Add to collection(s) Add to saved
  1. Business
  2. Management
  3. Human Resource Management

Maximizing Network Security And Management Efficiency With

Maximizing Network Security And Management Efficiency With Minimal Resources
Zero Touch Provisioning with the Avocent ACS 6000 Advanced Console Server
Table of Contents
3
Executive Summary
3
The “Zero Touch” Solution
4
Automated Provisioning with Built-In Intelligence
4
Outperforming the Competition
4 Effortless Security Updates
5 Reducing Manual Tasks
5 Flexibility To Do More
5
Managing a Complex Data Center Environment
5
A Clear Path To Success
2 Maximizing Network Security And Management Efficiency With Minimal Resources
Executive Summary
The “Zero Touch” Solution
IT systems and devices are becoming more intelligent and providing
unfettered access to data center networks in new and highly costeffective ways, not possible five years ago. The “Internet of Things”
has resulted in a scenario in which individual devices connected to a
network via serial and machine-to-machine connections, can each
be assigned unique identifiers, facilitating the ability to transfer data
over the network without requiring human-to-human or human-tocomputer interaction.
Today, network administrators understand the inherent
advantages of automated management, that is, the ability to
automatically deploy, operate and manage systems and devices,
whether locally or remotely based. With automated management,
IT managers have the ability to define processes, schedule them
(or set triggers) and then implement them automatically without
human intervention.
Organizations are also dealing with ever-growing physical and virtual
infrastructures. Increasingly these assets are located in remote
locations, yet play an important part in overall IT and business strategy.
Every new connected system or device is a possible access point for
well-intentioned or malicious activity. IT managers must be able to
secure their important business assets (systems, software, data) while
maintaining and even expanding access. That’s why customers need
user-friendly, sophisticated, multi-layered infrastructures that provide
flexibility, customization, security and reliability.
Built on a hardened Linux platform, the Avocent ACS 6000 advanced
console system provides IT managers with reliable, secure access
to their network infrastructure for day-to-day management tasks.
More importantly, in the event of a network outage, the ACS 6000
provides out of band (OOB) access to networks and systems to help
administrators identify and resolve issues quickly.
The ACS 6000 also provides several advanced features that increase
the efficiency of management tasks and help ensure infrastructure
security. For example, centralized access and management at the
system level or through DSView helps increase efficiencies and
minimize disruptions. In the event of a complete network outage,
automatic cellular network failover and fallback helps ensure access
so downtime is minimized.
The Zero Touch Provisioning feature of the Avocent ACS 6000
is an industry leading capability built on proven remote bootP
technology. With Zero Touch Provisioning, IT managers can
streamline the process of installing ACS 6000 systems into
large data centers and remotely managed environments. For
companies operating numerous, disparately located data centers,
Zero Touch Provisioning helps provide standardization across all
of their locations.
While other vendors offer a version of auto provisioning, Emerson’s
implementation provides greater control and flexibility. Most
auto provisioning features can only be used in very limited
circumstances. The Zero Touch Provisioning feature of the ACS
6000 can be used at initial install, for subsequent firmware
updates, to implement configuration changes or to automate
management tasks. With Zero Touch Provisioning on the ACS
6000, Emerson puts the power of unlimited system configuration
into the hands of the IT administrator where it belongs.
Zero Touch Provisioning is an important feature of the ACS 6000
that allows IT managers to update firmware and implement custom
configurations easily, incrementally and completely automatically.
It also helps IT managers maintain the most up-to-date firmware
across the infrastructure so they can provide the highest levels of
security and prevent malicious activity that could negatively affect
the network.
3 Maximizing Network Security And Management Efficiency With Minimal Resources
Automated Installation and Update with Avocent® ACS 6000 Zero Touch Provisioning
Total Personnel Time
~24 minutes
Automated Update
of Serial Console
Automated Update
~1.5 minutes of Serial Console
Automated Update
~1.5 minutes of Serial Console
Automated Update
of Serial Console
Automated Update
~1.5 minutes of Serial Console
~1.5 minutes Automated Update
of Serial Console
~1.5 minutes
~1.5 minutes
Create Configuration File
and Firmware Image
~15 minutes
DCHP/ACS
Configuration Server
Automated Provisioning with Built-in Intelligence
Outperforming the Competition
With the ACS 6000, IT administrators can create configuration
files and firmware images one time, and then use them for
automatic deployment instead of manually updating the files
on each serial console. The ACS 6000 has a built-in intelligence
engine that can retrieve configuration files or firmware images
from a network attached configuration server. Once the file
is retrieved the ACS 6000 automatically installs the required
firmware or configuration update.
Effortless Security Updates
When managing large disbursed infrastructures, it can be difficult
to maintain current firmware on all systems. Inconsistent firmware
versions can leave the IT infrastructure vulnerable to security
threats. In 2014 alone, three security vulnerabilities were identified
that required updates to environments including IT equipment
such as serial consoles. With Zero Touch Provisioning, the ACS
automatically updates as soon as the IT administrator provides the
latest firmware image on the configuration server.
• Monitoring the network for unusual behavior and responding
with the appropriate action
Zero Touch Provisioning also helps streamline daily management
tasks, and increase the productivity of IT administrators. For
example, global changes like updates to access and control lists
can be scripted once and propagated to all ASC 6000 systems
automatically, around the clock. When an IT department fully
implements Zero Touch Provisioning, installation time reductions
of up to 90% can be achieved. With Zero Touch Provisioning,
IT managers increase infrastructure security, reduce cost, and
improve IT service levels.
Employees and other credentialed users also pose security risks.
When an employee leaves the company, Zero Touch Provisioning
gives administrators the ability to update access and control lists
and push the configuration to each console as often as necessary.
A data center could have more than a hundred ACS 6000 systems
running concurrently and everyone can be assigned different access
rights and permissions. Additionally, administrators can monitor
every keystroke. This granularity translates to enormous power to
manipulate workflows as business models change.
The foundation of any security policy requires timely,
implementation of standard management functions. These
functions include but are not limited to:
• Current firmware updates on all systems
• Timely updates to access privileges on all systmes, as required
The Zero Touch Provisioning feature on the Avocent ACS 6000
helps organizations maintain security by automating these, and
many more, security management tasks. With the ACS 6000,
IT administrators can automate firmware updates across the
infrastructure to ensure every unit is on the recommended firmware
version. This ensures implementation of known security measures.
Monitoring is also an important activity for any network
administrator. The ACS 6000 gives administrators the ability to set
alerts based on predefined criteria. For example, an alert can be
set to notify the administrator whenever there is a denial of access
event for a network switch. Zero Touch Provisioning extends this
ability and enables automated actions to respond to alerts. In the
previous example, the ACS could run a pre-defined script to disable
the affected port; all automatically.
4 Maximizing Network Security And Management Efficiency With Minimal Resources
Competitive systems can’t enhance the management of these
security tasks because their version of auto provisioning allows
configuration only from a default state. When there is a threat
of malicious activity, IT administrators don’t have time to re-set
the serial console. In installations with multiple serial consoles, a
timely response would be near impossible because it would require
manual configuration or reset of multiple consoles.
Reducing Manual Tasks
The tightly integrated Zero Touch Provisioning feature of the
ACS 6000 gives IT administrators the ability to automate a broad
range of management tasks, from system installation to firmware
upgrades to a wide array of configuration updates. Updates can
be pushed as necessary and incrementally. Competitive systems
only allow configuration updates and only from a factory default
state. With competitive systems, subsequent updates are either
completed manually or the system must be forced into a default
state and all previous and current updates must be consolidated;
this requires a lot of time-consuming manual effort.
The Flexibility To Do More
Most environments are multi-platform and multi-vendor.
Managing IT infrastructure in these types of environments can be
complex but the ACS 6000 helps streamline management of these
environments by providing Zero Touch Provisioning and enhanced
configuration options.
The implementation of Zero Touch Provisioning on the ACS 6000
is designed to provide administrators with flexibility to configure
for a range of environments while maintaining ease of use. The
Avocent ACS 6000 supports a broad set of standard and secure
transport protocols including, TFTP, FTP, HTTP, HTTPs, SCP,
Wget and SFTP. Administrators can use any combination of the
supported protocols when updating firmware or configuration
files. This protocol support helps streamline set up in complex
environments. Competitive systems only enable a limited set of
protocols limiting administrators and creating additional work.
When setting up an automated configuration change on the ACS
6000, administrators have several options. Custom configuration
files can be created in CLI, XML or as compressed text; and they can
be saved locally or on a remote server. Unlike competitive systems,
the ACS 6000 is not dependent on custom options or specific
manufacturer identification methods. Competitive solutions
require vendor specific options (option 43, 60 or 61), which limit
auto provisioning to vendors who support the defined options.
Managing a Complex Data Center Environment
Data center managers are ready for simplified, streamlined, highly
efficient technologies. Over the years, dozens, or perhaps hundreds
of data center technologies have claimed to reduce administrative
overhead while opening up new windows of opportunity. But most
fail to live up to their promises of reducing time, cost, and the risk
of security threats.
The Avocent ACS 6000 system provides clear-cut benefits,
especially in larger environments, including relevant capabilities
for efficient access and management of IT assets. But it goes a step
further by fully addressing the complexities of the largest, most
heterogeneous, and most complex data centers. Many products
offer adequate simplicity for small environments, but don’t
consider the issues that crop up in the largest data centers. In these
environments, tasks that take a few minutes per firmware upgrade
can cause distraction and delay in environments with dozens or
hundreds of Avocent ACS 6000 systems.
In addition, setting up the required configuration server with the
Avocent ACS 6000 system is a one-time task providing considerable
time savings for systems added to the network. Once this step is
complete, Avocent ACS 6000 systems can be accessed individually
for any post-provision configuration desired.
With Zero Touch Provisioning, Avocent ACS 6000 systems can be
automatically configured and upgraded after they are booted and
initialized. This helps facilitate the introduction and installation of
the system into an existing network. In co-location environments,
the customer can simply ship several ACS 6000 units and provision
them automatically from the main data center. This facilitates great
reduction in travel costs.
A Clear Path to Success
Organizations need any edge they can find to cope with the routine
demands of ensuring business productivity. And any IT admin knows
that time saved from routine administration is time that can be used
to solve problems or drive innovations.
The Avocent ACS 6000 system is a valuable tool that helps
facilitate the implementation of scalable infrastructure across
the entire data center. In addition to the benefits of Zero Touch
Provisioning, the ACS 6000 is a reliable system that delivers
reduced thermal consumption, redundant power supplies and
sophisticated management software. Once a customer installs the
new Avocent ACS 6000 system onto their network, there’s very
little to do going forward.
With competitive products, customers must spend a minimum of
15 minutes on firmware load and configuration. With the Avocent
ACS 6000 system and its Zero Touch Provisioning feature, it
takes less than five minutes (per server) to auto update and auto
configure. There’s no need to touch every single unit, like some
companies’ technology requires.
IT administrators need a console server like the Avocent ACS 6000
system that, when enabled, can look for its own configuration and/
or new firmware on a remote server, download and apply them
with minimal human intervention. This means fewer security
risks, problems can be resolved faster and new ideas implemented
quicker, with fewer manual resources.
5 Maximizing Network Security And Management Efficiency With Minimal Resources
About Emerson Network Power
Emerson Network Power, a business of Emerson
(NYSE:EMR), delivers software, hardware and services
that maximize availability, capacity and efficiency for data
centers, health care and industrial facilities. A trusted
industry leader in smart infrastructure technologies,
Emerson Network Power provides innovative data center
infrastructure management solutions that bridge the gap
between IT and facility management and deliver efficiency
and uncompromised availability regardless of capacity
demands. Our solutions are supported globally by local
Emerson Network Power service technicians. Learn more
about Emerson Network Power products and services at
www.EmersonNetworkPower.com EmersonNetworkPower.com
Emerson Network Power - Global Headquarters
1050 Dearborn Drive
P.O. Box 29186
Columbus, OH 43085
Tel: +1 614 888 0246
Emerson Network Power - Avocent Products and Services
4991 Corporate Drive
Huntsville, AL 35805
Tel: +1 256 430 4000
Emerson, Emerson Network Power and the Emerson Network Power logo are trademarks or service marks of Emerson Electric Co. All other marks are the property of
their respective owners. ©2015 Emerson Electric Co. All rights reserved.
AV-29102 R1015
Related documents
GC Instrument Portfolio
GC Instrument Portfolio
Wu-VortexCATALYST-FOR-POSITIVE-CHANGE
Wu-VortexCATALYST-FOR-POSITIVE-CHANGE
University of Florida Gainesville, FL, USA
University of Florida Gainesville, FL, USA
Responsive Nanostructures and Nanocomposites
Responsive Nanostructures and Nanocomposites
complete this form.
complete this form.
A.C.S. Exam
A.C.S. Exam
Activity Report template
Activity Report template
Download