Comparing the Best Out-of-Band Management Devices
We’ve commissioned this third-party study, which uncovered these Gen 3 Out-of-Band capabilities that you should look for:
- Low-level remote access to all interface types
- Integrated, certified 4G/5G for failover and management
- Support for third-party and custom automation for scripting, patching, and deploying virtual appliances
- VM and Docker hosting directly on the device
- Cloud-enabled global fleet management
- Full isolation of management interfaces
- Environmental sensor compatibility with native support
- Security at the hardware, software, and cloud levels, validated by a third party
- 2-factor authentication via Duo, Okta, ADFS, and more
Out-of-band (OOB) management devices, also known as OOB serial consoles or console servers, provide access to and control over remote data center infrastructure. While they’re known for giving management access over serial connections, they can control any management interface, such as KVM (keyboard-video-mouse), IPMI, WebUI, API, Rack PDU, or environmental sensor ports. The best OOB management solutions combine high-speed out-of-band interfaces, robust internal hardware, advanced security features, and NetOps automation support to provide complete data center management platforms. To help you choose the right enterprise solution, this guide compares the best out-of-band management devices for data center deployments based on these capabilities.
Table of Contents |
Executive Summary
Disclaimer: This comparison was written by a third party in collaboration with ZPE Systems using publicly available information gathered from data sheets and admin guides, as of 3/24/2023. Please email us if you have corrections or edits, or want to review additional attributes, at matrix@zpesystems.com. |
Vertiv Avocent ACS 8000 | Lantronix Uplogix LM83X | Perle IOLAN SCG LWM | Opengear OM2200 | Nodegrid Serial Console Plus (NSCP) |
4G cellular WAN, failover, and OOB | Manages up to 104 devices | OOB management with 4G LTE cellular, WiFi, or v.92 modem failover | CPU headroom for Guest OS and automation | Gen 3 OOB connectivity with failover to 5G/4G LTE, Wifi, and V.92 modems |
RESTful API and PDU/UPS automation | Flexible OOB and failover options | Support for multiple legacy pinouts with software switch | Uniquely supports over 100 power vendors’ equipment | Runs Docker containers and VM applications |
Automatic pinout conversions | Comprehensive device monitoring and log analysis | Embedded firewall with advanced security features | Integrated SAML 2.0 authentication | Supports management of IPMI, ILO, DRAC, CIMC, vSerial, and KVM in addition to RS-232 serial |
Limited Build-in automation options for routine management | On-premises or self-hosted cloud management | “Smart” OOB with automatic port discovery | Hardened device security with features like TPM 2.0, Encrypted solid state disk, UEFI BIOS with protection, Secure boot (signed OS), and Geofencing | |
Supports Opengear NetOps modules for Bash, Docker, Pearl, Python, and Ruby | On-premises or managed cloud software options | |||
Vendor-neutral automation of end devices using Ansible, Salt, Docker, Python, Ruby, Bash and more |
Comparing the best out-of-band management devices
Vertiv Avocent ACS8000
The Avocent ACS8000 is Vertiv’s OOB serial console for large data center deployments. The ACS8000 provides out-of-band management for up to 48 devices over RS-232 serial and 8 devices over USB. This model improves upon previous iterations by including onboard LTE cellular for primary WAN, failover, and OOB. This out-of-band management device also provides automatic CycladesTM and Cisco pin-out conversions without adapters.
Avocent OOB uses the proprietary DSViewTM management software, which only runs on-premises and isn’t accessible in the cloud. In addition, this software includes some automation support for Zero Touch Provisioning (ZTP), RESTful API Python and Perl scripts, and automated PDU (power distribution unit) and UPS (universal power supply) management.
However, the software is not extensible with third-party automation or orchestration integrations. And, since the ACS8000 runs on an ARM CPU architecture, it doesn’t integrate with Docker or VMs to run third-party security, compute, or automation solutions.
Pros: |
Cons: |
|
|
Vertiv Avocent ACS8000 tech specs |
|
Notable OOB Features |
4G LTE cellular WAN, OOB, and failover with 3G fallback Automated power management for major power strip manufacturers Autosensing pinout conversions for Legacy-Cyclades and Cisco Connect up to 8 environmental sensors for temperature, humidity, dry contact, and open door |
Hardware |
Dual-core ARM® Cortex™-A9 MPCore™ CPU with CoreSight™ 1 GB DRAM 16 GB flash storage 8, 16, or 32 x RS-232 serial ports 8 USB 2.0 ports |
Software |
Embedded Linux OS Vertiv DSViewTM on-premises management software |
Security |
Authentication via local, RADIUS, TACACS, LDAP/AD, NIS, and Kerberos Fast port speeds Two-factor authentication (2FA) Zero Trust Provisioning (ZTP) |
Lantronix Uplogix LM83X
The Uplogix LM83X is an out-of-band console server capable of managing up to 56 devices over serial in a 1U form factor, with additional ports available with the use of three expansion bays in a larger form factor. OOB and failover use 4G LTE cellular, POTS, fiber, DSL, or satellite, providing a lot of flexibility. One of the Local Manager’s strengths is its device monitoring capabilities, which include monitoring for device CPU and memory utilization, interface status and statistics, and terminal session commands. In addition, Local Manager supports OOB management of KVM in addition to serial.
The LM83X now uses the Lantronix Control Center on-premises software for OOB management, which includes some automation and playbook capabilities using the Lantronix Rules Engine for routine management, monitoring, and recovery workflows but doesn’t support any third-party automation tools or custom scripts. For security, the LM83X supports secure SSH tunnels, advanced authentication, and IP and caller ID filtering, but it lacks VPN functionality and SAML 2.0 support.
Like the ACS8000, the LM83X also runs on an ARM CPU architecture, so it can’t run Guest OSes to extend its security or automation capabilities. Another thing to keep in mind is that Uplogix was recently purchased by Lantronix, and it’s uncertain how the Local Manager product line will be integrated or supported in the future.
Pros: |
Cons: |
|
|
Lantronix Uplogix LM83X tech specs |
|
Notable OOB Features |
OOB and failover via POTS, 4G LTE, fiber, DSL, or satellite Comprehensive device monitoring and analysis OOB support of KVM in addition to RS-232 serial Secure SSH sessions and IP/caller ID filtering |
Hardware |
1.2 GHz Quad Core ARM® Cortex™-A72 64-bit CPU 256 GB NVMe Up to 104 x RS-232 serial ports 1 x USB-A and 1x USB-C ports |
Software |
Embedded Linux OS Lantronix Control Center on-premises software |
Security |
Authentication via local, RADIUS, TACACS, and LDAP SSH encryption IP and caller ID filtering Granular access control Zero Trust Provisioning |
Perle IOLAN SCG LWM
The Perle IOLAN SCG LWM serial console is a modular solution with two on-board USB 3.0 ports and three expansion bays that support any combination of three 16-port serial RJ-45 or USB 3.0 interface cards for up to 50 managed ports. For OOB and failover, the SCG LWM comes with on-board 2.4 and 5 GHz Wi-Fi, integrated POTS, built-in 4G LTE cellular, and two fiber ports. While the 500 MHz 32-bit ARM processor can’t run VMs or automation, the SCG LWM does support both Cisco and legacy RS-232 pinouts out of the box with additional support for RS-422 and RS-485 available by software switch.
The Perle IOLAN SCG LWM comes with an embedded firewall with advanced security features and a variety of authentication methods including 2FA but lacks SAML 2.0 support. Perle OOB console servers use the PerleView management software which runs on-premises or in a self-hosted cloud. PerleView provides some automation capabilities – such as automatic firmware updates, ZTP, and LLDP auto-discovery – but it can’t host or integrate any third-party automation or orchestration solutions.
Pros: |
Cons: |
|
|
Perle IOLAN SCG LWM tech specs |
|
Notable OOB Features |
OOB and failover via Wi-Fi, POTS, 4G LTE, or fiber Supports multiple legacy pinouts via software switch Comprehensive firewall and security features On-premises and self-hosted cloud management options |
Hardware |
500 MHz core 32-bit ARM CPU 1 GB DRAM 4 GB flash storage 18, 34, or 50 x RS-232, USB 3.0, or RS-422/485 ports |
Software |
Embedded Linux OS PerleView on-premises or self-hosted cloud management software |
Security |
Authentication via HTTP/HTTPS, CLI/Piping, Telnet, SNMPv1/v2/v3, RESTful API, TACACS+, RADIUS, LSAP, NIS, and Kerberos Embedded firewall with advanced security features Two-factor authentication Zero Trust Provisioning |
Opengear OM2200
The Opengear OM2200 console server provides OOB management for up to 48 devices over serial with an option for a 24 serial/24 ethernet mixed port model. The OM2200 uses dual fiber ports for OOB and failover, with an optional LTE-A Pro cellular module available as well. This model comes with an AMD X86, 64-bit CPU, 64 GB solid state storage, and 8 GB of DRAM, which means it’s able to run Guest OSes and automation tools and supports larger line buffers. One of the OM2200’s biggest strengths is its power management capabilities – it supports over 100 power vendors’ equipment, enabling multi-vendor remote monitoring, automation, and access permission enforcement. Additionally, Opengear’s Lighthouse management software now supports SAML 2.0, providing extra security on top of the embedded firewall features.
The OM2200 is part of the Operations Manager line of NetOps console servers, which means they’re optimized for network automation. Opengear’s Smart OOBTM solutions include automated port discovery and VLAN support, while Lighthouse software includes Opengear automation modules and supports Python scripts and Docker container deployments.
However, access to Zero Touch Provisioning or RESTful APIs is limited to the upgraded Automation Edition of the Lighthouse software. Operations Manager does not support any other third-party integrations for automation or orchestration, which limits its ability to extend automation to end devices.
Pros: |
Cons: |
|
|
Opengear OM2200 tech specs |
|
Notable OOB Features |
OOB and failover via fiber or 4G LTE X86 processor can run Guest OSes and automation Uniquely supports over 100 power vendors’ equipment Supports automatic port discovery, Lighthouse playbooks, Python scripts, and Docker containers On-premises and self-hosted cloud management options |
Hardware |
AMD X86, 64-bit CPU 8 GB DRAM 64 GB SSD 16, 32, 48 x Serial, or 24 x Serial/24 x Ethernet mixed |
Software |
Embedded Linux OS Opengear Lighthouse on-premises or self-hosted cloud management software |
Security |
Authentication via RADIUS, TACACS+, Kerberos, and SAML 2.0. Embedded firewall Two-factor authentication Trusted Platform Module 2.0 |
Nodegrid Serial Console Plus
The Nodegrid Serial Console Plus (NSCP) from ZPE Systems is a Gen 3 OOB solution with up to 96 serial RJ-45 ports in a 1U form factor device (Patent No. 9,905,980). The NSCP provides failover and out-of-band management via 5G/4G LTE, Wi-Fi, V.92 POTS modem, or fiber, making it the only 5G option out of all the out-of-band management devices on this list. With an Intel X86 CPU, up to 8 GB of DRAM, and 32 GB of flash storage, the NSCP has plenty of headroom for VMs and Docker containers. In fact, the NSCP’s vendor-neutral hardware and embedded Linux OS support the direct hosting of third-party tools for security, automation, orchestration, and more.
The Nodegrid solution supports OOB management over:
- IPMI
- ILO
- DRAC
- CIMC
- vSerial
- KVM
- RS-232 serial
The NSCP is protected by robust hardware security features like BIOS protection and UEFI Secure Boot, an embedded firewall with selectable cryptographic protocols and multi-site IPsec VPN, and advanced authentication methods with 2FA and SAML 2.0. Nodegrid OOB management software comes in the form of Nodegrid Manager for on-premises or ZPE Cloud for a managed cloud solution. Both options are completely vendor-neutral, which means they support third-party automation scripts and tools including Chef, Puppet, Python, RedHat Ansible, Ruby, and more. Nodegrid can extend this automation to end devices, giving teams complete end-to-end orchestration of data center deployments.
Pros: |
Cons: |
|
|
Nodegrid Serial Console Plus (NSCP) tech specs |
|
Notable OOB Features |
OOB and failover via 5G/4G LTE, Wi-Fi, POTS, or fiber X86 Intel processor can run Docker containers, VM apps, and automation OOB support over IPMI, ILO, DRAC, CIMC, vSerial, and KVM Vendor-neutral support for automation via Chef, Puppet, Ansible, Python, and more On-premises and managed cloud software options |
Hardware |
Intel X86, 64-bit CPU 4 GB / 8 GB DRAM 32 GB SSD 16, 32, 48, 96 x Serial ports |
Software |
Embedded Linux Os Nodegrid Manager on-premises or ZPE Cloud managed cloud software |
Security |
Authentication via Local, RADIUS, TACACS+, LDAP/AD, NIS, Kerberos, and SAML 2.0 Embedded firewall Two-factor authentication Trusted Platform Module 2.0 Encrypted solid state disk UEFI BIOS with protection Secure Boot (signed OS) Geofencing Zero Trust Provisioning |
Choosing the best out-of-band management device
The Vertiv Avocent ACS8000 provides OOB over 4G for up to 56 devices, supports RESTful API and PDU/UPS automation, and provides automatic pinout conversions, but it can only be managed by on-premises software, and doesn’t support any third-party applications, automation, or orchestration.
The Lantronix Uplogix LM83X manages up to 56 devices in a 1U form factor with OOB over 4G, POTS, fiber, DSL, or satellite. It provides comprehensive device monitoring but only with on-premises management software, and it doesn’t support Guest OS or any third-party applications, automation, or orchestration.
The Perle IOLAN SCG LWM provides OOB for up to 50 devices using Wi-Fi, POTS, 4G, or fiber, supports multiple legacy pinouts, and comes with advanced security features. However, it has limited processing power, can’t run Guest OS or third-party automation, and it lacks support for environmental monitoring sensors.
The Opengear OM2200 supports up to 48 devices over serial with OOB over fiber or an optional LTE cellular module, can run Guest OSes and automation, supports over 100 power vendors’ equipment, and supports integrated SAML authentication. However, it has limited OOB and failover options, only supports ZTP with an upgraded edition of the software, and only supports Python for end-device automation.
The Nodegrid Serial Console Plus provides OOB for up to 96 serial devices via 5G/4G cellular, Wi-Fi, POTs, or fiber. Its powerful, vendor-neutral hardware can run Docker containers, VM applications, and any third-party applications including security, automation, and orchestration solutions. With both on-premises and managed cloud software options, the NSCP provides OOB management over IPMI, ILO, DRAC, CIMC, vSerial, and KVM, and supports integrations with third-party tools such as Chef, Puppet, Ansible, and Python.
All of the out-of-band management devices on this list provide robust solutions for enterprise deployments with some automation capabilities. However, there is only one console server that enables true end-to-end NetOps automation with vendor-neutral support for your choice of third-party tools and scripts—the Nodegrid Serial Console Plus.
Deploy the best out-of-band management device in your data center
When you compare the OOB features, security technology, hardware, and automation capabilities of the best out-of-band management devices, there’s only one choice for scalable, Gen 3 OOB control: The Nodegrid Serial Console Plus. The NSCP is the only console server solution with 5G cellular OOB, hardened device security features, cloud software you don’t have to host yourself, and complete vendor freedom to use your choice of third-party automation and orchestration solutions.