients over SSH sessions. Administrators may use its BMU interface to
monitor target device status, obtain information or reboot the device. See Using the BMU on
page 138.
The features that are available for physical ports, such as share mode, offline buffering of history
data and port alerts are also supported for virtual ports.
One SoL connection per BMC is allowed; up to four IPMI connections may be established to
each BMC.
User authentication and data security
The CCM user database supports up to 64 user accounts, which include usernames, passwords and/
or keys, plus specifications of access rights/levels to CCM appliance ports and commands. User
definitions may be changed at any time.
You may choose to have user access authenticated using the following methods.
Locally at the CCM user database
At a RADIUS (Remote Access Dial-In User Service) server
At an LDAP (Lightweight Directory Access Protocol) server
Through the DSView 3 software internal authentication service or external authentication

servers configured in the DSView 3 software (for DS operation)
Data security may be enhanced using industry-standard SSH encryption.

Extensive command set
The CCM appliance offers a wide range of commands that allow administrators to easily configure,
control and display information about the CCM appliance operating environment, including its
ports, user accounts and active sessions. The serial CLI is always available on the units console
port, and may be easily accessed during a session with an attached serial device.
The user interface also offers descriptive error message data and built-in command help
information. On-board Trivial File Transfer Protocol (TFTP) support allows administrators to
upload new functionality to CCM appliances in the field.
Port history
Each CCM physical and virtual port has a buffer that holds the most recent 64K bytes of online and
offline serial data. A separate history command mode lets you navigate within a ports current
history file and conduct tailored searches.
You may also configure the appliance to write serial port data to a file on an NFS (Network File
System) server, thus preventing data loss due to overflow of the history buffer.
Safety Precautions
To avoid potential device problems, if the building has 3-phase AC power, ensure that a computer
and its monitor (if used) are on the same phase. For best results, they should be on the same circuit.
To avoid potentially fatal shock hazard and possible damage to equipment, please observe the
following precautions:
Do not use a 2-wire extension cord in any product configuration containing this appliance.
Test AC outlets at the computer and monitor (if used) for proper polarity and grounding.
Use only with grounded outlets at both the computer and monitor. When using a backup Uninterruptible Power Supply (UPS), power the computer, the monitor and the CCM appliance off
the supply.
NOTE: The AC inlet is the main disconnect.
Rack mount safety considerations
Elevated Ambient Temperature: If installed in a closed rack assembly, the operation temperature of the rack environment may be greater than room ambient. Use care not to exceed the
rated maximum ambient temperature of the unit.
Reduced Airflow: Installation of the equipment in a rack should be such that the amount of airflow required for safe operation of the equipment is not compromised.
Mechanical Loading: Mounting of the equipment in the rack should be such that a hazardous
condition is not achieved due to uneven mechanical loading.
Circuit Overloading: Consideration should be given to the connection of the equipment to the
supply circuit and the effect that overloading of circuits might have on overcurrent protection
and supply wiring. Consider equipment nameplate ratings for maximum current.
Reliable Earthing: Reliable earthing of rack mounted equipment should be maintained. Pay
particular attention to supply connections other than direct connections to the branch circuit
(for example, use of power strips).
CHAPTER
Installation and Configuration
Hardware Overview
This section describes the CCM appliance LEDs, buttons and connectors.
CCM850 and 1650 appliance hardware

Figure 2.1 shows the front panel of a CCM1650 appliance. (The front panels of the CCM850
appliance and the CCM1650 appliance contain the same LEDs and buttons.)
Figure 2.1: CCM1650 Appliance Front Panel
The lower left area of the front panel contains the following LEDs and buttons:
The POWER LED illuminates when the CCM appliance is connected to a power source.
The ONLINE LED illuminates steadily (not blinking) when the CCM appliance self-test and
initialization procedures complete successfully.
The LINK LED illuminates when the CCM appliance establishes a connection to the network.
The TRAFFIC LED blinks when there is network traffic.
The 100Mbps LED illuminates when the CCM appliance is connected to a 100 Mbps LAN.
The RESET button, when pressed, reboots the CCM appliance. See Rebooting on page 11.
The INIT button, when pressed and held, restores the CCM factory default values. See
Reinitializing on page 11.
Figure 2.2 shows the back panel of a CCM1650 appliance.
Figure 2.2: CCM1650 Appliance Back Panel
The back panel contains:
RJ-45 port connectors for serial cabling (the CCM850 appliance has 8 port connectors, the
CCM1650 appliance has 16 port connectors). The port number is adjacent to each connector.
A LAN connector for a 10BaseT or 100BaseT interface cable.
An RJ-45 CONSOLE PORT connector for a serial cable.
Outflow opening for the internal fan.
The AC line cord connector.
CCM485x appliance hardware

Figure 2.3 shows the front panel of a CCM485x network appliance.
Figure 2.3: CCM485x Appliance Front Panel
The front panel contains 48 serial port connectors. The lower left area of the front panel contains
the following LEDs, buttons and connectors.
The ONLINE LED illuminates steadily (not blinking) when the CCM self-test and initialization
procedures complete successfully.
The POWER LED illuminates when the CCM appliance is connected to a power source and the
power switch is on (|).
The RESET button reboots the CCM appliance when pressed. See Rebooting on page 11.
The INIT button restores the CCM factory defaults when pressed and held. See Reinitializing on
page 11.
A console device may be connected to the RJ-45 CONSOLE PORT.
A 10BaseT, 100BaseT or 1000BaseT interface cable may be connected to the LAN PORT.
Two LEDs adjacent to the LAN PORT (SPEED and LINK/TRAFFIC) indicate the link speed and
whether there is traffic on the link. Table 2.1 describes the possible values.
Chapter 2: Installation and Configuration
Table 2.1: CCM485x Appliance LAN LED Values

SPEED LED
LINK/TRAFFIC LED
Description
Off
Off
No link
Off
On
Link at 10 Mbps
Green
On
Link at 100 Mbps
Orange
On
Link at 1000 Mbps
Off
Flashing
Traffic at 10 Mbps
Green
Flashing
Traffic at 100 Mbps
Orange
Flashing
Traffic at 1000 Mbps
Figure 2.4 shows the back panel of a CCM485x appliance.
Figure 2.4: CCM485x Appliance Back Panel
The back panel contains:
The AC line cord connector.
Outflow openings for the two internal fans.
A DB-9 DEBUG PORT connector. This port should be used only on the advice and with the
guidance of Technical Support.
Installing the CCM Appliance

WARNING: This unit is not user serviceable. To avoid electrical shock, do not attempt to open the unit or operate
with the cover off. Do not attempt to make any repairs. See Technical Support on page 148 for information.
WARNING: The power outlet should be near the equipment and easily accessible.
To install the CCM appliance hardware:

1.
Place the unit where you can connect cables between the serial devices and the CCM serial
ports, and where you can connect a LAN interface cable between the Ethernet hub or switch
and the CCM LAN connector.
2.
Connect devices to the CCM serial ports; see Device Cabling on page 119 for cable information.
Connect each serial device to its appropriate power source, following the devices documentation.
3.
Attach a LAN interface cable to the LAN connector on the CCM appliance. A CAT 5 cable is
required for 100BaseT operation. For CCM485x appliances, a CAT 6 cable is required for
1000BaseT operation.
4.
Insert the power cord into the back of the CCM appliance. Insert the other end of the power
cord into a grounded electrical receptor.
5.
Check that the POWER LED on the front of the unit is illuminated. If not, check the power
cable to ensure that it is inserted snugly into the back of the unit. The ONLINE LED will illuminate within two to three minutes to indicate that the self-test is complete. If the ONLINE
LED blinks, contact Technical Support for assistance.
6.
For CCM850/1650 appliances, check that the LINK LED is illuminated.

For CCM485x appliances, check that the LAN port LEDs indicate that a 10, 100 or 1000 Mbps
link exists.
If there is no link, check the Ethernet cable to ensure that both ends are correctly inserted into
their jacks.
7.
Once the POWER, ONLINE and appropriate LEDs are illuminated, proceed with the configuration process (if you will be using BootP, remove power from the appliance).
Configuring the CCM Appliance

To configure the CCM appliance, you must specify a unique IP address, plus other network address
information. This information will be stored in the CCM configuration database. During initial
login, you will specify a password for the Admin user.
Configuring the network address settings

For a CCM appliance that is Flashed for DS operation, you may configure the CCM appliance
network address settings using the DSView 3 software, BootP or the serial CLI. When the
appliance is Flashed for AV operation, you may configure the network address settings using the
AVWorks software, BootP or the serial CLI on the console port.
To configure the network address settings using DSView 3 software:
When the CCM appliance is Flashed for DS operation, the DSView 3 software New Appliance
Wizard is the easiest method to configure the network address settings. When you add a CCM
appliance that was Flashed for AV operation, you must migrate it to the DSView 3 software system
after it is added. See the DSView Installer/User Guide for instructions. After the network address
settings are configured, see Initial CCM appliance login on page 10 of this manual.
To configure the network address settings using AVWorks software:
When the CCM appliance is Flashed for AV operation, the AVWorks software New Appliance
Wizard is the easiest method to configure the network address settings. See the AVWorks Installer/
User Guide for instructions. After the network address settings are configured, see Initial CCM
appliance login on page 10 of this manual.
To configure the network address settings using BootP:

1.
Ensure that there is a BootP server on your network that is configured to correctly respond to a
BootP request from the CCM appliance. BootP servers require the Ethernet MAC address of
network devices. The Ethernet MAC address is printed on a label affixed to the appliance. See your
BootP servers system administrator guide for information about configuring the BootP server.
2.
After you have configured your networks BootP server with the CCM appliance Ethernet
MAC address, IP address, subnet mask and gateway, restore power to the CCM appliance and
wait for the ONLINE LED to illuminate. Once this occurs, the CCM appliance has completed
the BootP protocol, obtained its network address information and stored these in Flash.
3.
You may verify that the BootP process was successful with a ping command, which tests network connectivity. The ping command is entered as:
ping <ip_address>
For example, the following command tests the network connectivity of a CCM appliance with
the IP address 192.168.0.5.
ping 192.168.0.5
4.
If the CCM appliance completes the BootP successfully, you will see a display similar to
the following.
Pinging 192.168.0.5 with 32 bytes of data:
Reply from 192.168.0.5: bytes=32 time<10ms
TTL=128
TTL=128
TTL=128
TTL=128
If the CCM appliance did not successfully obtain its IP address with the BootP protocol, you
will see a display similar to the following.
Pinging
Request
Request
Request
Request
192.168.0.5 with 32 bytes of data

timed out.
timed out.
timed out.
timed out.
In this case, check the address information provided to the BootP server to confirm it is correct.
Verify that the Ethernet LAN adaptor cable is correctly installed on the CCM appliance and the
Ethernet hub.
After the network address settings are configured successfully, launch a Telnet session to the
assigned IP address. Then, see Initial CCM appliance login on page 10.
To configure the CCM appliance using the serial CLI:
1.
Attach a compatible device to the console port. The compatible device types are: ASCII,
VT52, VT100, VT102, VT220 and VT320.
For cable and adaptor information, see Device Cabling on page 119. You may use any terminal
emulation program that is available on your system.
10
2.
Configure your terminal or terminal emulation program as follows.

Baud rate
Bits per character
Stop bits
Flow control
9600
8
1
None
3.
Press the Return or Enter key until a prompt appears, requesting your username. If you do not
receive a prompt after pressing the key five times, check your cable and serial settings to be
sure that they are correct.
4.
Proceed to Initial CCM appliance login on page 10.
Initial CCM appliance login

The CCM appliance ships with a single user defined in its user database, named Admin. This
predefined user has no factory default password. The Admin user has the APPLIANCEADMIN
access level and a preemption level of 4 (see Access levels and rights on page 33 and Session
sharing and preemption on page 27 for more information).
The first time you connect to the appliance, you are prompted for a username.
To log in to the CCM appliance for the first time:
1.
At the Username prompt, type Admin. At the Password prompt, press Return.
Username: Admin
Password:
Authentication Complete
CCM configuration is required.
2.
Once authentication completes, the CCM appliance prompts for any missing configuration values that are required for operation.
If you already provided the IP address, subnet mask and gateway, you will not be prompted for
those values again.
If you have not already provided the network information, you will be prompted for them.
Enter the addresses using standard dot notation.
CCM configuration is required
Enter CCM IP address > 192.168.0.5
Enter CCM Subnet mask > 255.255.255.0
Enter CCM Gateway address > 0.0.0.0
3.
You are prompted for a new Admin password. Passwords are case sensitive and must contain
3-16 alphanumeric or hyphen characters. You must enter the new password twice to confirm
that you entered it correctly.
Enter CCM New Admin Password > *****
Confirm New Admin Password > *****
After you have provided the required configuration information, a confirmation message appears
while the CCM appliance stores the values in its configuration database.
11
You have now completed the initial login, and you may enter additional commands at the CLI
prompt (>). To configure other CCM appliance ports, see Configuring Port Settings on page 15.
Rebooting and Reinitializing the CCM Appliance

You may reboot or reinitialize the CCM appliance by pressing a recessed button on the appliance
front panel or by issuing a command.
Rebooting
During a reboot, any active Telnet sessions, including your own, are terminated. Any configuration
changes that require a reboot will become effective when the reboot completes.
To reboot the appliance in hardware:
1.
Locate the recessed RESET button on the front of the CCM appliance. An opened paper clip
may be used to depress the button.
2.
Insert the opened paper clip in the recess, then depress the button.
To reboot the appliance with a command:

Issue a Server Reboot command.
Reinitializing
Reinitializing the CCM appliance removes configured information. This may be useful when
reinstalling the unit at another location in your network.You may erase the configuration database,
which contains all nonvolatile data except the IP address, subnet mask and gateway. You may also
erase both the configuration database and the network address information.
To reinitialize the CCM appliance in hardware:
1.
Locate the recessed INIT button on the front of the CCM appliance. An opened paper clip may
be used to depress the button.
2.
Insert the end of the opened paper clip in the recess, then depress and hold the button. The
ONLINE LED will blink, indicating an initialization has been requested. You have approximately seven seconds to release the button before any action is taken.
After seven seconds, the ONLINE LED will blink more rapidly to confirm that the CCM
configuration database has been erased. Continuing to hold the INIT button for a few more seconds
will erase the IP address as well. The ONLINE LED will blink faster to confirm the deletion.
If any portion of Flash is erased, the CCM appliance reboots when the INIT button is released.
To reinitialize the CCM appliance with a command:
1.
Issue a Server Init command with the Config parameter if you wish to erase the configuration database but retain the network address information.
-orUse the All parameter if you wish to erase the configuration database and the network
address information.
12
2.
You are prompted to confirm or cancel the operation.
The appliance reboots after initializing the database and copying it to the configuration Flash.
Configuring the Appliance for AV Operation or DS Operation

The CCM appliance ships with a Flash application firmware image that supports AV operation (see
AV or DS operation on page 1).
If you wish to use DSView 3 software to manage the CCM appliance, you must load an appropriate
application image onto the appliance, using DSView 3 software. In other words, you cannot load a
DS operation application image from the CCM appliance CLI.
However, if you enable DS operation on the CCM appliance by loading an application firmware
image that supports DSView 3 software and later wish to return to AV operation, you may load an
application image that supports AV operation using the CCM appliance CLI.
To load a DS operation application image on a CCM appliance that currently uses
an AV operation image:
This procedure begins by verifying that the CCM appliance has the proper boot and application
image versions. Then, from the DSView 3 software, the appliance is added and migrated. See the
CCM Migration document on the Avocent web site for complete information.
To load an AV operation image on a CCM appliance that currently uses a DS
operation image:
1.
Go to the Avocent web site, www.avocent.com/support, to locate and download the proper AV
operation application image.
2.
Issue a Server Security command to ensure that DS authentication is not enabled on the appliance and that no DSView 3 software server certificates are stored.
a.
Use the Auth parameter to specify any authentication methods you wish to use, other than
DS (that is, DS must not be included in the authentication method specification).
b.
Use the DSClear parameter to clear any stored DSView 3 software server certificates.
SERVER SECURITY AUTHENTICATION=<auth> DSCLEAR
3.
Issue a Server Flash command to update the appliance with the image that supports the
AVWorks software.
SERVER FLASH APP HOSTIP=<tftp_add> IMAGE=<host_file>
Alternatively, you may reinitialize the CCM appliance (using the INIT button on the front panel or
by issuing a Server Init command) to clear the database. This will clear any stored DSView 3
software server certificates. You may then issue the Server Security command to specify
authentication methods other than DS, followed by a Server Flash command to load the AV
operation application image.
13
CHAPTER
Operations
3
Overview
The CCM console management appliance and its ports are easily configured and managed to meet
your requirements for device connection, user authentication, access control, power status
monitoring, port history information display and Simple Network Management Protocol (SNMP)
compliance for use with third party network management products.
Configuring Global Settings

Generally, the CCM appliance-level commands affect console port operations, configure/initiate
physical operations and enable/disable features.
Console port settings
The Server CLI command includes parameters that configure the console port:
The terminal type to be used
Enabling/disabling connections to devices from the console port - see Connecting to devices
from the console port on page 22
The modem initialization character - see Configuring and using dial-in connections on page 23
This command also covers the following:
The CLI access character that will suspend a device session and place you in CLI command
mode (this value may be overridden at the port level) - see CLI Mode on page 30
Local port history file processing options during connection and when a session ends - see
Managing Port History on page 40
The session time-out value, which indicates the period of inactivity that must occur before a
session is ended (this value may be overridden at the port level) - see Session time-out on
page 31
Network settings, updating firmware and rebooting/reinitializing the appliance

To change the CCM appliance IP, gateway or subnet addresses, use the Server Set command
(page 92).
14
To update the boot or application firmware on the appliance, use the Server Flash command,
described on page 83. If you wish to change the application firmware to a version that supports a
different operation (that is, from AV operation to DS operation or vice versa), see Configuring the
Appliance for AV Operation or DS Operation on page 12.
The appliance may be rebooted or reinitialized by pressing a button on the appliance or by issuing a
command; see Rebooting and Reinitializing the CCM Appliance on page 11.
Enabling/disabling features
Table 3.1: Appliance Feature Reference
For information about using this feature
See this section
Accessing a Network Time Protocol (NTP) server to

Updating the Appliance Clock on page 14
update the time
Using an NFS server to store device session data
NFS history files on page 43
PPP
Using PPP on page 23
Using a RADIUS server for user authentication
RADIUS authentication on page 35
Security lock-out
Using security lock-out on page 40
Session sharing
Session sharing and preemption on page 27
SNMP
Managing the CCM Appliance Using SNMP on page 46
SSH
Using SSH on page 24
Response to ping requests (DS operation only)
Server Ping command on page 87
Updating the Appliance Clock

The CCM appliance supports the NTP protocol. When NTP is enabled, the real time clock on the
CCM appliance will be updated immediately after NTP is enabled, each time the appliance reboots
and optionally, at specified intervals.
You may specify one or two NTP servers to provide the time. An NTP server may be external or an
internal server that you supply. The primary server will be queried for the time first. If it does not
respond with a valid time, the secondary server will be queried for the time. (The second server will
also be queried for status even if a valid time was obtained from the primary server.)
To enable or disable NTP:
To enable NTP, issue an NTP command with the Enable parameter.
NTP ENABLE [IP=<prim_add>[,<sec_addr>]] [UPDATE=<hours>]
If this is the first time NTP is being enabled, you must specify at least one NTP server address.
Chapter 3: Operations
15
If you want the time to be updated periodically, specify an update interval of up to 99 hours. If you
specify a zero interval value (which is the default), the time will be updated only when the CCM
appliance reboots.
When you enable NTP, you are prompted to confirm or cancel the operation.
To disable NTP, issue an NTP command with the Disable parameter.
NTP DISABLE
See NTP Command on page 67 for more information.
To display NTP information:
Issue a Show NTP command.
See Show NTP command on page 98 for more information.
Configuring Port Settings

A CCM appliance contains physical serial ports (8, 16 or 48 plus the console port) that ship with
default values. You may change these values as needed for your system configuration.
You may also add up to 16 virtual ports on a CCM appliance, in addition to the physical ports.
Physical port settings

You may configure a CCM physical port to support one of two types of target devices (TDs): SPC
or console.
A console TD may be a serial-managed Linux (or other Unix) server, router, firewall or other
supported serial device.
By default, CCM appliance physical ports are configured with the settings listed in Table 3.2.
Table 3.2: Default Physical Port Settings
Parameter
Value
Target device
Console
Name
xx-xx-xx Pn (last 3 octets of MAC address plus the port number)
Baud rate
9600
Bits per character
Parity
None
Stop bits
Flow control
None
Time-out
User Server CLI setting (15 minutes)
CLI access character
Use Server CLI setting (^D)
16
Table 3.2: Default Physical Port Settings (Continued)

Parameter
Value
Power
None
Most of these settings are standard serial port operating characteristics.

The CLI access character parameter specifies how you access the CLI. For more information, see
CLI Mode on page 30.
The CCM appliance is able to generate SNMP traps in response to specified transitions of RS-232
control signals. The intent of these traps is to indicate critical target device failures such as power
loss or cabling issues. The Power parameter is used to configure this function. The parameter value
indicates an inbound control signal (CTS, DCD or DSR) and the state of that signal (low or high).
When power status monitoring is enabled and the defined signal transitions from false to true, the
CCM appliance sends a power-on trap; conversely, when the condition transitions from true to
false, a power-off trap is sent. Flow control signals may not be used for power status monitoring,
and power status monitoring signals may not be used for flow control.
SPC devices and sockets
For more information about SPC power control devices, see the SPC Installer/User Guide.
To configure TD=console physical serial port settings:
Issue a Port Set command. You may specify settings for one port, multiple ports or all ports.
PORT [<port>|ALL] SET TD=CONSOLE [NAME=<name>] [BAUD=<baud>]
[SIZE=<size>] [PARITY=<parity>] [STOP=<stop_bits>] [FLOW=<flow_ctrl>]
[TIMEOUT=<time-out>] [SOCKET=<socket>] [CHAR=^<cli_char>]
[TOGGLE=NONE|DTR] [POWER=<signal>] [GROUP=<group>]
For more information and descriptions of all valid parameters, see Port Set command on page 75.
To configure TD=SPC physical ports and settings:
Issue a Port Set command with the TD=SPC parameter.
PORT <device> SET TD=SPC [NAME=<name>]
When a port is configured for an SPC power control device, you may specify only the Name
parameter; no other serial port settings may be specified with the Port Set command. However, you
may use the SPC command to change certain configuration values for the SPC device.
SPC <device>|ALL [NAME=<name>] [MINLOAD=<amps>] [MAXLOAD=<amps>]
Use an SPC Socket command to configure or control the state of the sockets on the SPC device.
SPC <device>|ALL [SOCKET <socket>] [WAKE=ON|OFF] [ONMIN=<time>]
[OFFMIN=<time>] [POWER=ON|OFF|REBOOT]
For more information, see SPC Command on page 109 and SPC Socket Command on page 110.
NOTE: Users who wish to use the native command interfaces of the SPC device should specify TD=console.
17
Port access
The port access control method can be either by port or by group.
The port access method may affect the listing of available ports when using the Connect command.
For example, if a users access is by group, the list of available ports will only include valid groups
of which that user is a member.
Access by port
When access is by port, the user account may contain port access rights. For physical ports, this can
be specified with specific port numbers or PALL, which grants access to all ports. If the users
account contains access levels rather than rights, the ADMIN and APPLIANCEADMIN levels
include PALL access. For virtual ports, the PALL access right is required. For more information,
see Access levels and rights on page 33.
Access by group
Access control groups allow a user account to be granted access to a group of ports using a single
specification. Using port groups also simplifies access control when using external RADIUS or
LDAP servers or when moving a user database from one CCM appliance to another. Group based
access can be used on both physical and virtual ports.
Group settings are stored as a list of strings for each user and for each port. Each user has a list of
groups that they can access and each port has a list of groups to which it belongs. These are
separate lists.
When access is by group, the right to access a port is determined by whether that username is a
member of a group that has been granted access to the port. However, even when access is by
group, a user with PALL access rights can still access all ports.
For example, assume that physical ports 1, 2, 3 and 4 are assigned to a port group named LINUX.
Physical ports 5, 6, 7 and 8 are assigned to a port group named ROUTERS.
Users who must be able to access all Linux devices can be granted this right by being assigned to
the LINUX group of users (using a Group Add/Set command) or by having the LINUX group
specified in each of their user accounts (using a User Add/Set command). Those users will be able
to access the devices connected to ports 1, 2, 3 and 4.
Users who must be able to access Linux and router devices can be granted this right by being
assigned to both the LINUX and ROUTERS group of users or by having both the LINUX and the
ROUTERS groups specified in their user accounts. Those users will be able to access the devices
connected to ports 1 through 8.
Although unlikely, it is possible for a user to have access to an empty port group (a group to which
no ports belong). When all ports are removed from a group, the group no longer exists; however,
users on this CCM appliance will remain in that group. A warning message will be displayed if you
issue a User Add/Set command and use the Group parameter to specify a group that doesnt have
ports assigned to it.
Although also unlikely, it is possible for a port to belong to a group that no users can access.
18
Each port may belong to up to 8 groups. Multiple ports may belong to the same port group. Up to 8
port groups may then be specified in a user account.
Up to 8 port groups may be specified for a CCM850 appliance user, up to 16 port groups for a
CCM1650 appliance user and up to 48 port groups for a CCM485x appliance user.
Managing groups
The most convenient way to add, modify and delete groups is with the Group commands.
Alternatively, you may use the Group parameter in Port Add, Port Set, User Add and User Set
commands to add or change group membership; however, the Group commands provide an easier,
centralized method.
To specify the access control method:
Issue a Server Security command with the Access parameter.
SERVER SECURITY . . . ACCESS=BYPORT|BYGROUP
To add a group:
To add a group to one or more ports, issue a Group Add command with the Port parameter and a
comma-delimited list of port names/numbers.
GROUP <group> ADD PORT=<port>
To add a group to one or more users, issue a Group Add command with the User parameter and a
comma-delimited list of usernames.
GROUP <group> ADD USER=<user>
For more information, see Group Add command on page 63.
(Alternately, you may specify groups using the Group parameter in a Port Add, Port Set, User Add
or User Set command.)
To change a groups membership:
To change the membership of a group of ports, use the Group Set command with the Port
parameter and a comma-delimited list of port names/numbers to add, remove or replace.
GROUP <group> SET PORT=<port>
To change the membership of a group of users, use the Group Set command with the User
parameter and a comma-delimited list of usernames to add, remove or replace.
GROUP <group> SET USER=<user>
You may add, remove or replace membership with a Group Set command. For more information,
see Group Set command on page 64.
(Alternately, you may specify groups using the Group parameter in a Port Add, Port Set, User Add
or User Set command.)
To display group information:
To display one or more groups and their membership, issue a Show Group command
19
SHOW GROUP [<group>]

To display a list of all local users and their group membership, issue a Show User command with
the Group parameter.
SHOW USER GROUP
To display port group information, issue a Show Port command with the Groups parameter.
SHOW PORT GROUPS
For more information, see Show Group command on page 97, Show User command on page 107
and Show Port command on page 99.
To delete all members in a group:
Issue a Group Delete command.
GROUP <group> DELETE
For more information, see Group Delete command on page 64.
Virtual port settings

You may configure up to 16 virtual ports on a CCM appliance, in addition to the physical ports.
Once a virtual port is added, you may change the port settings.
A virtual port must be given a name. This name is used in all commands issued for that port
(numbers are not used for virtual ports). A virtual ports definition must also include the IP address
of the BMC and a socket that may be used for direct Telnet access. If login credentials are required
to access the BMC on the target device, they may also be configured on the CCM appliance to
facilitate access.
Group names may be assigned to virtual ports in the same manner as physical ports; see Port access
on page 17 for more information.
When a virtual port is created, its state is unconnected, but an SoL connection is immediately
attempted. If an SoL connection is established to the target BMC, the state changes to connected. If
an SoL connection cannot be established, the state remains unconnected and two more connection
attempts will be made. If no connection can be established after those attempts, the state changes
to failed.
You may connect to a virtual port that has a state of unconnected or failed, but no data will come
through. In this case, the Refresh command may be used to attempt a connection.
After a port has connected, you may access the target device using SoL or you may access the
BMU and issue BMU commands. See Using the BMU on page 138 for more information.
By default, CCM appliance virtual ports are configured with the settings listed in Table 3.3.
Table 3.3: Default Virtual Port Settings
Parameter
Value
Username
Null
20
Table 3.3: Default Virtual Port Settings (Continued)

Parameter
Value
Password
Null
Time-out
15 minutes
CLI access character
Use Server CLI setting (15 minutes)
To create and configure a virtual port:

Issue a Port Add command.
PORT <port_name> ADD SOCKET=<socket> IP=<address> [USERNAME=<username>]
[PASSWORD=<password>] [TIMEOUT=<time-out>] [CHAR=^<cli_char>]
[GROUP=<group>]
For more information and descriptions of all valid parameters, see Port Add command on page 69.
To change the settings for a virtual port:
Issue a Port Set command.
PORT [<port>|ALL] SET [NAME=<name>] [TIMEOUT=<time-out>] [SOCKET=<socket>]
[CHAR=^<cli_char>] [GROUP=<group>] [USERNAME=<username>]
[PASSWORD=<password>]
If you use the ALL parameter, the changes will affect all physical ports, plus all virtual ports that
have been added.
For more information and descriptions of all valid parameters, see Port Set command on page 75.
To attempt connection to a virtual port with an unconnected/failed state:
Issue a Show Port command with the virtual ports name.
SHOW PORT <port>
If the ports State field indicates Unconnected or Failed, issue a Port Refresh command.
PORT <port_name> REFRESH
Issue another Show Port command to check the state.
To delete a virtual port:
Issue a Port Delete command. For more information, see Port Delete command on page 72.
PORT <port_name> DELETE
Displaying port settings

To display port settings:
Issue a Show Port command.
SHOW PORT [<port>|ALL|NAMES|GROUPS]
21
You may request configuration and status information about a single physical or virtual port or all
physical and virtual ports. You may also request information about port names and port groups.
For more information, see Show Port command on page 99.
Connecting to Serial Devices

The CCM appliance offers several methods for connecting to serial devices: Telnet, serial CLI ,
PPP and SSH.
You may use the session sharing feature to permit multiple concurrent connections to a physical or
virtual port. See Session sharing and preemption on page 27 for more information.
Connecting to devices using Telnet

Each CCM physical or virtual port is directly addressable through a unique TCP port that provides
a connection to the attached serial device.
Plain text (non-encrypted) Telnet connections are enabled by default. For information about
enabling both plain text Telnet and SSH connections, Enabling plain text Telnet and SSH
connections on page 27 and Server Security command on page 90.
When the CCM appliance is Flashed for DS operation, you may access the appliance and its ports
using the DSView 3 software Telnet/SSH applet client.
When the CCM appliance is Flashed for AV operation, you may access the appliance and its ports
using the AVWorks software Telnet client. You may also specify and use third party Telnet
applications from within the AVWorks software.
Regardless of the Flash image (DS or AV), when the CCM appliance is being used in standalone
mode, you may use third party Telnet and SSH applications.
When using Telnet/SSH through a CCM appliance virtual port to access a devices BMC, the
username and password credentials configured for the virtual port (Port Add/Set command) will be
used to validate device access.
DSView 3 software and AVWorks software Telnet clients
These proprietary Telnet/SSH clients provide features unavailable in many other Telnet programs.
These include configurable session properties tailored for each device and configurable user
preferences for all sessions. Additionally, both clients offer a separate history mode to review
session data, a choice of connection modes to CCM appliances, a login scripting function and a
logging function. Both clients provide built-in support for SSH2.
See the DSView Installer/User Guide and the AVWorks Installer/User Guide for more information.
To connect to a device using Telnet:
Type telnet, followed by the CCM appliance IP address and the appropriate TCP port, which by
default is 3000 plus the physical port number, in decimal format. (The TCP port number may be
changed for any CCM port.)
22
For example, the following Telnet command connects to the serial device attached to physical port
4 of the CCM appliance.
telnet 192.168.0.5 3004
If an authentication method other than None has been configured for the CCM appliance, you will
be prompted for a username and password. Once authentication completes, your connection is
confirmed. When you successfully connect to the serial device, you will see a display similar to
the following.
Username: Myname
Password: ******
Authentication Complete
Connected to Port: 7 9600,8,N,1,XON/XOFF
If the authentication method is configured as None, you may Telnet and connect to a serial device
without entering credentials; however, credentials are always required when connecting to the
CCM CLI.
NOTE: When using AVWorks software, the configuration of the credential caching feature may affect whether
you are prompted for a username and password. See the AVWorks Installer/User Guide for more information.
Data entered at the Telnet client is written to the serial device. Any data received by the CCM
appliance from the serial device is output to your Telnet client.
Connecting to devices from the console port

You may connect to a serial device from the console port, using a local terminal or a local PC using
a terminal emulation program. If you connect an external modem to the console port, you may also
access devices through a remote terminal or PC that can dial into the external modem. For
information about modem connections, see Configuring and using dial-in connections on page 23
and Server CLI command on page 81.
To connect to a device from the console port:
1.
Issue a Server CLI command, using the Connect parameter to enable the use of the Connect
command from the console port. (This need only be done one time.)
SERVER CLI CONNECT=ON
2.
Issue a Connect command to the desired port.

CONNECT [<port>] [EXCLUSIVE]
The optional Exclusive parameter requests exclusive access to the port. This is valid only if the
port is not currently in use. See Session sharing and preemption on page 27 for
more information.
If you do not specify a port, a menu will be displayed, listing the ports that are available for
serial connection. Enter a port number or name, or press Enter to cancel the command. If a
valid port is specified, a message Connected to port ... appears. This message includes the port
name plus the configured settings for baud, data bits, parity, stop bits and flow control.
3.
To end a device session that was initiated with a Connect command, issue a Disconnect command.
23
DISCONNECT
For more information, see Server CLI command on page 81, Connect Command on page 61 and
Disconnect Command on page 62.
Configuring and using dial-in connections

You may attach an external modem to the console port for dial-in serial CLI access to the CCM
appliance. This may be used as a backup connection if the appliance is not accessible from the
network. It may also be used as a primary connection at remote sites that do not have Ethernet
network capability. The modem must be Hayes compatible.
To specify a modem initialization string:
1.
Issue a Server CLI command, using the Modeminit parameter to specify the modem
initialization string.
SERVER CLI MODEMINIT=<string>
The string must be enclosed in quotes and must include at least the command settings ATV1
and S0=1, which cause the modem to issue verbose response strings and autoanswer the phone
on the first ring. For more information, see Server CLI command on page 81.
The modem initialization string is sent to the cabled modem when any of the following
conditions occur:
2.
CCM appliance initialization
Detection of a transition of DSR from low to high
Completion of a call when DCD changes from high to low
Upon successful modem connection, press the Enter key until the login prompt appears.
To display modem configuration information:

Issue a Show Server CLI command.
SHOW SERVER CLI
For more information, see Show Server CLI command on page 105.
Using PPP
The CCM appliance supports remote PPP access using an autoanswer modem that answers calls
and establishes the PPP protocol with a dial-in client. You may establish Telnet or SSH
connections over PPP.
PPP dial-in may be used to access a remote CCM appliance that does not warrant a WAN (Wide
Area Network) link to the Ethernet interface. The PPP dial-in may also be used to access a subnet
containing remote devices in the event of a WAN link failure. In this case, the PPP provides an
alternate path to one or more remote devices.
To use PPP, you must configure a modem in autoanswer mode on the console port; see Configuring
and using dial-in connections on page 23. Once the PPP connection is established, you must launch
24
an application that connects to the CCM appliance or to one of its ports. The PPP connection is
only a communications interface to the CCM appliance.
The CCM appliance implements a PPP server that uses CHAP (Challenge Authentication
Protocol). Passwords are not accepted in the clear on PPP connections.
To enable or disable a PPP server on the console port:
1.
To enable a PPP server on the console port, issue a Server PPP command with the Enable parameter.
SERVER PPP ENABLE LOCALIP=<local_ip> REMOTEIP=<rem_ip>
[MASK=<subnet>]
You must specify local and remote IP addresses to be used for the CCM appliance and client
ends of the PPP connection respectively. You are prompted to confirm or cancel the changes.
2.
To disable a PPP server, issue a Server PPP command with the Disable parameter.
SERVER PPP DISABLE
For more information, see Server PPP command on page 88.

To display PPP configuration information:
Issue a Show Server PPP command.
SHOW SERVER PPP
For more information, see Show Server PPP command on page 106.
Using SSH
The CCM console management appliance supports version 2 of the SSH protocol (SSH2). The
CCM SSH server operates on the standard SSH port 22. The shell for this connection provides a
CLI prompt as if you had established a Telnet connection on port 23. The shell request for this
connection is for CLI access.
SSH connections to specific serial ports may be made on TCP ports that are numbered with values
100 greater than the standard 30xx Telnet ports for the CCM appliance. For example, if port 7 is
configured for Telnet access on port 3007, then port 3107 will be a direct SSH connection for port
7. When SSH is enabled, Telnet port 23 connections will be accepted from other clients if the
Server Security command includes the Encrypt=SSH,None parameter, which indicates that both
SSH and plain text connections will be allowed. Connecting to Telnet port 23 may also be tunneled
through a connection to SSH port 22.
SSH server keys
When SSH is enabled for the first time, all sessions are terminated and the CCM appliance
generates an SSH server key. The key generation process may take up to three minutes. The key is
computed at random and is stored in the CCM configuration database.
In most cases, the SSH server key should not be modified because most SSH clients will associate
the key with the IP address of the CCM appliance. During the first connection to a new SSH server,
the client will display the SSH servers key. You will be prompted to indicate if it should be stored
on the SSH client. After the first connection, most SSH clients will validate the key when
25
connecting to the CCM appliance. This provides an extra layer of security because the SSH client
can verify the key sent by the server each time it connects.
When you disable SSH and later reenable it, you may either use the existing server key or compute
a new one. If you are reenabling the same server at the same IP address, it is recommended that you
use the existing key, as SSH clients may be using it for verification. If you are moving the CCM
appliance to another location and changing the IP address, you may wish to generate a new SSH
server key.
Authenticating an SSH user
SSH is enabled and disabled with the Server SSH command. When you enable SSH, you may
specify the authentication method(s) that will be used for SSH connections. The method may be a
password, an SSH key or both. A users password and SSH key are specified with a User Add or
User Set command. All SSH keys must be RSA keys. DSA keys are not supported.
Table 3.4 lists and describes the valid SSH authentication methods that may be specified with a
Server SSH command.
Table 3.4: SSH Authentication Methods
Method
Description
PW (default)
SSH connections will be authenticated with a username/password. With this method,

a users definition must include a valid password in order for that user to authenticate
an SSH session.
KEY
SSH connections will be authenticated with an SSH key. With this method, a users
definition must include valid SSH key information in order for that user to
authenticate an SSH session. Key authentication is always local; RADIUS and LDAP
are not supported. For more information, see SSH user keys on page 26.
PW|KEY or KEY|PW
SSH connections will be authenticated with either a username/password or an SSH

key. If a user has only a password defined, that user must authenticate an SSH
session with a username/password. If a user has only an SSH key defined, that user
must authenticate an SSH session using the key. If a user has both a password and
an SSH key defined, that user may use either a username/password or the SSH key
to authenticate an SSH session. This method allows the administrator to define how
each user will authenticate an SSH session based on information provided in the
User Add/Set command.
PW authentication will be local, RADIUS, LDAP or downlocal as specified in the Auth
parameter of the Server Security command. Key authentication is always local.
PW&KEY or KEY&PW
SSH connections will be authenticated using both a username/password and an

SSH key. With this method, a users definition must include a password and SSH key
information for that user to authenticate an SSH session.
PW authentication will be local, RADIUS, LDAP or downlocal as specified in the Auth
parameter of the Server Security command. Key authentication is always local.
SSH key authentication always uses the access rights from the local user database. Depending on
the server authentication method specified with the Server Security command, SSH password
authentication will use the access rights from the local user database or the values returned by the
26
RADIUS or LDAP server. When the CCM appliance is Flashed for DS operation, SSH password
authentication will use the access rights returned by the authentication service used by the DSView
3 software.
With either of the or methods (PW|KEY and KEY|PW), the user access rights are determined
from the method used to authenticate the user.
With either of the and methods (PW&KEY and KEY&PW), the user access rights are
determined from the first method specified. If PW&KEY is specified, the access rights from the
password authentication will be used. If KEY&PW is specified, the access rights from the key
authentication will be used.
For more information, see Using Authentication Methods on page 34.
SSH user keys
A users SSH key is specified in a User Add or User Set command. You may define a key even if
SSH is not currently enabled. The key may be specified in one of two ways:
When using the SSHKEY and FTPIP keyword pair to define the network location of a users
SSH key file, the SSHKEY parameter specifies the name of the uuencoded (Unix to Unix
encoded) public key file on an FTP server. The maximum file size that can be received is 4K
bytes. The FTPIP parameter specifies the FTP servers IP address.
When this method is specified, the CCM appliance initiates an FTP client request to the
specified IP address. The CCM appliance then prompts the user for an FTP username and
password for connection. When connected, the CCM appliance will GET the specified key file
and the FTP connection will be closed. The CCM appliance then stores the SSH key with the
username in the CCM user database.
When using the KEY keyword to specify the SSH key, the KEY parameter specifies the actual
uuencoded SSH key. This is for configurations that do not implement an FTP server. The CCM
appliance stores the specified key in the CCM user database.
The CCM appliance processes a uuencoded SSH2 public key file with the format described in the
IETF document draft-ietf-secshpublickeyfile-02. The key must follow all format requirements. The
UNIX ssh-keygen2 generates this file format. The CCM appliance also processes a uuencoded
SSH1 public key file. The UNIX ssh-keygen generates this file format.
To enable SSH session access to the CCM appliance:
1.
Issue a Show Server Security command to ensure that you are using an authentication method
other than None.
SHOW SERVER SECURITY
2.
Issue a Server SSH command with the Enable parameter. You may also specify an
authentication method.
SERVER SSH ENABLE AUTH=<auth>
If an authentication method is not specified, the previous authentication parameter will be
used. The default value is AUTH=PW.
27
3.
If you are enabling SSH for the first time, you are advised that all other CCM appliance
sessions will be terminated. Enter Y to continue or N to cancel.
4.
If you are reenabling SSH, you are prompted to use the existing SSH server key or generate a
new key. Enter Y to use the existing key or N to generate a new key.
For more information, see Server SSH command on page 96.

To disable SSH session access to the CCM appliance:
Issue a Server SSH command with the Disable parameter.
SERVER SSH DISABLE
When SSH is disabled, the CCM appliance operates in plain text mode.
To display SSH information:
Issue a Show Server Security command.
If SSH is enabled, the display will include SSH2. Regardless of whether SSH is enabled, the
display will indicate the authentication method that was specified with the Server SSH command.
Enabling plain text Telnet and SSH connections

Plain text (non-encrypted) Telnet connections are enabled by default.
If you enable SSH connections using the Server Security command and the Encrypt=SSH
parameter, plain text Telnet connections will be disabled. However, if you enable SSH connections
with the Server SSH command, both plain text and SSH connections will be allowed.
To enable both Telnet and SSH connections:
Issue a Server Security command, indicating Encrypt=SSH,None.
Session sharing and preemption

Session sharing allows multiple concurrent sessions to the same attached device.
The maximum number of concurrent sessions allowed on a CCM appliance is based on the
following calculation:
(2 x Number of Physical Ports) + (2 x Number of Configured Virtual Ports)
A maximum of four concurrent sessions are allowed per port (physical or virtual).
For example, if you have 7 virtual ports configured on a CCM1650 appliance, the maximum
number of concurrent sessions on the appliance is 46 (2 x 16 physical ports = 32; 2 x 7 configured
virtual ports = 14; 32 + 14 = 46). However, at any given time, only four concurrent sessions will be
allowed on any single physical or virtual port.
One SoL connection per BMC is allowed. Up to four IPMI connections may be established to
each BMC.
You may:
Disable sharing. In this case, only one session per port may be active at a time.
28
Enable automatic session sharing. In this case, a user will automatically be connected to a port
even if it is in use (with restrictions noted in the following examples).
Enable session sharing with the query option. In this case, when a port is in use, the session
originator (the user who initiated the first session) must grant permission before other users are
able to join a session on that port.
Session sharing and the preemption of device sessions are also affected by a users configured
access level or preemption level (which is configured with the User Add/Set commands).
When the CCM appliance is Flashed for AV operation, the users configured access level is
used for session sharing and preemption. There are three access levels, with the following hierarchy (highest to lowest):
APPLIANCEADMIN > ADMIN > USER
See Access levels and rights on page 33 for more information.
When the CCM appliance is Flashed for DS operation, the users configured preemption level
is used for session sharing preemption. There are four preemption levels, with the following
hierarchy (highest to lowest):
4>3>2>1
For example, assume user A is currently accessing a device, and user B wishes to access the same
device. If user Bs access/preemption level is equal to or higher than user As access/preemption
level, then user B may be allowed to preempt user As device session.
Any user may also request exclusive access to a port if there is no other existing connection to that
port. This is done on the login screen by adding the E parameter after the username or by adding the
Exclusive parameter with the Connect command.
The following examples show the interaction between share mode and access/preemption levels.
Session sharing examples
These examples illustrate session sharing and preemption for one port and two users. Assume this
port is currently in use by the session originator (SO). Another user, the requesting user (RU),
wants to connect to the same port. For simplicity, also assume that if RU is allowed to connect, it
will not exceed the maximum allowable number of sessions per port or sessions per appliance.
Example 1 - SOs access/preemption level is higher than RUs access/preemption level
Share mode = Query

SO is connected non-exclusively
SO will be prompted to approve sharing the connection.
If SO approves, then RU will be connected to the port.
If SO does not approve, then RU will not be connected to the port.
Share mode = Query
SO is connected exclusively
RU will not be connected to the port.
Share mode = Disabled or Auto
29
RU will not be connected to the port. (In this case, it does not matter whether SO is connected
exclusively or non-exclusively.)
Example 2 - RUs access/preemption level is equal to or higher than SOs access/
preemption level
Share mode = Disabled

-orSO is connected exclusively
RU is prompted with preemption choices E, N and D.
If RU replies with E, then SO will be preempted/disconnected and RU will be connected
exclusively to the port.
If RU replies with N, then SO will be preempted/disconnected and RU will be connected
non-exclusively to the port.
If RU replies with D, SO will remain connected and RU will not be connected to the port.
Share mode = Auto or Query
SO is connected non-exclusively
RU is prompted with preemption choices E, N, S and D.
If RU replies with E, then SO will be preempted/disconnected and RU will be connected
exclusively to the port.
If RU replies with N, then SO will be preempted/disconnected and RU will be connected
non-exclusively to the port.
If RU replies with S and Share Mode = Auto, SO will remain connected and RU will be
connected to the port.
If RU replies with S and Share Mode = Query, SO will be prompted to approve sharing
the connection.
If SO approves, RU will be connected to the port.
If SO does not approve, RU will not be connected to the port.
If RU replies with D, SO will remain connected and RU will not be connected to the port.
Example 3 - Ending shared sessions
In a shared session, if the SO quits the session, the next user sharing the session will become the
SO. If the SO is logged out by another user, all sessions that are shared with the SO will be
terminated, as well as the SOs session.
To configure criteria to be used for session sharing and preemption:
Issue a User Add or User Set command.
If the CCM appliance is Flashed for AV operation, include the Access parameter, indicating
the desired access level or rights.
If the CCM appliance is Flashed for DS operation, include the Preempt parameter, indicating
the desired preemption level.
30
To enable/disable session sharing:

To disable session sharing, issue a Server Share command with the Disable parameter.
To enable automatic sharing, specify the Auto parameter.
To enable sharing only with the permission of the session originator, specify the Query parameter.
This is the default value.
To initiate a device session with exclusive access:
At the Username: prompt, enter your username, followed by an E or e.
-orIf device connections from the console port are enabled, enter a Connect command, followed by a
port number or name, then the Exclusive parameter.
NOTE: A request for an exclusive connection is valid only when there are no other users currently using the port.
To display share mode information:

Issue a Show Server command. The display will indicate the share mode.
CLI Mode
While you are connected to an attached serial device, you may enter CLI mode and enter CCM
appliance commands.
To enter or exit CLI mode when connected to a serial device:
1.
To enter CLI mode, type the CLI access character, which is Ctrl-D by default. At the CLI
prompt (>), you may enter CCM commands.
2.
To exit CLI mode and return to the session with the attached device, issue a Resume command.
RESUME
For more information, see Resume Command on page 80.

To change the CLI access character:
Issue a Server CLI command or a Port Set command (or Port Add command for a virtual port),
using the Char parameter to specify the CLI access character.
SERVER CLI CHAR=^<char>
PORT SET CHAR=^<char>
For a physical port, if you issue a Port Set command with Char=None, then the CLI access
character specified in the Server CLI command will be used.
For a virtual port, the character specified with the Port Add command is used. For a direct Telnet
connection, or if None is specified in the Port Add command, the value specified in the Char
parameter of the Server CLI command will be used.
You may use the Port Set command to override the Server CLI access character on an individual
physical or virtual port basis.
31
For more information, see Port Add command on page 69, Port Set command on page 75 and
Server CLI command on page 81.
To display CLI access character information:
Issue a Show Server CLI or a Show Port command.
SHOW SERVER CLI
SHOW PORT
For more information, see Show Server CLI command on page 105 and Show Port command on
page 99.
Ending Device Sessions

To end your session:
Enter CLI mode and issue a Quit command.
-orIf you initiated the device session with a Connect command, enter CLI mode and issue a
Disconnect command.
-orAllow the port to time-out due to inactivity (if port time-out is enabled). In this case, a notification
message is issued and the serial CLI session returns to CLI mode. This time-out may occur while
you are in CLI mode.
-orFor modem connections, if a carrier drop occurs, the serial CLI session is automatically logged off.
If you end a shared session and you were the session originator, the next user sharing the session
becomes the session originator.
For more information, see Quit Command on page 80 and Disconnect Command on page 62.
To end another users session:
Issue a User Logout command, specifying the name of the user to be logged out.
A message is sent and the connection is dropped.
If you are logged out by another user during a shared session and you are the session originator, all
the sessions that share with you will also be logged out.
For more information, see User Logout command on page 113. For information about session
sharing, see Session sharing and preemption on page 27.
Session time-out
The CCM console management appliance monitors data traffic when you are connected to an
attached serial device. You may specify a time-out value with the Server CLI command. You may
also specify a time-out value for each port with the Port Set command (or Port Add for virtual
ports). The value indicates the number of idle minutes the CCM appliance will wait before
32
dropping a connection to that port. When a Port Set/Add time-out value is omitted or set to zero, the
port will use the value specified in the Server CLI command. To completely disable port time-outs,
the Server CLI time-out and the Port Set/Add time-out values must both be zero.
Managing User Accounts

The CCM user database can store information for up to 64 user accounts.
To add a user:
Issue a User Add command.
USER <username> ADD [PASSWORD=<pwd>] [SSHKEY=<keyfile>] [FTPIP=<ftpadd>]
[KEY=<sshkey>] [ACCESS=<access>] [GROUP=<group>] [PREEMPT=1|2|3|4]
You must specify a username. You must also specify a password or SSH user key information, or
you may specify both. You may also include an access level/access rights and group names. The
Preempt parameter is valid only when the CCM appliance is Flashed for DS operation.
For more information, see Using SSH on page 24, Access levels and rights on page 33, User Add
command on page 112 and Managing groups on page 18.
To change a users configuration information:
Issue a User Set command.
USER <username> SET [PASSWORD=<pwd>] [SSHKEY=<keyfile>] [FTPIP=<ftpadd>]
You may change your own password at any time. You must have USER access rights to change
another users password or to change any users SSH user key information, access rights or
preemption level. The Preempt parameter is valid only when the CCM appliance is Flashed for
DS operation.
To remove an SSH user key or password, specify Key= or Password=. You cannot remove
both the password and the SSH key from a users definition; one must remain in the user database.
Also, you cannot remove a users key or password if that removal would result in no valid users
having USER access rights.
For more information, see Using SSH on page 24, Access levels and rights on page 33, User Set
command on page 114 and Managing groups on page 18.
To delete a user:
Issue a User Delete command.
USER <username> DELETE
For more information, see User Delete command on page 113.
To display user configuration information:
1.
To display information about one user, issue a Show User command, specifying the username.
SHOW USER <username>
2.
33
To display information about all users, issue a Show User command with the All parameter.
SHOW USER ALL
3.
To display information about group membership, issue a Show User command with the
Group parameter.
SHOW USER GROUP
For more information, see Show User command on page 107.
Access levels and rights

Most CCM appliance commands require the user to have the appropriate permission to issue them.
Permissions are expressed as access levels or access rights.
There are three predefined access levels: APPLIANCEADMIN, ADMIN or USER. Each access
level has associated rights, which are described in Table 3.5.
The APPLIANCEADMIN level has the access rights PALL, USER, SCON, SMON, PCON
and BREAK
The ADMIN level has the access rights PALL, USER, SMON, PCON and BREAK
The USER access level has no port access rights by default (this level cannot be expressly
configured for a user account; it is assigned based on the criteria described in Access rights on
page 34)
Table 3.5: Access Rights

Access Right
Description
PCON
The Port Configuration access right allows the user to modify port settings. Grant PCON
access only to users who need to issue the Port Set command.
SCON
The Server Configuration access right allows the user to change the CCM configurations,
including setting the IP address and updating the program load in Flash. Grant SCON
access only to users who need to administer the CCM appliance.
SMON
The Server Monitor access right allows the user to view CCM appliance status and
monitor serial port activity. Grant SMON access only to users who need to assist other
users in accessing attached serial devices.
USER
The USER access right allows the user to modify the user database. Grant USER access
only to users who need to add users, change user specifications or delete users.
If local user authentication will be used, at least one user must have USER access rights;
otherwise, the user database cannot be changed.
Do not confuse this access right with the predefined USER access level.
BREAK
The BREAK access right allows the user to send a serial break sequence to the attached
serial device. On certain devices, this sequence has a special meaning. Grant BREAK
access only to users who need to use the Port Break command.
Pn, Px-y or
PALL
The Port access right gives a user access to one or more serial ports and the attached
serial devices. You may grant access to specific physical ports (Pn), a range of physical
ports (Px-y) or all physical and virtual serial ports (PALL).
34
The access levels and rights for each command are listed in Table 4.4 on page 55.
When the CCM appliance is Flashed for AV operation, session sharing preemption uses access
levels. See Session sharing and preemption on page 27 for more information.
When the CCM appliance is Flashed for DS operation, other access levels may control a users
permission to perform operations. See the DSView Installer/User Guide for more information
Access rights
You may fine-tune the predefined access levels in a user account by adding or subtracting granular
access rights with a User Set command.
When you create a user account, you may optionally specify individual access rights rather than a
predefined access level. In this case, an access level is assigned, based on the access
rights specification:
If the user account is created with a user rights specification that includes SCON, the
APPLIANCEADMIN access level is assigned.
If the user account is created with a user rights specification that includes USER (but not
SCON), the ADMIN access level is assigned.
If the user account is created with a user rights specification that does not include either SCON
or USER, the USER access level is assigned.
To manage a users access level/rights:

1.
To configure a users access level/rights, issue a User Add command, using the Access parameter to specify a level or rights. (When you create a user account, you must also specify other
parameters; see Managing User Accounts on page 32 for more information.)
USER <username> ADD ACCESS=<access>
2.
To change a users access level/rights, issue a User Set command, using the Access parameter
to specify a level or rights.
USER <username> SET ACCESS=<access>
3.
To display the access level and rights for one or all users, issue a Show User command.
SHOW USER <username>|ALL
For more information, see User Add command on page 112, User Set command on page 114 and
Show User command on page 107.
Using Authentication Methods

The CCM appliance supports several methods for authenticating users: DS, local, RADIUS,
LDAP, downlocal and none. Multiple connection and authentication methods may
operate concurrently (except local and downlocal, which cannot both be specified).
NOTE: DS authentication is enabled only when the CCM appliance is Flashed for DS operation.
35
When the CCM appliance is Flashed for DS operation, local and DS authentication are enabled by
default. When the CCM appliance is Flashed for AV operation, local authentication is enabled
by default.
DS authentication
DS authentication uses either the internal DSView 3 software authentication service or an external
authentication service configured in the DSView 3 software. When you specify DS authentication,
you may also indicate the authentication mode.
Secure mode indicates that authentication will be locked to one DSView 3 software server
after a successful initial access, and the DSView 3 software server and appliance credentials
will be stored on the CCM appliance.
Trustall mode indicates that any DSView 3 software server may be used for authentication,
and the DSView 3 software server credentials will not be stored or validated on the
CCM appliance.
When the secure mode is used, you may clear the stored credentials used by the DSView 3 software
at any time. Reinitializing the CCM appliance also clears any stored credentials.
For more information, see the DSView Installer/User Guide.
Local authentication
Local authentication uses the CCM appliance internal user database to authenticate users. You may
optionally specify both local and another authentication method, in any order. In this case,
authentication will be attempted initially on the first method specified. If that fails, the second
method will be used for authentication, and so on. Local and downlocal authentication cannot both
be specified.
Downlocal authentication
Downlocal authentication uses the CCM appliance internal user database to authenticate users if
the configured external authentication services cannot be used due to lack of connection to the
external servers. Local and downlocal authentication cannot both be specified.
RADIUS authentication
RADIUS authentication uses an external third party RADIUS server containing a user database to
authenticate CCM appliance users. The CCM appliance, functioning as a RADIUS client, sends
usernames and passwords to the RADIUS server. If a username and password do not agree with
equivalent information on the RADIUS server, the CCM appliance is informed and the user is denied
CCM access. If the username and password are successfully validated on the RADIUS server, the
RADIUS server returns an attribute that indicates the access rights defined for that username.
To use RADIUS authentication, you must specify information about the primary RADIUS server
and optionally, a secondary RADIUS server to be used as a backup.
The RADIUS server definition values specified in CCM appliance commands must match
corresponding values configured on the RADIUS server. On the RADIUS server, you must include
CCM appliance-specific information: the list of valid users and their access rights/level for the
36
CCM appliance and any group assignments. Each user-rights attribute in the RADIUS servers
dictionary must be specified as a string containing the users access rights/level and any group
assignments for the CCM appliance, exactly matching the syntax used in the CCM User Add/User
Set command.
A user-rights attribute in the RADIUS servers dictionary may also contain a preemption value,
following the syntax used in the CCM User Add/User Set command. When this value appears in a
RADIUS attribute string, the authenticated user will have the specified preemption level. If the
attribute string does not contain the preempt keyword and value, the default Server CLI preemption
value will be used (see Console port session and connection authentication on page 36).
Consult your RADIUS administrators manual for information about specifying users and their
attributes. The exact process depends on the RADIUS server you are using.
When port group names are used, the CCM appliance will parse group names coming from a
RADIUS server, and allow access according to group content.
LDAP authentication
LDAP authentication uses an external third party LDAP server containing a user database to
authenticate CCM appliance users. The CCM appliance functions as an LDAP client.
To use LDAP authentication, you must specify information about the primary LDAP server and
optionally, a secondary LDAP server to be used as a backup. You must also supply search and
query information, and whether the LDAP server will be used just for authentication or for both
authentication and authorization. The LDAP configuration values specified in CCM appliance
commands must match corresponding values configured on the LDAP server(s).
Consult your LDAP administrators manual for information about specifying users, search and
query specifications. The exact process depends on the LDAP server you are using.
When port group names are used, the CCM appliance will parse group names coming from an
LDAP server, and allow access according to group content.
When using LDAP authentication on the CCM appliance, any port names containing spaces must
be changed to remove the spaces.
No authentication
When authentication is disabled, users are not authenticated. Telnet sessions to serial ports are
accepted immediately, and users are not prompted for a username or password. In this case, users
are granted access only to the port to which they are connected, including Break access.
Connections to the Telnet port (23), serial CLI and PPP are still authenticated using the local CCM
user database, even when authentication is expressly disabled. Generally, these communications
paths are used only by administrators, and authentication is enforced in order to establish
appropriate access rights.
Authentication may not be disabled when SSH session access is enabled.
Console port session and connection authentication

By default, user sessions at the console port are authenticated.
37
When the CCM appliance is Flashed for AV operation, console port session access is always
authenticated using the configured access level for the user in the CCM appliance local user
database (APPLIANCEADMIN, ADMIN, USER).
When the CCM appliance is Flashed for DS operation, user authentication at the console port may
be enabled or disabled. You may also configure a preemption level that will be used for a console
port user when user authentication is disabled on that port.
Enabling and disabling console port authentication
NOTE: Console port authentication may be enabled/disabled only when the CCM appliance is Flashed for
DS operation.
Console port authentication may be enabled/disabled with the Server CLI command, using the
Auth parameter.
When console port authentication is enabled for a CCM appliance that is Flashed for DS
operation, the user is authenticated using the methods specified with the Server Security
command (DS, LOCAL, LDAP, RADIUS and/or DOWNLOCAL).
However, if the configured methods include DS, LDAP or RADIUS, but not LOCAL or
DOWNLOCAL, and a negative response is not received from the DS, LDAP or RADIUS
authentication servers, local authentication will be used. This ensures that the console port
remains usable when remote authentication services cannot be contacted.
When local authentication is used, console port connections are authenticated against the local
CCM user database.
When console port authentication is disabled, a console port user is not authenticated. If that
console port user attempts to connect to another CCM port (assuming connection ability is
enabled), and that port is already in use, a server level preemption level is used. This level is
configured with the Server CLI command.
NOTE: PPP sessions are always authenticated using the method specified with the Server Security command.
In other words, enabling/disabling user authentication at the console port does not apply to PPP dialin connections.
For example, assume authentication has been disabled on the console port and that session sharing
is also disabled. A user starts a session on the console port (without having to log in with a
username and password), then attempts to connect to port 7, which is already in use by another
user. Since the console ports preemption level is not known (because no authentication occurred
during login), the configured server-level preemption value is used.
If that preemption level is lower than the current port 7 users preemption level, the connection
to port 7 will not be allowed.
If that preemption level is equal to or higher than the current port 7 users preemption level, the
serial CLI port user may choose to preempt the current port 7 users session.
38
Authentication summary
The CCM appliance allows concurrent use of multiple authentication methods (except local and
downlocal). This includes DS authentication, if the CCM appliance is Flashed for DS operation.
Examples when Flashed for AV operation
If you enable local and RADIUS authentication (in that order), authentication first uses the CCM
user database. If that fails, authentication goes to the defined RADIUS servers. If you enable
RADIUS and local authentication (in that order), authentication goes first to the defined RADIUS
servers. If that fails, the local CCM user database is used. Local is the default method.
Examples when Flashed for DS operation
If you enable local and DS authentication (which is the default), DSView 3 software clients will
always be authenticated using DSView 3 software internal or external authentication services.
Third party Telnet and SSH clients will be authenticated using the CCM local user database first,
and DSView 3 software second.
Similarly, if you enable DS and RADIUS authentication, DSView 3 software clients will always be
authenticated using the DSView 3 software internal or external authentication services. Third party
Telnet and SSH clients will be authenticated using the RADIUS servers.
As indicated above, the DSView 3 software internal or external authentication services will always
be used for the DSView 3 software clients. For third party Telnet and SSH clients, the order in
which you specify other authentication methods determines the order in which each method is used.
To specify the authentication method:
1.
For RADIUS authentication, issue a Server RADIUS command.

SERVER RADIUS PRIMARY|SECONDARY IP=<radius_ip> SECRET=<secret>
USER-RIGHTS=<attr> [AUTHPORT=<udp>] [TIMEOUT=<time-out>]
[RETRIES=<retry>]
You must specify the servers IP address, the UDP port to be used and a secret to be used.
You must also specify a user-rights attribute value that matches a value in the RADIUS
servers dictionary.
You may also use this command to delete a RADIUS server definition.
SERVER RADIUS PRIMARY|SECONDARY DELETE
For more information, see Server RADIUS command on page 89.
2.
For LDAP authentication, issue Server LDAP Primary|Secondary, Server LDAP Auth, Server
LDAP Query and Server LDAP Search commands.
SERVER LDAP PRIMARY|SECONDARY [IP=<address>] [ACCESS=LDAP|LDAPS]
[PORT=<port>]
SERVER LDAP AUTH=AO|AA
SERVER LDAP QUERY [CSMODE=<csmode>] [TDMODE=<tdmode>]
[GROUP=<group>] [GMASK=<gmask>] [TMASK=<tmask>] [ACATTR=<acattr>]
39
SERVER LDAP SEARCH [SDN=<cn>] [SPASS=<spass>] [SBASE=<sbase>]

[UIDMASK=<umask>]
You may also use the LDAP Primary|Secondary command to delete an LDAP
server definition.
SERVER LDAP PRIMARY|SECONDARY DELETE
3.
Issue a Server Security command, using the Authentication parameter to specify the
authentication method. Use the Encrypt parameter to enable plain text Telnet connections,
SSH connections or both.
SERVER SECURITY AUTHENTICATION=<auth> ENCRYPT=<conns>
When the CCM appliance is Flashed for AV operation, you may not specify DS authentication.
When the CCM appliance is Flashed for DS operation, DS authentication is automatically
appended to any other previously configured authentication methods.
You cannot specify both local and downlocal. If you specify downlocal, it should be the last
authentication method specified.
If you specify None, you cannot specify any other method. When SSH session access is
enabled, you must specify an authentication method other than None.
4.
You are prompted to save the information. Enter Y to confirm or N to cancel.
To enable or disable authentication of console port sessions:

NOTE: This procedure is valid only when the CCM appliance is Flashed for DS operation.
Issue a Server CLI command, using the Auth parameter to indicate Enable or Disable. Use the
Preempt parameter with a value from 1-4 (lowest to highest) to configure a preemption value to be
used when console port authentication is disabled.
To clear stored DSView 3 software authentication credentials:
NOTE: This procedure is valid only when the CCM appliance is Flashed for DS operation.
Issue a Server Security command, using the DSClear parameter. This clears any stored credentials
used by the DSView 3 software.
To display authentication configuration information:
1.
Issue a Show Server Security command.

The display includes the current CCM appliance authentication settings that were configured
with the Server Security command. If SSH access has been enabled, the display indicates
SSH2. Regardless of whether SSH is enabled, the display includes the authentication method
specified with the Server SSH command.
2.
To display CCM RADIUS settings that were configured with the Server RADIUS command,
issue a Show Server RADIUS command.
SHOW SERVER RADIUS
40
3.
To display CCM LDAP settings that were configured with the Server LDAP commands, issue
a Show Server LDAP command.
SHOW SERVER LDAP
For more information, see:
Server RADIUS command on page 89
Server LDAP Auth command on page 85, Server LDAP Primary|Secondary command on
page 85, Server LDAP Query command on page 86 and Server LDAP Search command on
page 87
Server Security command on page 90
Server CLI command on page 81
Show Server Security command on page 106
Show Server RADIUS command on page 106
Using SSH on page 24.
Using security lock-out

When the security lock-out feature is enabled, a user account will be locked-out after five
consecutive authentication failures. A successful authentication will reset the counter to zero. You
may configure a lock-out period of 1-999 hours. A lock-out period of zero disables the feature; that
is, user accounts will not be locked-out.
A locked account will remain locked until the specified time elapses, the CCM appliance is powercycled or the account is unlocked by an administrator with the User Unlock command. A user with
the ADMIN access level may unlock all users except a user with the APPLIANCEADMIN level. A
user with the APPLIANCEADMIN level may unlock all users.
To enable or disable security lock-out:
1.
To enable security lock-out, issue a Server Security command, using the Lockout parameter
with a value between 1-999.
2.
To disable security lock-out, issue a Server Security command, using the Lockout=0 parameter.
To unlock a locked-out user:

Issue a User Unlock command with the username.
Managing Port History

Each CCM appliance physical port and virtual port has a circular history buffer that contains the
latest 64K bytes of data received from the attached serial device. You may enable the NFS feature,
which will write buffered data to a file on an NFS server. Port history information may be useful
for auditing and troubleshooting.
41
Using the local history buffer

The history buffer begins filling with data received from attached devices upon completion of
CCM appliance initialization, even if no user is connected. When you connect to a serial port, the
data that was received from the device prior to the connection is available in the buffer. Once
online, new data continues to be stored in the buffer. You may choose whether to display the
history buffers content automatically when you connect and whether to keep or discard the history
buffers content at the end of a session.
When more than 64K bytes of data are sent to the history buffer, data at the top of the buffer is
discarded to make room for the new data. As a result, the buffer always contains the most recent
64K bytes of port history.
Using port history mode commands
Once you are in port history mode, you may issue the commands listed in Table 3.6. Only the first
letter of the command is required.
Table 3.6: Port History Mode Commands
Command
Description
Bottom
B sets the view location to the bottom of the file minus 23 history display lines, if available.
Clear
C clears the port history buffer.
Help
H displays a summary of the port history commands.
Next
N increments the current history display line by the number of lines per page and outputs a
new history display page.
Prev
P decrements the current history display line by the number of lines per page and outputs a
new history display page.
Quit
Q returns to the normal CLI.
Resume
R leaves port history mode and CLI mode and resumes the session with the attached serial device.
This single command is equivalent to sequentially using the Quit and Resume commands.
Search
S searches the port history buffer for a specified text string. Search strings with embedded
spaces must be enclosed in quotes.
By default, the search is case sensitive. To ignore case, enter -i before the string. To specify
direction, type -u to search up from the current line toward the top of the buffer or -d to search
down from the current line toward the bottom of the buffer. The search direction remains in
effect for subsequent searches until you change the search direction.
If the string is found, the current history display line is set to the line containing the string, and
the unit outputs a history display page. If the string is not found, an error message is displayed,
no other information is output and the current history display line is not changed.
Entering the Search command with no parameters searches again for the previous string in the
same direction as the previous search.
Top
T sets the current history display line to one and outputs a history display page.
42
The following examples assume the user is in port history mode.

The following command searches the history buffer in the upward direction for the string
Abort Process.
PORT HISTORY> s -u Abort Process
The following command searches the history buffer for the string Process, ignoring case.
PORT HISTORY> s -i Process
For more information, see Server CLI command on page 81 and Port History command on page 73.
To access port history mode:
Issue a Port History command.
PORT HISTORY
The PORT HISTORY > prompt appears.
To control the port history buffer display when you connect:
Issue a Server CLI command, using the History parameter to specify the Hold or Auto option:
SERVER CLI HISTORY=HOLD|AUTO
If Hold is specified, the number of bytes in the history buffer is displayed, but none of the history data is output. In this case, you must access the CLI and use the Port History command to
view the ports history buffer content. This is the default mode.
If Auto is specified, the number of bytes in the history buffer is displayed and the entire content of the buffer is output to the Telnet session. In this mode, the history buffers content may
be reviewed in the Telnet clients scrolling window. You may also use the Port History command to view the ports history buffer content.
To control the port history buffer content when you end a session:
Issue a Server CLI command, using the History parameter to specify the Clear or Keep option:
SERVER CLI HISTORY=CLEAR|KEEP
If Clear is specified, the port history buffer is cleared and all data is discarded at the end of
a session.
If Keep is specified, the port history buffers content is retained at the end of a session.
To clear and discard all data in a port history buffer:

Issue a Clear command while you are in port history mode.
CLEAR
- or Issue a Server CLI command, indicating History=Clear.
SERVER CLI HISTORY=CLEAR
In this case, the ports history buffer is cleared at the end of each device session.
43
NFS history files

When the NFS feature is enabled on the CCM appliance and on a port, port history data is written
to a file on an NFS server, in addition to the local history buffer on the CCM appliance. Each
physical and virtual port has its own file(s) on the NFS server where data is written. The NFS
server must support NFSv3 (RFC1813).
Timestamps
Timestamps are written to the history file in the format: YYYY-MM-DD HH:MM:SS, where the
hour (HH) is in 24-hour format. Each timestamp is preceded and followed by a carriage return and
linefeed (CR+LF). The timestamp date/time uses the current time on the CCM appliance, which is
assumed to be UTC (Universal Coordinated Time). You may display the current time on the CCM
appliance at any time by entering a Show Server command.
A timestamp is inserted at the beginning of the file and whenever the file is opened for data to be
written, but not more frequently than once every second.
If the CCM appliance is unable to send incoming data to the NFS server file quickly enough (for
example, due to network load or server speed), an overrun may occur in the history accumulation
buffer, and older data will be discarded to accommodate new incoming data. If this occurs, the
location in the history file where the data was lost will indicate <<data lost due to overrun>>
appended to the timestamp.
Enabling NFS on the CCM appliance
To use NFS, you must first enable NFS on the CCM appliance by identifying the address and
mount point of the NFS server, plus the file type and the protocol.
NOTE: The NFS servers system administrator must make the appropriate configuration changes to allow the
CCM appliance to access a specific subdirectory in the NFS servers file system (the mount point). This may or
may not allow the CCM appliance to access and/or create subdirectories within the mounted subdirectory. This
will affect what may be specified in the Port NFS commands file parameter.
The valid file types are:
Linear - A file will be opened for writing at the end (appended); this is the default
Daily - A new file will be created every midnight
By default, the TCP network protocol is used for communications between the CCM appliance and
the NFS server. You may use the Protocol parameter to specify the UDP or TCP protocol.
To enable/disable NFS on the CCM appliance:
1.
To enable NFS on the appliance, issue an NFS command with the Enable parameter.
NFS ENABLE [IP=<nfs_server>] [MOUNT=<mount>] [FTYPE=LINEAR|DAILY]
[PROTOCOL=TCP|UDP]
If this is the first time you are enabling NFS on the appliance, you must include the IP address
of the NFS server and a valid mount point. You may also specify the file type and protocol.
You may also use the NFS Enable command to change the current IP address, mount point, file
type or protocol.
44
The values will be displayed and you will be prompted to confirm.

If a mount operation is not immediately successful, it will be retried every 60 seconds for
approximately 15 minutes. If an existing mount is lost, the CCM appliance will automatically
attempt to restore it.
If an error occurs, the display may include a numeric value and a text message. See NFS Error
Codes and Port Status on page 131 for descriptions.
2.
To disable NFS, issue an NFS command with the Disable parameter.

NFS DISABLE
If you later enable NFS again on the appliance, the server address, mount point, file type and
protocol values at the time of disabling will be used if new values are not specified with the
enable command.
For more information, see NFS Command on page 66.

To check the NFS mount status:
Issue a Show NFS command. (You may also issue the NFS Enable command without additional
parameters to verify an existing mount.)
Enabling NFS on the CCM appliance ports
After NFS is successfully enabled on the CCM appliance, you may enable and configure NFS on
the individual ports.
If an error occurs, it may include a numeric value and a text message. See NFS Error Codes and
Port Status on page 131 for descriptions.
NFS filenames
When you enable NFS on one or all ports, you may specify a filename, which must be unique for
each port. If the daily file type was configured with the NFS Enable command, the filename must
also be unique for each day. You may use the substitution strings listed in Table 3.7 as part of the
filename specification, regardless of the file type.
Table 3.7: Substitution Strings in NFS Filename Specification
2-Character String
Substituted Value
Example (Port number 7, named Sales7,

on January 8, 2004)
%d
Day of month (01-31)
08
%D
Same as %m-%d-%y
01-08-04
%F
Same as %Y-%m-%d
(this is the ISO 8601 date format)
2004-01-08
%j
Julian day of year (001-366)
008
%m
Month (01-12)
01
%y
Year without century (00-99)
04
45
Table 3.7: Substitution Strings in NFS Filename Specification (Continued)

2-Character String
Substituted Value
Example (Port number 7, named Sales7,

on January 8, 2004)
%Y
Year with century (2004-9999)
2004
%#
Port number (01-nn)
07
%n
Port name
Sales7
%%
If you do not specify a filename, the default is interpreted according to the configured file type:
If the file type is linear, the default is equivalent to P%#.hst for physical ports and P%n.hst for
virtual ports. The resulting filename for each physical port will include the port number; the
filename for each virtual port will include the port name.
If the file type is daily, the default is equivalent to P%#_%F.hst for physical ports and
P%n_%F.hst for virtual ports. The resulting daily filename for each port will include the port
number or name and the date.
Using the default filenames is the most convenient way to ensure that all filenames will be unique
for each port (and for each day, if the file type is daily).
However, if you choose to specify a filename rather than use the defaults, it must meet the
following criteria:
The filename must be different from the filename specified for any other port on the CCM
appliance. Using the port number substitution string (%#) or the port name substitution string
(%n) in the filename specification is one way to accomplish this.
If you are enabling NFS on all ports by including the All parameter, and you also include the
File parameter with a nondefault specification (that is, a specification other than File=), the
filename specification must explicitly include the %# port number or the %n port name
substitution string.
If the file type is daily, the filename specification must also include one or more of the date
substitution strings so that the resulting filename is different each day.
If you specify a nondefault filename, and later wish to use the default filename, you may change it
by issuing a Port NFS Enable command with a File= or File= parameter.
If you specify a nondefault filename, and later attempt to change the file type from linear to daily,
the request will be rejected if the filename specification does not include a date substitution string.
When writes will occur
When you enable NFS on a port, you may configure a buffer size and a time interval, which will be
used to determine when accumulated data is written to the NFS server file.
If you configure a buffer size of zero bytes and a time interval of zero seconds, data will be
written to the file as soon as the data is available (not to exceed one write per second).
46
If you configure a buffer size of zero bytes and a non-zero time interval, accumulated data will
be written to the file each time the specified interval elapses (unless 3584 or more bytes accumulate in the buffer before an interval elapses, in which case the data will be written then).
If you configure a non-zero buffer size and a time interval of zero seconds, data will be written
when the specified number of bytes has accumulated, regardless of elapsed time. (If you configure a size value larger than 3584, the data will be written whenever 3584 or more unwritten
bytes accumulate.)
To display NFS configuration information and mount status:

Issue a Show NFS command. The display will include the status of the mount operation. For more
information, see Show NFS command on page 98.
SHOW NFS
To enable/disable and configure NFS on a port:
1.
To enable NFS on one or all ports, issue a Port NFS command with the Enable parameter.
PORT <port>|ALL NFS ENABLE [FILE=<file>] [SIZE=<bytes>] [TIME=<sec>]
You may specify a filename or use default values; see NFS filenames on page 44.You may also
configure size and time thresholds; see When writes will occur on page 45.
2.
To disable NFS on one or all ports, issue a Port NFS command with the Disable parameter.
PORT NFS DISABLE
For more information, see Port NFS command on page 73.

To display NFS port history file information:
Issue a Show Port command. The display includes the current port NFS status, which covers the
most recent 15 minutes or since NFS history was most recently enabled for that port.
SHOW PORT
-orIssue a Show NFS command. In addition to displaying the current NFS mount status, this command
will also show any port error status other than No Recent Errors Detected.
SHOW NFS
NFS Error Codes and Port Status on page 131 describes the error codes that may be displayed.
Managing the CCM Appliance Using SNMP

The CCM console management appliance provides a set of commands that create and manage
SNMP structures for use by third party network management products. These commands cover the
following operations:
Enabling and disabling SNMP UDP port 161 SNMP processing
Defining read, write and trap community names
Defining and deleting up to four SNMP management entity IP addresses
Enabling and disabling SNMP traps
Defining and deleting up to four trap destination IP addresses
Defining, copying and deleting up to ten alert strings for each port
47
By default, SNMP is enabled but no traps are enabled and no trap destinations are defined.
To enable or disable SNMP processing:
1.
To enable SNMP processing, issue a Server SNMP command with the Enable parameter. This
is the default setting.
2.
To disable SNMP processing, issue a Server SNMP command with the Disable parameter.
SERVER SNMP ENABLE

SERVER SNMP DISABLE
For more information, see Server SNMP command on page 93.
To specify SNMP community names:
Issue a Server SNMP Community command, using the Readcomm, Writecomm and Trapcomm
parameters to specify community names.
NOTE: The default community names are public; if you enable SNMP, you are encouraged to change the
community values to prevent access to the MIB.
SERVER SNMP COMMUNITY READCOMM=<name> WRITECOMM=<name>

TRAPCOMM=<name>
Although all three community names default to public, if you specify a trap community name with
this command, it must be different from the read and write community names.
For more information, see Server SNMP Community command on page 93.
To add or delete SNMP management entity addresses:
1.
To add an SNMP management entity address, issue a Server SNMP Manager command with
the Add parameter and the management entitys IP address. You may define up to four SNMP
management entity addresses, using separate commands.
SERVER SNMP MANAGER ADD <ip_address>
When you define at least one SNMP manager, SNMP requests are processed if they are from
one of the defined SNMP managers. If a request is not from one of the defined SNMP
managers, the SNMP request is discarded.
2.
To delete an SNMP management entity address, issue a Server SNMP Manager command with
the Delete parameter and the management entitys IP address.
SERVER SNMP MANAGER DELETE <ip_address>
If no management entities are defined, any SNMP manager may access the MIB. For more
information, see Server SNMP Manager command on page 94.
48
To enable or disable SNMP traps:

1.
To enable SNMP traps, issue a Server SNMP Trap command with the Enable parameter.
SERVER SNMP TRAP ENABLE
The CCM appliance will display a numbered list of traps that are currently disabled with a
prompt requesting you to select trap(s) to enable. Indicate the traps to be enabled by entering a
traps list number, several numbers separated by commas, a range of numbers separated by a
dash or a combination of numbers with commas and dashes. To enable all traps, type ALL. To
cancel the command, press Enter.
- or To enable all SNMP traps, issue a Server SNMP Trap command with the Enable and All
parameters. In this case, the numbered list is not displayed.
SERVER SNMP TRAP ENABLE ALL
2.
To disable SNMP traps, issue a Server SNMP Trap command with the Disable parameter.
SERVER SNMP TRAP DISABLE
The CCM appliance will display a numbered list of traps that are currently enabled with a
prompt requesting you to select trap(s) to disable. Indicate the traps to be disabled by entering
a traps list number, several numbers separated by commas, a range of numbers separated by a
dash or a combination of numbers with commas and dashes. To disable all traps, type ALL. To
cancel the command, press Enter.
- or To disable all SNMP traps, issue a Server SNMP Trap command with the Disable and All
parameters. In this case, the numbered list is not displayed.
SERVER SNMP TRAP DISABLE ALL
For more information, see Server SNMP Trap command on page 94 and Supported Traps on
page 125.
To add or delete SNMP trap destination addresses:
1.
To add an SNMP trap destination address, issue a Server SNMP Trap Destination command
with the Add parameter and the destinations IP address. You may define up to four destination
addresses, using separate commands.
SERVER SNMP TRAP DESTINATION ADD <ip_address>
2.
To delete an SNMP trap destination address, issue a Server SNMP Trap Destination command
with the Delete parameter and the destinations IP address.
SERVER SNMP TRAP DESTINATION DELETE <ip_address>
For more information, see Server SNMP Trap Destination command on page 95.
To add, copy or delete port alert strings:
1.
To add a port alert string, issue a Port Alert Add command, specifying the port and a 3-32
character string. You may define up to ten strings for each port, using separate commands.
49
The alert string will only generate a trap if the PortAlert trap is enabled with a Server SNMP
Trap command.
PORT <port> ALERT ADD <string>
2.
To delete a port alert string, issue a Port Alert Delete command, specifying a port.
PORT <port> ALERT DELETE
The CCM appliance displays a numbered list of alert strings that have been defined for the
specified port with a prompt requesting you to select alert string(s) to delete. Indicate the alert
strings to be deleted by entering an alert strings list number, several numbers separated by
commas, a range of numbers separated by a dash or a combination of numbers with commas
and dashes. To delete all alert strings, type ALL. To cancel the command, press Enter.
3.
To copy the defined alert strings from one port to another port, issue a Port Alert Copy command, specifying the ports to be copied to and from.
PORT <to_port> ALERT COPY <from_port>
At the confirmation prompt, press Y to confirm or N to cancel. When the copy operation
occurs, all previously defined strings on the port being copied to will be replaced.
For more information, see Port Alert Add command on page 70, Port Alert Copy command on
page 71 and Port Alert Delete command on page 71.
To display SNMP configuration information:
Issue a Show Server SNMP command.
SHOW SERVER SNMP
The display includes information specified with the Server SNMP, Server SNMP Community,
Server SNMP Manager, Server SNMP Trap and Server SNMP Trap Destination commands.
For more information, see Show Server SNMP command on page 107.
To display port alert string information:
Issue a Show Port Alert command, specifying a port.
SHOW PORT <port> ALERT
The display lists all the ports defined alert strings.
For more information, see Show Port command on page 99.
50
51
CHAPTER
Using CCM Appliance Commands
Accessing the CLI

You may access the CLI in three ways: using the Telnet CLI, using the console port or entering the
CLI access character during a session to a serial device. When the CLI is accessed, its prompt
appears (>), indicating you may type a command.
Entering Commands
At the command prompt, type a command and then press Return or Enter. When the key is
pressed, the command line comprises all characters to the left of the cursor. The character at the
cursor and any characters to the right of the cursor are ignored. Table 4.1 lists the line editing
operations for VT100 compatible devices.
Table 4.1: Line Editing Operations for VT100 Compatible Devices
Operation
Action
Backspace
The character immediately before the cursor is erased and all text at and to the right of the
cursor moves one character to the left.
Left Arrow
If the cursor is not at the beginning of the line, the cursor moves one character to the left. If
the cursor is at the beginning of the line, no action is taken.
Right Arrow
If the cursor is not at the end of the line, the cursor moves one character to the right. If the
cursor is at the end of the line, no action is taken.
Up Arrow
The CLI maintains a buffer containing the last 16 typed command lines. If there is a
previous command line, it will be output as the current command line and may be edited. If
there is no previous command line in the command line buffer, the command line is set to
blanks and you may enter a new command.
Down Arrow
The next command in the CLI command line buffer is made available for edit. If there is no
next command line, the command line is set to blanks and you may enter a new command.
Delete
The character at the cursor position is deleted and all characters to the right of the cursor
position are moved left one character.
52
Table 4.2 lists the line editing operations for ASCII TTY devices. There is no command line buffer
available on an ASCII TTY device.
Table 4.2: Line Editing Operations for ASCII TTY Devices
Operation
Action
Backspace
Erases the last character typed.
Esc
Erases the current command line.
When commands take effect

Each command is completely processed before the next command may be entered. Some
commands prompt for confirmation before they are processed. In these cases, you must confirm or
cancel by entering Y or N respectively.
If you enter a Server Flash command or if you change the CCM appliance IP address with a Server
Set command, a reboot is required before the change becomes effective. In these cases, the CCM
database is updated when you enter the command and you are prompted that the change will not
take effect until the CCM appliance reboots. You may choose to reboot at that time, or you may
decline. When the unit reboots, your session and all other sessions on the CCM appliance
are terminated.
Understanding Conventions
This section describes the parts of a CCM appliance command and the conventions used in this
document to describe a commands syntax.
Command syntax
A command may have four types of syntax: positional commands, positional parameters, keyword
parameters and keyword values. The following examples demonstrate the syntax types.
The following Set Port command changes the baud rate and flow control settings for port 2.
> PORT 2 SET BAUD=57600 FLOW=XONXOF
Table 4.3: Command Syntax Types in Example Command
Value
Syntax
PORT
Positional command.
Positional parameter that indicates the port number for the command.
SET
Positional command that indicates port settings are to be changed.
BAUD
Keyword parameter, which is always followed by an equal (=) sign.
57600
Keyword value indicating the baud rate value for the BAUD keyword parameter.
Chapter 4: Using CCM Appliance Commands
53
Table 4.3: Command Syntax Types in Example Command (Continued)

Value
Syntax
FLOW
Keyword parameter, which is always followed by an equal (=) sign.
XONXOF
Keyword value.
Not every command will contain all syntax types. For example, the following command reboots the
CCM appliance.
>SERVER REBOOT
In this case, both SERVER and REBOOT are positional commands.

In most cases, one or more spaces separate positional commands, positional parameters and
keyword parameters.
Using abbreviations
For most positional commands, positional parameters or keyword parameters, you only need to
enter the first three characters. The exceptions are:
When you specify the terminal type with the Type parameter in the Server CLI command, you
must enter all characters.
When you specify an authentication method with the Auth parameter in the Server SSH
command, you must enter all characters.
When you specify control signal monitoring with the Power parameter in the Port Set
command, you must enter all characters.
When you specify the console port in commands such as Port Set and Show Port, you must
enter the capitalized abbreviation CON.
The IPMI command keyword may be abbreviated to IPM; however, when you issue any BMU
commands, or if you use any of the IPMI shortcut commands, none of the parameters may be
abbreviated. All BMU command keywords and parameters must be entered in their entirety.
See Using the BMU on page 138 for more information.
Specifying port names

Port names may contain up to 32 alphanumeric or hyphen characters, and must be unique; two
ports on the same appliance cannot have the same name. Port names are case sensitive. The name
cannot begin with a number or a space, nor can it contain a double quote () or comma (,). The
name cannot be Alert, All, Break, History, Logout, Names, NFS or Set (in any case or any
shortened form). If the name contains spaces, enclose the name in double quotes whenever it is
used in commands.
When using LDAP authentication on a CCM appliance, if any port names contain spaces, they
must be changed to remove the spaces.
54
Case sensitivity
With the exception of usernames, passwords, port names and group names, commands are not case
sensitive; they may be entered in uppercase, lowercase or a combination. For example, all of the
following commands are correct.
>
>
>
>
PORT 2 SET BAUD=57600 FLOW=XON

POR 2 SET BAU=57600 FLOW=XON
por 2 Set Baud=57600 flow=xon
port 2 set baud=57600 flow=xon
NOTE: Usernames and passwords are case sensitive. These values are stored exactly as you enter them. For
example, the username Ann must be entered with an uppercase A and all other letters lowercase. The
username ANN will not be accepted as the username Ann. Usernames and passwords must contain 3-16
alphanumeric or hyphen characters.
Syntax errors
Any syntax errors are displayed, and where applicable, the error is underlined.
In the following example, the keyword parameter baud is misspelled. Even if more than three
characters are entered, they must all be correct.
> port 2 Set Baux=57600 flow=xon
---ERR 26 - SET keyword parameter invalid
In the following example, the keyword value 576 is not valid. Numeric keyword values must be
fully specified and may not be shortened to three characters.
> POR 2 SET BAUD=576 FLOW=XON
--ERR 27 - SET keyword value invalid
In the following example, there are spaces between BAUD, the equal sign and the value 57600.
Spaces are not permitted between keyword parameters and their values.
> POR 2 SET BAUD = 57600 FLOW=XON
-----------ERR 26 - SET keyword parameter invalid
Syntax conventions
This manual uses the following command syntax conventions:
Brackets [ ] surround optional keywords and values.
Angle brackets < > surround user-supplied positional parameters and keyword parameter values.
In most cases, choices are separated by a vertical bar |. The description indicates if you may
specify more than one of the choices and how to separate multiple values. The exception is
the Server SSH command. In this case, the vertical bar is specified on the command line
when you wish to enable the password or key method (PW|KEY) or the key or password
method (KEY|PW).
55
Command Summary
Table 4.4 lists the CCM appliance commands, including a brief description plus the required access
rights and level. (For information about BMU commands, see page 138.)
Table 4.4: CCM Appliance Command Summary
Command
Description, Access Right and Access Level
Connect
Accesses devices from the console port.

Access right: port-specific
Access level: ADMIN, APPLIANCEADMIN or appropriate port access rights
Disconnect
Ends a device session initiated with Connect command.

Access level: ADMIN, APPLIANCEADMIN or appropriate port access rights
Help
Displays information about commands.

Access right: none needed
Access level: all
IPMI
Accesses the BMU.

Access right: PCON or SCON
Access level: ADMIN or APPLIANCEADMIN
NFS
Enables/disables using an NFS server to hold device session data.

Access right: SCON
Access level: APPLIANCEADMIN
NTP
Enables/disables using an NTP server to update the time on the appliance.

Access right: SCON
Port Add
Adds a virtual port.

Access right: SCON or PCON
Port Alert Add
Adds a port alert string.

Port Alert Copy
Copies a ports alert strings to another port.

Port Alert Delete
Deletes one or more port alert strings.

Port Break
Sends a break signal to the attached device.

Access right: BREAK
56
Table 4.4: CCM Appliance Command Summary (Continued)

Command
Port Delete
Deletes one or all virtual ports.

Port History
Accesses the port history buffer.

Access level: all
Port Logout
Terminates the CCM session on a specified port.

Access right: USER
Port NFS
Enables/disables the NFS feature on a port.

Port Refresh
Attempts to connect to one or all virtual ports that have Unconnected or

Failed status.
Access right: SCON, PCON or PALL
Access level: ADMIN, APPLIANCEADMIN or user with access to that port (whether
PALL or group access); to issue Port All Refresh, user must have PALL rights or
group access to all defined virtual ports
Port Set
Changes port settings.

Port Set In/Out
Specifies how carriage returns and linefeeds are treated in incoming or outgoing
serial data.
Quit
Terminates the current CCM session.

Access level: all
Resume
Resumes the device connection after being in CLI mode.

Access level: all
Server CLI
Specifies the console port type, CLI access character, modem initialization string,
port history mode operations and port time-out value.
For DS operation only: Also enables/disables device connection from the console
port and authentication of console port sessions.
Access right: SCON
Server Flash
Updates the units Flash.

Access right: SCON

Command
Server Init
Reinitializes the CCM appliance.

Access right: SCON
Server LDAP Auth
Sets the LDAP service to only authenticate or authenticate and authorize.

Access right: SCON
Server LDAP
Primary|Secondary
Defines or deletes a primary or secondary LDAP server.

Access right: SCON
Server LDAP Query
Configures the LDAP query parameters.

Access right: SCON
Server LDAP Search
Configures the LDAP search parameters.

Access right: SCON
Server Ping
For DS operation only: Enables/disables response to ping requests.

Access right: SCON
Server PPP
Enables/disables a PPP server on the console port.

Access right: SCON
Server RADIUS
Specifies RADIUS server parameters.

Access right: SCON
Server Reboot
Reboots the appliance.

Access right: SCON
Server Security
Specifies the user authentication method, access method, security lock-out setting
and connection methods.
For DS operation only: Clears stored DSView 3 software credentials
Access right: SCON
Server Set
Changes the CCM appliance network configuration.

Access right: SCON
Server Share
Enables/disables session sharing on the appliance.

Access right: SCON
57
58

Command
Server SNMP
Enables/disables UDP port 161 SNMP processing.

Access right: SCON
Server SNMP
Community
Defines read, write and trap SNMP community strings.

Access right: SCON
Server SNMP Manager
Defines/deletes SNMP management entities.

Access right: SCON
Server SNMP Trap
Enables/disables SNMP traps.

Access right: SCON
Server SNMP Trap

Destination
Defines/deletes destinations for enabled SNMP traps.

Access right: SCON
Server SSH
Enables/disables SSH session access to the CCM appliance and specifies the SSH
Access right: SCON
Show Group
Displays the membership of one or all groups.

Access right: SMON
Show NFS
Displays NFS configuration information and mount status.

Access right: SMON
Show NTP
Displays NTP configuration information.

Access right: SMON
Show Port
Displays port configuration information and statistics.

Access right: none needed if no parameters are specified; otherwise, SMON
or PCON
Show Port In|Out
Displays how carriage returns and linefeeds are treated.

Access right: SMON or PCON
Show Server
Displays CCM appliance configuration, statistics and session information.

Access right: SMON

Command
Show Server CLI
Displays information specified with the Server CLI command.

Access right: SMON
Show Server LDAP
Displays LDAP settings.

Access right: SMON
Show Server PPP
Displays PPP settings.

Access right: SMON
Show Server RADIUS
Displays RADIUS settings.

Access right: SMON
Show Server Security
Displays authentication and lock-out settings.

Access right: SMON
Show Server SNMP
Displays SNMP configuration information.

Access right: SMON
Show User
Displays user configuration and session information.

Access right: SMON or USER if no parameter is specified; otherwise, USER
SPC
Changes SPC port settings.

SPC Socket
Changes SPC socket settings or states.

User Add
Adds a new user.

Access right: USER
User Delete
Deletes a user.
Access right: USER
User Logout
Terminates a users session.

Access right: USER
Access level: ADMIN or APPLIANCEADMIN (An ADMIN level user may issue this
command for users with any level other than APPLIANCEADMIN.)
59
60

Command
User Set
Changes a users configuration information.

Access right: USER
User Unlock
Unlocks a locked-out user.

Access right: USER
Access level: ADMIN or APPLIANCEADMIN (An ADMIN level user may issue this
command for users with any level other than APPLIANCEADMIN.)
61
CHAPTER
CCM Appliance Commands
Connect Command
The Connect command establishes a connection from the console port of the CCM appliance to a
device attached to a serial port on that CCM appliance. To use this command, you must have
previously issued a Server CLI command with the Connect=On parameter. For more information,
see Connecting to Serial Devices on page 21.
Your ability to connect to another port is also affected by session sharing and port access method.
For more information, see Session sharing and preemption on page 27 and Port access on page 17.
When the connect completes successfully, the message Connected to port x: will be displayed,
followed by the values for port_number,baud,bits_per_character,parity,stop_bits,flow_control.
Access level: ADMIN, APPLIANCEADMIN or users with access to port
Syntax
CONNECT [<port>] [EXCLUSIVE]

Table 5.1: Connect Command Parameters
Parameter
Description
<port>
Port number (physical ports only) or name. You may specify an asterisk (*) as a
wildcard character, with or without other characters.
If the port specification is omitted, a menu will be displayed, listing all physical and
virtual ports that are available for serial connection (this excludes SPC ports, ports to
which you are already connected and ports you do not have permission to access).
If a port specification contains a wildcard, a menu will be displayed, listing all
physical and virtual ports that match the specification.
The menu will include your username plus the port access - if access is by port, Pall
will be displayed; if access is by group, the group names will be displayed. The
available ports will then be listed with their names, number (physical ports only) and
group (for group access only).
At the prompt, enter a port name or number. You may press Enter to cancel
the command.
EXCLUSIVE
Requests exclusive access to the port. This will initially be accommodated only if the
port is not currently in use.
62
Example
The following command establishes a connection from the CCM appliance console port to port 6.
>connect 6
The following command displays a subset of available ports - those beginning with the letter A and
to which the user has access.
>con A*
If access is by PALL, the following display appears.

>con A*
User: Admin
Access: Pall
Available Connections
Port Name
--------Alpha
Another Port
Apple
>
Port #
-----2
If access is by groups, the following display appears.

> con A*
User: Admin
Access: group1, group2, groupVP
Available Connections
Port Name
Port #
-------------Alpha
2
Another Port
>
Group
----group1
groupVP
Disconnect Command
The Disconnect command terminates a session with a serial device that was previously initiated
with a Connect command.
Access level: ADMIN, APPLIANCEADMIN or others with access to port
Chapter 5: CCM Appliance Commands
63
Syntax
DISCONNECT
Group Commands
The Group command has several forms, as listed in Table 5.2.
Table 5.2: Group Command Summary
Command
Description
Group Add
Adds a new group.
Group Delete
Removes all members of a group.
Group Set
Changes the membership of a group.
Group Add command

The Group Add command adds a group containing one or more ports or a group containing one or
more users. For more information, see Managing groups on page 18.
Access right: SCON
Syntax
GROUP <group> ADD PORT=<port>

-orGROUP <group> ADD USER=<user>
Table 5.3: Group Add Command Parameters
Parameter
Description
<group>
Group name (1-8 characters). Group names are case sensitive and must be unique.
If the name contains spaces, enclose the name in double quotes.
PORT=<port>
Port name or number. Separate multiple ports with commas. If an invalid port name/
number is specified, the entire command will fail.
USER=<user>
Username. Separate multiple usernames with commas. If an invalid username is

specified, the entire command will fail.
Example
The following command adds a group named mine, containing port numbers 1 and 3, and the ports
named PORT-2 and ACME.
group mine add port=1,3,PORT-2,ACME
64
Group Delete command

The Group Delete command removes all ports/users from a group.
Access right: SCON
Syntax
GROUP <group> DELETE

Table 5.4: Group Delete Command Parameter
Parameter
Description
<group>
Group name. Group names are case sensitive. If the name contains spaces, enclose
the name in double quotes.
Group Set command

The Group Set command modifies a groups membership. For more information, see Managing
groups on page 18.
Access right: SCON
Syntax
GROUP <group> SET PORT=<port>

-orGROUP <group> SET USER=<user>
Table 5.5: Group Set Command Parameters
Parameter
Description
<group>
Group name (1-8 characters). Group names are case sensitive. If the name contains
spaces, enclose the name in double quotes.
PORT=<port>
Port name or number. if an invalid port name/number is specified, the entire

command will fail.
You may use one of three forms (separate multiple ports with commas):
PORT=<port> to replace the entire group membership to the specified ports.
PORT=+<port> to add the group to the group settings for the specified ports.
PORT=<port> to remove the group from the group settings for the specified ports.
USER=<user>
Username. If an invalid username is specified, the entire command will fail.

You may use one of three forms (separate multiple ports with commas):
USER=<user> to replace the entire group membership with the specified users.
USER=+<user> to add this group to the group settings for the specified users.
USER=<user> to remove this group from the group settings for the specified users.
65
Help Command
The Help command displays information about CCM appliance commands. For displays that span
more than one screen, -More- will appear on the last line of all screens but the last one. You may:
Press the Spacebar to see the next screen.
-orEnter Ctrl-J, Ctrl-M or press Enter to see the next line.
-orEnter q to quit.
Access level: none needed
Syntax
HELP [<command_name>]
Table 5.6: Help Command Parameter
Parameter
Description
<command_name>
Command name.
Default: Displays list of all commands
Examples
The following command displays information about the Show Server CLI command.
>help sho ser cli
The following command displays a list of all commands.

>help
The following command displays a list of all commands that begin with Server.
>help server
IPMI Command
The IPMI command accesses the BMU.
If no SoL connection is established, or if no virtual port name is specified with the command, you
will be prompted for server login information, including the IP address, username and password. If
you issue the IPMI command with a valid virtual port name and the configured login credentials are
correct, an IPMI session will be established to the specified BMC.
If you are serially connected to a valid virtual port, typing IPMI at the command prompt will
establish an IPMI session to that port. Typing IPMI <port_name> will establish an IPMI session to
the specified port.
After you have accessed the BMU, you may issue BMU commands. See Using the BMU on
page 138 for more information.
66
NOTE: You may also use IPMI shortcut commands that access the BMU, issue a BMU command and then
return to the CCM appliance CLI. See Using the BMU on page 138 for details.

Syntax
IPMI [<port_name>]
Table 5.7: IPMI Command Parameter
Parameter
Description
<port_name>
Virtual port name.
NFS Command
The NFS command enables or disables use of the NFS feature on the CCM appliance, and specifies
the location of the NFS server, its mount point, the type of files that will be created and the protocol
to be used. For more information, see NFS history files on page 43.
Access right: SCON
Syntax
NFS ENABLE [IP=<nfs_server>] [MOUNT=<mount>] [FTYPE=LINEAR|DAILY]

[PROTOCOL=TCP|UDP]
-orNFS DISABLE
Table 5.8: NFS Command Parameters
Parameter
Description
ENABLE
Enables NFS on the appliance.
IP=<nfs_server>
IP address of the NFS server, in IP dot notation. The NFS server must support
NFSv3 (RFC1813). This parameter is required if NFS is being enabled for the
first time.
MOUNT=<mount>
Mount point (subdirectory location) on the NFS server. This parameter is required if
NFS is being enabled for the first time. The NFS server must be configured to allow
the CCM appliance to access this file system location.
Linear indicates a file will be opened on the NFS server for writing at the end
(appended). Daily indicates a new file will be created on the NFS server
every midnight.
FTYPE=LINEAR|DAILY
For either file type, if the file being opened does not already exist, it will be created. If
the file already exists, it will be opened for writing at the end (appended).
Default = Linear
67
Table 5.8: NFS Command Parameters (Continued)

Parameter
Description
Specifies the network protocol to be used between the CCM appliance and the
PROTOCOL=TCP|UDP NFS server.
Default = TCP
DISABLE
Disables NFS on the appliance.
Examples
The following command enables the use of the NFS on the CCM appliance. The NFS server is
located at IP address 192.168.52.50, and files will be created under the subdirectory c/ccm_history
every midnight.
>nfs enable ip=192.168.52.50 mount=c/ccm_history ftype=daily
The following command disables using the NFS feature on the CCM appliance. If NFS is later
enabled again without additional parameters, the previously configured values will be used.
>nfs disable
NTP Command
The NTP command enables or disables use of the Network Time Protocol on the CCM appliance,
and specifies the location of the NTP server that will supply the time to the CCM appliance. For
more information, see Updating the Appliance Clock on page 14.
When you enable NTP, you are prompted to confirm or cancel the operation.
Access right: SCON
Syntax
NTP ENABLE [IP=<prim_add>[,<sec_addr>]] [UPDATE=<hours>]

-orNTP DISABLE
Table 5.9: NTP Command Parameters
Parameter
Description
ENABLE
Enables NTP on the appliance.
IP=<prim_add>
,<sec_addr>
IP address of the first NTP server to contact to obtain the time and optionally, the IP
address of the second NTP server. At least a primary address is required if NTP is
being enabled for the first time.
If a second server is specified, it will be contacted to obtain either the time (if the time
was not obtained from the first server) or the second servers status (if the time was
successfully obtained from the first server).
68
Table 5.9: NTP Command Parameters (Continued)

Parameter
Description
UPDATE=<hours>
Interval for sending a time request to the NTP server and then updating the clock.
Valid values are 0-99 hours. A zero value indicates that the time should be requested
and the clock updated when the CCM appliance reboots.
Regardless of this parameters value, the clock is updated immediately when the
NTP Enable command is issued.
Default = 0 (update immediately and then only upon reboot)
DISABLE
Disables NTP on the appliance.
Example
The following command enables use of NTP on the CCM appliance. The time requests will first be
made to the NTP server at IP address 192.168.50.200. The secondary NTP server at
192.168.50.220 will then be contacted to obtain either the time (if it was not provided by the
primary server) or the secondary servers status. The time will be updated immediately and then
every two hours.
>ntp enable ip=192.168.50.200,192.168.50.220 upd=2
Port Commands
The Port command has several forms, as listed in Table 5.10.
Table 5.10: Port Command Summary
Command
Description
Port Add
Adds a virtual port.
Port Alert Add
Adds a port alert string to a specified port.
Port Alert Copy
Copies port alert strings from one port to another port.
Port Alert Delete
Deletes one or more port alert strings from a specified port.
Port Break
Sends a serial break signal to the attached device.
Port Delete
Deletes a virtual port.
Port History
Accesses a ports history mode.
Port Logout
Terminates the CCM session on a specified port.
Port NFS
Enables or disables using the NFS feature on a port.
Port Refresh
Attempts to connect to a virtual port that is in an unconnected or failed state.
Port Set
Changes CCM serial port settings for one or all ports.
69
Table 5.10: Port Command Summary (Continued)

Command
Description
Port Set In/Out
Specifies how carriage returns and linefeeds are treated in incoming or outgoing
serial data.
Port Add command

The Port Add command adds a virtual port. Up to 16 virtual ports may be added. For more
information, see Virtual port settings on page 19.
To change a virtual ports parameters after this command is issued, use a Port Set command.
This command is not valid for physical ports.
Syntax
PORT <port_name> ADD SOCKET=<socket> IP=<address> [USERNAME=<username>]

[PASSWORD=<password>] [TIMEOUT=<time-out>] [CHAR=^<cli_char>]
[GROUP=<group>]
Table 5.11: Port Add Command Parameters
Parameter
Description
<port_name>
1-32 character port name. The name cannot be Alert, All, Break, History,
Logout, Names, NFS or Set (in any case or any shortened form), CON or null
(). The name must be unique; two ports cannot have the same name. Port
names are case sensitive. The name cannot begin with a number or a space,
nor can it contain a double quote (), a comma (,) or an asterisk (*). If the name
contains spaces, enclose the name in double quotes.
If you are using LDAP authentication on the CCM appliance, the port name
cannot contain spaces.
SOCKET=<socket>
TCP port that must be entered on the Telnet client to connect to this serial
port. The new value becomes effective in subsequent sessions.
The valid range is 3000-5999 and 6064-65000 (6000-6063 should not
be used).
When SSH is enabled, the CCM appliance automatically adds 100 to the
specified value. When both plain text Telnet and SSH connections are
enabled, the +100 value will not appear in displays.
IP=<address>
IP address of the BMC, in standard dot notation. This value cannot be all
zeros, or a local loopback, broadcast or multicast (224.0.0.0239.255.255.255) address.
USERNAME=<username>
Username. This should match the username configured on the BMC.

Default = NULL
70
Table 5.11: Port Add Command Parameters (Continued)

Parameter
Description
PASSWORD=<password>
Password. This should match the password configured on the BMC.

Default = NULL
TIMEOUT=<time-out>
Number of idle minutes, in the range 1-90, that the CCM appliance will wait
before dropping a connection to the port. If the value is zero or omitted, the
port will use the time-out value specified in the Server CLI command. (To
completely disable port time-outs, the time-out values in the Port Add/Set and
Server CLI commands must both be zero.)
The new value does not affect an active session; it takes effect in
subsequent sessions.
Default = 0 (use value from Server CLI command)
CHAR=^<cli_char>
CLI access character in the range A to _ (underscore) or None. (The allowable

ASCII range is 0x41-0x5F and 0x61-0x7A.) The CLI access character, when
pressed simultaneously with the Ctrl key during a session with a target
device, will suspend the session with the device and place you in CLI
command mode.
If an IPMI connection is made through a CCM appliance virtual port, this value
is used. For a direct Telnet connection, or if None is specified, the value
specified in the Char parameter of the Server CLI command will be used.
Default = None
GROUP = <group>
Group name(s), up to 8 characters each. Group names are case sensitive. If

the name contains spaces, enclose the name in double quotes. A port may
belong to up to eight groups; separate multiple groups with commas.
Example
The following command adds a virtual port named VP1. The IP address of the BMC is
192.168.70.15 and socket 5001 is assigned.
>port VP1 add socket=5001 ip=192.168.70.15 username=user1
password=pword1
Port Alert Add command

The Port Alert Add command adds a port alert string to a specified port. Each port may have up to
ten port alert strings. Duplicate strings are not allowed on the same port. To generate a trap, the
Server SNMP Trap command must be issued to enable the PortAlert trap. For more information,
see Managing the CCM Appliance Using SNMP on page 46.
Syntax
PORT <port> ALERT ADD <string>
71
Table 5.12: Port Alert Add Command Parameters

Parameter
Description
<port>
Port number or name.
<string>
3-32 character string. If the string contains embedded spaces, it must be enclosed
in quotes.
Port Alert Copy command

The Port Alert Copy command copies the alert strings from one port (from_port) to another
(to_port). Any alert strings that were previously defined on the to_port will be deleted. When you
enter this command, you are prompted to confirm or cancel the copy operation.
For more information, see Managing the CCM Appliance Using SNMP on page 46.
Syntax
PORT <to_port> ALERT COPY <from_port>

Table 5.13: Port Alert Copy Command Parameters
Parameter
Description
<to_port>
Port number or name where alert strings will be copied.
<from_port>
Port number or name from which alert strings will be copied.
Example
The following command copies the alert strings defined on physical port 1 to physical port 17,
replacing any previously defined alert strings on port 17.
>port 17 alert copy 1
Port Alert Delete command

The Port Alert Delete command deletes one or more alert strings from a port. When you issue this
command, a numbered list of defined alert strings is displayed, from which you choose those to be
deleted. You may enter one or more numbers separated by commas, a range of numbers separated
by a hyphen or type ALL to specify all strings. Pressing Enter cancels the command.
Syntax
PORT <port> ALERT DELETE
72
Table 5.14: Port Alert Delete Command Parameter

Parameter
Description
<port>
Example
The following command deletes defined alert strings from physical port 26.
>PORT 26 ALERT DELETE
Alert-strings assigned to port 26:
1) The first alert string
2) The second alert string
3) The third alert string
4) The fourth alert string
Select Alert-string(s) to delete>
The alert string numbers specified at the prompt will be deleted.
Port Break command

The Port Break command sends a serial break signal to the device to which you are attached.
Access right: BREAK
Syntax
PORT BREAK
Port Delete command

The Port Delete command deletes one or all virtual ports. This command is not valid for
physical ports.
If a virtual port has an active connection, the port will be deleted from the database but will remain
an active port as long as the connection remains active (however, you may not change any port
characteristics with a Port Set command). Once the connection is terminated, the port will
be deleted.
Syntax
PORT <port_name>|ALL DELETE

Table 5.15: Port Delete Command Parameter
Parameter
Description
<port_name>
Port name.
ALL
Indicates that all virtual ports should be deleted.
73
Port History command

The Port History command accesses a serial ports history mode while you are attached to the port.
When you are in history mode, the PORT HISTORY> prompt appears, and you may search the
ports history buffer for specified strings.
For more information, see Managing Port History on page 40.
Access level: all
Syntax
PORT HISTORY
When you are in port history mode, you may issue the commands listed in Table 3.6 on page 41.
Examples
The following command accesses the serial ports history mode.

>port history
In history mode, the following command searches the history buffer in the downward direction for
the string connected to, ignoring case.
PORT HISTORY>s -d -i connected to
Port Logout command

The Port Logout command terminates the CCM appliance session on a specified port. If more than
one session is active on the port, all sessions are logged out.
Access right: USER
Syntax
PORT <port> LOGOUT

Table 5.16: Port Logout Command Parameter
Parameter
Description
<port>
Port NFS command

The Port NFS command enables or disables using the NFS feature on a port, and specifies NFS
parameters. For more information, see NFS history files on page 43.
NOTE: If you are enabling NFS on a port, an NFS Enable command must have successfully completed before
the Port NFS command will be accepted.

74
Syntax
PORT [<port>|ALL] NFS ENABLE [FILE=<file>] [SIZE=<bytes>] [TIME=<sec>]

-orPORT [<port>|ALL] NFS DISABLE
Table 5.17: Port NFS Command Parameters
Parameter
Description
ENABLE
Enables NFS on the specified port.
port
Port name or number. If a port name, number or ALL is omitted, the action is
performed on the port to which you are connected.
ALL
Indicates that the following parameters should be applied to all ports.
FILE=<file>
Filename specification, up to 32 characters. This must result in a unique filename for

the port (and a unique daily port file if the file type is daily). Substitution strings may
be used; see Table 3.7 on page 44.
Default = (For physical ports: P%#.hst if the file type is linear, P%#_%F.hst if the
file type is daily. For virtual ports: P%n.hst if the file type is linear, P%n_%F.hst if the
file type is daily.)
SIZE=<bytes>
Number of bytes that will be buffered on the CCM appliance before being written to
the NFS server file. This threshold is used with the Time value to determine when
accumulated data will be written. Valid values are 0-3584 bytes.
Default = 0 bytes
TIME=<sec>
Maximum number of seconds that will be allowed to elapse before buffered data will
be written to the NFS server file. This threshold is used with the Size value to
determine when accumulated data will be written. Valid values are 0-65536 seconds.
Default = 1 second
DISABLE
Disables NFS on the specified port.
Examples
The following command enables NFS on physical port 3, using the default filename specification,
and setting a size threshold of 20 bytes and a time threshold of zero. With this configuration, data
will be buffered according to the non-zero threshold value, 20 bytes, then it will be written to the
NFS history file. The history file will be named P03.hst if the file type is linear, or P03_<4-digit
year>-<2-digit_month>-<2-digit_day> if the file type is daily.
>port 3 nfs ena size=20 time=0 file=
The following command enables NFS on the virtual port named linux3, using the default filename
specification, and the same size and time thresholds as the previous example. In this case, the
history file will be named Plinux3.hst if the file type is linear, or Plinux3_<4-digit year>-<2digit_month>-<2-digit_day> if the file type is daily.
>port linux3 nfs ena size=20 time=0 file=
75
The following command enables NFS on physical port 7, using a substitution string within the
filename specification, and setting zero thresholds for both size and time. (This configuration will
not be acceptable if the file type is daily, because the file specification does not include a date
substitution string that would make each daily file uniquely named.) Assuming the file type is
linear, data will be written to the NFS server file named ccm_1_P07 as soon as it is available,
because both thresholds are zero.
>port 7 nfs ena size=0 time=0 file=ccm_1_%#
Port Refresh command

The Port Refresh command attempts to connect to one or all virtual ports that are in an unconnected
or failed state. To verify a ports state, use the Show Port command.
Access right: PCON, SCON or PALL
Access level: ADMIN, APPLIANCEADMIN or user with access to that port (whether PALL or
group access); to issue Port All Refresh, user must have PALL rights or group access to all defined
virtual ports
Syntax
PORT <port_name>|ALL REFRESH

Table 5.18: Port Refresh Command Parameter
Parameter
Description
<port_name>
Virtual port name.
ALL
Indicates that connection should be attempted to all virtual ports that are not
already connected.
Port Set command

The Port Set command changes physical serial port and/or virtual port settings in the CCM
configuration database. At least one keyword parameter and value must be specified.
If you wish to change port settings for a virtual port, the port must have been previously defined
with a Port Add command.
Some parameters apply to both physical and virtual ports; others apply to only physical ports or
only virtual ports. These are noted accordingly.
In most cases, new values become effective in subsequent sessions.
For more information, see Configuring Port Settings on page 15.
76
Syntax
PORT [<port>|ALL] SET

[TD=<device>] [NAME=<name>] [BAUD=<baud>] [SIZE=<size>] [PARITY=<parity>]
[STOP=<stopbits>] [FLOW=<signal>] [TIMEOUT=<time-out>] [SOCKET=<socket>]
[CHAR=^<cli_char>] [TOGGLE=NONE|DTR] [POWER=<signal>] [GROUP=<group>]
[IP=<address>] [USERNAME=<username>] [PASSWORD=<password>]
Table 5.19: Port Set Command Parameters
Parameter
Description
<port>
A port number (physical port), port name (physical or virtual port) or CON.
If you are connected to a port and this parameter is omitted, the settings are
applied to the port for this connection; otherwise, this parameter must be
specified. This parameter is required when changing console port
(CON) settings.
ALL
Indicates that the port settings that follow should be applied to all ports, except
the console port.
If you have created virtual ports with Port Add commands, and you issue a Port
All Set command with a parameter that is valid for a virtual port, the specified
change will be applied to all virtual ports as well as all physical ports.
TD=<device>
Target device type. Valid values are Console and SPC. If SPC is specified, only
the Name and Group parameters may be specified with this command.
This parameter is not valid for the console port or for virtual ports.
Default = Console
NAME=<name>
1-32 character port name. The name cannot be Alert, All, Break, History, Logout,
Names, NFS or Set (in any case or any shortened form) or CON. The name must
be unique; two ports cannot have the same name. Port names are case
sensitive. The name cannot begin with a number or a space, nor can it contain a
double quote (), a comma (,) or an asterisk (*). If the name contains spaces,
enclose the name in double quotes.
To return a physical port name to its default value, specify Name= (you cannot
do this for a virtual port, because a virtual port does not have a default name).
This parameter is not valid for the console port.
You may not rename a virtual port when it has an active connection.
If you are using LDAP authentication on the CCM appliance, the port name
cannot contain spaces.
Default (physical ports only) = last 3 octets of MAC address, followed by P and
the port number
BAUD=<baud>
Baud rate. Valid values are: 50, 75, 110, 134, 150, 200. 300, 600, 1200, 2400,
4800, 9600, 19200, 38400, 57600 and 115200.
This parameter is not valid for virtual ports.
Default = 9600
SIZE=<size>
Number of data bits per character. Valid values are 7 and 8.

Default = 8
77
Table 5.19: Port Set Command Parameters (Continued)

Parameter
Description
PARITY=<parity>
Parity. Valid values are:

None
No parity.
Even
Even parity.
Odd
Odd parity.
Mark
Mark parity.
Space
Space parity.
Default = None
STOP=<stopbits>
Number of stop bits per character. Valid values are 1 and 2.

Default = 1
FLOW=<signal>
Flow control signal. For hardware flow control, be sure the control signals are
correctly wired, or data loss may occur. The flow control signal cannot also be
used for power status monitoring. Valid values are:
XONXOF
Software XON/XOFF flow control.
RTSCTS
Hardware RTS/CTS flow control.
DTRDCD
Hardware DTR/DCD flow control.
None
No flow control.
Default = None
TIMEOUT=<time-out>
Number of idle minutes, in the range 1-90, that the CCM appliance will wait
before dropping a connection to the port. If the value is zero or omitted, the port
will use the time-out value specified in the Server CLI command. (To completely
disable port time-outs, the time-out values in the Port Set and Server CLI
commands must both be zero.)
The new value does not affect an active session; it takes effect in
subsequent sessions.
Default = 0 (use value from Server CLI command)
78

Parameter
Description
SOCKET=<socket>
TCP port that must be entered on the Telnet client to connect to this port. The
new value becomes effective in subsequent sessions.
The valid range is 3000-5999 and 6064-65000 (6000-6063 should not be used).
When SSH is enabled, the CCM appliance automatically adds 100 to the
specified value.
When All is specified, port 1 will be assigned the specified socket value plus 1,
port 2 will be assigned the specified value plus 2, and so on. After physical ports
are assigned values, any virtual ports (sorted in ASCII order) will be assigned
values in sequence.
When All is specified and SSH is enabled, port 1 will be assigned the specified
socket value plus 101, port 2 will be assigned the specified value plus 102, and
so on. Any virtual ports will be assigned values after the physical ports.
When both plain text Telnet and SSH connections are enabled, the +100 value
will not appear in displays.
Default = 3000 plus the port number, 3100 plus the port number if SSH is
enabled; see above for action taken if All is specified and when virtual ports
are configured
CHAR=^<cli_char>
CLI access character in the range A to _ (underscore) or None. (The allowable

pressed simultaneously with the Ctrl key during a session with a target device,
will suspend the session with the device and place you in CLI command mode.
If an IPMI connection is made through a CCM appliance virtual port, this value is
used. For a direct Telnet connection, or if None is specified, the value specified in
the Char parameter of the Server CLI command will be used.
Default = None
TOGGLE=NONE|DTR
When set to DTR, the CCM appliance will toggle the ports DTR-out signal off for
1/2 second each time a connection is made to the port. This toggle is required to
awaken the console port of some devices.
Default = None
POWER=<signal>
Control signal and state that indicates the target device has power on. The entire
value must be specified; abbreviations are not allowed. The specified signal
cannot also be used for flow control.
Valid values are:
None
Disables power status monitoring.
HICTS
CTS high indicates power on.
LOCTS
CTS low indicates power on.
HIDCD
DCD high indicates power on.
LODCD
DCD low indicates power on.
HIDSR
DSR high indicates power on.
LODSR
DSR low indicates power on.
Default = None
79

Parameter
Description
GROUP=<group>
Group name(s), up to eight characters each. Group names are case sensitive. If
the name contains spaces, enclose the name in double quotes.
A port may belong to up to eight groups.
If you are specifying settings for a single port, you may use one of three forms
(separate multiple groups with commas):
GROUP=<access> to specify all port groups.
GROUP=+<access> to specify only groups to be added.
GROUP=<access> to specify only groups to be deleted.
If you are specifying settings for all ports, you must use the following form:
GROUP=<access> to specify all port groups.
To delete all previously defined groups for the port, specify GROUP=.
IP=<address>
IP address of the BMC, in standard dot notation. This value cannot be all zeros,
or a local loopback, broadcast or multicast (224.0.0.0-239.255.255.255) address.
This parameter is valid only for virtual ports and cannot be used with the
All parameter.
USERNAME=<username>
Username. This should match the username configured on the BMC.

This parameter is valid only for virtual ports.
Default = NULL
PASSWORD=<password>
Password. This should match the password configured on the BMC.

This parameter is valid only for virtual ports.
Default = NULL
Examples
The following command sets a baud rate of 57600 and enables XON/XOFF flow control on
physical port 2.
>port 2 set baud=57600 flow=xonxof
The following command adds a group named acctg3 to the configuration for virtual port VP1
(which was previously configured with a Port Add command).
>port VP1 set group=+acctg3
Port Set In/Out command

The Port Set In/Out command specifies how carriage returns (CR) and linefeeds (LF) are treated in
incoming or outgoing serial data on one or all ports.
Syntax
PORT [<port>|ALL] SET IN|OUT [CR=<cr>] [LF=<lf>|CRLF=CR]
80
Table 5.20: Port Set In/Out Command Parameters

Parameter
Description
<port>

Default = port to which you are attached
ALL
Indicates that the port settings that follow should be applied to all ports except the
console port.
IN|OUT
Either IN to specify translation for incoming data or OUT to specify translation for
outgoing data.
CR=<cr>
Translation to be made for carriage returns. Valid values are:

CR=CR
Carriage return is treated as a carriage return.
CR=LF
Carriage return is treated as a linefeed.
CR=STRIP
Carriage return is stripped.
CR=CRLF
Carriage return is treated as a carriage return and linefeed.
Default = CR=CR
LF=<lf>|CRLF=CR
Translation to be made for linefeeds. Valid values are:

LF=LF
Linefeed is treated as a linefeed.
LF=CR
Linefeed is treated as a carriage return.
LF=STRIP
Linefeed is stripped.
LF=CRLF
Linefeed is treated as a carriage return and linefeed.
CRLF=CR
Linefeed is stripped only if it is preceded by a carriage return.
This LF setting cannot be specified with any other LF setting.
Default = LF=LF
Quit Command
The Quit command terminates the current CCM appliance session and terminates your Telnet
connection to the unit.
Access level: all
Syntax
QUIT
Resume Command
The Resume command exits the CLI and resumes your connection to the device. The history buffer
contains any data received while you were in CLI mode.
Access level: all
Syntax
RESUME
81
Server Commands
The Server command has several forms, as listed in Table 5.21.
Table 5.21: Server Command Summary
Command
Description
Server CLI
Specifies the console port type, CLI access character, modem initialization
string, port history mode operations and port time-out value. You may also
enable/disable device connection from the console port.
For DS operation only: Also enables/disables authentication of console
port sessions and specifies a preemption level to be used when console port
authentication is disabled.
Server Flash
Updates the units Flash.
Server Init
Reinitializes the CCM appliance.
Server Ping
For DS operation only: Enables/disables response to ping requests.
Server PPP
Enables/disables PPP connections to the console port.
Server RADIUS
Specifies RADIUS server parameters.
Server Reboot
Reboots the unit.
Server Security
Specifies user authentication method, enables/disables security lock-out and

enables/disables connection methods.
Server Set
Changes the CCM appliance network configuration.
Server Share
Specifies session sharing settings.
Server SNMP
Enables/disables UDP port 161 SNMP processing.
Server SNMP Community
Defines read, write and trap SNMP community strings.
Server SNMP Manager
Defines/deletes SNMP management entities.
Server SNMP Trap
Enables/disables SNMP traps.
Server SNMP Trap Destination Defines/deletes destinations for enabled SNMP traps.
Server SSH
Enables/disables SSH session access to the CCM appliance and specifies

the SSH authentication method.
Server CLI command

The Server CLI command:
Specifies the console port type
Specifies the CLI access character
Enables or disables device connection from the console port
82
Specifies a modem initialization string
Specifies port history mode operations
Specifies a port time-out value
For DS operation only: Enables or disables console port authentication
For DS operation only: Specifies a preemption level to be used for console port sessions when
authentication is disabled on that port
At least one parameter must be specified.

Access right: SCON
Syntax
SERVER CLI [TYPE=<type>] [CHAR=^<char>] [CONNECT=ON|OFF]

[HISTORY=HOLD|AUTO,CLEAR|KEEP] [MODEMINIT=<string>]
[TIMEOUT=<time-out>] [AUTH=ENABLE|DISABLE] [PREEMPT=1|2|3|4]
Table 5.22: Server CLI Command Parameters
Parameter
Description
TYPE=<type>
Terminal type to be used on the console port. The entire name of the type must
be specified; abbreviations are not permitted. Valid types are: ASCII, VT52,
VT100, VT102, VT220 and VT320.
Default: ASCII
CHAR=^<char>
CLI access character in the range A through _ (underscore). (The allowable

pressed simultaneously with the Ctrl key during a session with an attached
serial device, will suspend the session with the device and place you in CLI
command mode. This value will be used if a ports Port Set command (or a
virtual ports Port Add command) contains a Char=None parameter.
Default = ^D
CONNECT=ON|OFF
Enables or disables the ability to use the Connect command from the console
port. When enabled, a console port user may use the Connect command to
establish a connection to the serial device attached to another CCM appliance
serial port. When disabled, you cannot use the Connect command from the
console port.
Default = ON
83
Table 5.22: Server CLI Command Parameters (Continued)

Parameter
Description
HISTORY=HOLD|AUTO
,CLEAR|KEEP
Port history file processing options during connection (Hold or Auto) and when a
session ends (Clear or Keep):
Hold
Upon connection you are informed of how much data is in the history
buffer, but the data is not displayed.
Auto
Upon connection you are informed of how much data is in the history
buffer, and it is then displayed.
Clear
The history buffers content is cleared when a session ends.
Keep
The history buffers content is retained when a session ends.
You cannot specify both Clear and Keep or both Hold and Auto.
Default = HOLD,CLEAR
MODEMINIT=<string>
Modem initialization string, enclosed in quotation marks. Must contain at least

ATV1 and S0=1.
Default = (no modem is attached to the console port)
TIMEOUT=<time-out>
Number of idle minutes, in the range 1-90, the CCM appliance will wait before
dropping a connection to a port. A zero value indicates no time-out. This value is
used for any CCM appliance port that has a zero time-out value or no time-out
value in its Port Set command (or Port Add command for a virtual port).
To completely disable port time-outs, the time-out values in the Port Add/Set and
Server CLI commands must both be zero.
Default = 15 minutes
AUTH=ENABLE|
DISABLE
For DS operation only: Enables or disables authentication of console port

sessions. When enabled, console port sessions are authenticated against the
local user database. When disabled, console port sessions are not
authenticated, the user is assigned the APPLIANCEADMIN access level and the
preemption level specified with the Preempt parameter will be used.
Default = ENABLE
PREEMPT=1|2|3|4
For DS operation only: Preemption level for console port session users when
authentication is disabled for the console port (Auth=disable).
Default = 4
Server Flash command

The Server Flash command updates the CCM appliance program images in Flash memory. You
may wish to use this command to update the program with new features or to install a later release
of the program.
NOTE: This command may be used to update the CCM appliance with an application image that supports AV
operation. If you wish to update the appliance with a DS operation application image, you must do so from within
the DSView 3 software. See Configuring the Appliance for AV Operation or DS Operation on page 12 for
more information.
There are two program images that you may update in the CCM appliance Flash. The boot image
file (ccm50bt.img) contains the CCM appliance startup and self-test logic. The application image
(ccm50app.img) contains the program that provides CCM appliance functionality.
84
You will need a TFTP server. Download the latest Flash image from the Avocent web site
(www.avocent.com), and save the image file to the appropriate directory on the TFTP server.
NOTE: Powering down a system in the middle of a boot Flash update may render the unit inoperable. To update
the bootstrap, it is recommended that the unit be placed on a UPS under controlled conditions to avoid
interruption of the boot Flash update process.
Access right: SCON

Syntax
SERVER FLASH BOOT|APP HOSTIP=<tftp_add> IMAGE=<host_file>

Table 5.23: Server Flash Command Parameters
Parameter
Description
BOOT|APP
Indicates either the boot image should be updated or the application image should
be updated.
HOSTIP=<tftp_add>
IP address of TFTP server host.
IMAGE=<host_file>
Name of file on TFTP server host containing the image file.
Example
The following command updates the boot image program using the image filename
c:\winnt\system32\drivers\ccm50bt.img, which is located on the TFTP server host located
at 192.168.1.16.
>ser fla app hos=192.168.1.16 ima=c:\winnt\system32\drivers\ccm50bt.img
Server Init command

The Server Init command reinitializes the CCM appliance configuration database, that is, restores it
to default values. You may choose to retain only the network address information. When you enter
this command, you are prompted to confirm or cancel the reinitialization.
You may also reinitialize the CCM appliance in hardware. See Reinitializing on page 11 for
more information.
Access right: SCON
Syntax
SERVER INIT CONFIG|ALL

Table 5.24: Server Init Command Parameter
Parameter
Description
CONFIG
Reinitializes the appliance but retains the IP address, subnet mask and gateway.
ALL
Reinitializes the appliance, including the network address information.
85
Server LDAP Auth command

The Server LDAP Auth command sets the LDAP service to only authenticate or authenticate and
authorize. This setting affects the primary and secondary LDAP servers.
Access right: SCON
Syntax
SERVER LDAP AUTH=AO|AA

Table 5.25: Server LDAP Auth Command Parameter
Parameter
Description
AO|AA
AO - Authentication only - the LDAP server will authenticate and the local database
will be used to authorize the user.
AA - Authentication and authorization. The LDAP server will authenticate and
authorize the user.
Default = AA
Server LDAP Primary|Secondary command

The Server LDAP Primary|Secondary command defines or deletes a primary or secondary LDAP
server. For more information, see LDAP authentication on page 36.
When you enter this command, you are prompted to confirm or cancel the specified changes.
If you later change some parameter values with a subsequent Server LDAP Primary|Secondary
command, any parameters that are not specified with the command will retain their current values.
Access right: SCON
Syntax
SERVER LDAP PRIMARY|SECONDARY [IP=<address>] [ACCESS=LDAP|LDAPS]

[PORT=<port>]
-orSERVER LDAP PRIMARY|SECONDARY DELETE
Table 5.26: Server LDAP Primary|Secondary Command Parameters
Parameter
Description
PRIMARY|SECONDARY
Indicates either the primary LDAP server or the secondary LDAP server is
being defined or deleted. You cannot define a secondary LDAP server until a
primary LDAP server is defined.
IP=<address>
IP address of the LDAP server, in dot notation or domain name. The first time
an LDAP server is defined, this parameter must be specified.
86
Table 5.26: Server LDAP Primary|Secondary Command Parameters (Continued)

Parameter
Description
ACCESS=LDAP|LDAPS
LDAP indicates regular LDAP authentication; LDAPS indicates secure

LDAP authentication.
Default = LDAP
PORT=<port>
Port number in the range 1-65535.

Default = 389
DELETE
Deletes a primary or secondary LDAP server definition. If a primary server is

deleted, and a secondary server was configured, that secondary server
becomes the new primary server.
Server LDAP Query command

The Server LDAP Query command configures the LDAP query parameters.
Access right: SCON
Syntax
SERVER LDAP QUERY [CSMODE=<csmode>] [TDMODE=<tdmode>]

[GROUP=<group>] [GMASK=<gmask>] [TMASK=<tmask>] [ACATTR=<acattr>]
Table 5.27: Server LDAP Query Command Parameters
Parameter
Description
CSMODE=<csmode>
Console switch (appliance) authentication mode. Valid values are BASIC,

USERATTR and GROUPATTR. If this parameter value is BASIC, the
TDMODE parameter value must also be BASIC (set in the same command
or previously).
Default = BASIC
TDMODE=<tdmode>
Target device authentication mode. Valid values are BASIC, USERATTR and
GROUPATTR. If the CSMODE parameter value is BASIC, this parameter
value must also be BASIC (set in the same command or previously).
Default = BASIC
GROUP=<group>
Name (0-64 characters) of the group container on the LDAP server. Enclose
the name in double quotes if it contains spaces.
Default = Console Switches
GMASK=<gmask>
Mask (0-32 characters) used to select the console switch name. Enclose the
name in double quotes if it contains spaces.
Default = ou=%1
TMASK=<tmask>
Mask (0-32 characters) used to select the target device name. Enclose the
Default = cn=%1
87
Table 5.27: Server LDAP Query Command Parameters (Continued)

Parameter
Description
ACATTR=<acattr>
Access control attribute (0-32 characters) used to select the access rights.
Enclose the attribute in quotes if it contains spaces.
Default = info
Server LDAP Search command

The Server LDAP Search command configures the LDAP search parameters.
Access right: SCON
Syntax
SERVER LDAP SEARCH [SDN=<cn>] [SPASS=<spass>] [SBASE=<sbase>]

[UIDMASK=<umask>]
Table 5.28: Server LDAP Search Command Parameters
Parameter
Description
SDN=<cn>
Distinguished name (0-128 characters) of the administrator account on the

LDAP server used for searched. Enclose the name in double quotes if it
contains spaces.
Default = cn=Administrator,cn=Users,dc=yourDomainName,dc=com
SPASS=<spass>
Password (0-32 characters) of the administrator account used for searches.

There is no default value.
SBASE=<sbase>
Base distinguished name (0-64 characters) used for searches. Enclose the
Default = dc=yourDomainName,dc=com
UIDMASK=<umask>
Mask (0-32 characters) used to select the UID attribute. Enclose the name in
double quotes if it contains spaces.
Default = sAMAccountName=%1
Server Ping command

NOTE: This command is valid only when the CCM appliance is Flashed for DS operation.
The Server Ping command enables or disables response to ping requests. When enabled, the CCM
appliance receives and responds to all ping requests. When disabled, ping requests are received and
silently discarded.
Access right: SCON
88
Syntax
SERVER PING ENABLE|DISABLE

Table 5.29: Ping Command Parameter
Parameter
Description
ENABLE|DISABLE
Enables or disables response to ping requests.

Default = ENABLE
Server PPP command

The Server PPP command enables or disables the PPP server on the console port. For more
information and requirements, see Using PPP on page 23 and Configuring and using dial-in
connections on page 23.
Once the PPP server has been configured with this command by specifying the required addresses
and masks, those values remain in the database. Later, if you disable the PPP server and wish to
reenable it with the same addresses, you dont need to specify the address values again.
Access right: SCON
Syntax
SERVER PPP DISABLE|ENABLE

[LOCALIP=<local_ip>] [REMOTEIP=<rem_ip>] [MASK=<subnet>]
Table 5.30: Server PPP Command Parameters
Parameter
Description
DISABLE|ENABLE
Disables or enables the PPP server.
LOCALIP=<local_ip>
IP address to be used to connect the CCM appliance over the PPP connection. Must
be on same subnet as REMOTEIP address.
REMOTEIP=<rem_ip>
IP address to assign to the PPP client end of the PPP connection. Must be on same
subnet as LOCALIP address.
MASK=<subnet>
Subnet mask for the PPP dial-in client.
Examples
The following command enables the PPP server with a local IP address of 192.168.0.1, a remote IP
address of 192.168.0.2 and a subnet mask of 255.255.255.0.
>ser ppp ena loc=192.168.0.1 rem=192.168.0.2 mas=255.255.255.0
89
The following command enables the PPP server with previously configured IP and subnet mask
values. This form of the command would not be valid unless the IP and subnet mask values had
been previously configured.
>server ppp enable
Server RADIUS command

The Server RADIUS command defines or deletes RADIUS parameters for the CCM RADIUS
client. For more information, see RADIUS authentication on page 35.
NOTE: The IP, Secret and User-Rights parameters are required only when you are first defining RADIUS server
values. If you later change other parameters with a subsequent Server RADIUS command, the current IP,
Secret, and User-Rights values will be used, unless you change them also.
Access right: SCON

Syntax
SERVER RADIUS PRIMARY|SECONDARY

IP=<radius_ip> SECRET=<secret> USER-RIGHTS=<attr>
[AUTHPORT=<udp>] [TIMEOUT=<time-out>] [RETRIES=<retry>]
- or SERVER RADIUS PRIMARY|SECONDARY DELETE
Table 5.31: Server RADIUS Command Parameters
Parameter
Description
PRIMARY|
SECONDARY
Indicates either the primary RADIUS server or the secondary RADIUS server is
being defined or deleted.
IP=<radius_ip>
IP address of the RADIUS authentication server.
SECRET=<secret>
8-24 character text string for shared secret with the RADIUS server. Enclose the
string in quotes if it contains spaces.
USER-RIGHTS=<attr>
Attribute number defined on the RADIUS server, in the range 1-255.
AUTHPORT=<udp>
UDP port for RADIUS authentication server, in the range 1-65535. This value is
usually 1645, but may be 1812.
Default = 1645
TIMEOUT=<time-out>
Number of seconds to wait for a response from the RADIUS server, in the range 1-60.
Default = 5
RETRIES = <retry>
Number of attempts to make to authenticate a user after a time-out, in the range 1-10.
Default = 3
90
Table 5.31: Server RADIUS Command Parameters (Continued)

Parameter
Description
DELETE
Deletes a primary or secondary RADIUS server definition. If a primary server is

deleted, and a secondary server was configured, that secondary server becomes the
new primary server.
Examples
The following command specifies primary RADIUS server information; default values will be used
for the UDP port, time-out and retries values.
>ser radius primary ip=192.168.0.200 secret=ThePrimaryRadSecret userrights=86
The following command deletes the primary RADIUS server definition.

>ser radius primary del
Server Reboot command

The Server Reboot command reboots the CCM appliance. During a reboot, any active Telnet
sessions, including your own, are terminated, and all users are informed accordingly. Any
configuration changes that require a reboot will become effective when the reboot completes.
When you enter this command, you are prompted to confirm or cancel the reboot.
You may also reboot the appliance by pressing the RESET button on the front panel. See Rebooting
on page 11 for more information.
Access right: SCON
Syntax
SERVER REBOOT
Server Security command

The Server Security command specifies the authentication method, access method and security
lock-out setting. For more information, see Using Authentication Methods on page 34, Enabling
plain text Telnet and SSH connections on page 27, Port access on page 17 and Using security lockout on page 40.
When you enter this command with any parameter(s) other than DSCLEAR or LOCKOUT, you are
prompted to confirm or cancel the specified information.
Access right: SCON
Syntax
SERVER SECURITY [AUTHENTICATION=<auth>] [ENCRYPT=<conns>]

[DSMODE=SECURE|TRUSTALL] [DSCLEAR] [LOCKOUT=<hours>]
[ACCESS=BYPORT|BYGROUP]
91
Table 5.32: Server Security Command Parameters

Parameter
AUTHENTICATION=
<auth>
Description
Authentication method. You may specify multiple values (other than None),
separated by commas. Valid values are:
LOCAL
Use the local CCM user database to authenticate users. You cannot
specify both LOCAL and DOWNLOCAL.
RADIUS
Use the previously defined RADIUS server(s) to authenticate users.
LDAP
Use the previously defined LDAP server(s) to authenticate and/or
authorize users.
DOWNLOCAL Use local authentication if any specified external authentication
methods cannot be used due to lack of connection to the server. If
specified, this should be listed last. You cannot specify both
DOWNLOCAL and LOCAL.
NONE
Do not authenticate users. This method cannot be used when SSH
access is enabled, and it cannot be combined with other
authentication methods.
Default for DS operation = DS,LOCAL
Default for AV operation = LOCAL
When a CCM appliance is Flashed for DS operation, the DS authentication method
is automatically appended to any other configured authentication methods. When the
CCM appliance is Flashed for AV operation, you cannot specify the DS
ENCRYPT=<conns>
Enables/disables plain text Telnet or SSH connections. You may enable both by
specifying both values, separated by a comma. Valid values are:
SSH
Enables SSH connections.
None
Enables plain text Telnet connections.
Default = None
DSMODE=SECURE|
TRUSTALL
For DS operation only: Specifies the authentication mode when DS authentication is

used. Secure indicates authentication will be locked to the one server used by the
DSView 3 software after initial access, and DSView 3 software server and appliance
credentials will be stored in the CCM appliance. Trustall indicates that any server
used by the DSView 3 software may be used for authentication, and DSView 3
software server credentials will not be stored or validated in the CCM appliance.
Default = TRUSTALL
DSCLEAR
For DS operation only: Clears any stored credentials used by the DSView 3
software, including the DSMODE setting.
LOCKOUT=<hours>
Enables or disables security lock-out. To enable, specify the number of hours in the
lock-out period, in the range 1-999. To disable, specify a zero value.
Default = 0 (disabled)
92
Table 5.32: Server Security Command Parameters (Continued)

Parameter
Description
ACCESS=
BYPORT|BY GROUP
Access control method.

BYPORT - The users port access rights/level determine if the user may access the
requested entity.
BYGROUP - The users group membership determines if the user may access the
requested entity. The group name associated with the entity must appear in the
users group membership list.
Server Set command

The Server Set command changes CCM appliance address settings. You may specify one, two or
all three parameters. A reboot is required if you change the IP address or gateway.
Access right: SCON
Syntax
SERVER SET [IP=<ip_address>] [MASK=<subnet>] [GATEWAY=<gtwy>]

Table 5.33: Server Set Command Parameters
Parameter
Description
IP=<ip_address>
IP address.
MASK=<subnet>
Subnet mask for the subnet on which the CCM appliance resides.
GATEWAY=<gtwy>
IP address of default gateway for routing IP packets.
Server Share command

The Server Share command configures the share mode. For more information, see Session sharing
and preemption on page 27.
Access right: SCON
Syntax
SERVER SHARE DISABLE|AUTO|QUERY

Table 5.34: Server Share Command Parameter
Parameter
Description
DISABLE
Disables session sharing. Only one connection per port will be allowed.
AUTO
Enables automatic session sharing (subject to preemption based on access level).
93
Table 5.34: Server Share Command Parameter

Parameter
Description
QUERY
Enables session sharing when permission is obtained from the session originator
(subject to preemption based on access level). This is the default value.
Server SNMP command

The Server SNMP command enables or disables SNMP UDP port 161 SNMP processing. When
you disable SNMP processing, you may still enable and disable traps with the Server SNMP
Trap command.
Access right: SCON
Syntax
SERVER SNMP ENABLE|DISABLE

Table 5.35: Server SNMP Command Parameter
Parameter
Description
ENABLE|DISABLE
Enables or disables SNMP processing.

Default = Enabled
Server SNMP Community command

The Server SNMP Community command defines read, write and trap SNMP community strings.
Community names are case sensitive.
NOTE: The default community names are public; if you enable SNMP, you are encouraged to change the
community values to prevent access to the MIB.
Access right: SCON
Syntax
SERVER SNMP COMMUNITY [READCOMM=<name>] [WRITECOMM=<name>]

[TRAPCOMM=<name>]
Table 5.36: Server SNMP Community Command Parameters
Parameter
Description
READCOMM=<name>
1-64 alphanumeric or hyphen character read community name.

Default = public
94
Table 5.36: Server SNMP Community Command Parameters

Parameter
Description
WRITECOMM=<name>
1-64 alphanumeric or hyphen character write community name.

Default = public
TRAPCOMM=<name>
1-64 alphanumeric or hyphen character trap community name. If you specify this
parameter, the name must be different from the read and write community names.
Default = public
Server SNMP Manager command

The Server SNMP Manager command defines or deletes SNMP management entities. You may
define up to four management entities. If you delete all SNMP managers (or never add any), the
CCM appliance may be accessed using SNMP from any IP address.
Access right: SCON
Syntax
SERVER SNMP MANAGER ADD|DELETE <ip_address>

Table 5.37: Server SNMP Manager Command Parameters
Parameter
Description
ADD|DELETE
Adds or deletes the specified SNMP management entity.
<ip_address>
IP address of SNMP management entity.
Example
The following command adds an SNMP management entity with the IP address of 192.168.0.1.
server snmp manager add 192.168.0.1
Server SNMP Trap command

The Server SNMP Trap command enables or disables SNMP traps. When you issue this command
with the Enable parameter, the CCM appliance displays a numbered list of all currently disabled
traps. When you issue this command with the Disable parameter, a numbered list of all currently
enabled traps is displayed.
You may indicate the traps to be enabled/disabled by entering a single number, several numbers
separated by commas, a range of numbers separated by a dash or a combinations of numbers
separated by commas and dashes. You may also type ALL to select all traps in the list or press
Enter, which cancels the operation.
If you specify ALL on the command line, the numbered list is not displayed.
95
If you enable a trap but there is no trap destination configured for it, a warning will be issued. In
this case, issue a Server SNMP Trap Destination command.
NOTE: By default, all traps are disabled. The PortAlert trap must be enabled for port alert processing to be performed.
For more information, see Managing the CCM Appliance Using SNMP on page 46 and Supported
Traps on page 125.
Access right: SCON
Syntax
SERVER SNMP TRAP [ENABLE|DISABLE] [ALL]

Table 5.38: Server SNMP Trap Command Parameter
Parameter
Description
ENABLE|DISABLE
Enable generates a numbered list of currently disabled traps from which you choose
those to enable. Disable generates a numbered list of currently enabled traps from
which you choose those to disable.
Example
The following command enables the linkUp, UserDeleted and UserLogin SNMP traps.
>server snmp trap enable
Traps now disabled:
1) linkUp
4) UserLogin
2) UserAdded
5) ImageUpgradeStarted
3) UserDeleted
Select trap(s) to enable>1,3-4
Server SNMP Trap Destination command

The Server SNMP Trap Destination command defines or deletes destinations for enabled SNMP
traps. Once you define destinations for enabled SNMP traps, when a trap occurs, the CCM
appliance will generate SNMP trap messages to each defined SNMP trap destination. You may
define up to four trap destinations, using separate commands.
Access right: SCON
Syntax
SERVER SNMP TRAP DESTINATION ADD|DELETE <ip_address>
96
Table 5.39: Server SNMP Trap Destination Command Parameters

Parameter
Description
ADD|DELETE
Defines or deletes the specified destination.
<ip_address>
IP address of trap destination.
Server SSH command

The Server SSH command enables or disables SSH session access to the CCM appliance and
specifies the SSH authentication method. When you enable SSH, all CCM sessions will be
terminated if a CCM SSH server key must be generated. You must also have previously specified
an authentication method other than None with the Server Security command.
If you enable plain text Telnet connections with a Server Security command, enabling SSH session
access with the Server SSH command will add that as a valid connection method (both plain text
and SSH connections will be allowed.)
For more information, see Using SSH on page 24.
Access right: SCON
Syntax
SERVER SSH ENABLE|DISABLE [AUTH=<auth>]

Table 5.40: Server SSH Command Parameters
Parameter
Description
ENABLE|DISABLE
Enables or disables SSH session access to the CCM appliance.
AUTH=<auth>
SSH authentication methods. You must enter the entire value; abbreviations are not
permitted. Valid values are:
PW
Password authentication.
KEY
Key authentication.
PW|KEY
Password or key authentication.
KEY|PW
Key or password authentication.
PW&KEY
Password and key authentication.
KEY&PW
Key and password authentication.
Default = PW
Show Commands
The Show command has several forms, as listed in Table 5.41.
Table 5.41: Show Command Summary
Command
Description
Show Group
Displays the membership of one or all groups.
Show NFS
Displays NFS mount status and configured values.
Show NTP
Displays configured NTP values.
Show Port
Displays port information.
Show Port In/Out
Displays how carriage returns and linefeeds are treated.
Show Server
Displays CCM configuration information and statistics.
Show Server CLI
Displays CCM CLI settings.
Show Server LDAP
Displays CCM LDAP settings.
Show Server PPP
Displays CCM PPP settings.
Show Server RADIUS
Displays CCM RADIUS settings.
Show Server Security
Displays CCM authentication, connection and security lock-out settings.
Show Server SNMP
Displays SNMP configuration information.
Show User
Displays user configuration and session information.
Show Group command

The Show Group command displays the group membership of one or all groups.
Access right: SMON
Syntax
SHOW GROUP [<group>]

Table 5.42: Show Group Command Parameter
Field
Content
group
Group name.
97
98
Show NFS command

The Show NFS command displays NFS configuration information and the current mount status. If
a mount error occurred, the display also includes the error message returned by the NFS server.
If NFS has never been enabled on the appliance, the default values will be displayed. If NFS was
previously enabled and successfully configured, then later disabled, the display will retain the
configured address, mount point and file type values.
The Show Port display includes information configured with the Port NFS command.
Access right: SMON
Syntax
SHOW NFS
Table 5.43: Show NFS Command Display Fields
Field
Content
NFS
ENABLE or DISABLE (from NFS command).
IP Address
NFS server IP address (from NFS command) or none if NFS has never
been enabled.
Mount point
Mount point on the NFS server (from NFS command) or none if NFS has never
been enabled.
File type
LINEAR or DAILY (from NFS command).
Protocol
TCP or UDP (from NFS command).
NFS status
A status value/description (see NFS Error Codes and Port Status on page 131) or
Not mounted if NFS has never been enabled.
Show NTP command

The Show NTP command displays NTP configuration information and the NTP server status.
If NTP has never been enabled on the appliance, the default configuration values will be displayed.
If NTP was previously enabled and successfully configured, then later disabled, the display will
retain the configured address and update values, and the status will remain Success.
If a second servers IP address is not configured, None will be indicated for that value.
When a second server is configured and a request for the time from the first server is successful, the
second server is also contacted to verify that it is accessible and usable (even though the time was
obtained from the first server).
Access right: SMON
99
Syntax
SHOW NTP
Table 5.44: Show NTP Command Display Fields
Field
Contents
ENABLE or DISABLE
Indicates if NTP is enabled or disabled.
IP Address 1
Address of primary NTP server (from NTP command) or none.
IP Address 2
Address of secondary NTP server (from NTP command) or none.
Update
Interval for sending time requests (from NTP command) or 0.
Server 1 Status
Indicates if an update from the primary server was attempted, not attempted or is
in progress.
Server 2 Status
Indicates if an update from the secondary server was attempted, not attempted or is
in progress.
Show Port command

The Show Port command displays configuration and status information about one or all ports.
Access right: None needed if no parameter is specified; otherwise, SMON or PCON
Syntax
SHOW PORT [<port>] [ALL|NAMES|GROUPS [<group>]|ALERT]

Table 5.45: Show Port Command Parameter
Parameter
Description
<port>
A port number, port name or CON. If the port name contains spaces, it must be
enclosed in double quotes.
Default = your port
ALL
Displays information about all ports. If virtual ports are configured, their information
will be displayed after the physical ports are listed.
NAMES
Displays a list of port numbers (for physical ports only) and port names.
GROUPS <group>
If a group name is not specified, the display lists the port names (and port numbers
for physical ports) and the group(s) assigned to each port, if any.
If a group name is specified, the display lists the port names (and port numbers for
physical ports) associated with a group name.
ALERT
Displays a ports alert strings.
The display for the console port will not include values for the socket, power, TD, toggle, name or
group fields.
100
Table 5.46 lists the display fields for a Show Port command that specifies a single physical port
configured as TD=console. The display fields may appear in a different order than listed in
the table.
A Show Port All command displays the Port, Serial Port Settings, TX Bytes, RX Bytes, Errors and
Power fields for physical ports.
Table 5.46: Show Port Command Display Fields for a Physical Port with TD=Console
Field
Content
Port
Port number.
Serial Port Settings
Comma-separated string of port values: baud rate, number of data bits, parity,
number of stop bits, flow control, socket number, time-out value and CLI access
character (from Port Set command). The CLI character is preceded by POR CLI= if it
was defined with a Port Set command or by SER CLI= if it was defined with a Server
CLI command.
TX Bytes
Number of bytes transmitted.
RX Bytes
Number of bytes received.
Errors
Number of TX/RX parity and framing errors.
Toggle
Toggle value (from Port Set command).
Power
Device power status, if monitoring is enabled. ON indicates the device is on, OFF
indicates the device is off.
Power Signal
Signal and state being monitored for device power status (from Port Set command).
If monitoring is disabled, this field indicates None.
Port Name
Port name assigned with the Port Set command or the default name (last three
octets of MAC address plus the port number).
Group
Group names.
Port NFS
ENABLE indicates NFS is enabled, DISABLE indicates NFS is disabled (from Port
NFS command).
File
NFS filename (from Port NFS command).
Size threshold
NFS size threshold (from Port NFS command).
Time threshold
NFS time threshold (from Port NFS command).
Port NFS Status
Status of NFS history file operations. See NFS port status values on page 137 for
more information.
Current file
Current NFS filename.
User *
Username (from User Add command).
Level *
Users access level (from User Add/Set commands).
101
Table 5.46: Show Port Command Display Fields for a Physical Port with TD=Console (Continued)
Field
Content
Access *
Users access rights (from User Add/Set commands).
Port Access *
Indicates if a user may connect to the port BY GROUP or BY PORT.

If there is any group defined for any ports (which can be determined with a Show
Port Groups command), each user may connect BY GROUP, unless a users access
rights include PALL, in which case, a user may connect BY PORT.
If a user is assigned an empty group (with no ports in it) or no groups at all, that user
may lose access to any port once there is a group defined for any port.
Locked *
Indicates if the port is LOCKED or UNLOCKED. If security lock-out is disabled, N/A

is displayed. See Using security lock-out on page 40 for more information.
Last Login *
System up time value when the user logged in.
Duration *
Duration of users session.
* Displayed only when the command specifies a single port that has a current connection. User information is
for the session originator.
Table 5.47 lists the display fields for a Show Port command that specifies a single virtual port. User
information is for the session originator. The display fields may appear in a different order than
listed in the table.
Table 5.47: Show Port Command Display Fields for a Virtual Port
Field
Content
Virtual Port
Port name (from Port Add/Set command).
IP Address
IP address (from Port Add/Set command).
Socket
Socket number (from Port Add/Set command).
State
Port state:
Connected - A successful connection has been made to the virtual port.
Unconnected - The appliance is trying to connect to the virtual port.
Failed - The appliance failed to connect to the virtual port.
Group
Group names (from Port Add/Set command).
IPMI Username
BMC username (from Port Add/Set command).
Password
BMC password (from Port Add/Set command).
Port Timeout
Time-out value (from Port Add/Set command).
Access Char
CLI access character (from Port Add/Set command).
Port NFS
ENABLE indicates NFS is enabled, DISABLE indicates NFS is disabled (from Port
NFS command).
102
Table 5.47: Show Port Command Display Fields for a Virtual Port (Continued)
Field
Content
File
NFS filename (from Port NFS command).
Size threshold
NFS size threshold (from Port NFS command).
Time threshold
NFS time threshold (from Port NFS command).
Port NFS Status
Status of NFS history file operations. See NFS Port Status Values on page 137 for
more information.
Current file
Current NFS filename.
User *
Level *
Users access level (from User Add and User Set Access commands).
Port Access *
Indicates if a user may connect to the port BY GROUP or BY PORT.

Locked *
Indicates if the port is LOCKED or UNLOCKED. If security lock-out is disabled, N/A

is displayed. See Using security lock-out on page 40 for more information.
Last Login *
System uptime value when the user logged in.
Access *
Users access rights (from User Add/Set commands).
Groups
Group names that the connected user may access.
Duration *
Duration of users session.
* Displayed only when the command specifies a single port that has a current connection. User information is
for the session originator.
For virtual ports, the Show Port All command displays the virtual port name, IP address, socket and
status, plus the maximum number of virtual ports allowed. The virtual ports are listed in
ASCIIbetical order by port name after the physical ports (for example, port name Vp1 will be listed
before port name ap1).
For ports that were configured with TD=SPC, the Show Port All command display indicates the
type and model of the attached power device. For a Show Port command that specifies a single
port, the display will include all power devices on the physical port.
103
Table 5.48 lists the display fields for a Show Port command (that specifies a single port or All) for
ports that were configured as TD=SPC.
Table 5.48: Show Port Command Display Fields for TD=SPC
Parameter
Description
Port Name
Port name (last 3 octets of MAC address plus the port number).
Status
ONLINE indicates the SPC device is powered up, OFFLINE indicates the SPC device
is powered down.
Device
SPC device model.
Version
SPC device firmware version.
Minload
Minimum load amp value (from SPC command).
Maxload
Maximum load amp value (from SPC command).
Socket
Socket number.
Wake
Wakeup state for socket (from SPC command).
ON Min
Minimum On time (from SPC command).
OFF Min
Minimum Off time (from SPC command).
The Show Port Names command displays a list of port numbers and their names. If a port has not
been assigned a name with the Port Set command, the default name is displayed.
The Show Port Groups command displays a list of port names and group assignments. Entries for
physical ports also contain the port number.
The Show Port Alert command displays a ports alert strings.
Show Port In/Out command

The Show Port In/Out command displays the translation settings for all physical and virtual ports.
These translation settings indicate how carriage returns and linefeeds are treated in incoming and
outgoing serial data.
The display fields include the port name (and number for physical ports), the CR translation and the
LF or CRLF translation.
Access right: SMON or PCON
Syntax
SHOW PORT IN|OUT
104
Show Server command

The Show Server command displays CCM appliance configuration information, statistics and the
current time.
Access right: SMON
Syntax
SHOW SERVER
Table 5.49 lists the information displayed for the Show Server command. The display fields may
appear in a different order than listed in the table
Table 5.49: Show Server Command Display Fields
Field
Content
Server
IP address (from initial configuration or Server Set command).
Mask
Subnet mask (from initial configuration or Server Set command).
Gateway
Gateway IP address (from initial configuration or Server Set command).
Up Time
Days, hours, minutes and seconds since unit was rebooted.
MAC
Ethernet MAC address.
S/N
Serial number.
Port
Port number.
Username
Duration *
Duration of session.
Sock or Socket
Telnet or SSH socket number.
From Socket
Telnet or SSH client IP address with socket number in parentheses.
IP Input and Output
Network IP statistics, including number of packets delivered, discarded and fragments.
TCP
Network TCP statistics, including in segs, out segs, errors and retransmissions.
UDP
Network UDP statistics, including in, out, errors and no port events.
Maximum Virtual Ports
Maximum number of virtual ports that may be configured.
Maximum Number
of Shares
Maximum number of shared connections allowed on the appliance. This is

calculated as: (2 x number of physical ports) + (2 x number of configured
virtual ports).
Share Mode
Disable, Auto or Query (from Server Share command).
BOOT
BIOS/Bootstrap version, date and time.
105
Table 5.49: Show Server Command Display Fields (Continued)

Field
Content
APP
Application version that is running, plus its date and time. If the CCM appliance is
Flashed for DS operation, the application version number will be appended with (for
DSView 3).
* Displayed only when the CCM appliance is Flashed for AV operation.
Show Server CLI command

The Show Server CLI command displays the serial CLI settings.
Access right: SMON
Syntax
SHOW SERVER CLI

Table 5.50: Show Server CLI Command Display Fields
Field
Contents
CLI Port
Console port terminal type.
Access Character
Control character used to access the CLI.
History
Indicates whether a ports history buffer content is displayed (auto) or not

displayed (hold) when a user connects to the port, and whether the buffer
content is cleared (clear) or kept (keep) when a session ends.
Connect
Indicates whether a valid user on the console port may use the
Connect command.
Modem init string
String used to initiate modem connections on the console port.
Server CLI Timeout
Session time-out value, in minutes.
Local authentication *
Configured console port authentication setting (ENABLED or DISABLED).
Local preemption level *
Preemption level to be used when authentication is disabled on the console

port and that ports user attempts to connect to another serial port.
* Displayed only when the CCM appliance is Flashed for DS operation.
Show Server LDAP command

The Show Server LDAP command displays the current CCM LDAP settings that were configured
with the LDAP commands.
Access right: SMON
106
Syntax
SHOW SERVER LDAP
Show Server PPP command

The Show Server PPP command displays the current PPP settings that were configured with the
Server PPP command.
Access right: SMON
Syntax
SHOW SERVER PPP
Show Server RADIUS command

The Show Server RADIUS command displays the current CCM RADIUS settings that were
configured with the Server RADIUS command.
Access right: SMON
Syntax
SHOW SERVER RADIUS
Show Server Security command

The Show Server Security command displays the current authentication, connection and lock-out
settings that were configured with the Server Security and Server SSH commands.
Access right: SMON
Syntax

Table 5.51: Show Server Security Command Display Fields
Field
Contents
Authentication
Configured authentication method(s). This includes the SSH authentication method

configured with the Server SSH command (or the default value), regardless of
whether SSH is enabled.
Encryption
Configured connection methods.
Lockout
Configured security lock-out state (Enabled or Disabled). If Enabled, the number of

hours in the lock-out period is included.
PING Reply
Configured ping setting (Enabled or Disabled).
DS Mode *
DS authentication mode: TRUSTALL or SECURE.
107
Table 5.51: Show Server Security Command Display Fields (Continued)

Field
Contents
DS Server IP #0 *
IP address of DSView 3 software server number 0 (for user/session authentication).
DS Server IP #1 *
DS Server IP #2 *
DS Server IP #3 *
Preauth Certs *
Preauthentication certificates used by the DSView 3 software.
Fingerprint (Hex)
SSH key MD5 hash.
Fingerprint (BB)
SSH key bubble babble.
* Displayed only when the CCM appliance is Flashed for DS operation.
Show Server SNMP command

The Show Server SNMP command displays SNMP configuration information.
Access right: SMON
Syntax
SHOW SERVER SNMP

Table 5.52: Show Server SNMP Command Display Fields
Field
Contents
Server SNMP
ENABLE if SNMP processing is enabled, DISABLE if SNMP processing is disabled

(from Server SNMP command).
Read Community
Read community name (from Server SNMP Community command).
Write Community
Write community name (from Server SNMP Community command).
Trap Community
Trap community name (from Server SNMP Community command).
SNMP Managers
SNMP management entity IP addresses (from Server SNMP Manager command). If no

SNMP managers have been added or if they are all deleted, this field will
indicate (none).
Trap Dests
Destinations for enabled SNMP traps (from Server SNMP Trap Destination command).
Enabled Traps
Names of SNMP traps that have been enabled (from Server SNMP Trap command).
Show User command

The Show User command displays information about one or all users.
108
Access right: SMON or USER if no parameter is specified; otherwise, USER

Syntax
SHOW USER [<username>|ALL|GROUP]

Table 5.53: Show User Command Parameter
Parameter
Description
<username>
Username.
Default: user currently logged in
ALL
Requests a display of all defined users.
GROUP
Displays a list of users and the groups to which they have been assigned.
The Show User command display for one user includes the information in Table 5.54.
Table 5.54: Show User Command Display Fields
Field
Contents
User
Username.
Level
Users access level. If a level was not configured, access rights determine the level:
Users with SCON access => APPLIANCEADMIN.
Users with USER or PCON but not SCON => ADMIN.
Otherwise, USER level is assigned.
Port Access
Indicates if the user may connect to ports BY GROUP or BY PORT.

Locked
YES if user is locked-out, NO if not.
Last Login
System up time value when the user logged in.
Access
Users access rights. If the CCM appliance is Flashed for DS operation, the users
preemption level is appended to the access rights.
Groups
Users groups or blank if no groups.
Port
Serial port to which user is connected.
Username
Username.
Sock or Socket
Telnet socket number.
From Socket
Telnet client IP address and socket number.
109
There may be a difference between the display for a Show User command (without a username)
and Show User <current_username>. If you do not specify a username, the command displays the
current user credentials; with a username, the information comes from the database.
For example, assume username Admin is logged in with Access=PALL. Then, a User Set Admin
Access=PALL command is issued and the database is modified. A Show User command (without
a username) will display the access as PALL, while a Show User Admin command will display the
new access without PALL.
A Show User All command display includes the information in Table 5.55.
Table 5.55: Show User All Command Display Fields
Field
Contents
User
Username.
Pass
YES if user has a password defined, NO if not.
Key
YES if user has an SSH key defined, NO if not.
Lock
YES if user is locked-out, NO if not.
Level
Users access level. If a level was not configured, access rights determine the level:
Users with SCON access => APPL (appliance administrator).
Users with USER or PCON but not SCON => ADMN (administrator).
Otherwise, USER level is assigned.
Access
Users access rights. If the CCM appliance is Flashed for DS operation, the users
preemption level is appended to the access rights.
A Show User Group command displays a list of all users and the groups to which they are assigned.
SPC Command
The SPC command changes settings for an SPC power control device.
NOTE: To access the control screen or command line interface provided by the SPC device, this command
should not be used, and the CCM appliance port to which the SPC device is attached should be configured as
TD=Console. When TD=SPC is configured, you cannot connect to the SPC device; all SPC device operations
are performed from the CCM appliance CLI.

Syntax
SPC <device>|ALL [NAME=<name>] [MINLOAD=<amps>] [MAXLOAD=<amps>]
110
Table 5.56: SPC Command Parameters

Parameter
Description
<device>|ALL
Device number, device name or All, which indicates that the settings that follow
should be applied to all ports configured as TD=SPC. If the name contains spaces, it
must be enclosed in double quotes.
NAME=<name>
SPC device name.
MINLOAD=<amps>
Minimum load in amperes in the range 0-30. A zero value indicates no minimum load.
Default = 0
MAXLOAD=<amps>
Maximum load in amperes in the range 0-30. A zero value indicates no maximum load.
Default = 0
The following command sets a maximum load of 20 amps for the SPC device attached to the port
named spc3 on the CCM appliance.
spc spc3 max=20
SPC Socket Command

The SPC Socket command changes the settings or state for one or more sockets on an Avocent SPC
power control device or on a Server Technologies power device that has been added by the
DSView 3 software.
NOTE: For standalone use of the SPC device, this command should not be used, and the CCM appliance port to
which the SPC device is attached should be configured as TD=Console.

Syntax
SPC [<device>] [SOCKET <socket>|ALL] [NAME=<name>] [WAKE=ON|OFF]

[ONMIN=<time>] [OFFMIN=<time>] [POWER=ON|OFF|REBOOT]
Table 5.57: SPC Socket Command Parameters
Parameter
Description
<device>
Device number or name. If the name contains spaces, it must be enclosed in

double quotes.
If this command contains a unique socket name, the device number/name may
be omitted.
SOCKET <socket>|ALL
Socket number, socket name or All, which indicates that the settings that follow
should be applied to all sockets on the specified port.
111
Table 5.57: SPC Socket Command Parameters (Continued)

Parameter
Description
NAME=<name>
Socket name. Socket names are case sensitive and must be unique among all
power devices on the CCM appliance.
WAKE=ON|OFF
State that the socket will enter when the SPC device is powered up.
Default = On
ONMIN=<time>
Minimum amount of time that a socket will stay on before it may be turned off. The value
may be specified with S for seconds, M for minutes or H for hour. Valid values are:
0S, 15S, 30S, 45S, 60S, 75S, 90S, 105S. 120S, 180S, 240S, 300S, 600S, 900S,
1800S, 3600S
0M, 1M, 1M15S, 1M30S, 1M45S, 2M, 3M, 4M, 5M, 10M, 15M, 30M, 60M.
0H, 1 H.
Default = 0S
OFFMIN=<time>
Minimum amount of time that a socket will stay off before it may be turned on. The value
may be specified with S for seconds, M for minutes or H for hour. Valid values are:
0S, 15S, 30S, 45S, 60S, 75S, 90S, 105S. 120S, 180S, 240S, 300S, 600S, 900S,
1800S, 3600S
0M, 1M, 1M15S, 1M30S, 1M45S, 2M, 3M, 4M, 5M, 10M, 15M, 30M, 60M.
0H, 1 H.
Default = 0S
POWER=ON|OFF|
REBOOT
ON causes the specified socket(s) to turn on (after the time specified in Offmin).
OFF causes the specified socket(s) to turn off (after the time specified in Onmin).
REBOOT causes the specified socket(s) to turn off, then on.
Example
The following command turns on all sockets on the SPC power control device attached to port 6 of
the CCM appliance. The sockets will turn on based on their Offmin values.
>spc 6 socket all on
User Commands
The User command has several forms, as listed in Table 5.58.
Table 5.58: User Command Summary
Command
Description
User Add
Adds a new user to the user database.
User Delete
Deletes a user from the user database.
User Logout
Terminates a users active session.
User Set
Changes a users configuration information.
User Unlock
Unlocks a locked-out user.
112
User Add command

The User Add command adds a new user to the CCM user database. The user database holds a
maximum of 64 user definitions. For more information, see Managing User Accounts on page 32
and Access levels and rights on page 33.
Access right: USER
Syntax
USER <username> ADD [PASSWORD=<pwd>] [SSHKEY=<keyfile>] [FTPIP=<ftpadd>]

Table 5.59: User Add Command Parameters
Parameter
Description
<username>
3-16 alphanumeric or hyphen character username. Usernames are case sensitive. A

username cannot be All, Add, Delete, Logout, Set or USER-CLI.
PASSWORD=<pwd>
3-16 alphanumeric or hyphen character password. Passwords are case sensitive.
SSHKEY=<keyfile>
Name of uuencoded public key file on an FTP server. The maximum file size that
may be received is 4K bytes. If this parameter is specified, you must also specify the
FTPIP parameter.
FTPIP=<ftpadd>
FTP servers IP address. If this parameter is specified, you must also specify the
SSHKEY parameter.
KEY=<sshkey>
Uuencoded SSH key.
ACCESS=<access>
Command and port access level or rights. You may specify multiple access rights,
separated by commas, or a level. Valid values for access rights are:
P<n>
Access to the specified physical port number.
P<x-y>
Access to the specified range of physical ports.
PALL
Access to all physical and virtual ports.
USER
User configuration access rights.
PCON
Port configuration access rights.
SCON
Configuration access rights.
SMON
Monitor access rights.
BREAK
Can issue Port Break command.
Valid values for access levels are:
ADMIN
PALL, USER, SMON, PCON and BREAK access rights.
APPLIANCEADMIN
PALL, USER, SCON, SMON, PCON and BREAK
access rights.
Default = PALL,SMON
GROUP=<group>
Name of port group(s) to which the user will be assigned. Up to 8 port groups,
separated by commas, may be defined for a CCM850 appliance user, up to 16 port
groups for a CCM1650 appliance user and up to 48 groups for a CCM485x
appliance user.
113
Table 5.59: User Add Command Parameters (Continued)

Parameter
Description
PREEMPT=1|2|3|4
For DS operation only: Preemption level, in the range 1-4 (lowest to highest).
Default = 4 (highest)
Examples
The following command adds the username JaneDoe, with access to all ports. The name of the SSH
public user key file is ccm_key2.pub. This file is located on the FTP server at IP address 10.0.0.3.
>user JaneDoe add ssh=ccm_key2.pub ftp=10.0.0.3 access=pall
The following command adds the username JDoe, with the password mysecret and the Appliance
Administrator access level, which enables access to all ports and CCM appliance commands.
>user JDoe add pas=mysecret access=applianceadmin
The following command adds the username JohnD with the password pword and the Administrator
access level. JohnD is assigned to the port groups Dev1 and Dev2.
>user JohnD add password=pword access=adm group=Dev1,Dev2
User Delete command

The User Delete command removes a username entry from the CCM user database. The username
will no longer be used to authenticate a session with the CCM appliance.
Access right: USER
Syntax
USER <username> DELETE

Table 5.60: User Delete Command Parameter
Parameter
Description
<username>
Username to be deleted.
User Logout command

The User Logout command terminates a users active sessions on the CCM appliance. If the
specified user has no active sessions, an error message is displayed. For all active sessions that are
terminated, a message is sent to the Telnet client and the Telnet connection is dropped.
Access right: USER
Access level: ADMIN (may log out all except APPLIANCEADMIN) or APPLIANCEADMIN
Syntax
USER <username> LOGOUT
114
Table 5.61: User Logout Command Parameter

Parameter
Description
<username>
Username to be logged out.
User Set command

The User Set command changes a users configuration in the user database. For more information,
see Managing User Accounts on page 32 and Access levels and rights on page 33.
You may delete a users password or key; however, each user must have a password or a key, so
you cannot remove both. Also, you cannot remove a users password or key if that action would
result in no users having USER access rights.
Access right: none to change your own password, USER to change anything else
Access level: none to change your own password, ADMIN or APPLIANCEADMIN to change
anything else
Syntax
USER <username> SET [PASSWORD=<pwd>] [SSHKEY=<keyfile>] [FTPIP=<ftpadd>]

Table 5.62: User Set Command Parameters
Parameter
Description
<username>
Username. This parameter may be omitted only if you are modifying your
own password.
PASSWORD=<pwd>
New 3-16 alphanumeric or hyphen character password. Passwords are case

sensitive. This parameter is required when changing a password.
The password is displayed on the screen. For security, clear your screen display
after issuing this command.
To delete a password, specify Password =.
SSHKEY=<keyfile>
Name of uuencoded public key file on an FTP server. The maximum file size that
may be received is 4K bytes.
FTPIP=<ftpadd>
FTP servers IP address.
KEY=<sshkey>
Uuencoded SSH key. To delete an SSH key (whether it was originally specified with
the SSHKEY and FTPIP parameters or with the KEY parameter), specify Key=.
115
Table 5.62: User Set Command Parameters (Continued)

Parameter
Description
ACCESS=<access>
Command and port access rights or level. You may specify multiple access rights,
separated by commas, or a level. If specifying access rights, you may use one of
three forms:
ACCESS=<access> to specify all access rights.
ACCESS=+<access> to specify only access rights to be added.
ACCESS=<access> to specify only access rights to be deleted.
Valid values for access rights are:
P<n>
Access to the specified physical port number.
P<x-y>
Access to the specified range of physical ports.
PALL
Access to all physical and virtual ports.
USER
User configuration access rights.
PCON
Port configuration access rights.
SCON
Configuration access rights.
SMON
Monitor access rights.
BREAK
Can issue Port Break command.
Valid values for access levels are:
ADMIN
PALL, USER, SMON, PCON and BREAK access rights.
APPLIANCEADMIN
PALL, USER, SCON, SMON, PCON and BREAK
access rights.
GROUP=<group>
Port group name(s). You may use one of three forms:

GROUP=<group> to specify all port groups for the user account.
GROUP=+<group> to specify only port groups to be added to the user account.
GROUP=<group> to specify only port groups to be deleted from the user account.
Up to 8 port groups, separated by commas, may be defined for a CCM850 appliance
user, up to 16 port groups for a CCM1650 appliance user and up to 48 groups for a
CCM485x appliance user.
PREEMPT=1|2|3|4
For DS operation only: Preemption level, in the range 1-4 (lowest to highest).
Default = 4 (highest)
Examples
The following command sets the access rights for JohnDoe, enabling access to all ports with
configuration and monitoring access rights.
>user JohnDoe set access=pall,scon,smon
The following command removes the server configuration and port configuration access right for
JohnDoe, and leaves any other previously configured access rights intact.
>user JohnDoe set access=-SCON,PCON
The following command deletes the SSH key information for JohnDoe. The command will
complete successfully only if JohnDoe has a password configured in a previous User Add or User
Set command, and if there are other users with User access rights.
>user JohnDoe set key=
116
The following command adds the groups Dev3 and Dev4 for JohnD. He may now access the ports
defined in groups Dev3 and Dev4 as well as ports in other groups that were previously configured
for him.
>user JohnD set group=+Dev3,Dev4
User Unlock command

The User Unlock command unlocks a user who was previously locked-out. After this command
completes, the user will be able to attempt login authentication again.
Access right: USER
Access level: ADMIN (may unlock all except APPLIANCEADMIN) or APPLIANCEADMIN
Syntax
USER <username> UNLOCK

Table 5.63: User Unlock Command Parameter
Parameter
Description
<username>
Username to be unlocked.
117
APP ENDICE S
Appendices
Appendix A: Technical Specifications
Table A.1: CCM Appliance Technical Specifications
Item
CCM850 Appliance
CCM1650 Appliance
CCM485x Appliance
Number
16
48
Type
Serial ports
Serial ports
Serial ports
Connectors
Serial port RJ-45
Serial port RJ-45
Serial port RJ-45
Number
Connector
Serial port RJ-45
Serial port RJ-45
Serial port RJ-45
Number
Type
Ethernet: IEEE 802.3,

10BaseT
Fast Ethernet: IEEE
802.3U, 100BaseT

10BaseT
Fast Ethernet: IEEE
802.3U, 100BaseT

10BaseT
Fast Ethernet: IEEE
802.3U, 100BaseT
Gigabit Ethernet: IEEE
802.ab, 1000BaseT
Connector
RJ-45
RJ-45
RJ-45
4.45 x 22.23 x 20.32 cm

1U form factor
(1.75 x 8.75 x 8.00 in)
4.45 x 22.23 x 20.32 cm

1U form factor
(1.75 x 8.75 x 8.00 in)
4.45 x 44.45 x 25.40 cm

1U form factor
(1.75 x 17.50 x 10.00 in)
Weight (without cables) 5 lbs (2.3 kg)
5 lbs (2.3 kg)
7 lbs (3.2 kg)
Heat Dissipation
75 BTU/hr
102 BTU/hr
205 BTU/hr
Airflow
2.5 cfm
2.5 cfm
14 cfm
Power Consumption
22 W
30 W
60 W
Device Ports
Console Port
Network Connection
Dimensions
HxWxD
118
Table A.1: CCM Appliance Technical Specifications (Continued)

Item
CCM850 Appliance
CCM1650 Appliance
CCM485x Appliance
AC-input power
45 W maximum
45 W maximum
90 W maximum
AC-input maximum
90 to 267 VAC
90 to 267 VAC
100 to 240 VAC
AC-input current rating
0.5 A
0.5 A
1 A maximum
AC-input cable
18 AWG three-wire cable, with a three-lead IEC-320 receptacle on the power supply
end and a country dependent plug on the power resource end
Frequency
50 to 60 Hz
50 to 60 Hz
50 to 60 Hz
Temperature
Operating
0o to 40o Celsius
0o to 40o Celsius
0o to 55o Celsius
(32 to 104 Fahrenheit)
(32 to 104 Fahrenheit)
(32o to 131o Fahrenheit)
Temperature
Nonoperating
-20o to +65o Celsius
(-4o
(-4o
(-40o to +158o Fahrenheit)
to
+149o Fahrenheit)
to
+149o
Fahrenheit)
Humidity
10% to 90%
noncondensing
10% to 90%
noncondensing
10% to 90%
noncondensing
Safety and EMC

Approvals and
Markings
ANSI/UL 60950-1, CSA C22.2 No. 60950-1-CAN/CSA (UL cUL Listed),

IEC 60950-1 (2001-10), CENELEC EN 60950-1
Regulatory
Compliance
FCC P. 15 Class A, ICES-003, EN 55022: 1998 Class A, EN 61000-3-3, AS/NZS

CISPR 22, CNS 13438 - Issued: 1997/01/01, VCCI V-3/02.04 Class A,
EN 55024-1998
The products herewith comply with the requirements of the Low Voltage Directive,
73/23/EEC and the EMC Directive 89/336/EEC, including amendments by the CEmarking Directive 93/68/EEC
Appendices
119
Appendix B: Device Cabling

Each CCM appliance serial port has an RJ-45 connector for attaching a serial device. Table B.1
lists the pin assignments.
Table B.1: Port Pin Assignments
Pin Number
RS-232 Signal
Direction
Description
RTS
Output
Request to Send
DSR
Input
Data Set Ready
DCD
Input
Data Carrier Detect
RD
Input
Receive Data
TD
Output
Transmit Data
GND
(N/A)
Signal Ground
DTR
Output
Data Terminal Ready
CTS
Input
Clear to Send
NOTE: RI (Ring Indicate) is not supported
Modular adaptors are available to convert RJ-45 modular jacks to standard pinout configurations.
Adaptors are available for use with:
CAT 5 cable (and CAT 6 cable for CCM485x appliances).
Serial reversing cable. Reversing adaptors and cables are recommended for distances greater
than 100 feet.
Adaptors for use with CAT 5 and CAT 6 cable

Table B.2 lists the adaptors available for use with CAT 5 and CAT 6 cable.
Table B.2: Adaptors for Use with CAT 5 and CAT 6 Cable
Part Number
Description
210122
RJ-45 to DB-9M (DTE) Adaptor
210120
RJ-45 to DB-9F (DCE) Adaptor
210124
210123
RJ-45 to DB-25M (DCE) Adaptor
210125
RJ-45 to DB-25F (DTE) Adaptor
210121
120
Table B.2: Adaptors for Use with CAT 5 and CAT 6 Cable (Continued)
Part Number
Description
210127
RJ-45 to RJ-45 Male Adaptor for Cisco and Sun Netra console port
750238
CAT 5 Serial Starter Kit - includes all the above adaptors
Figure B.1 shows the pin assignments for the adaptors listed in Table B.2.
Appendices
RJ-45 8 pin
RJ-45 8 pin
DB-9 DCE
DB-25 DCE
CTS
RTS
CTS
RTS
DTR
DCD
DTR
DCD
DSR
DSR
GND
GND 6
GND
RD
TD
RD
TD
GND 6
TD
RD
TD
RD
DCD 3
DTR
DCD 3
DSR 2
RTS
20 DTR
DSR 2
8
CTS
CTS
210121 and 210123
210120
RJ-45 8 pin
RTS
RJ-45 8 pin
DB-9 DTE
DB-25 DTE
CTS
CTS
CTS
DTR
DTR
DTR
20 DTR
GND 6
GND
GND 6
GND
TD
TD
TD
TD
RD
RD
RD
RD
DCD 3
DCD
DCD 3
DCD
DSR 2
DSR
DSR 2
DSR
RTS
RTS
RTS
RTS
210124 and 210125
210122
RJ-45 Male
RJ-45 Female
CTS
DSR 7
DTR
GND 5
GND
RD
TD
TD
RD
GND 4
CD
DTR
DSR
CTS
RTS
RTS
210127
Figure B.1: CAT 5 and CAT 6 Cable Adaptor Pin Assignments
CTS
121
122
Reversing adaptors and cables

Table B.3 lists the reversing adaptors and reversing cables available for the appliance.
Table B.3: Reversing Adaptors and Cables
Part Number
Description
210094
210095
210090
210092
RJ-45 to DB-25M (DCE) Adaptor
210091
RJ-45 to DB-25F (DTE) Adaptor
210093
210105
RJ-45 to RJ-45 Male Adaptor for Cisco and Sun Netra console port
690226
10 foot 8-wire Reversing Modular Cable
690227
690228
750122
Wiring Starter Kit (8-wire) - includes all the above adaptors and one 690226 cable
Figure B.2 shows the pin assignments for the adaptors listed in Table B.3.
Appendices
RJ-45 8 pin
RJ-45 8 pin
DB-9 DTE
DB-25 DTE
RTS
RTS
RTS
DSR 7
DSR
DSR 7
DSR
CD
CD
CD
CD
RD
RD
RD
RD
TD
TD
TD
TD
GND
RTS
GND 3
GND
GND 3
DTR
DTR
DTR
20 DTR
CTS
CTS
CTS
210090 and 210091
210094
RJ-45 8 pin
CTS
DB-9 DCE
RJ-45 8 pin
DB-25 DCE
CTS
RTS
DSR 7
DTR
DSR 7
CD
DSR
CD
DSR
RD
TD
RD
TD
TD
RD
TD
RD
GND 3
GND
GND 3
GND
DTR
CD
DTR
CD
CTS
RTS
CTS
RTS
RTS
20 DTR
210092 and 210093
210095
RJ-45 Male
RJ-45 Female
CTS
DSR 7
DTR
GND 6
GND
RD
TD
TD
RD
GND 3
CD
DTR
DSR
CTS
RTS
RTS
210105
Figure B.2: Reversing Cable Adaptor Pin Assignments
CTS
123
124
If you choose to use a third party reversing cable, make sure the cable is reversing, as shown in
Figure B.3.
8-WIRE
RTS
DSR
CD
RD
TD
GND
DTR
CTS
1
2
3
4
5
6
7
8
8
7
6
5
4
3
2
1
CCM Port
Modular Adaptor
Figure B.3: 8-wire RJ-45 Reversing Cable
RTS
DSR
CD
RD
TD
GND
DTR
CTS
Appendices
125
Appendix C: Supported Traps

The CCM appliance supports the following MIB2 traps:
authenticationFailure
linkUp
linkDown
coldStart
Table C.1 lists the supported enterprise traps. The Avocent web site (www.avocent.com) contains
the complete trap MIB.
Table C.1: CCM Appliance Enterprise Traps
Trap
Description and Variable(s)
AggregatedServer
StatusChanged
The status of one or more servers (connections paths) has changed. The
appliance always sends this trap upon bootup. Thereafter, it sends the trap when
there is a change in connection path status, and will include only those paths
whose status has changed.
Variable(s): connection path(s)
ConfigurationFile
Loaded
The CCM appliance has loaded a configuration file. This trap applies to
AVWorks software.
Variables: initiating username and name of loaded file
FactoryDefaultsSet
The CCM appliance has received a command to set itself to factory default
values. (The appliance sends this trap after receiving the command, but before
actually reverting to factory default values.)
ImageUpgradeResults
An image upgrade has ended.

Variables: result (successful or error code), initiating username, image type (boot
or application), upgrade version number and running version number (if the
upgrade was successful, the two version numbers will match)
ImageUpgradeStarted
The CCM appliance has started an image upgrade.

Variables: initiating username, image type (boot or application), new version
number, current version number
NFSDisableRqstd
A request has been made to disable NFS.

Variable: requesting username
NFSEnableRqstd
A request has been made to enable NFS.

Variable: requesting username
NFSMountedOK
NFS is enabled and the mount operation has completed successfully.
NFSMountFailedGaveUp
NFS is enabled but repeated mount attempts have failed. No additional mount
retries will be performed.
Variables: primary and secondary NFS error codes (see NFS Error Codes and
Port Status on page 131)
126
Table C.1: CCM Appliance Enterprise Traps (Continued)

Trap
NFSMountFailed
Retrying
NFS is enabled and the first mount attempt failed. Additional mount retries are
still being performed.
NFS is enabled and a mount completed successfully. That mount was lost and the
first attempt to reestablish that mount has now failed. Additional retries are being
NFSMountLost1stRetryFail
performed.
ed
NFSMountLostGaveUp
NFS is enabled and a mount completed successfully. That mount was lost and
repeated attempts to reestablish that mount have failed. No addition mount
retries will be performed.
NFSMountLostRetrying
NFS is enabled and a mount completed successfully; however, that mount has
now been lost and is being retried.
NFSMountVerifiedOK
NFS is enabled and has successfully verified the mount in response to a

subsequent NFS Enable command.
NFSPortDisableRqstd
An NFS Port Disable command has been issued.

Variables: initiating username and CCM appliance port number
NFSPortEnableRqstd
An NFS Port Enable command has been issued.

Variables: initiating username and CCM appliance port number
NFSPortFileClosed
NFS has closed the history file on the NFS server.

Variable: CCM appliance port number
NFSPortFileOpenOK
NFS is enabled on the port and has successfully opened the history file on the
NFS server.
NFSPortNeedsMount
NFS is enabled on the port, but a mount is required (using an NFS Enable
command) before the port can open and/or write to the history file on the
NFS server.
Variables: CCM appliance port number, port error status (see NFS Error Codes
and Port Status on page 131) plus primary and secondary NFS error codes (see
NFS Error Codes and Port Status on page 131)
Appendices
127

Trap
NFSPortNoRecent
Errors
NFS server; however, an NFSPortWriteError and/or an NFSPortOverrunError
trap was previously sent for that port. A successful write to the file has since been
performed and 15 minutes have subsequently elapsed without any errors being
encountered.
NFSPortOpenFailGaveUp
NFS is enabled on the port, but repeated attempts to open the history file on the
NFS server have failed. No additional file open retries will be performed.
Variables: CCM appliance port number, port error status (see NFS Port Status
Values on page 137) plus primary and secondary NFS error codes (see NFS
Error Codes on page 131)
NFSPortOpenFail
Retrying
NFS is enabled on the port, but the first attempt to open the history file on the
NFS server has failed. Additional file open retries are being performed.
Error Codes and Port Status on page 131)
NFSPortOverrunError
NFS server; however, an overrun error occurred when writing to that file.
NFSPortWriteError
NFS server; however, an error occurred when writing to that file.
NFSUnmountedOK
NFS is disabled and the unmount operation has completed successfully.
PortAlert
The CCM appliance detected a port alert string on a serial port.

Variables: server name, port number and port alert string
PortPowerOffDetect
The CCM appliance detected that a ports power on/off control signal is in the
state indicating power is off. This trap is sent upon initialization if the condition is
detected. Subsequent traps are sent only if this signal changes state.
Variables: server name and port number
PortPowerOnDetect
The CCM appliance detected that a ports power on/off control signal is in the
state indicating power is on. This trap is sent upon initialization if the condition is
detected. Subsequent traps are sent only if this signal changes state.
Variables: server name and port number
RebootStarted
The CCM appliance is rebooting.

Variable: initiating username
128

Trap
SerialSessionStarted
A serial session has started.

Variables: username, server name and port number
SerialSessionStopped
A serial session has stopped.

Variables: username, server name and port number
SerialSession
Terminated
Another user has terminated a serial session.

Variables: initiating username, terminated username, server name and port
number
SolPortAdded
An SoL port has been added.
SolPortDeleted
An SoL port has been deleted.
SolPortLcm
Communication has been lost with an SoL port.
SolPortNameChanged
An SoL port name has been changed.
SolPortRcm
Communication has been regained with an SoL port.
SolSessionTerminated
An SoL session has been terminated.
SolStart
An SoL session has started.
SolStopped
An SoL session has stopped.
SpcDeviceNameChanged
An SPC device name has been changed.
SpcDeviceOffline
An SPC device is offline.

Variables: SPC device location name and CCM appliance port number
SpcDeviceOnline
An SPC device is online.

SpcInletNameChanged
An SPC device inlet name has been changed.
SPCInletTotalLoadHigh
An SPC device inlet total high load threshold has been reached.
SpcInletTotalLoadLow
An SPC device inlet total low load threshold has been reached.
SpcLoginErr
The CCM appliance was unable to log in to the SPC device using the username
configured in the appliance.
Variables: SPC device location, CCM appliance port number and username
SpcSocketNameChanged
An SPC device socket name has been changed.
SpcSocketOff
Command
A command was issued to turn off an SPC device socket.

Variables: username who issued the command, name of server attached to SPC
device socket, SPC device location name, CCM appliance port number and SPC
device socket number
Appendices
129

Trap
SpcSocketOffSenseFail
An SPC device has detected an off sense failure for a socket. This occurs when
a socket should be in the off state, but is actually in the on state.
Variables: name of server attached to the SPC device socket, SPC device
location name, CCM appliance port number and SPC device socket number
SpcSocketOn
Command
A command was issued to turn on an SPC device socket.

Variables: username who issued the command, name of server attached to SPC
device socket, SPC device location name, CCM appliance port number and SPC
device socket number
SpcSocketOnSenseFail
An SPC device has detected an on sense failure for a socket. This occurs when
a socket should be in the on state, but is actually in the off state.
SpcSocketReboot
Command
A command was issued to reboot an SPC power control device socket.

Variables: username who issued the command, name of server attached to the
SPC device socket, SPC device location name, CCM appliance port number and
SPC device socket number
SpcStatusSocketOff
An SPC device socket has changed to the off state.

SpcStatusSocketOn
An SPC power control device socket has changed to the on state.

SpcTotalLoadHigh
An SPC device has exceeded the maximum threshold for total load amperage.
SpcTotalLoadLow
The total load amperage on an SPC device has gone below the
minimum threshold.
TdTypeChanged
A target device type has been changed.
UserAdded
A new user has been added to the CCM appliance user database.
Variables: initiating username and new username
UserAuthentication
Failure
A user failed to authenticate with the CCM appliance.

Variable: username
UserDatabaseFile
Loaded
The CCM appliance has loaded a user database file. This trap applies to
AVWorks software.
Variables: initiating username and name of loaded file
UserDeleted
A user has been deleted from the CCM appliance user database.
Variables: initiating username and deleted username
130

Trap
UserLocked
A user account has been locked.

Variables: client IP address, locked username and reason
UserLogin
A user logged in to the CCM appliance.

Variable: username
UserLogout
A user logged out of the CCM appliance.

Variable: username
UserModified
A users definition has been modified in the CCM appliance user database.
Variables: initiating username and modified username
UserUnlocked
A user account has been unlocked.

Variables: client IP address, initiating username, unlocked username and reason
Appendices
131
Appendix D: NFS Error Codes and Port Status

Table D.1 describes the error codes that may be reported by the CCM appliance for NFS history
file operations. Your display may also have additional descriptive information.
Table D.1: NFS Error Codes
Error
Code
Description
An unidentified error was encountered. Check the console output for possible additional information.
Internal CCM mount or unmount error.
The file type is incompatible with the port filename.
A port history filename error occurred.
A port history file write error occurred.
A port history file overrun error occurred.
From the remote procedure call: arguments cannot be encoded.
From the remote procedure call: the result cannot be decoded.
From the remote procedure call: unable to send.
10
From the remote procedure call: unable to receive.
11
From the remote procedure call: a time-out occurred.
12
From the remote procedure call: RPS versions were incompatible.
13
From the remote procedure call: an authentication error occurred.
14
From the remote procedure call: a program was unavailable.
15
From the remote procedure call: a program/version mismatch occurred.
16
From the remote procedure call: a procedure was unavailable.
17
From the remote procedure call: the server cannot decode the arguments.
18
From the remote procedure call: a remote system error occurred.
19
From the remote procedure call: an unknown host was encountered.
20
From the remote procedure call: a port mapper failure occurred.
21
From the remote procedure call: the program was not registered.
22
From the remote procedure call: the RPC failed due to an unspecified error.
23
From the remote procedure call: an unknown protocol was encountered.
132
Table D.1: NFS Error Codes (Continued)

Error
Code
Description
24
From the remote procedure call: an unspecified error occurred.
25
From the remote procedure call: the remote address was unknown.
26
27
From the remote procedure call: broadcasting is not supported.
28
From the remote procedure call: the name-to-address translation failed.
29
30
From the remote procedure call: an asynchronous error occurred.
31
From the remote procedure call: an asynchronous error occurred.
32
The operation was not permitted.
33
No such file or directory could be located.
34
An I/O error occurred.
35
No such device or address could be located.
36
A bad file number was encountered.
37
Out of memory.
38
Permission was denied.
39
The file already exists.
40
A cross-device link was encountered.
41
No such device could be located.
42
The specification is not a directory.
43
The specification is a directory.
44
An invalid argument was encountered.
45
The file was too large.
46
There is no space left on the device.
47
This is a read-only file system.
48
There were too many links.
49
The network is down.
Appendices
133

Error
Code
Description
50
The network is unreachable.
51
The network dropped the connection because of a reset.
52
The software caused a connection abort.
53
The connection was reset by a peer.
54
No buffer space is available.
55
The transport endpoint is already connected.
56
The transport endpoint is not connected.
57
Cannot send after a transport endpoint shutdown.
58
The connection timed-out.
59
The connection was refused.
60
The host is down.
61
There is no route to the host.
62
A stale NFS file handle was encountered.
63
The operation was not allowed because the caller is either not a privileged user (root) or not the
owner of the operations target.
64
The specified file or directory name does not exist.
65
A hard I/O error (such as a disk error) occurred while processing the requested operation.
66
The specified device or address does not exist.
67
The operation was not allowed because the caller does not have the correct permission to perform
the requested operation. (This error differs from error 63, which is restricted to owner or privileged
user permission failures.)
68
The specified file already exists.
69
For NFSv3: an attempt was made to perform a cross-device hard link.

For NFSv4: an attempt was made to perform an operation between different FSIDs.
70
The specified device could not be located.
71
The caller specified a non-directory in a directory operation.
72
The caller specified a directory in a non-directory operation.
134

Error
Code
Description
73
An invalid argument or unsupported argument was supplied for an operation. For example,
attempting a READLINK on an object other than a symbolic link.
NFSv3 example: attempting to SETATTR with a time field on a server that does not support the
operation. NFSv4 example: specifying a value for an enum field that is not defined in the protocol
(such as nfs_ftype4).
74
For NFSv2: The operation caused a file to grow beyond the servers limit.
For NFSv3 and NFSv4: The operation would have caused a file to grow beyond the servers limit.
75
For NFSv2: The operation caused the servers file system to reach its limit.
For NFSv3 and NFSv4: The operation would have caused the servers file system to exceed its limit.
76
For NFSv2: A write operation was attempted on a read-only file system.

For NFSv3 and NFSv4: A modifying operation was attempted on a read-only file system.
77
For NFSv3 and NFSv4: Too many hard links exist.
78
The filename in the operation was too long.
79
An attempt was made to remove a directory that was not empty.
80
For NFSv2: The clients disk quota on the server has been exceeded.
For NFSv3 and NFSv4: The users resource limit on the server has been exceeded.
81
The file handle specified in the arguments was invalid - it either no longer exists or access to it has
been revoked.
82
The file handle specified in the arguments referenced a file on a nonlocal file system on the server
(that is, there were too many levels of remote in the path).
83
The servers write cache used in the WRITECACHE call was flushed to the disk.
84
The file handle failed internal consistency checks.
85
An update synchronization mismatch was detected during a SETADDR operation.
86
For NFSv3, the READDIR or READDIRPLUS cookie is stale.

For NFSv4, the READDIR cookie is stale.
87
The operation is not supported.
88
For NFSv3: the buffer or request is too small.

For NFSv4: the encoded response to a READDIR request exceeds the size limit set by the initial request.
89
An error occurred n the server which does not map to any of the legal NFS protocol error values. The
client should translate this into an appropriate error. UNIX clients may choose to translate this to EIO.
90
An attempt was made to create an object of a type not supported by the server.
Appendices
135

Error
Code
Description
91
The server initiated the request, but was not able to complete in a timely manner. The client should
wait and then try the request with a new RPC transaction ID. For example, this error should be
returned from a server that supports hierarchical storage and receives a request to process a file that
has been migrated. In this case, the server should start the immigration process and respond to the
client with the error.
For NFSv4: this error may also occur when a necessary delegation recall makes processing a
request in a timely manner impossible.
92
The attributes compared were the same as provided in the clients request. This error is returned by
the NVERIFY operation.
93
An attempt to lock a file was denied. Since this may be a temporary condition, the client is
encouraged to retry the lock request until the lock is accepted.
94
A lease has expired that is being used in the current operation.
95
A read or write operation was attempted on a locked file.
96
The server is in its recovery or grace period, which should match the servers lease period.
97
The file handle provided is volatile and has expired at the server.
98
At attempt to OPEN a file with a share reservation has failed because of a share conflict.
99
The security mechanism being used by the client for the operation does not match the servers
security policy. The client should change the security mechanism being used and retry the operation.
100
The SETCLIENTID operation has found that a client ID is already in use by another client.
101
The server has exhausted available resources while processing the COMPOUND procedure, and
cannot continue processing operations within the COMPOUND procedure.
102
The file system that contains the current file handle object has been relocated or migrated to another
server. The client may determine the new file system location by obtaining the fs_locations attribute
for the current file handle.
103
The logical current file handle value (or the saved file handle value in the case of RESTOREFH) has
not been properly set. This may have resulted from a malformed COMPOUND operation (that is, no
PUTFH or PUTROOTFH before an operation that requires the current file handle to be set).
104
The server has received a request that specifies an unsupported minor version. The server must
return a COMPOUND4res with a zero length operation result array.
105
A client ID not recognized by the server was used in a locking or SETCLIENTID_CONFIRM request.
106
A state ID generated by an earlier server instance was used.
107
A state ID that designates the locking state for a lockowner-file at an earlier time was used.
136

Error
Code
Description
108
A state ID generated by the current server instance (that does not designate any locking state either
current or superseded) for a current lockowner-file pair was used.
109
The sequence number in a locking request is neither the next expected number nor the last
number processed.
110
The attributes compared were not the same as provided in the clients request. This error is returned
by the VERIFY operation.
111
A lock request is operating on a sub-range of a current lock for the lock owner and the server does
not support this type of request.
112
The current file handle provided for a LOOKUP is not a directory but a symbolic link. This error is
also issued if the final component of the OPEN path is a symbolic link.
113
The RESTOREFH operation does not have a saved file handle (identified by SAVEFH) to operate on.
114
A lease being renewed is associated with a file system that has been migrated to a new server.
115
A specified attribute is not supported by the server. This does not apply to the GETATTR operation.
116
A reclaim of the client state has fallen outside of the servers grace period. As a result, the server
cannot guarantee that a conflicting state has not been provided to another client.
117
The reclaim provided by the client does not match any of the servers state consistency checks and
is bad.
118
The reclaim provided by the client has encountered a conflict and cannot be provided. This could
indicate a misbehaving client.
119
The server encountered an XDR decoding error while processing an operation.
120
A CLOSE was attempted and file locks would exist after the CLOSE.
121
The client attempted a READ, WRITE, LOCK or SETATTR operation that was not sanctioned by the
state ID passed (for example, writing to a file opened only for reading).
122
An owner, owner group or ACL attribute value cannot be translated to local representation.
123
A UTF-8 string contains a character that is not supported by the server in the context in which it is
being used.
124
A name string in a request contains valid UTF-8 characters supported by the server, but the name is
not supported by the server as a valid name for the current operation.
125
The range for a LOCK, LOCKT or LOCKU operation is not appropriate for the allowable range of
offsets for the server.
126
The server does not support the atomic upgrade or downgrade of locks.
Appendices
137

Error
Code
Description
127
An illegal operation value has been specified in the arg op field of a COMPOUND or
CB_COMPOUND procedure.
128
The server determined a file locking deadlock condition for a blocking lock request.
129
The operation cannot be successfully processed because a file used in the operation is currently open.
130
Due to administrator intervention, the lock owners record locks, share reservations and delegations
have been revoked by the server.
131
The callback path is down.
132
The NFS server does not support the TCP protocol for this service. To resolve this, issue an NFS
Enable command with the Protocol=UDP parameter.
9999
No error.
NFS port status values

Table D.2 describes the port status values that may be reported by the CCM appliance for NFS
history file operations.
Table D.2: NFS Port Status Values
Value
Description
Mount needed
Error opening history file - still retrying
Error opening history file - gave up
Current write error encountered (on most recent write to file)
Recent write error encountered (most recent write succeeded)
Current overrun encountered and no recent write errors have occurred (unable to write to the file
fast enough)
Recent overrun encountered and no recent write errors have occurred (unable to write to the file
fast enough)
9999
No recent errors
138
Appendix E: Using the BMU

There are two ways to use the BMU.
From the CCM appliance CLI, you may use the IPMI command to access the BMU.
If no SoL connection is established, or if no virtual port name is specified with the command, you will be prompted for server login information, including the IP address, username and password. If you issue the IPMI command with a valid virtual port name and the
configured login credentials are correct, an IPMI session will be established to the
specified BMC.
If you are serially connected to a valid virtual port, typing IPMI at the command prompt
will establish an IPMI session to that port. Typing IPMI <port_name> will establish an
IPMI session to the specified port, which is not necessarily the same port to which you
are connected.
After you have accessed the BMU, the BMU> prompt appears and you may issue
BMU commands.
When you are finished, exit the BMU to return to the CCM appliance CLI.
From the CCM appliance CLI, you may use an IPMI shortcut command. A shortcut
command accesses the BMU on a specified virtual port, passes a BMU command and then
returns to the CCM appliance CLI.
The IPMI shortcut commands condense the Access BMU -> Issue BMU command -> Exit
BMU three-command sequence to one command.
To use the IPMI shortcut commands, the virtual port must already be configured (Port Add/Set
command) with a valid IP address, username and password. Additionally, the BMU must not
already have four existing IPMI connections.
IPMI shortcut commands are available for all BMU commands except Exit, Help and Quit.
BMU and IPMI shortcut command summary

NOTE: The specific action taken or the display provided from these commands is server dependent.
Table E.1: IPMI Shortcut and BMU Command Summary
Command
IPMI Shortcut ?
Description
Alert
Yes
Enables/disables the sending of SNMP traps by the BMC to destinations

specified with the Pet command.
Exit
No
Ends the BMU command session and returns you to the CCM appliance
CLI prompt.
Help
No
Displays information about BMU commands.
Identify
Yes
Controls the LED on the servers front panel.
Appendices
139
Table E.1: IPMI Shortcut and BMU Command Summary (Continued)

Command
IPMI Shortcut ?
Description
Pet
Yes
Displays or configures IPMI SNMP trap gateway and

destination information.
Power
Yes
Controls power state of the server.
Quit
No
Ends the BMU command session and returns you to the CCM appliance
CLI prompt.
Sel
Yes
Performs operations on the system event log (SEL).
Sensor
Yes
Displays sensor information.
Sol
Yes
Displays SoL configuration information, enables and configures SoL or

disables SoL.
Sysinfo
Yes
Displays server Field Replaceable Unit (FRU) or BMC information.
User
Yes
Displays or configures a users username, password and/or privilege.
Command conventions
The IPMI shortcut commands require the same access rights/access level as the IPMI command:
PCON or SCON access rights, or ADMIN or APPLIANCEADMIN access level.
The BMU command keywords and parameters must be entered in their entirety - there are no valid
abbreviations. If you are using an IPMI shortcut command, you may abbreviate the keyword IPMI
to IPM, but other keywords and parameters cannot be abbreviated.
Command keywords are not case sensitive.
The following command descriptions may contain two Syntax headings.
The Syntax - IPMI shortcut command indicates what you would enter at the CCM appliance
CLI prompt.
The Syntax - BMU command assumes you have already accessed the BMU of the desired
virtual port, and indicates what you would enter at the BMU> prompt.
Alert command
The Alert command enables or disables the sending of SNMP traps by the BMC to the
destination(s) specified with the Pet command.
Syntax - IPMI shortcut command
IPMI <port_name> ALERT ENABLE

IPMI <port_name> ALERT DISABLE
Syntax - BMU command
ALERT ENABLE
ALERT DISABLE
140
Table E.2: IPMI Shortcut and BMU Alert Command Parameters

Parameter
Description
<port_name>
Virtual port name.
ENABLE
Enables the sending of SNMP traps.
DISABLE
Disables the sending of SNMP traps.
Exit command
The Exit command ends the BMU command session and returns you to the CCM appliance CLI
prompt. This command is equivalent to the BMU Quit command.
EXIT
Help command
The Help command displays information about BMU commands. If no parameter is specified,
general syntax is provided for all commands.
HELP [<command>]
Table E.3: BMU Help Command Parameter
Parameter
Description
command
BMU command name.
Identify command
The Identify command controls the LED on the servers front panel.
IPMI <port_name> IDENTIFY ON [-T <seconds>]

IPMI <port_name> IDENTIFY OFF
IDENTIFY ON [-T <seconds>]

IDENTIFY OFF
Table E.4: IPMI Shortcut and BMU Identify Command Parameters
Parameter
Description
<port_name>
Virtual port name.
Appendices
141
Table E.4: IPMI Shortcut and BMU Identify Command Parameters (Continued)
Parameter
Description
ON
Turns on the LED. If the BMC supports the IPMI extension Chassis Identify On
command, this parameter turns the LED on until an Identify Off command is issued.
Otherwise, the LED will be turned on for the number of seconds specified with the -T
<seconds> parameter or (if the -T <seconds> parameter is omitted) 255 seconds.
-T <seconds>
Number of seconds, in the range 1-255, the LED will be turned on.
OFF
Turns off the LED.
Pet command
The Pet command displays or configures SNMP trap gateway and destination information.
IPMI <port_name> PET [CONFIG [-DEST<x> <destip>] [-GW <gateway>]]

PET [CONFIG [-DEST<x> <destip>] [-GW <gateway>]]

Table E.5: IPMI Shortcut and BMU Pet Command Parameters
Parameter
Description
<port_name>
Virtual port name.
CONFIG
Introduces one or more configuration parameters.
-DEST<x> <destip>
Destination number (1-4) and the SNMP trap destination IP address. Up to four
destinations may be configured.
-GW <gateway>
SNMP trap gateway.
Power command
The Power command displays or controls the servers power state.
IPMI <port_name> POWER ON

IPMI <port_name> POWER CYCLE
IPMI <port_name> POWER STATUS
IPMI <port_name> POWER RESET
IPMI <port_name> POWER OFF [-FORCE]
POWER ON
POWER CYCLE
142
POWER STATUS
POWER RESET
POWER OFF [-FORCE]
Table E.6: IPMI Shortcut and BMU Power Command Parameters
Parameter
Description
<port_name>
Virtual port name.
ON
Powers the server on.
CYCLE
Powers the server off, then on.
STATUS
Displays the current status (on or off).
RESET
Pulses the servers reset signal, regardless of the current state.
OFF
Issues a graceful shutdown IPMI command.
-FORCE
Simulates pressing the servers power button and forces the system off.
Quit command
The Quit command ends the BMU command session and returns you to the CCM appliance CLI
prompt. This command is equivalent to the BMU Exit command.
QUIT
Sel command
The Sel command performs operations on the system event log.
IPMI <port_name> SEL CLEAR

IPMI <port_name> SEL STATUS
IPMI <port_name> SEL SET -TIME <time>
IPMI <port_name> SEL GET [-BEGIN <index1>] [-MAX <count>] [-END <index2>]
[-LAST <n>]
SEL CLEAR
SEL STATUS
SEL SET -TIME <time>
SEL GET [-BEGIN <index1>] [-MAX <count>] [-END <index2>] [-LAST <n>]
Appendices
143
Table E.7: IPMI Shortcut and BMU Sel Command Parameters

Parameter
Description
<port_name>
Virtual port name.
CLEAR
Removes all records in the SEL.
STATUS
Displays the total number of records in the SEL.
TIME <time>
Specifies a point in time as the timestamp value. The valid format is:
YYYY/MM/DD hh:mm:ss
This format must be followed exactly: a four-digit year, a two-digit month and a two-digit
day, delimited with forward slashes (/), followed by a space, then a two digit hour,
minute and second, delimited with colons (:).
GET
Display all or part of the SEL.
-BEGIN <index1>
First record to be displayed.
-MAX <count>
Maximum number of records to display. If this value is larger than the total number of
records, this option will not apply and the last record displayed will be the last one in the
event log.
-END <index2>
Last record to be displayed.
-LAST <n>
Number of records to be displayed, beginning from the last record and counting back.
Sensor command
The Sensor command displays current sensor information in the following format:
<sensor_name> | <sensor_type> | <sensor_#> | <status> [|<value> | <units>]
IPMI <port_name> SENSOR [-F <threshold>] [<group>]

SENSOR [-F <threshold>] [<group>]

Table E.8: IPMI Shortcut and BMU Sensor Command Parameters
Parameter
Description
<port_name>
Virtual port name.
144
Table E.8: IPMI Shortcut and BMU Sensor Command Parameters (Continued)
Parameter
Description
-F <threshold>
Displays sensors that are at or above the specified threshold. For example, setting the
threshold to CR will display all sensors with critical, non-recoverable and unspecified
conditions. Valid values and their hierarchy are:
OK
Operating in normal ranges.
NC
Non-critical condition caused by a sensor outside of its normal ranges.
CR
Critical (potentially fatal) condition caused by a sensor exceeding its
specified ratings.
NR
Non-recoverable condition that has potential to damage hardware.
US
Unspecified status indicating a fault with unknown severity.
<group>
Sensor group. If omitted, all groups for which information is available will be displayed.
Valid values are TEMP, FAN, VOLT, DISCRETE and NUMERIC.
Sol command
The Sol command displays current SoL configuration information, enables and configures SoL or
disables SoL.
When you configure a target server using the Sol command, the specified baud rate must match the
equivalent BIOS setting for the target server. These values set the baud rate for a serial port that is
used by the target operating system to provide the data to the SoL logic in the BMC on the target
server. When these baud rates do not match, serial data will not be transmitted or received correctly
across the SoL connection.
IPMI <port_name> SOL

IPMI <port_name> SOL ENABLE [CONFIG [-BAUD <baud>] [-PRIV <priv>]
[-RETRYCOUNT <count>] [-RETRYINTERVAL <interval>]]
IPMI <port_name> SOL DISABLE
SOL
SOL ENABLE [CONFIG [-BAUD <baud>] [-PRIV <priv>] [-RETRYCOUNT <count>]
[-RETRYINTERVAL <interval>]]
SOL DISABLE
Table E.9: IPMI Shortcut and BMU Sol Command Parameters
Parameter
Description
<port_name>
Virtual port name.
ENABLE
Enables SoL.
CONFIG
Appendices
Table E.9: IPMI Shortcut and BMU Sol Command Parameters (Continued)
Parameter
Description
-BAUD <baud>
Baud rate. Valid values are 9600, 19200, 38400, 57600 and 115200.
-PRIV <priv>
Minimum required privilege. Valid values are ADMIN, USER

and OPERATOR.
-RETRYCOUNT <count>
Session retry count.
-RETRYINTERVAL <interval>
Session retry interval, in half-seconds.
DISABLE
Disables SoL.
Sysinfo command
The Sysinfo command displays system information.
IPMI <port_name> SYSINFO FRU

IPMI <port_name> SYSINFO ID
SYSINFO FRU
SYSINFO ID
Table E.10: IPMI Shortcut and BMU Sysinfo Command Parameters
Parameter
Description
<port_name>
Virtual port name.
FRU
Displays FRU information.
ID
Displays BMC information.
User command
The User command displays or configures a users username, password and/or privilege.
IPMI <port_name> USER [CONFIG [<userx> [-NAME <username>]

[-PASSWORD <password>] [-PRIV <priv>]]]
USER [CONFIG [<userx> [-NAME <username>] [-PASSWORD <password>]

[-PRIV <priv>]]]
145
146
Table E.11: IPMI Shortcut and BMU User Command Parameters

Parameter
Description
<port_name>
Virtual port name.
CONFIG
userx
Name of user for whom credentials are being configured.
-NAME <username>
Username.
-PASSWORD <password>
Password.
-PRIV <priv>
Privilege. Valid values are admin, operator and user.
Appendices
Appendix F: Ports Used

Table F.1 lists the UDP and TCP port numbers used by the CCM appliance and the attached
servers/devices. The values assume a default configuration; some values are configurable.
Table F.1: Ports Used by CCM Appliance
Port Type and Number
Direction
Used for
TCP 22
Inbound on appliance
SSH2, if enabled
TCP 23
Telnet
UDP 69
Inbound on appliance and

outbound on device
TFTP
TCP/UDP 111
Outbound on device
NFS, if enabled
UDP 123
Outbound on device
NTP, if enabled
UDP 161
SNMP, if enabled
TCP/UDP 2049
Outbound on device
NFS, if enabled
UDP 3211
Secure protocol used by AVWorks software
TCP 3211
Secure protocol used by AVWorks software
TCP 3001-30xx
Telnet serial sessions with ports
TCP 3101-31xx
SSH serial sessions with ports
TCP 3871
Secure protocol used by DSView 3 software
TCP 3871
Outbound on appliance
Secure protocol used by DSView 3 software
147
148
Appendix G: Technical Support

Our Technical Support staff is ready to assist you with any installation or operating issues you
encounter with your Avocent product. If an issue should develop, follow the steps below for the
fastest possible service.
To resolve an issue:
1.
Check the pertinent section of the manual to see if the issue can be resolved by following the
procedures outlined.
2.
Check our web site at www.avocent.com/support to search the knowledge base or use the online service request.
3.
Call the Avocent Technical Support location nearest you.
149
INDE X
Index
A
Sel 142
Sensor 143
Access levels and rights
Sol 144
about 33
summary 138
changing 34, 114
Sysinfo 145
configuring 34, 112

displaying 34, 107
effect on session sharing 27
Adaptors
for use with CAT 5 cable 119
reversing 122
Alert command (BMU) 139
Authentication
configuring 38, 90
displaying configuration information 39, 106
summary 38
types 34
See also RADIUS
AV operation 2, 12
AVWorks software 2, 8
User 145
BootP 9
C
Cabling 119
CLI
accessing 51
changing the access character 30, 75, 81
displaying access character 105
displaying the access character 31
mode 30
Commands
abbreviations 53
Connect 61
conventions 52
Disconnect 62
BMC. See SoL
Group Add Port) 63
BMU commands
Alert 139
conventions 139
Exit 140
Help 140
Identify 140
Pet 141
Power 141
Quit 142
Group Delete 64
Group Set 64
Help 65
IPMI 65
line editing for ASCII TTY devices 52
line editing for VT100 compatible devices 51
NFS 66
NTP 67
Port Add 69
Port Alert Add 70
150
Port Alert Copy 71
Show Group 97
Port Alert Delete 71
Show NFS 98
Port Break 72
Show NTP 98
Port command summary 63, 68
Show Port 99
Port Delete 72
Show Server 104
Port History 73
Show Server CLI 105
Port Logout 73
Show Server LDAP 105
Port NFS 73
Show Server PPP 106
Port Refresh 75
Show Server RADIUS 106
Port Set 75
Show Server Security 106
Port Set In/Out 79
Show Server SNMP 107
Quit 80
Show User 107
Resume 80
SPC 109
Server CLI 81
SPC Socket 110
Server command summary 81
summary 55
Server Flash 83
syntax 52
Server Init 84
User Add 112
Server LDAP Auth 85
User command summary 111
Server LDAP Primary|Secondary 85
User Delete 113
Server LDAP Query 86
User Logout 113
Server LDAP Search 87
User Set 114
Server Ping 87
User Unlock 116
Server PPP 88
Configuration
Server RADIUS 89
IP address and subnet mask 8
Server Reboot 90
physical port settings 16
Server Security 90
virtual port settings 19
Server Set 92
See also Port
Server Share 92
Connect command 61
Server SNMP 93
Connection methods (Telnet and SSH) 27
Server SNMP Community 93
Console port
Server SNMP Manager 94
about connecting to device from 22
Server SNMP Trap 94
configuring 81
Server SNMP Trap Destination 95
specifying in commands 53
Server SSH 96
Show command summary 97
Conventions in commands 52
Index
Conversion (AV operation to/from DS operation)

12
Group Add Port command 63
Group Set command 64
Device cabling 119

Device connection methods
Group Delete command 64

Groups 18
about 21
Hardware installation 7
dial-in 23
Help command 65
ending device sessions 31
Help command (BMU) 140
from console port 22
History buffer
session time-out 31
about 40
using PPP 23
accessing port history mode 42, 73
using SSH 24
clearing and discarding contents 42
using Telnet 21
commands in history mode 41
Dial-in connections
controlling content when session ends 42, 81
about 23
controlling display at connection 42, 81

specifying modem initialization string 23, 81
displaying configuration information 105

History files (NFS)
Disconnect command 62
about 43
DS operation 2, 12
displaying information 46, 98
DSView 3 software 2
enabling on ports 44, 73
enabling on the CCM appliance 43, 66

error codes 131
Encryption
filenames 44
configuring 90
displaying configuration information 106
Exit command (BMU) 140
Identify command (BMU) 140
Initial login 10
Flash updating 12, 83
Installation
configuring address settings 8
hardware 7
Gateway
changing 92
configuring 8
displaying 104
151
IP address
changing 92
configuring 8
displaying 104
152
changing virtual port settings 20, 75
for a virtual port 19
command summary 63, 68
IPMI
configuring physical port settings 16, 75
using the IPMI shortcut and BMU commands

138
configuring virtual port settings 20, 69
IPMI command 65
default settings for physical ports 15
default settings for virtual ports 19

displaying settings 20, 99
LDAP
groups 18
about 36
name 53
configuring 38, 85, 86, 87
pin assignments 119
session time-out 31
Line editing operations
status values 137
ASCII TTY devices 52
used by appliance 147
VT100 compatible devices 51
See also History buffer, History files (NFS),

Virtual ports and SNMP
Lock-out. See Security lock-out

Login 10
Port Add command 69
Logout 73, 113
Port Alert Add command 70
Port Alert Copy command 71
Modem. See Dial-in connections

Modular adaptors
for use with CAT 5 cable 119
reversing 122
Port Alert Delete command 71

Port alert strings. See SNMP
Port Break command 72
Port Delete command 72
Port History command 73
Port Logout command 73
NFS command 66
Port NFS command 73
NFS. See History files (NFS)
Port Refresh command 75
NTP 14, 67, 98
Port Set command 75
NTP command 67
Port Set In/Out command 79

Power command (BMU) 141
PPP
Pet command (BMU) 141
about 23
Ping response 87
Plain text connections 27, 90
enabling/disabling server 24, 88
Port
Preemption 27
access 17
Index
153
Server Share command 92
Quit command 80
Quit command (BMU) 142
Server SNMP command 93

Server SNMP Community command 93
Server SNMP Manager command 94
Server SNMP Trap command 94
RADIUS
Server SNMP Trap Destination command 95
about 35
Server SSH command 96
configuring 38, 89, 90
Session

Reboot 11, 90
Reinitialization 11, 84
Resume command 80
ending 31, 73, 80, 113

sharing 27, 92
time-out 31, 75, 81, 105
Show command summary 97
Show Group command 97
Show NFS command 98
Security lock-out
Show NTP command 98
about 40
Show Port command 99
enabling/disabling 40, 90
unlocking a user 40, 116
Show Server CLI command 105

Show Server command 104
Sel command (BMU) 142
Show Server LDAP command 105
Sensor command (BMU) 143
Show Server PPP command 106
Serial over LAN. See SoL
Show Server RADIUS command 106
Server CLI command 81
Show Server Security command 106
Server command summary 81
Show Server SNMP command 107
Server Flash command 83
Show User command 107
Server Init command 84
SNMP
Server LDAP Auth command 85
about 46
Server LDAP Primary|Secondary command 85
adding port alert strings 48, 70
Server LDAP Query command 86
adding/deleting management addresses 47
Server LDAP Search command 87
adding/deleting trap destination addresses 95
Server Ping command 87
adding/deleting trap destinations 48
Server PPP command 88
copying port alert strings 48, 71
Server RADIUS command 89
deleting port alert strings 48, 71
Server Reboot command 90
Server Security command 90
displaying port alert string information 49
Server Set command 92
enabling/disabling 47, 93
154
enabling/disabling traps 48, 94
Telnet
specifying community names 47, 93
connections to devices 21
specifying management entity addresses 94

SoL
options 2
Time-out. See Session time-out
about 3
Commands
connection states 19, 101

enabling, disabling and configuring 144
Sol command (BMU) 144
SPC command 109
SPC device
See also BMU Commands

Traps 125
U
User accounts
access levels and rights 33
ports 16, 109
adding 32, 112
sockets 110
changing 32, 114
SPC Socket command 110
deleting 32, 113
SSH
displaying 32
about 24
displaying user information 107
authenticating users 25
disabling access 27, 96
enabling access 26, 27, 90, 96
server keys 24
user keys 26
Statistics
predefined 10
User Add command 112
User command (BMU) 145
User command summary 111
User Delete command 113
User Logout command 113
network 104
User Set command 114
port 99
User Unlock command 116
Subnet mask
changing 92
configuring 8
displaying 104
Sysinfo command (BMU) 145
V
Virtual ports
about 1
accessing 3
adding 20, 69
attempting reconnection 75
Technical
deleting 20, 72
specifications 117
support 148
displaying 101
settings 19
USA Notification
Warning: Changes or modifications to this unit not expressly approved by the party responsible for compliance
could void the users authority to operate the equipment.
Note: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant
to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference when the equipment is operated in a commercial environment. This equipment generates, uses and
can radiate radio frequency energy and, if not installed and used in accordance with the instruction manual, may
cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to
cause harmful interference in which case the user will be required to correct the interference at his own expense.
Canadian Notification
This digital apparatus does not exceed the Class A limits for radio noise emissions from digital apparatus set out
in the Radio Interference Regulations of the Canadian Department of Communications.
Le prsent appareil numrique nmet pas de bruits radiolectriques dpassant les limites applicables aux
appareils numriques de la classe A prescrites dans le Rglement sur le brouillage radiolectrique dict par le
Ministre des Communications du Canada.
Japanese Approvals
European Union
Warning: This is a Class A product. In a domestic environment, this product may cause radio interference in
which case the user may be required to take adequate measures.
Taiwanese Notification
CCM
For Technical Support:

www.avocent.com/support
Avocent Corporation
4991 Corporate Drive
Huntsville, Alabama 35805-6201 USA
Tel: +1 256 430 4000
Fax: +1 256 430 4031
Avocent International Ltd.

Avocent House, Shannon Free Zone
Shannon, County Clare, Ireland
Tel: +353 61 715 292
Fax: +353 61 471 871
Avocent Asia Pacific

Singapore Branch Office
100 Tras Street, #15-01
Amara Corporate Tower
Singapore 079027
Tel: +656 227 3773
Fax: +656 223 9155
Avocent Germany
Gottlieb-Daimler-Strae 2-4
D-33803 Steinhagen
Germany
Tel: +49 5204 9134 0
Fax: +49 5204 9134 99
Avocent Canada
20 Mural Street, Unit 5
Richmond Hill, Ontario
L4B 1K3 Canada
Tel: +1 877 992 9239
Fax: +1 877 524 2985
590-434-501E

Installer/User Guide: For Technical Support

Uploaded by

Document Informationclick to expand document informationAvocent

Document Informationclick to expand document information

Copyright:

Available Formats

Installer/User Guide: For Technical Support

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Installer/User Guide: For Technical Support

Uploaded by

Copyright:

Available Formats

CCM

For Technical Support:

Avocent International Ltd.

Avocent Asia Pacific

avocent.book Page i Tuesday, March 14, 2006 12:33 PM

avocent.book Page ii Tuesday, March 14, 2006 12:33 PM

avocent.book Page iii Tuesday, March 14, 2006 12:33 PM

avocent.book Page iv Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

Connecting to devices from the console port............................................................................ 22

avocent.book Page v Tuesday, March 14, 2006 12:33 PM

Group Set command ................................................................................................................. 64

avocent.book Page vi Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

Server SNMP command............................................................................................................ 93

avocent.book Page vii Tuesday, March 14, 2006 12:33 PM

Appendix F: Ports Used................................................................................................................. 147

avocent.book Page viii Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

avocent.book Page ix Tuesday, March 14, 2006 12:33 PM

LIST OF FIGU RES

avocent.book Page x Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

avocent.book Page xi Tuesday, March 14, 2006 12:33 PM

avocent.book Page xii Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

Table 5.15: Port Delete Command Parameter ................................................................................ 72

avocent.book Page xiii Tuesday, March 14, 2006 12:33 PM

Table 5.43: Show NFS Command Display Fields ........................................................................... 98

avocent.book Page xiv Tuesday, March 14, 2006 12:33 PM

avocent.book Page 1 Tuesday, March 14, 2006 12:33 PM

Features and Benefits

avocent.book Page 2 Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

Serial device access options for physical ports

The DSView 3 software offers a built-in enhanced Telnet/SSH client applet

avocent.book Page 3 Tuesday, March 14, 2006 12:33 PM

Chapter 1: Product Overview

Locally at the CCM user database

At a RADIUS (Remote Access Dial-In User Service) server

At an LDAP (Lightweight Directory Access Protocol) server

Through the DSView 3 software internal authentication service or external authentication

Data security may be enhanced using industry-standard SSH encryption.

avocent.book Page 4 Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

NOTE: The AC inlet is the main disconnect.

Rack mount safety considerations

avocent.book Page 5 Tuesday, March 14, 2006 12:33 PM

Installation and Configuration

CCM850 and 1650 appliance hardware

Figure 2.1: CCM1650 Appliance Front Panel

The TRAFFIC LED blinks when there is network traffic.

Figure 2.2 shows the back panel of a CCM1650 appliance.

avocent.book Page 6 Tuesday, March 14, 2006 12:33 PM

CCM Installer/User Guide

Figure 2.2: CCM1650 Appliance Back Panel

The back panel contains: