Raritan NOC - Manual

Raritan NOC

Raritan NOC – Manual, read for free online in PDF format. We hope this helps you resolve any issues you may have. If you have further questions, please contact us through the contact form.

1 Page 1
2 Page 2
3 Page 3
4 Page 4
5 Page 5
6 Page 6
7 Page 7
8 Page 8
9 Page 9
10 Page 10
11 Page 11
12 Page 12
13 Page 13
14 Page 14
15 Page 15
16 Page 16
17 Page 17
18 Page 18
19 Page 19
20 Page 20
21 Page 21
22 Page 22
23 Page 23
24 Page 24
25 Page 25
26 Page 26
27 Page 27
28 Page 28
29 Page 29
30 Page 30
31 Page 31
32 Page 32
33 Page 33
34 Page 34
35 Page 35
36 Page 36
37 Page 37
38 Page 38
39 Page 39
40 Page 40
41 Page 41
42 Page 42
43 Page 43
44 Page 44
45 Page 45
46 Page 46
47 Page 47
48 Page 48
49 Page 49
50 Page 50
51 Page 51
52 Page 52
53 Page 53
54 Page 54
55 Page 55
56 Page 56
57 Page 57
58 Page 58
59 Page 59
60 Page 60
61 Page 61
62 Page 62
63 Page 63
64 Page 64
65 Page 65
66 Page 66
67 Page 67
68 Page 68
69 Page 69
70 Page 70
71 Page 71
72 Page 72
73 Page 73
74 Page 74
75 Page 75
76 Page 76
77 Page 77
78 Page 78
79 Page 79
80 Page 80
81 Page 81
82 Page 82
83 Page 83
84 Page 84
85 Page 85
86 Page 86
87 Page 87
88 Page 88
89 Page 89
90 Page 90
91 Page 91
92 Page 92
93 Page 93
94 Page 94
95 Page 95
96 Page 96
97 Page 97
98 Page 98
99 Page 99
100 Page 100
101 Page 101
102 Page 102
103 Page 103
104 Page 104
105 Page 105
106 Page 106
107 Page 107
108 Page 108
109 Page 109
110 Page 110
111 Page 111
112 Page 112
113 Page 113
114 Page 114
115 Page 115
116 Page 116
117 Page 117
118 Page 118
119 Page 119
120 Page 120
121 Page 121
122 Page 122
123 Page 123
124 Page 124
125 Page 125
126 Page 126
127 Page 127
128 Page 128
129 Page 129
130 Page 130
131 Page 131
132 Page 132
133 Page 133
134 Page 134
135 Page 135
136 Page 136
137 Page 137
138 Page 138
139 Page 139
140 Page 140
141 Page 141
142 Page 142
143 Page 143
144 Page 144
145 Page 145
146 Page 146
147 Page 147
148 Page 148
149 Page 149
150 Page 150
151 Page 151
152 Page 152
153 Page 153
154 Page 154
155 Page 155
156 Page 156
Page: / 156

Table of Contents:

  • Page 3 – regional Raritan office contact information.
  • Page 4 – Safety Guidelines; Do not use a 2-wire power cord in any product configuration.; Default Login User ID/Password; The default username for CC-NOC is; admin; and the password is; raritan; . It is recommended to; Rack Mount Safety Guidelines; Specifications; Ensure sufficient airflow through the rack environment.
  • Page 5 – Contents
  • Page 6 – ProxyInstaller
  • Page 9 – Figures
  • Page 13 – Chapter 1: Introduction; refers to the following models:; Stand-alone Appliances; CommandCenter NOC Deployment Guide; Distributed 2500 Series Appliances; CC-NOC 2500S: Used for Intrusion Detection and Traffic Analysis.
  • Page 14 – User PC Preparation; Compatibility Matrix; Remote Authentication; Mapping of User Groups; Local Authentication; Intended Audience; Administrator; CommandCenter NOC User Guide; Features Described in this Document
  • Page 16 – service down
  • Page 17 – – unpatched systems, older known vulnerable server daemons on
  • Page 18 – Licensing Explained; Infrastructure
  • Page 19 – Workstation
  • Page 21 – Chapter 2: General and Advanced Administration; Appliance Shutdown/Restart; System Shutdown; Admin; Appliance Network Settings; CommandCenter NOC
  • Page 22 – Configure Date and Time
  • Page 23 – Configure Network Connection; Change the ISP Gateway Address
  • Page 24 – Outgoing Email Communication
  • Page 25 – Change Nameserver Addresses; Network Management Configuration; Edit Discovery Ranges; CommandCenter
  • Page 26 – CommandCenter Secure Gateway Administrator Guide
  • Page 27 – Enable DHCP IP address...; Example; Edit SNMP Ranges
  • Page 28 – must; Configure Scheduled Outages
  • Page 30 – Recurring Weekly; Configure Pollers
  • Page 31 – n a m e
  • Page 33 – Configure Performance Thresholds
  • Page 34 – Configure Outage Report
  • Page 35 – SNMP Reparenting Exclusion List
  • Page 37 – Create a CC-SG Peer via a Secure Channel
  • Page 38 – Map CC-SG User Groups to Local User Roles
  • Page 39 – CommandCenter Secure Gateway; Multi-Site Management
  • Page 40 – Configure Event Forwarding; Configure Event Recipients
  • Page 41 – Configure Event Severities to Forward; Configure Trap Relaying
  • Page 42 – Discover a Single Device
  • Page 43 – Edit Performance Thresholds (Per Device)
  • Page 44 – Administrator Tools; Export and Download Configuration Files; Download Log Files; Check Disk Utilization on Appliance
  • Page 45 – Send Incident Report
  • Page 46 – Generate Diagnostics File; Establish Support Connection
  • Page 47 – Download Data Archives; Click on the; tab in the top navigation bar.; Click; Download Archived Data; Click one of the files to download.; Advanced Administration; System Software & Signature Updates
  • Page 48 – Download Updates; Install Updates
  • Page 49 – View Installed Updates; View All Updates; Configure Automatic Download Settings
  • Page 50 – Upload Update Manually
  • Page 51 – Appliance Database Administration; Data Backup and Restore; Download a Backup File
  • Page 52 – Install a Backup File; Manually Upload a Backup File; Manage Routes
  • Page 53 – Add a New Network Route; Prune Unused Performance Data
  • Page 54 – Delete Management Settings and Data; Delete Traffic Analysis Performance Information; Note: Traffic analysis performance data is stored in backup files.
  • Page 55 – Install CC-NOC License
  • Page 56 – Installed Appliances List; Installed Appliances List.
  • Page 57 – Chapter 3: Configuring Intrusion Detection; Configure a Spanned or Mirrored Port; Ethernet TAP; Benefits; The traffic is always precisely mirrored without alteration.
  • Page 58 – Deployment; Configure Appliance Home Networks; CCNOC
  • Page 59 – Configure Port Scan Detection
  • Page 60 – Last Change; Choose the appliance that you wish to configure by clicking; Configure
  • Page 62 – Select Intrusion Detection Appliance(s)
  • Page 63 – Select Types of Signatures to Monitor; on the; Network; . This category includes a variety of; General Security; for those machines to reduce the; To disable detection, uncheck the check box.; Finish
  • Page 64 – Load Default Signatures or Settings from Another Appliance
  • Page 65 – Advanced Intrusion Detection Administration; Manage Signatures
  • Page 66 – Upload Custom Signatures Tool
  • Page 67 – Chapter 4: Configuring Windows Management; Windows Management Instrumentation (WMI)
  • Page 68 – External Proxy Host Requirements
  • Page 69 – Install; Open Ports on External Proxy Host; cmd; Configuring the CC-NOC to communicate with the Proxy
  • Page 70 – pro x y; add new external proxy; Identifying Local Proxy
  • Page 71 – Specifying Windows Management Ranges
  • Page 72 – lmhosts; Configure WINS; Proxy Identification and Credentials
  • Page 74 – Configuring a WINS Server or LMHOSTS File
  • Page 75 – WINS; Add...; netsh interface ip set WINS <; Edit LMHOSTS File on External Proxy; Notepad
  • Page 76 – Authenticate Windows Computers
  • Page 77 – Configure Windows Performance Thresholds; Configure WINS Server or LMHOSTS File on 2500M; Edit WINS Settings
  • Page 79 – Edit LMHOSTS File; edit LMHOSTS
  • Page 80 – You can also delete all of the; delete; submit changes
  • Page 81 – Chapter 5: Configuring Vulnerability Scanning; system vulnerabilities,; Accessing Vulnerability Scanning; Common Vulnerabilities and Exposures (CVE)
  • Page 82 – I Agree; Vulnerability Scan Levels; any
  • Page 83 – Scan Level 4; Specify IP Addresses and Schedule the Scan; After clicking; to the warning, click; edit settings; at the bottom of the page.; Single IP or Beginning of Range; field, or a range of IP; End of Range
  • Page 84 – add; save settings; to save all addresses entered and return to the previous page.; schedule this vulnerability scan
  • Page 85 – Chapter 6: Configuring Notifications; notifi cati on paths,; Enable/Disable Notifications
  • Page 86 – Configure Event Notifications; notification path; Add/Edit a Notification
  • Page 87 – Select Event Type; next; Build and Validate an Interface/Service Rule
  • Page 88 – OR
  • Page 89 – Enter Content for Notification and Notification Path
  • Page 90 – Guide; Configure Notification Groups
  • Page 91 – Add/Modify a Notification Group
  • Page 93 – Configure Notification Paths; Add/Edit a Notification Path
  • Page 94 – Create New Path Name and Specify Targets; Type a unique new; path name; Choose one of the; target types; for this notification path:; User Target
  • Page 95 – Modify a Notification Path
  • Page 96 – Define Escalation in Notification Path; for this escalation notification:
  • Page 97 – Group Target; , select only one group as previously defined, see section; For; Email Target; , type an email address for the notification path.; add escalation
  • Page 98 – Configure TAP Paging; TAP Modem Settings; box by clicking; edit; Notification Configuration; TAP Paging Configuration
  • Page 99 – Add a new TAP Service
  • Page 100 – Edit Modem Parameters
  • Page 101 – Chapter 7: Managing Assets; Map; Manage Assets; Import Assets; Assets
  • Page 103 – Export Assets; Map Unassociated Assets to Nodes
  • Page 104 – Clear All Asset Records; tab in the top navigation tab bar.; Manage assets; clear asset records
  • Page 105 – Add a New User; add new user; username
  • Page 106 – Edit a User
  • Page 107 – Adding/Editing a Duty Schedule
  • Page 108 – save; delete selected; Configure Categories; Categories
  • Page 109 – views
  • Page 111 – Configure Views
  • Page 112 – Add/Modify an Existing View
  • Page 113 – Map Users
  • Page 115 – Appendix A: Specifications; V1 Platform; General Specifications; Not Applicable; Environmental Requirements; Operate properly at any altitude between
  • Page 116 – Electrical Specifications; Average Power Consumption:
  • Page 117 – Appendix B: Troubleshooting; The Raritan Support Structure; Raritan Support Structure; , we will provide details on how to maintain and troubleshoot; The CC-NOC’s Ability to SSH to Raritan
  • Page 118 – Checking Appliance Database Settings; establish; RAID Array Failure; Degraded RAID Array; Discovery; p in g
  • Page 119 – Capability Scanning; suspe ct nod e; not; remove those services.; Pollers; page, but it is strongly advised that you consider the; Notifications
  • Page 120 – SNMP Data Collection; good deal more information than the CC-NOC can obtain remotely.; Windows Management
  • Page 121 – Your Network; Contacting Raritan; Help; tab. You may be requested by Technical Support to establish
  • Page 122 – node detail
  • Page 123 – The X service has been discovered on interface WWW.XXX.YYY.ZZZ; Do the NetBIOS Node Names Match?
  • Page 124 – Microsoft Exchange -; If a; and; synthetic transactions
  • Page 125 – Why am I Not Receiving Notifications?
  • Page 126 – for any default notifications sent to the; What Conditions Cause a Notification to be Sent?; SNMP – What it is and What it Does
  • Page 127 – or via the Edit the SNMP Ranges page; , it will query the newly discovered; Troubleshooting SNMP Data Collection
  • Page 128 – Use the; SNMP Walk; tool on the Network Infrastructure Tools page from the; Tools; tab. This is the quickest and easiest method.; GetIF; A d d re s se s; Vulnerability Scanning
  • Page 129 – Vulnerability Scanning Configuration; If you are; only; scanning for at least Level 2 scans.; exclude; them from scanning. Visit the; Admin-> Vulnerability Scanning Configuration; page and enter their IP addresses in the exclude list.; Vulnerabilities; and interface pages.; Historic Data and Graphs; How is Performance Data Summarized?
  • Page 130 – Search; How Do I Interpret the SNMP Graphs/Reports?; Additional Support; The Tools Discussed in this Chapter; GetIF –; Documentation; Our documentation is available from the CC-NOC, under the; tab, and is also available on
  • Page 133 – Appendix C: Performance Monitoring; Overview
  • Page 136 – SNMP Data Collection Enhancements; Measured Component
  • Page 137 – Not available on Windows 98 or Millenium Edition; Leveraging Performance Data in Network Management
  • Page 138 – Thresholding; How it works; threshold; Type
  • Page 139 – SNMP Performance Metric Thresholds
  • Page 140 – Windows Performance Metric Thresholds
  • Page 141 – Appendix D: Setting up WMI on Target Machines; Windows Management Instrumentation; Add the program
  • Page 142 – Configuring a Windows Proxy Details
  • Page 145 – and in turn, what that; How the Intrusion Detection works; f a l s e p o s i t iv e s ,; Reducing False Positives with the Signature Profiler
  • Page 146 – Responding to Events and Notifications; Event Categories; systems at a user level that have failed.; What do I do when...
  • Page 147 – What if I have been hacked?; is
  • Page 149 – Appendix F: Notification Parameters; Notification Parameter Substitution
  • Page 150 – replaced by the total number of parameters
  • Page 151 – ICMP pings; ICMP Pings
  • Page 152 – seconds; HTTP Synthetic Transaction; HTTP Response and
  • Page 154 – Additional Notes
Loading the manual








CommandCenter

®

NOC

Administrator Guide

Release 5.4

Copyright © 2006 Raritan Computer, Inc.

CCNOC-0D-E

June 2006

255-80-5301-00

"Loading the manual" means you need to wait until the file loads and becomes available for online reading. Some manuals are very large, and the time they take to appear depends on your internet speed.

Summary

Page 3 - regional Raritan office contact information.

Copyright and Trademark Information This document contains proprietary information that is protected by copyright. All rights reserved. No part of this document may be photocopied, reproduced, or translated into another language without express prior written consent of Raritan Computer, Inc. © Copyr...

Page 4 - Safety Guidelines; Do not use a 2-wire power cord in any product configuration.; Default Login User ID/Password; The default username for CC-NOC is; admin; and the password is; raritan; . It is recommended to; Rack Mount Safety Guidelines; Specifications; Ensure sufficient airflow through the rack environment.

Safety Guidelines To avoid potentially fatal shock hazard and possible damage to Raritan equipment: • Do not use a 2-wire power cord in any product configuration. • Test AC outlets at your computer and monitor for proper polarity and grounding. • Use only with grounded outlets at both the computer a...

Page 5 - Contents

F IGURES v Contents Chapter 1: Introduction .................................................................. 1 Stand-alone Appliances....................................................................................................................1 Distributed 2500 Series Appliances................

Other Raritan Models

All Raritan Other