UNITED STATES

UNITED STATES

Understanding NDS for Directory-Enabled Solutions

Understanding NDS for Directory-Enabled Solutions

Ed Shropshire, NDS Developer Program Managered_shropshire@novell.com

Novell, Inc.

UNITED STATES

Novell Directory Services (NDS) and the Computing Infrastructure Novell Directory Services (NDS)

and the Computing Infrastructure

A real world example:

Clemson UniversityDivision of Computing and Information Technology

UNITED STATES

AgendaAgenda

Background on Clemson IS

Mission & Support Structure

Userid Management Network Design Server & Network

Access Public Access Labs

Printing Electronic Mail Intranet Authentication Server Futures

UNITED STATES

Background on Clemson Information Systems

Background on Clemson Information Systems

Large Systems Background Strong Development Shop Mainframe and Open Systems Expertise Departmental LANs ruled 90’s until NDS NDS populated in Summer 1995 (36,000) Departmental LANs gone. More centralized

management of the network. NDS is centerpiece of security and

authentication.

UNITED STATES

Mission and Support StructureMission and Support Structure

Mission Defining groups Support structure Server strategy and management

UNITED STATES

Mission &

Support Structure

UNITED STATES

Mission

Provide computing infrastructure. Empower Users and Departments. Provide guidance in selecting solutions based

on industry standards. Deploy solutions to meet the needs of

institutional computing. Provide user support and training.

UNITED STATES

Defining Groups

Network Services - supports the physical network…routers, hubs, backbone

LAN Systems - supports application, group, and personal data servers.

Client Support Group (CSG) - supportsfaculty and staff via TSPs.

Systems Integration Group (SIG) - supports students and departmental labs.

UNITED STATES

Defining (more) Groups

Computer Resources - assists with user account problems (DCIT sponsored).

College Consultants - DCIT sponsored person and college sponsored person(s) that help support the end users of the college.

Technology Support Provider (TSP) - supports faculty/staff end users

Help Desk - sponsored by DCIT to assist end users.

UNITED STATES

Support Structure

Support is based on a four tier model.

Problems

Resources

ClientSupport

SystemsIntegration

LANSystems

NetworkServices

TSPs

HelpDesk

FacultyStaff

Students

1 2 3 4

CollegeConsultant

ComputerResources

UNITED STATES

Server Strategy & Management

Novell and NT servers maintained by Divison of Computing & Info Tech (DCIT).

DCIT provides hardware and Network Operating System (NOS).

DCIT administers backups. DCIT performs user administration. Group maintains data and security with help of

a Tech Support Provider (TSP). Virus Protection and Software Metering

UNITED STATES

UseridManagement

UNITED STATES

Automatic Userid System (AUS)

AUS

Personnel Admissions

MVS

Unix

NDS

Other

Other

UNITED STATES

Automating User MaintenanceAutomating User Maintenance

MVS

Personnel AdmissionsOther

AUS

Present

Daily UIMPORT Run

Summer ‘97

USRMAINT.NLM

FTP

TCP/IPRealTime

NDS

• Add UsersAdd Users• Modify User AttributesModify User Attributes• Delete UsersDelete Users

UNITED STATES

Userid ManagementUserid Management

Automatic Userid System (AUS) Automating user maintenance

UNITED STATES

Network DesignNetwork Design Physical network design Tree design

Every person has a place Every group has a place

Partition design Use dedicated "ROOT" servers for NDS replicas Distribute network management

Login script design Script design and management Server timesync hierarchy

UNITED STATES

Server and Network Resource Access

Server and Network Resource Access

Personal storage Personal data server configuration

UNITED STATES

Server and Network Resource Access (cont.)

Server and Network Resource Access (cont.)

Collaborative storage "Group servers" (faculty and staff) "App servers" (students) Group/App/Root server Average configuration Faculty/student collaboration Faculty and Time Synchronization Protocol

(TSP)/client support management Collaborative storage and network bandwidth

UNITED STATES

Public Access LabsPublic Access Labs

The virtual PC Standard lab Personal storage Collaborative storage

"App Servers" (students)

Goals of the virtual PC paradigm Evolution How it happens to the user

UNITED STATES

Public Access Labs (cont.)Public Access Labs (cont.)

Constructing the machine Boot time events Contextless login The login script Isitcool—fail-over applications server

attachment Loading the profile

Special mappings and events

UNITED STATES

Public Access Labs (cont.)Public Access Labs (cont.)

Collaborative storage "Group servers" (faculty and staff)

Collaborative storage Logout

Problems

Network jacks

UNITED STATES

Public Access Labs (cont.)Public Access Labs (cont.)

Summary of Novell components Summary of third-party products Clemson University products Future directions for us

UNITED STATES

PrintingPrinting

Printing strategy NDS design for printing

UNITED STATES

Electronic MailElectronic Mail

Electronic mail server Mail server

Statistics

Automated distribution lists Automated NDS group membership Student interface to collaborative storage Managing distribution lists with NDS NDS interface to the list server

UNITED STATES

IntranetIntranet

Web serving NDS web security via Windows NT, UNIX,

etc.

UNITED STATES

Authentication ServerAuthentication Server

NDS authentication through Windows NT, UNIX, etc. to the web

Using NDS security across the intranet AUTHSERV client functions Authentication server as an NDS data

gateway Caldera OpenLinux and Apache modifications

Web interface to home directories via AUTHSERV NDS gateway

UNITED STATES

Authentication Server (cont.)Authentication Server (cont.)

Web interface to department pages Using NDS to secure web pages WebAuth

Web single sign-on

Auditing NDS connections What we need

UNITED STATES

Questions and AnswersQuestions and Answers

UNITED STATES