Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College.

Published byShonda Hancock Modified over 8 years ago

Similar presentations

Presentation on theme: "Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College."— Presentation transcript:

1 Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College

2 In The Beginning…

3 And on the Second Day…

4 And Ralph Created DHCP And it was good. Ralph Droms was author of most of the DHCP RFCs Durga is the Hindu Mother Godess. She kills demons!

5 Wasn’t It?

6 Problems to Solve: Self Service Registration Ownership and Location Tracking VLAN Assignment Quarantine Unregistered Machines

7 Problem Solver: Ashley Frost Senior Network & Systems Administrator Williams College

8 Autohost Automatic Host Registration and Maintenance

9 Challenges Every year over 500 new students arrive on campus with computers that need to be registered. This involves verifying identities, recording MAC addresses of the new hosts, and assigning unused static IP addresses within the appropriate VLANs.

10 The Real Challenges Most students arrive on the same day They often have no virus protection and probably have one or more viruses. Students depend on immediate network access for other services such as course registration.

11 How we used to do it… All hands on deck! Long lines Badly handwritten notes with usernames and MAC addresses Confused users Data entry and the typos that go with them

12 Then we got a little smarter… We found a non-intrusive way to tie an authenticated username to a MAC address Unix login scripting: Autohost v1-3 Client passes Authenticated Identity w/ IP address Server checks IP against dynamic DHCP lease database and registers user if new.

13 Better, but still more to do No more waiting to register. “Yay!” No more slips of paper. “Yay!” Requirement to log into unix timeshare to register a host. Sometimes students would register themselves to lab machines. “Boo!” No protection from unregistered hosts with viruses. “Boo!”

14 also.. Limited management capability via a text- based menu system No easy mechanism for registering multiple hosts to one user No information available about host location No provision for expiring hosts

15 Autohost IV Web based interface for all operations Integrated with LDAP VLAN Aware No requirement for unix login Multiple privilege levels for host maintenance (User, Support Desk, Admin) Intuitive for end-users

16 Nuts and Bolts All unregistered hosts (hosts not in a cisco vmps table) fall into the default “unregistered” VLAN. Simple rigged DNS responder in unregistered VLAN DHCP for unregistered VLAN assigns this rigged responder as the primary nameserver

17 Registration Prior to logging in, users see information about virus removal tools Users authenticate against unix via IMAP but could also use LDAP LDAP provides additional info such as full name and status (faculty/staff/student) Users are given a list of prior registered hosts and a chance to delete them

18 Registration continued Additional voluntary information can be entered such as Host Location & Type Some fields may be modifiable by support staff that are presented as static fields to end-users. eg. Hostname, VLAN, Expiration Date Finally, a thank you message with further instructions

19 Behind the Scenes Hosts are registered as LDAP records Extensive error checking for every host Separate utilities build configuration files from this database for static DNS and DHCP assignments A Cisco VMPS table is constructed from this database and downloaded to the switches

20 Host Maintenance Multiple tiers of privilege separation eg. Support desk can register hosts for other users, but cannot modify anything in the Server VLAN Switching a host from one vlan to another is as simple as selecting one from a dropdown list. All new hosts are entered with some default expiration time

21 Putting it all together Small server for fake DNS responder Primary DNS/DHCP/Web server with two network interfaces Apache + PHP + LDAP + IMAP support Openldap gen-dns, gen-dhcp, gen-vmps scripts

22 Tying it in with Network Management

23

24

25

26 Questions?

Download ppt "Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College."

Similar presentations

People Database project John Byrne. Project aims Improve current Computing Service resource management processes Provide a reference 'People Database'

People Database project John Byrne. Project aims Improve current Computing Service resource management processes Provide a reference 'People Database'
1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.
SmartCall™ SMS SmartCall SMS by HME Wireless is a great tool to manage your patient workflow through your facility. Using the SmartCall SMS system, staff.

SmartCall™ SMS SmartCall SMS by HME Wireless is a great tool to manage your patient workflow through your facility. Using the SmartCall SMS system, staff.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.
DNR-322L & DNR-326.

DNR-322L & DNR-326.
1 Basic Installation and GUI Tech 130. 2 Basic Installation and GUI : Objectives  Installing the Quadro  Configuring the Quadro  Installing IP phones.

1 Basic Installation and GUI Tech Basic Installation and GUI : Objectives  Installing the Quadro  Configuring the Quadro  Installing IP phones.
KX-NS1000 Initial Set Up For step by step : 16 May, 2012 1.

KX-NS1000 Initial Set Up For step by step : 16 May,
Nassau Community College

Nassau Community College
NetReg Net·Reg - /'net-rej/ noun A web-based registration application for the management of system, network and contact information.

NetReg Net·Reg - /'net-rej/ noun A web-based registration application for the management of system, network and contact information.
Network Asset Management at Jefferson Lab Bryan Hess, Andy Kowalski, Brent Morris,

Network Asset Management at Jefferson Lab Bryan Hess, Andy Kowalski, Brent Morris,
University of Michigan Residence Halls Networking In-Room Student Registration System

University of Michigan Residence Halls Networking In-Room Student Registration System
SmartCall™ Messenger Account Setup

SmartCall™ Messenger Account Setup
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
Cornell University Library Instruction Statistics Reporting System Members: Patrick Chen (pyc7) Soo-Yung Cho (sc444) Gregg Herlacher (gah24) Wilson Muyenzi.

Cornell University Library Instruction Statistics Reporting System Members: Patrick Chen (pyc7) Soo-Yung Cho (sc444) Gregg Herlacher (gah24) Wilson Muyenzi.
AutoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University.

AutoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University.
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.

Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
Asset: Academic Survey System & Evaluation Tool Bert G. Wachsmuth Seton Hall University.

Asset: Academic Survey System & Evaluation Tool Bert G. Wachsmuth Seton Hall University.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.

CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.
DVG-N5402SP.

DVG-N5402SP.

Similar presentations

Ads by Google