UNITED STATES
Jan 01, 2016
UNITED STATES
Understanding NDS for Directory-Enabled Solutions
Understanding NDS for Directory-Enabled Solutions
Ed Shropshire, NDS Developer Program [email protected]
Novell, Inc.
UNITED STATES
Novell Directory Services (NDS) and the Computing Infrastructure Novell Directory Services (NDS)
and the Computing Infrastructure
A real world example:
Clemson UniversityDivision of Computing and Information Technology
UNITED STATES
AgendaAgenda
Background on Clemson IS
Mission & Support Structure
Userid Management Network Design Server & Network
Access Public Access Labs
Printing Electronic Mail Intranet Authentication Server Futures
UNITED STATES
Background on Clemson Information Systems
Background on Clemson Information Systems
Large Systems Background Strong Development Shop Mainframe and Open Systems Expertise Departmental LANs ruled 90’s until NDS NDS populated in Summer 1995 (36,000) Departmental LANs gone. More centralized
management of the network. NDS is centerpiece of security and
authentication.
UNITED STATES
Mission and Support StructureMission and Support Structure
Mission Defining groups Support structure Server strategy and management
UNITED STATES
Mission
Provide computing infrastructure. Empower Users and Departments. Provide guidance in selecting solutions based
on industry standards. Deploy solutions to meet the needs of
institutional computing. Provide user support and training.
UNITED STATES
Defining Groups
Network Services - supports the physical network…routers, hubs, backbone
LAN Systems - supports application, group, and personal data servers.
Client Support Group (CSG) - supportsfaculty and staff via TSPs.
Systems Integration Group (SIG) - supports students and departmental labs.
UNITED STATES
Defining (more) Groups
Computer Resources - assists with user account problems (DCIT sponsored).
College Consultants - DCIT sponsored person and college sponsored person(s) that help support the end users of the college.
Technology Support Provider (TSP) - supports faculty/staff end users
Help Desk - sponsored by DCIT to assist end users.
UNITED STATES
Support Structure
Support is based on a four tier model.
Problems
Resources
ClientSupport
SystemsIntegration
LANSystems
NetworkServices
TSPs
HelpDesk
FacultyStaff
Students
1 2 3 4
CollegeConsultant
ComputerResources
UNITED STATES
Server Strategy & Management
Novell and NT servers maintained by Divison of Computing & Info Tech (DCIT).
DCIT provides hardware and Network Operating System (NOS).
DCIT administers backups. DCIT performs user administration. Group maintains data and security with help of
a Tech Support Provider (TSP). Virus Protection and Software Metering
UNITED STATES
Automating User MaintenanceAutomating User Maintenance
MVS
Personnel AdmissionsOther
AUS
Present
Daily UIMPORT Run
Summer ‘97
USRMAINT.NLM
FTP
TCP/IPRealTime
NDS
• Add UsersAdd Users• Modify User AttributesModify User Attributes• Delete UsersDelete Users
UNITED STATES
Userid ManagementUserid Management
Automatic Userid System (AUS) Automating user maintenance
UNITED STATES
Network DesignNetwork Design Physical network design Tree design
Every person has a place Every group has a place
Partition design Use dedicated "ROOT" servers for NDS replicas Distribute network management
Login script design Script design and management Server timesync hierarchy
UNITED STATES
Server and Network Resource Access
Server and Network Resource Access
Personal storage Personal data server configuration
UNITED STATES
Server and Network Resource Access (cont.)
Server and Network Resource Access (cont.)
Collaborative storage "Group servers" (faculty and staff) "App servers" (students) Group/App/Root server Average configuration Faculty/student collaboration Faculty and Time Synchronization Protocol
(TSP)/client support management Collaborative storage and network bandwidth
UNITED STATES
Public Access LabsPublic Access Labs
The virtual PC Standard lab Personal storage Collaborative storage
"App Servers" (students)
Goals of the virtual PC paradigm Evolution How it happens to the user
UNITED STATES
Public Access Labs (cont.)Public Access Labs (cont.)
Constructing the machine Boot time events Contextless login The login script Isitcool—fail-over applications server
attachment Loading the profile
Special mappings and events
UNITED STATES
Public Access Labs (cont.)Public Access Labs (cont.)
Collaborative storage "Group servers" (faculty and staff)
Collaborative storage Logout
Problems
Network jacks
UNITED STATES
Public Access Labs (cont.)Public Access Labs (cont.)
Summary of Novell components Summary of third-party products Clemson University products Future directions for us
UNITED STATES
Electronic MailElectronic Mail
Electronic mail server Mail server
Statistics
Automated distribution lists Automated NDS group membership Student interface to collaborative storage Managing distribution lists with NDS NDS interface to the list server
UNITED STATES
Authentication ServerAuthentication Server
NDS authentication through Windows NT, UNIX, etc. to the web
Using NDS security across the intranet AUTHSERV client functions Authentication server as an NDS data
gateway Caldera OpenLinux and Apache modifications
Web interface to home directories via AUTHSERV NDS gateway
UNITED STATES
Authentication Server (cont.)Authentication Server (cont.)
Web interface to department pages Using NDS to secure web pages WebAuth
Web single sign-on
Auditing NDS connections What we need