OBSERVE. ANALYZE. ACT.
Support Login

System Management ยท Version 26.2

Device Center

Monitor 01Layer member appliances, manage Device Center membership, copy the Center ID, and issue access tokens for member onboarding.

UI Path: Activity Bar > Device Center; System Settings > Device Center ID: config_device_center
Workflow
  1. Open Device Center to review the fleet summary, Geo Location, member-device cards, and Port Panels.
  2. Copy the Center ID before onboarding a new member appliance.
  3. On the target appliance, open System Settings and choose Issue Access Tokens.
  4. Create an access token for the Center, then copy the generated token secret.
  5. Return to the Center, choose Manage Member Devices, and add the member IP, access method, and token.
  6. Verify the member state and use Port Table, Services, Open Device, or Port Panels for routed operations.

Overview

Use Device Center to monitor and operate multiple 01Layer appliances from one Center appliance. Device Center shows fleet status, member-device cards, Geo Location, routed Port Table and Services actions, and a Port Panels operational tab for online members.

Device Center also provides the member onboarding workflow. A target appliance issues a Device Center access token. The Center uses that token to authenticate to the target, poll identity and health, and route selected standalone APIs to that member device.

Older code, logs, or compatibility identifiers may still use NextIO Device Center or NDC. The customer-facing feature name is Device Center.

Typical Uses

Common tasks include:

  • Review the status of all managed 01Layer appliances from one screen.
  • Add, edit, disable, or remove a Device Center member device.
  • Copy the Center identity used when a target appliance binds an access token.
  • Issue or revoke target-side access tokens for Device Center login.
  • Open a member appliance in a new browser tab.
  • Route Port Table or Services views to an online member appliance.
  • Compare online members with Port Panels in one operational view.

Typical CLI examples:

Show member devices:      show device-center devices
Show one member by UUID:  show device-center devices uuid <device_uuid>
Show one member by IP:    show device-center devices ip 192.168.0.142
Show access tokens:       show device-center tokens
Display from config:      config device-center device
Add a member device:
  config device-center device add ip 192.168.0.142 token <token> method https
Issue an access token:
  config device-center token add name primary-center usergroup Administrator center_id <center_id> binding_mode explicit scopes read

Prerequisites

  • Confirm that you have administrator permission on the Center appliance.
  • Confirm that you have administrator permission on each target appliance that will become a member.
  • Record the target appliance management address. The address can be an IP address or ip:port, such as 192.168.0.142 or 192.168.0.142:8443.
  • Confirm whether the Center should connect to the target with http or https.
  • Copy the Center ID from the Center appliance before creating the target-side access token.
  • Confirm which target-side user group should be associated with the token.
  • Treat the generated access token as sensitive. Copy it when it is created. Existing token displays are masked.
  • Confirm network reachability from the Center to the target management service.
  • Confirm that HTTPS certificate verification policy is acceptable for the deployment. Current compatibility behavior keeps remote member certificate verification disabled by default.

Workflow

  1. Open Device Center from the Activity Bar.
  2. Click the Center ID copy action.
  3. Log in to the target appliance.
  4. Open System Settings, choose Issue Access Tokens, create a Device Center token, and copy the generated token secret.
  5. Return to the Center appliance, open Device Center, and choose Manage Member Devices.
  6. Add the member device with the target IP, access method, and access token.
  7. Verify the member state, then use Port Table, Services, Open Device, or Port Panels as needed.

Expected Behavior

After a member device is added and enabled, the Center logs in to that member with the configured access token. The Center polls identity and health, updates the member state, and routes supported UI actions through the member anchor.

The top-level Device Center view shows:

  • A search field and command actions for Refresh, Center ID, and Manage Member Devices.
  • A summary strip with All, Online, Attention, Offline, and Geo Located filters.
  • A Geo Location panel for members with location information.
  • A horizontally scrolling Member Devices card row.
  • A Port Panels operational tab that renders routed port panels for online members.

Member cards show the device name or IP address, state, home action, IP, uptime, firmware version, Port Table, Services, alert count, Rx, Tx, and a throughput timeline.

If the Center can reach the target and the token is valid, the member moves to Online. If the token or binding is wrong, the member can show Login Failed. If the target management endpoint cannot be reached, the member can show Connectivity Issue. If the target host is reachable but the service gateway does not answer, the member can show SvcGw Down.

Procedure

Review Device Center

  1. Open Device Center from the Activity Bar.
  2. Use the search field to filter by device name, IP address, serial, model, or status.
  3. Use the summary strip to filter All, Online, Attention, Offline, or Geo Located devices.
  4. Review Geo Location for members with configured location data.
  5. Review Member Devices cards for state, alerts, throughput, uptime, and version.
  6. Open Port Panels to compare online member port panels in one scrollable view.

Copy The Center ID

  1. Open Device Center on the Center appliance.
  2. Click Center ID.
  3. Use the copied value when creating or binding the target-side access token.

The same Center ID copy action is also available from Manage Member Devices so the value is available during onboarding.

Issue An Access Token On The Target Appliance

  1. Log in to the target appliance that will become a Device Center member.
  2. Open System Settings.
  3. Choose Issue Access Tokens to open Access Tokens.
  4. Click Add Access Token.
  5. Enter Name of Access Token.
  6. Select User Group.
  7. Enter Allowed Center ID when the token should be bound to a specific Center identity.
  8. Set Center Binding Mode.
  9. Set Scopes for the access that this token should allow.
  10. Enable Enable IP checker and enter Allowed IP Addresses when the token should only accept logins from specific Center addresses.
  11. Apply the workflow.
  12. Copy the generated Access Token secret from the workflow result.

Existing token rows show a masked Access Token value. Use the copy action where available, and rotate the token if the full secret is no longer available.

Add A Member Device On The Center

  1. Return to the Center appliance.
  2. Open Device Center.
  3. Click Manage Member Devices.
  4. Click Add Device.
  5. Enter Device IP Addresses. Use ip:port when the target listens on a non-default port.
  6. Paste the target-side Access Token.
  7. Select Access Method as http or https.
  8. Enter Description when useful.
  9. Keep Enable selected for normal operation.
  10. Keep Check connectivity selected when the workflow should validate the member during creation.
  11. Apply the workflow.
  12. Confirm that the member appears in Device Center and moves to the expected state.

Operate A Member Device

  1. Open Device Center.
  2. Find the member card.
  3. Click the home icon to open the member appliance login page in a new browser tab.
  4. Click Port Table to open the routed member Port Table view.
  5. Click Services to open the routed member Services view.
  6. Use Port Panels for a high-density, read-only port status view across online members.

Edit Or Remove A Member Device

  1. Open Device Center.
  2. Click Manage Member Devices.
  3. Select the member row.
  4. Use Edit to update IP, token, method, description, enablement, or connectivity-check behavior.
  5. Use Remove to delete the member from Device Center.
  6. Use the planned offline or online workflow when the member should be marked intentionally unavailable or returned to normal handling.

Check From The CLI

Display configured member devices:

show device-center devices

Display one member device by UUID:

show device-center devices uuid <device_uuid>

Display one member device by IP address:

show device-center devices ip 192.168.0.142

Display configured devices from the config command path:

config device-center device

Display access tokens:

show device-center tokens

Display one token by UUID or name:

show device-center tokens uuid <token_uuid>
show device-center tokens name primary-center

Token displays mask existing secrets. The generated token secret is revealed when the token is created.

CLI Device Commands

Add a member device:

config device-center device add ip 192.168.0.142 token <token> method https

Add a member device on a non-default port:

config device-center device add ip 192.168.0.142:8443 token <token> method https desc "rack 2 member" enable true check_device true

Edit a member device:

config device-center device edit uuid <device_uuid> method http

Edit a member device token:

config device-center device edit uuid <device_uuid> token <new_token> check_device true

Mark a member as planned offline:

config device-center device offline uuid <device_uuid>

Return a member to normal online handling:

config device-center device online uuid <device_uuid>

Delete a member device:

config device-center device delete uuid <device_uuid>

CLI Token Commands

Issue an access token on the target appliance:

config device-center token add name primary-center usergroup Administrator center_id <center_id> binding_mode explicit scopes read

Issue a token with source-IP checking:

config device-center token add name primary-center usergroup Administrator center_id <center_id> binding_mode explicit scopes read ip_checker_enable true allowed_ip_list 192.168.0.10

Edit token metadata or policy:

config device-center token edit uuid <token_uuid> name primary-center enable true center_id <center_id> binding_mode explicit scopes read

Disable a token without deleting it:

config device-center token edit uuid <token_uuid> enable false

Delete and revoke a token:

config device-center token delete uuid <token_uuid>

Field Reference

Member Device Fields

CLI Field UI Field Type Or Values Notes
uuid Entry UUID UUID Device Center configuration entry UUID. Use this value for edit, delete, offline, and online commands.
ip Device IP Addresses IP address or ip:port Target member management address.
token Access Token Token secret Target-issued Device Center access token used by the Center to log in.
method Access Method http, https Protocol used by the Center when contacting the member.
desc Description String Operator description for the member device.
enable Enable Boolean Enables or disables Center access to this member.
check_device Check connectivity Boolean Validates member connectivity during add or edit workflow execution.
none Access State State string Runtime state such as Online, Login Failed, Connectivity Issue, SvcGw Down, or Planned Offline.
none Remote UUID UUID Remote Device Center UUID discovered from the member.
none Last Error Text Most recent runtime error for troubleshooting.
none System Info Key-value details Remote system information reported by the member.
none Capabilities Key-value details Remote capabilities reported by the member.

Access Token Fields

CLI Field UI Field Type Or Values Notes
uuid Token UUID UUID Token entry UUID. Use this value for edit and delete commands.
name Name of Access Token String Operator-facing token name.
desc Description String Operator description for the token.
enable Enable Boolean Enables or disables token login.
ip_checker_enable Enable IP checker Boolean Restricts token login to the allowed source addresses when enabled.
allowed_ip_list Allowed IP Addresses IP address list Source addresses allowed to use the token when IP checking is enabled.
token Access Token Token secret Generated secret. Existing displays are masked.
usergroup User Group User group User group assigned to sessions created by this token.
center_id Allowed Center ID UUID Device Center identity allowed to use the token.
binding_mode Center Binding Mode explicit, first_use Controls how the token is bound to a Center identity.
scopes Scopes Comma-separated values Device Center token scopes, such as read.

Confirmation And Rollback

Member-device and access-token changes run as workflow tasks. Review the workflow result after applying a change.

To roll back a member-device edit, reapply the previous IP, method, token, enablement, and description values. To stop a member from being used without deleting it, set Enable to disabled or mark the member planned offline.

To roll back a token change, reapply the previous token policy. If a token secret was exposed or is no longer available, create a new token, update the Center member-device entry with the new secret, and delete or disable the old token.

Deleting a member removes the Center-side membership entry. Deleting a token on the target revokes future Device Center logins that use that token.

Notes

  • Device Center is the operator-facing name. NDC and NextIO Device Center can still appear in internal identifiers, legacy workflow names, and compatibility data.
  • Access tokens are issued on the target appliance. The top-level Device Center dashboard does not issue target-side tokens.
  • Center ID is identity data, not a shared secret. The access token remains the credential.
  • Preserve the Center ID across backup, restore, upgrade, and replacement workflows unless an explicit Center identity rotation is intended.
  • The home icon opens the member appliance login page in a new browser tab.
  • Port Table, Services, and Port Panels use routed member APIs. If the member standalone API is unavailable, the routed view is unavailable too.
  • Port Panels only render for online member devices that match the current filters.
  • Existing token displays are masked. Copy the full token secret when it is generated, or rotate the token if the secret is lost.

Troubleshooting

Member Shows Connectivity Issue

Verify the member IP address or ip:port, routing, ACLs, firewall rules, and the selected Access Method. Confirm that the Center can reach the target management endpoint.

Member Shows SvcGw Down

The target host may be reachable while the service gateway or management API is not responding. Check the target appliance services and restart the management service if required.

Member Shows Login Failed

Verify that the target-side token is enabled, the token secret is correct, the token user group still exists, and Allowed Center ID matches the Center identity. If Enable IP checker is enabled, confirm that the Center source address is present in Allowed IP Addresses.

Token Secret Cannot Be Recovered

Existing token displays are masked. Create a new token, copy the generated secret, update the Center member entry, then disable or delete the old token.

Port Table Or Services Does Not Open

Confirm that the member state is Online. If the member is online but the routed view fails, open the member appliance directly with the home icon and check whether the same standalone view works on the target.

Port Panels Are Empty

Confirm that online members match the current search and summary filters. Port Panels renders only online members that can return the routed port panel snapshot.

The Device Center Command Is Not Listed

Use show ?, show device-center ?, config ?, and config device-center ?. The supported command token is device-center; do not use device_center.

Use Device Information to set the local appliance name and location. Use System Access Methods and Device Management Access ACL to control how management clients reach each appliance. Use Remote Syslog, SNMP and Trap Service, and Event Browser for monitoring and event forwarding outside Device Center.

Related Topics

Device Center Member Devices Access Tokens Center ID Port Panels l01sh