Raritan Computer SX4 사용자 설명서
110 D
OMINION
SX
I
NSTALLATION AND
O
PERATIONS
M
ANUAL
(1) Click on the [Advanced] button and add Vendor-Specific for Raritan. Please use
Vendor Code = 8267 and enter String in the following format:
(a) IP Address of the Dominion SX unit separated by a ‘:’.
(b) Privileges to be given to the user separated by a ‘:’ Privileges takes a value of:
(a) IP Address of the Dominion SX unit separated by a ‘:’.
(b) Privileges to be given to the user separated by a ‘:’ Privileges takes a value of:
(i) A for Administrator
(ii) O for Operator
(iii) OB for Observer
(ii) O for Operator
(iii) OB for Observer
(c) Port numbers should follow, with a value of:
(i) ‘*’ indicating access to all the ports.
(ii) ‘1:2:3’ indicating access to ports 1, 2 and 3 only.
(ii) ‘1:2:3’ indicating access to ports 1, 2 and 3 only.
c. 2:4:6:8:10:12:14:1 gives access to only these specified ports.
Configuration examples:
•
10.0.3.60:A:3:6:9:12:15
−
10.0.3.60 is the IP address of the Dominion SX unit. The privileges and port numbers will apply
only to this IP address.
−
A indicates Administrative privileges are given to the user.
−
3:6:9:12:15 gives access to only ports 3, 6, 9, 12 and 15.
•
10.0.3.201:O:*
−
10.0.3.201 is the IP address of the Dominion SX unit. The privileges and port numbers will apply
only to this IP address.
−
O maps to an Operator – this user has only limited privileges.
−
‘*’Gives access to all ports.
•
10.0.3.61:OB:2:4:6:8:10:12:14:16
−
10.0.3.61 is the IP address of the Dominion SX unit. The privileges and port numbers will apply
only to this IP address.
−
OB maps to an Observer – no Dominion SX console-write permission will be given to this user.
Note: A string following the format outlined above must be provided for every Dominion SX box
contacting the RADIUS server, or else the box will take a default value. If the RADIUS Server is not
configured for Vendor-Specific type, or if it fails to follow the above specifications, the value specified for
the Service-Type will determine the privileges to be given to the user. In this case, the user will be given
total access. In order to change the Service-Type, edit the Service-Type in the Edit Dial-in Profile menu
and modify the Attribute Value to take any one of the following values:
contacting the RADIUS server, or else the box will take a default value. If the RADIUS Server is not
configured for Vendor-Specific type, or if it fails to follow the above specifications, the value specified for
the Service-Type will determine the privileges to be given to the user. In this case, the user will be given
total access. In order to change the Service-Type, edit the Service-Type in the Edit Dial-in Profile menu
and modify the Attribute Value to take any one of the following values:
→
Login
→
Framed
→
Callback Login
→
Callback Framed
→
Outbound
→
Administrative
→
NAS Prompt
→
Authenticate Only
→
Callback NAS Prompt
For Raritan, the above has been mapped as follows:
•
In order to assign Administrative Privileges to a user, change the Service-Type to Administrative. In
such a situation, a user is granted all the permissions as if the user had logged in using !root. The user
has full configuration ability and access to the port.
has full configuration ability and access to the port.
•
In order to give Limited Administrative Access to the unit, change the Service-Type to NAS Prompt.
In such a situation, the user becomes an Operator and can access all ports.
•
For a Service-Type of Login, Framed, Callback Login, Callback Framed, Outbound, or Callback
NAS Prompt, the user is mapped only to an Observer-type user and has read-only access to all ports.
Note: The setting of Remote Access Permission on the user object will override this setting if set to either
Grant remote access permission or Deny remote access permission.
Grant remote access permission or Deny remote access permission.