Remote Serial Console

Secure Data Center & IT Infrastructure Manager

Serial Console is currently incompatible with a managed boot diagnostics storage account. To use Serial Console, ensure that you are using a custom storage account. Your VM or virtual machine scale set instance must use the resource management deployment model. Classic deployments aren't supported. Your account that uses serial console must have the Virtual Machine Contributor role for the VM and the boot diagnostics storage account. Your VM or virtual machine scale set instance must have a password-based user. You can create one with the reset password function of the VM access extension. Select Reset password from the Help section. The VM for virtual machine scale set instance must have boot diagnostics enabled. If you are not seeing anything in the serial console, make sure that boot diagnostics is enabled on your VM or virtual machine scale set.

IOLAN SCG Secure Console Server

Connect to your Windows virtual machine by using Remote Desktop. From an administrative command prompt, run the following commands:. bcdedit /ems {current} on, or bcdedit /ems '{current}' on if you are using PowerShell. Reboot the system for the SAC console to be enabled. Attach the windows disk for which you want SAC configured as a data disk to the existing VM. From an administrative command prompt, run the following commands:. Connect to your Windows VM or virtual machine scale set instance by using Remote Desktop.

  • From an administrative command prompt, run the following commands:.
  • Reboot the system for the boot menu to be enabled. The timeout that you set for the boot manager menu to display will impact your OS boot time.
  • If you think the 10-second timeout value is too short or too long, set it to a different value. Connect to the serial console.
  • If you successfully connect, the prompt is SAC>:. Enter cmd to create a channel that has a CMD instance. Enter ch -si 1 or press the + shortcut keys to switch to the channel that's running the CMD instance.
  • Press Enter, and then enter sign-in credentials with administrative permissions. After you've entered valid credentials, the CMD instance opens.
  • To start a PowerShell instance, enter PowerShell in the CMD instance, and then press Enter. No access passwords for the console are logged.
  • However, if commands run within the console contain or output passwords, secrets, user names, or any other form of personally identifiable information (PII), those will be written to the VM boot diagnostics logs.
  • They will be written along with all other visible text, as part of the implementation of the serial console's scroll back function.

Select the Console Server with the Out-of-Band access method of your choice:

Why Choose a Perle Console Server?

Secure Centralized Management

These logs are circular and only individuals with read permissions to the diagnostics storage account have access to them. However, we recommend following the best practice of using the Remote Desktop for anything that may involve secrets and/or PII. This means that a user who's disconnected won't be logged out.

Cisco Compatible Console Server

The ability to enforce a logout upon disconnect (by using SIGHUP or similar mechanism) is still in the roadmap. For Windows, there's an automatic timeout enabled in SAC; for Linux, you can configure the terminal timeout setting.

Reliable Console Server

For an in-depth guide to CMD and PowerShell commands you can use in the Windows SAC, see Windows commands: CMD and PowerShell. The serial console is also available for Linux VMs. Learn more about boot diagnostics. In general the choice between KVM and serial management has to do with the customer and how they want to manage the equipment and whether it has serial or KVM ports.

Secure Console Server

If the equipment only has a serial port like networking or telecom equipment then you would use serial. For Linux servers you could use KVM or serial depending on the user's preference. For windows machines mostly KVM is used, but there is also a serial interface.

Technical Support

Serial only provides a command line interface (CLI) so it doesn't require much IP bandwidth and can be very fast especially over low bandwidth lines. Serial console servers are less expensive because they are simpler devices.

Trust

Serial has some cool features where you can cut and paste to and from the server. It also can log the users session and monitor the system log even when the user isn't connected. KVM over IP will take up more bandwidth, but provides a graphical user interface that is generally easier to use.

Console Server Applications

Out-Of-Band Management White Paper: What is it and Why do I need it?

Comments are closed.