NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of...
-
Upload
giles-mason -
Category
Documents
-
view
213 -
download
1
Transcript of NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of...
![Page 1: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/1.jpg)
NDS and The Computing Infrastructure
David S. Condrey, Eric Hester, Dan Schmiedt
Division of Computing and Information Technology
CLEMSONU N I V E R S I T Y
July 8, 1997
![Page 2: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/2.jpg)
Agenda
Background on Clemson IS
Mission & Support Structure
Userid Management Network Design Server & Network
Access Public Access Labs
Printing Electronic Mail Intranet Authentication Server Futures
![Page 3: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/3.jpg)
Background onClemson Information
Systems
![Page 4: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/4.jpg)
Background
Large Systems Background Strong Development Shop Mainframe and Open Systems Expertise Departmental LANs ruled 90’s until NDS NDS populated in Summer 1995 (36,000) Departmental LANs gone. More centralized
management of the network. NDS is centerpiece of security and authentication.
![Page 5: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/5.jpg)
Mission &
Support Structure
![Page 6: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/6.jpg)
Mission
Provide computing infrastructure. Empower Users and Departments. Provide guidance in selecting solutions
based on industry standards. Deploy solutions to meet the needs of
institutional computing. Provide user support and training.
![Page 7: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/7.jpg)
Defining Groups
Network Services - supports the physical network…routers, hubs, backbone
LAN Systems - supports application, group, and personal data servers.
Client Support Group (CSG) - supportsfaculty and staff via TSPs.
Systems Integration Group (SIG) - supports students and departmental labs.
![Page 8: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/8.jpg)
Defining (more) Groups
Computer Resources - assists with user account problems (DCIT sponsored).
College Consultants - DCIT sponsored person and college sponsored person(s) that help support the end users of the college.
Technology Support Provider (TSP) - supports faculty/staff end users
Help Desk - sponsored by DCIT to assist end users.
![Page 9: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/9.jpg)
Support Structure
Support is based on a four tier model.Problems
Resources
ClientSupport
SystemsIntegration
LANSystems
NetworkServices
TSPs
HelpDesk
FacultyStaff
Students
1 2 3 4
CollegeConsultant
ComputerResources
![Page 10: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/10.jpg)
Server Strategy & Management Novell and NT servers maintained by Divison of
Computing & Info Tech (DCIT). DCIT provides hardware and Network Operating
System (NOS). DCIT administers backups. DCIT performs user administration. Group maintains data and security with help of a
Tech Support Provider (TSP). Virus Protection and Software Metering
![Page 11: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/11.jpg)
UseridManagement
![Page 12: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/12.jpg)
Automatic Userid System (AUS)
AUS
Personnel Admissions
MVS
Unix
NDS
Other
Other
![Page 13: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/13.jpg)
Automating User Maintenance
MVS
Personnel AdmissionsOther
AUS
Present
Daily UIMPORT Run
Summer ‘97
USRMAINT.NLM
FTP
TCP/IPRealTime
NDS
• Add UsersAdd Users• Modify User AttributesModify User Attributes• Delete UsersDelete Users
![Page 14: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/14.jpg)
Network Design
![Page 15: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/15.jpg)
Physical Network Design
100BTSwitch
FDDI
ServerServer Server
Server
Server
Server
Server
100BT
T1
![Page 16: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/16.jpg)
Tree Design
U se rs O rg an iza tio ns
C le m so nU
![Page 17: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/17.jpg)
Every Person Has a Place
A to Z
S tud en ts
A to Z
M is c
A to Z
E m plo yee O rg an iza tio ns
C le m so nU
![Page 18: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/18.jpg)
Every Group Has a Place
U se rs A th le tics D C IT
F o re s try R e se a rch D e a n s O ffice
C A F LS C E S
C le m so nU
![Page 19: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/19.jpg)
Partition Design
A B Z
S tud en ts
A B Z
E m plo yee A th le tics
C S O C S G A P S
D C IT
C le m so nU
![Page 20: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/20.jpg)
Use Dedicated “ROOT” Servers for NDS Replicas
CU_ROOT_3
100BTSwitch
CU_ROOT_1
CU_ROOT_2
(ITC)
Masterfor all
R/W for all
R/W for users“A” to “Z”
Group Server
R/W optional
FDDI
![Page 21: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/21.jpg)
Distribute Network Management
![Page 22: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/22.jpg)
Login Script Design
Based on Profile scripts and User scripts. No container scripts. Use base profiles: (EMPLOYEE, STUDENT) Base profile includes high level organizational
scripts based on membership. Organizational scripts controlled by TSPs. Organization scripts may include departmental
scripts managed by others.
![Page 23: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/23.jpg)
Script Design & Management
User Script
.EMPLOYEE.employee.clemsonu
.GROUPIFS.employee.clemsonu
.ENG.ces.clemsonu
.BioE.ces.
.AG.cafls.clemsonu
.Forestry.cafls..Civil.ces.
ISALAB
![Page 24: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/24.jpg)
Server Time Sync Hierarchy
ServerC
Ref
ServerA
Prim
ServerB
Prim
ServerD
Secon
ServerE
Secon
ExternalSource
![Page 25: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/25.jpg)
Server and NetworkResource Access
![Page 26: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/26.jpg)
Personal Storage (User Data Servers)
StudentD
EmployeD
Any Faculty or Staff Member
Any Student
Office, Lab, or DialUp
Dorm, Lab, or DialUp
![Page 27: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/27.jpg)
Personal Data Server Configuration
EmployeD StudentDProcessor Dual Pro-166 Dual Pro-200Memory 512MB 768MBDisk 50GB -RAID5 93GB -RAID5Replicas None NoneHomedirs ~11,000 ~25,000Base Quota 100MB 25MB
![Page 28: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/28.jpg)
Collaborative Storage - “Group Servers” (Faculty & Staff)
Group Server2
EmployeD
Group Server1
![Page 29: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/29.jpg)
Collaborative Storage - “App Servers” (Students)
StudentD
Applications Server(N)
![Page 30: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/30.jpg)
Group/App/Root Server Average ConfigurationGroup App RootP200 P166 Pro-200128MB 64MB 256MB8GB 4GB 2GBPossible R/W None All Replicas25-250 Users 25-250 Users 250-800 UsersSYS,SHARE SYS SYS
![Page 31: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/31.jpg)
Collaborative Storage (Faculty and Students)
App ServerEmployeD
Group Server1 StudentD
![Page 32: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/32.jpg)
Public Access Labs
![Page 33: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/33.jpg)
DCIT Public Access Labs
For Everyone (not just Students). Consist of Mac and PC workstations. Every user has virtual “personal PC”. All labs are identical to the user. Each lab has an “application server”. General purpose apps supplied by DCIT. DCIT installs and administers applications for
departments.
![Page 34: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/34.jpg)
Departmental Labs
Marry DCIT’s public lab framework with the specialized needs of a department lab.
Space and workstations provided by the department.
Maintained by the department and SIG. Allow the user access to the “lab” from
anywhere.
![Page 35: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/35.jpg)
Supported Operating Systemsin Public Labs
Macintosh (System 7.6) Windows 3.11 Windows 95
![Page 36: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/36.jpg)
Macintosh Lab Operation
System 7.6 boots normally. “Assimilator” is launched from the startup
items to ensure drive integrity. Custom contextless login program is
launched. The user logs out returning the machine to
the login program
![Page 37: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/37.jpg)
The Assimilator
AppleShare FileServer
Work-station
Lab 1
Macintosh
WorkstationDisk Image
Applications
Appleshare File Servers contain a image of a “perfect” workstation drive.
Assimilator is not currently NDS aware so, images are currently stored on Macintosh Appleshare fileservers.
The Assimilator performs comparison of the local drive to this “perfect” image.
The Assimilator then copies missing files, replaces modified files, and removes extraneous files.
![Page 38: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/38.jpg)
Macintosh Contextless Login Program not only provides contextless login, but
mounts users home directory on the desktop. We are currently on our second revision. First
revision was written in C++ only using the NWSDK.
Second revision now uses Applescript by means of Eric Bratton’s NDS OSAX scripting additions allowing much more flexibility.
![Page 39: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/39.jpg)
Windows 3.11 Lab Workstation Operation Workstation boots and goes through “Isitcool” process. Workstation runs “The Conformist” to ensure integrity. Workstation loads “MiniWin” with custom contextless
login program. After user logs in, user’s own copy of windows is
launched. All settings are saved at windows exit and user logs out,
returning station to login program.
![Page 40: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/40.jpg)
Isitcool - Fail-over Applications Server Attachment
Applications Server(2)
ISITCOOL NLM
Applications Server(n)
ISITCOOL NLM
Applications Server(1)
Work-station
Lab 1
ISITCOOL NLM
WorkstationDisk Image
Applications
1. Using IP, get info from primary app server ISITCOOL.2. If attach failure or ISITCOOL reports no, try next server.3. Attach to server using Netware client.
Isitcool?
NO!NO!
YES!
![Page 41: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/41.jpg)
The Conformist
Applications Server(1)
Work-station
Lab 1
ISITCOOL NLM
WorkstationDisk Image
Applications
Written by Clemson to duplicate functionality of Assimilator on the Macintosh
All application servers contain a image of a “perfect” workstation drive.
The conformist performs comparison of the local drive to this “perfect” image.
The conformist then copies missing files, replaces modified files, and removes extraneous files.
The conformist can also allow for slight variations between workstations via its configuration file based on environment variables.
![Page 42: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/42.jpg)
Contextless login program
Runs under a scaled down version of windows 3.11 we call “MiniWin” consisting only of vital 3.11 files (approx 2-3megs).
When userid and password are entered and the user presses “login” we search for the userid in the three user containers and log that user in if found.
Once Logged in, the login script is processed into a batch file which is then executed on the close of “MiniWin”
![Page 43: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/43.jpg)
Windows 3.11 Virtual PC We use a shared network installation in reverse. Windows executables, dlls, etc are stored on the
local drive. User settings, and data are stored on the
network in the users home directory. Machine specific settings are modified at login
based on location and machine type in use.
![Page 44: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/44.jpg)
Windows 95 Lab Workstation Operation Workstation boots Windows 95 normally SFLogin is loaded for contextless login. Isitcool is run to select available app server. Roaming profile is loaded to provide virtual PC. User logs out and all settings are saved to profile. PCRDist is run to ensure drive integrity. System returns to SFLogin.
![Page 45: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/45.jpg)
SFLogin
Purchased from Netoria, Inc.
Performs similar contextless login to windows 3.11 solution.
SFLogin was selected because of its tight integration with Client32.
Currently search ENTIRE tree for userid. Netoria is working on a search filter feature for us.
![Page 46: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/46.jpg)
Windows 95Roaming Profiles We use standard Windows 95 profiles with
a few slight modifications. Using registry keys, use of the Netware
home directory for roaming profiles is disabled.
The local path for the profile is then made to point back to their Netware home directory.
![Page 47: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/47.jpg)
Windows 95Roaming Profiles The final result is that Windows 95 believes
the copy of their profile is local. It is therefore not copied at login and
logout, saving time and network bandwidth.
![Page 48: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/48.jpg)
PCRDist
Purchased from Pyzzo Software. Maintains workstation hard drives in a
similar manner as “The Conformist.” Also performs the same image comparison
function on the registry.
![Page 49: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/49.jpg)
Printing
![Page 50: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/50.jpg)
Printing Strategy
All shared printers are network attach supporting only IPX protocol (HP-Jetdirect)
All printer access is controlled through NDS print queues.
Unix Print Services makes any print queue available to Unix/MVS/??? hosts using standard LPR/LPD protocols.
Unix Print Services also makes high speed institutional printers on MVS available to both Netware and Unix users/applications.
![Page 51: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/51.jpg)
NDS Design for Printing
A
B
P o o le
L ib ra ry
IT C
...
P rin te rs
E m plo yee
A
B
P rin te rs
S tud en ts P rtD ev C A F LS
C iv i l M e cha n ica l
C E S
c le m so nu
![Page 52: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/52.jpg)
ElectronicMail
![Page 53: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/53.jpg)
Electronic Mail Server: Based on Sun Solaris. No user accounts required on Solaris. Server software developed at Clemson. Multiple recipients / one copy of message. Server based on POP/MIME Internet standard
protocols. IMAP4 coming? Eudora site license purchased by DCIT. Listserver gaining wide spread acceptance and use.
Class/section list automated.
![Page 54: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/54.jpg)
Mail Server
DOSDOS POPcPOPc
mainframemainframe POPcPOPc
WindowsWindows POPcPOPc
MacMac POPcPOPc
UNIXUNIX POPcPOPc
OS/2OS/2 POPcPOPc ?? POPcPOPc
popDpopD ListDListD MailServer
MailServer
![Page 55: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/55.jpg)
Mail Server: Statistics
1995 1996 1997* Category14k 46k 85k Daily Average POP Connections
13k 36k 62k Daily Average Msgs Retrieved from Server
27k 48k 92k Average Msgs Sent using Server per day
*based on partial year statistics through May 26, 1997.
![Page 56: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/56.jpg)
Automated Distribution Lists
MVS OS/390
ListMGR
popDpopD ListDListD MailServer
MailServer
TCP/IP
Class RolesDepartments
![Page 57: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/57.jpg)
Automated NDS Group Membership
MVS OS/390
ListMGR
popDpopD ListDListD MailServer
MailServer
TCP/IP
Class RolesDepartments
NDSGroupMGR
NLM
TCP/IP
![Page 58: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/58.jpg)
Student Interface to Collaborative Storage Use DMO’s along with a graphical tool to have
users select and map network resources to make them available.
![Page 59: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/59.jpg)
Managing Distribution Lists with NDS
popDpopD ListDListD MailServer
MailServer
GroupMGR.NLM
Monitor group membershipmodifications
RegisterForEvent()
TCP/IPNDS
1. Membership2. See Also
![Page 60: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/60.jpg)
NDS Interface to the List Server Enabler for collaborative work between Faculty
and Students. Uses data from employee system on MVS to keep
department NDS groups correct. Lets users use NWAdmin to administer e-mail lists Eliminates need to make changes to NDS and the
list server. Ensures that data is correct everywhere.
![Page 61: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/61.jpg)
Intranet
![Page 62: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/62.jpg)
WEB Serving
Institutional Servers Department or Group Servers Organizational Page Servers Personal Page Servers Administrative and Student Application
Page Servers
![Page 63: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/63.jpg)
NDS web Security via NT/Unix/?
![Page 64: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/64.jpg)
AuthenticationServer
![Page 65: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/65.jpg)
Authentication Server
Too many userid/password combinations for each user to remember.
Need central set of secure servers that all systems use for authentication.
Clemson University Personal ID (CUPID). Based on Automatic Userid System (AUS). Idea born in interdepartmental task force. Production on July 1, 1996.
![Page 66: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/66.jpg)
Authentication Server
MAILMAIL authCauthC
WEBWEB authCauthC
mainframemainframe authCauthC
UnixUnix authCauthC
NetwareNetware authCauthC
SunSun authCauthC
NTNT authCauthCOracleOracle authCauthC
![Page 67: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/67.jpg)
NDS
IntranetWare Server BIntranetWare Server A
AUTHSERV.NLM
IntranetWare Server C
Mainframe(MVS)
VTAM
RACF
AuthClient
Onlines
MAIL(solaris)
AuthClient
POPd
NTServer(4.0)
AuthClient
Website
Application
User Workstation (‘95/Mac/NT Workstation)
Eudora TN3270 Netscape Login.exe
Linux
AuthClient
Apache
Application
AUTHSERV.NLM AUTHSERV.NLM
![Page 68: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/68.jpg)
Authentication Server
NLM is multithreaded. Clients use common code base. Clients have builtin failover capability. Communication based on TCP/IP sockets. >90% successful password checks complete in
less than 0.1 seconds. >2 million requests serviced by primary server
over a 6 week period. 50,000/day
![Page 69: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/69.jpg)
(Back to)
Intranet
![Page 70: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/70.jpg)
NDS Authentication through NT/Unix/other To the WEB?
Application:Employee InfoSystem (EIS)
Type:WEB
Server OS:Windows NT 4.0
Server Enabling App:Website/Visual Basic
![Page 71: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/71.jpg)
Using NDS Security Across the Intranet
AuthenticatedClient
ServerAuthClient
AuthenticationServer
NDS
Netscape IIS32bitDLL
AUTHSERVNLM
NDS
Page requestCheckEquiv
Check SecurityEquivalence
Locate user objectand run equivalencelist.
NT 4.0
![Page 72: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/72.jpg)
AUTHSERV Client Functions
Password Check Password Change Resolve to Fully Distinguished Name Check Security Equivalence Return Group Membership Misc Administrative Functions
![Page 73: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/73.jpg)
Authentication Server as an NDS Data Gateway
Application:Call Tracking System
Type:WEB
Server OS:Windows NT 4.0
Server Enabling App:Website/Visual Basic
Not AssignedBILLBROYLESCCRDAVEDAVIDCDONJAMBOYATES
DAVIDC
![Page 74: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/74.jpg)
Caldera OpenLinux and Apache
Caldera OpenLinux
FileServer
FileServer
FileServer
AuthC
Browser
Browser
Browser
Browser
AuthServer
FileServer
FileServer
WEB gateway to Netware File System.
![Page 75: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/75.jpg)
Caldera OpenLinux and Apache First attempt to provide web services via Novell made use of Novell’s IntranetWare Web Server 1.0 which simply was not reliable.
Caldera OpenLinux provided robust unix connectivity to NDS and supported the industry standard Apache web server.
Out of the box Caldera/Apache did not provide home directory redirection and/or authentication. It did however provide the source code needed to make these modifications.
![Page 76: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/76.jpg)
Caldera OpenLinux and ApacheModifications Added a module that would link Apache’s UserDir directive to the user’s Novell home directory.
Making http://www.clemson.edu/~erich point to EMPLOYED/USR02:\USERS\U20\ERICH\PUBLIC.WWW
Since Caldera is NDS aware, this also allows us to serve group web sites via their own group servers.
![Page 77: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/77.jpg)
Web Interface to Home Directories via Authserv NDS Gateway
Application:Personal Pages
Type:WEB
Server OS:Linux
Server Enabling App:Apache/Caldera
http://www.clemson.edu/~acollin
![Page 78: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/78.jpg)
Web Interface to Department Pages
Application:Departmental Pages
Type:WEB
Server OS:Linux
Server Enabling App:Apache/Caldera
http://dcitnds.clemson.edu/CSO/depts/maint
![Page 79: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/79.jpg)
Caldera OpenLinux and ApacheModifications Added another module using the previously mentioned Authentication Server routines to provide both user and group authentication.
Makes use of standard HTACCESS format with additional Novell Directives.
![Page 80: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/80.jpg)
Using NDS to Secure Web Pages
NovellAuth onAuthName Novell TreeAuthType Basic <Limit GET POST>require user gmcochrrequire user kellenrequire group .resadmin.groups.employee.clemsonu</Limit>
![Page 81: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/81.jpg)
Futures
![Page 82: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/82.jpg)
WebAuth: Web Single Signon
Workstation 3rd PartyWebServer
WebAuthClient
AuthServNLM
NDS
WebAuthNLM
AuthClient
WebBrowser
1
WebBrowser
2
DCITAuthentication
WebServer
WebAuthTrustedClient
CHECK
STORE
Only trusted web servers prompt for userid password and set cookie in browser. Other web servers must use the cookie to determine the user.
Redirect
![Page 83: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/83.jpg)
Auditing NDS Connections Have not had much luck with standard auditing
in 4.x Hook login/logout in AUDITLGN.NLM Writes easy to manipulate log files Data logged includes fully distinguished object
name, login time, logout time, and MAC address Monitor file server and print server as well as
user connections.
![Page 84: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/84.jpg)
Dialin Mostly Rely on contract between users and ISPs
for dialin access. Campus-MCI. Some PPP connectivity through Livingston server
with Radius modified to use NDS via the Authentication Server.
Attempting to get Netware/IP deployed this summer for file server connectivity via PPP.
Starting to deploy DHCP for dialin and dorm usage only.
![Page 85: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/85.jpg)
Server Growth
Split User Data Servers (ie: StudentD1 and StudentD2)
Common access server for both Students and Faculty/Staff (scratch disk)
Develop tools for user disk cleanup. Develop more tools to help end users get
more out of NDS and the network in general.
![Page 86: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/86.jpg)
What We Need Web interface to unresolved as well as resolved
issues at Novell. More out of SMP. NDS on NT (no replicas required). Help from Novell on resolving “NT Server”
marketing-through-documentation issues. Code Exits in Novell Products such as client32,
Radius, FTP server, Web server. Good performance monitoring (SMP) tools.
![Page 87: NDS and The Computing Infrastructure David S. Condrey, Eric Hester, Dan Schmiedt Division of Computing and Information Technology CLEMSON U N I V E R S.](https://reader035.fdocuments.us/reader035/viewer/2022070403/56649f315503460f94c4d243/html5/thumbnails/87.jpg)
That’s It!
(that’s enough..)
people.clemson.edu/groups/lansystems