Services are configurations that can be activated on multiple SNA-capable devices or interfaces, simultaneously. These are
only available for devices with full SNA support or for interfaces for those devices.
Services are selected from the right-hand panel. To apply a service, select one or more devices or interfaces from the Topology
view, either manually from the map or by selecting them from the search results.
After a service is selected, a dedicated GUI for the service is displayed. The current settings for the relevant feature from
all selected elements are displayed. The specific parameters displayed for each service are described below.
For most services, a GUI page is displayed where specific parameters can be defined for the service. After you enter the parameters
in the GUI page, and all possible client side validations are performed on them, the settings are submitted to the selected
devices or interfaces. A report then is displayed showing the results of the service as they are received.
If a configuration failed due to a communication error between SNA and the configured device, an option is displayed to retry
the configuration. By default, all services copy the running configuration file to the startup configuration file automatically
after the configuration is performed
Device-Level Services
The following services are available for switches:
-
RADIUS Client Configuration
-
DNS Client Configuration
-
SYSLOG Server Configuration
-
Time Settings Configuration
-
File Management
-
Power Management Policy (Device Level)
-
VLAN Membership (Device Level)
For each of these device-level services, the tickets showing the current configurations of the selected devices show the following
identifying information in addition to service specific parameters:
-
Device host name
-
IP address—If more than one IP address exists for the device, the one used by SNA to access the device is displayed.
-
Device model—The alphanumeric string representing the device model. For example: SG350XG-2F10.
RADIUS Client Configuration
This service enables you to configure one or more devices as RADIUS clients by defining the RADIUS server they are using for
login.
For every selected device, the current configuration displays the RADIUS server with usage type login or all of the lowest
priority configured on it on the right-hand information.If more than one RADIUS server of the lowest priority exists, a single
server is displayed, in the following order:
-
The first RADIUS server (alphabetically) defined by host name.
-
The RADIUS server with the lowest IPv4 address
-
The RADIUS server with the lowest IPv6 address
The entry created by the service has a priority of 0 and usage type login. If an entry with the same IP address or host name
as the new entry already exists, with priority 0 and usage type 802.1x, the existing entry is updated to usage type all.
Displayed/Editable Parameters
To configure selected devices as clients to a different RADIUS server than the currently-configured RADIUS server, enter the
following fields:
-
Server Address—IPv4 address or IPv6 address of the RADIUS server.
-
Key string—Key string used for the RADIUS server (up to 128 characters).
-
Authentication Port—Number of the authentication port.
-
Authentication Methods—List of the authentication methods used for each device by the channel currently used on SNA (HTTP
or HTTPS). The common values for this parameter are Local or RADIUS, Local. If the current value for a device is any other
value, the copy option is not available for this device. When copying settings, the value RADIUS, Local is mapped to the RADIUS
Primary Authentication Method radio button.
-
Primary Authentication Method—Write-only parameter that appears in the configuration section. It is a selection between two
values: Local Database, RADIUS. If RADIUS is selected, the actual value configured for all channels is RADIUS, Local.
DNS Client Configuration
The DNS Client Configuration service enables defining the DNS server that the selected devices use.
Displayed/Editable Parameters
To define a new DNS server, enter its IPv4 or IPv6 address.
SYSLOG Server Configuration
This service enables defining the SYSLOG server used by the selected devices.
For every selected device the SYSLOG server with the lowest index in the SYSLOG table is displayed.If a static entry existed
and was displayed, the new entry created by the service replaces the pre-existing entry.
Displayed/Editable Parameters
To define a new SYSLOG server, enter the server’s IPv4 or IPv6 address.
Time Settings Configuration
This service allows the time source and the system time of the selected devices to be defined.
Note
|
It is highly recommended to run this service in order to synchronize the time settings between all devices in the network.
It is especially advisable when viewing historical statistical information on multiple devices.
|
The current clock source, with the following options, is displayed:
-
Default SNTP servers—Default servers displayed if the clock source is SNTP.
-
User-defined SNTP server—Displayed if the clock source is SNTP and the current configuration has one or more non-default SNTP
servers. In this case, the upper SNTP server is displayed according to the following priority:
-
First SNTP server (alphabetically) defined by host name.
-
Lowest SNTP server defined by IPv4
-
Lowest SNTP server defined by IPv6
-
Local Clock—Displayed if the clock source is local.
-
Current time—Display of the current time and time zone offset.
Editable Parameters
To change the clock source select one of the following options:
-
Default SNTP Servers—Deletes all configured SNTP servers and re-creates three default servers.
-
User Defined SNTP Server—Add the address of the SNTP server by entering either host name, IPv4 or IPv6. When applying the
server, all current configured servers are deleted, and the server one is added. Time Zone must be configured with this option.
-
Local Clock—Changes the device clock source to local clock. The date, time and time zone must be configured.
-
Set Date and Time—Date and time if local clock is configured.
-
Time Zone—Time zone offset if a user-defined SNTP server or local time is configured.
File Management
Unlike the services previously mentioned, the File Management service does not change the configuration of the selected devices
directly. Instead, it performs an operation on all selected devices. Use this service to download new firmware versions or
configuration files to the selected devices or reboot them.
Operations
The following operations are available from the service:
-
Download firmware via HTTP - Used to download a new firmware file. In the local file system, browse to the new firmware file
and select it. This file is then downloaded to all devices participating in the service. After downloading the new firmware,
the device also automatically makes it the active firmware version.
-
Download configuration via HTTP - Used to download a new configuration file. In the local file system, browse to the new configuration
file and select it. This file is then downloaded to the startup-configuration of all devices participating in the service.
-
Reboot - Click Go to reboot the devices without performing any other actions.
Power Management Policy (Device Level)
This service enables setting power policies for selected devices. The following parameters will be displayed.
-
SNA Power Schedule (active/inactive)
-
Power schedule details if active
-
Whether time power is active each day, beginning on Monday and ending on Sunday
-
Behavior of ports in off-schedule times. The options include:
-
PoE power inactive
-
Data inactive
-
Both PoE power and data inactive
-
Custom—Displayed if an SNA-created schedule is not applied uniformly to all Access ports. Access ports are ports whose VLAN
mode is Access.
-
Configured ports—A list of all ports that are bound to the SNA-created schedule
Editable Parameters
You can create a power schedule and apply it to the devices. To perform this action, select the start time and end time of
activity for every day of the week and then select one of the following behaviors for off times.
To properly activate the schedule on the devices, at least one port must be selected in each device. You can only select a
behavior if at least one PoE device is selected. Otherwise, the schedule can only be created or deleted.
The schedule created by this service uses a reserved name (orch_power_sched). Time ranges with other names are ignored by
SNA.When applying the settings, the applied behavior is bound to all selected ports. All ports that are not selected are unbound
from the schedule if they were previously bound.
Non-PoE ports are only affected if one of the behaviors, which shut down data is selected. If a selected port is not affected
by the selected behavior, a note is added to the success message. This note notifies the user that some ports were not bound
because the selected behavior did not apply to them.