pa-44

Port Authority 44

Encrypted console port access to 4 host ports and 4 power reset ports over the network
Or dial-up regardless of the status of the network.

This is a secure switch that provides access to up to eight ports as well as power control reset of up to eight devices, all from a single modem or network connection. The Port Authority incorporates all the features of the UniGuard while adding multiple port access and power reboot functions. Port access and power control can be limited on a per user basis based on the security credentials of the remote user. The internal database has a capacity of up to 150 users and can be managed by the DDM manager and can work alongside UniGuard's . Each user can be assigned access to any or all of the eight device ports. The unit contains an internal V.34 modem and has full encryption capability with the UniGuard Client.


General Information

The problem with RADIUS and TACACS
Routers installed in the field are all connected to a network. When this network fails, the only way to reach the router is to dial into the console port for remote maintenance. This opens up a “back door” to the network which many network managers lock with RADIUS or TACACS. The problem with these protocols is that they require the network to be functioning in order to contact the security server. This is in direct conflict with the purpose of the console port which is only used when the network is “down”. Therefore RADIUS and TACACS provide inadequate security for router console port protection.

The Solution
The Port Authority connects directly to up to eight console ports and provides the highest level of protection regardless of the state of the network. This is done by maintaining an internal security database that is updated by a central database on an “as needed” basis. This internal database provides fast, reliable, two factor authentication and encryption every time a technician accesses the router. By using switching to connect one modem to eight routers, The Port Authority saves line and equipment cost continually. An optional network connection allows in band access and management for an enterprise solution.

pa44-host-connections
pa44-host-connections
User Profiles, Control Access to Specific Firewalls or Routers
Each user profile contains a permission list that limits port access to only those devices associated with that user ID. Some Users can have access to all devices while others may have access to only one or more devices.

DDM Central Management Console
DDM, Distributed Database Manager, can maintain an unlimited number of UniGuards and or Port Authority devices remotely from a single or multiple workstations (SQL). This eliminates the need to update each unit individually when there is a database change. This software program automatically maintains the database of each remote device and is capable of down-loading the entire database of units manually or automatically at preset times. Reports can also be extracted automatically.

Power Reset Ports (4)
The Power Reset Ports connect to Power Modules and can be used to power cycle a locked up device. Computer equipment that locks up can often only be cleared by disconnecting and reconnecting the power. Power Modules are ordered separately.

Features

  • Internal V.90 modem
  • Optional IP network interface for Hardware 3DES/AES Telnet access.
  • Access from 1 to 4 Data Ports @115.2KB plus 4 Power Reset Ports
  • Power boot remote equipment from your desktop securely!
  • Self-contained database (unlike RADIUS & TACACS)
  • Two (2) Factor Authentication with AES/3DES Encryption
  • Five (5) types of Tokens
  • AES/3DES full encryption with UniGuard Client, and SSE
  • Fully managed by the DDM, Software based Manager
  • Compatible with CDI UniGuard , and Secure Session Encryptor
  • Cabling Options for ease of bulk installs
  • Network version provides real time management of device and connected devices, Syslog, Telco availability, hardware encrypted network access.

Order Info

PA-44 AES Port Authority-44 plus Advance Encryption Standards.  Secure remote access switch with built-in modem and 4 host ports.  Optional 4 power modules can be attached for remote power reset of network elements.  All security features of the UniGuard are supported. Can be managed by DDM. Triple-Des compatible.
PA-44 AES-IP Port Authority-44 includes Advance Encryption Standards with IP option installed.  Allows telnet access to ports and in band management by DDM. Triple-Des compatible.
PCM-US-2 Power Control Module Wall Mount 20AMP (US 115vac) Power cord included
PCM-US-3 Power Control Module Inline 10AMP (US 120vac) Power cord included
PCM-EU-4 Power Control Module Inline 16AMP (EU 230vac type). Power cord included
PCM-EU-6 Power Control Module Inline 5AMP (EU 230vac type). Power cord included
PCM-48VDC Power Control Module - 48VDC 20amp (No power cord required)

International Units add – XXX for country specific power supply and power connector. (country code will be based on international telephone standard for country code… ie US=001, UK=044, Australia=061)

For information about the international telephone standard, visit this link: http://www.consumer.att.com/global/english/country_codes.html 

Specs

Encrypted Speed: Up to 57.6k Baud AES Cipher Feedback
Clear Text Speed: Up to 115.2k Baud Clear text
Cryptographics:

AES Self-Synchronizing 8-bit Cipher Feedback  128 bit (std.) 192 bit & 256 bit available. Unique key generated for each session. Automatic Generation and Distribution of Session Keys.

Standards Compliance: FIPS 197,  FIPS 140-2,  FIPS 81,  FIPS 74, FIPS 46-3
FCC part 68, FCC Part 15, CE, VDE, UL6950
V92
Internal Battery: Maintains Set-up parameters and Keys in RAM
Tamper Switches:          Erases Keys and all data in RAM if unit is opened or tampered
Interface: Network - 10BaseT RJ45, Telco - RJ11,  Serial - RJ45 (5 = 4 host + 1 console) Power Control – RJ11 (4) to interface power control Modules.  Serial adapters provided for DB9. Application Specific cables available for connection to popular networking equipment.
Power Supply:  US – Input 110VAC 60Hz Output 18VAC  CT  25W max.
Global- IN 110-240VAC 50/60Hz Out 12VDC 25W max
Country specific power cord provided
Size:H= 1.75in(4.5cm) W= 19in(48.5cm) L= 8in(20cm). Standard 19inch Rack Mount
Environmental:Temperature range 0º- 70ºC (32º - 158ºF); Humidity range 20-90% (non-condensing).

 

Diagrams

pa-44-diagram

Click the image to download a PDF version of the diagram.

The above diagram shows a number of technicians accessing the maintenance port of remote Routers, Servers and other equipment. The is a cluster of 4 devices plus 4 Power Reset Ports, all protected by a single Port Authority. The remaining equipment is protected with UniGuard-V34s. The Security Manager is operating CDI’s DDM Distributed Database Manager software.