Detailed Description

Intel AMT makes it possible to redirect serial and data storage communications from a managed client to a management console, regardless of the boot and power state of the managed client. The client need only have the Intel AMT capability, a connection to a power source and a network connection. This functionality is made available through a C interface for integration into third-party management consoles.

For security purposes, Intel AMT requires that the following steps are performed before SOL and Storage Redirection can operate.

 Note:

   Step 1 is always required.

   Steps 2 and 3 are required only when Intel AMT is configured in Enterprise mode (which is always the case starting with Release 6.0).

To know if a KVM session is open over a Wired or Wireless connection, check to which service class the AMT_EthernetPortSettings is connected.

 

1. Enabling SOL/Storage Redirection in the BIOS Extension

The Intel AMT MEBx SOL/IDE-R menu item must be configured to enable the SOL/Storage Redirection capabilities.

 Note:

Beginning in version 11.0, Storage Redirection uses the USB-R protocol rather than the IDE-R protocol. The menu item has not been changed so as to preserve backwards compatibility.

SOL and Storage Redirection MEBx settings cannot be enabled remotely. Selecting the menu item displays three enable/disable selections. The Username and password option, when enabled, allows the redirection interface to use the username and password of a Digest ACL entry sent in the clear to authenticate an SOL/Storage Redirection session. This option is known as “basic authentication”, and is deprecated starting with Release 7.0. Disabling the username and password option means that SOL/Storage Redirection will authenticate only by using Digest authentication or by using Kerberos ACL entries. The remaining two choices allow enabling/disabling SOL and Storage Redirection independently.

Release 6.0 adds a fourth option: Legacy Redirection Mode, which also has a choice of enable or disable. When legacy redirection mode is enabled, the redirection listener is enabled after setup and configuration completes. This can ensure compatiblity with management consoles created to work with the legacy SMB mode and do not have a mechanism implemented to enable the listener remotely.

2. Enabling SOL/Storage Redirection in the Interfaces

Once the BIOS extension settings are correct, a user with administrative privileges must enable the SOL/Storage Redirection interfaces. In releases before 6.1, this must be done via a remote interface. In 6.1 and later releases, you can enable SOL and Storage Redirection also via the local interface.

3. Enabling the Redirection Listener

The Redirection WS-Management interface is used to enable the Intel AMT Redirection listener sockets.

 Note:

   The redirection listener ports are disabled by default on Intel AMT devices. The ports must be enabled to interact with an Intel AMT-managed workstation.

   The read-only AMT_GeneralSettings.PrivacyLevel property determines if SOL and Storage Redirection were enabled by the OEM. See General Info.

 

See Also:

   Enabling the SOL Interface

   Enabling the Storage Redirection Interface

   Enabling the Listener State

   Intel AMT MEBX Setup Types

Copyright © 2006-2017, Intel Corporation. All rights reserved.