「Host management system」の版間の差分

提供: 東京大学理学系研究科wiki
移動先: 案内検索
 
(同じ利用者による、間の3版が非表示)
7行目: 7行目:
 
__TOC__
 
__TOC__
  
 +
<!-- <span style="color: red;">This is a description of the new system that will be used from 13:00 on October 20, 2020.</span>
 +
-->
 
== Outline ==
 
== Outline ==
The University of Tokyo requires that all host terminals accessing the University’s information networks be properly managed. DHCP eliminates the necessity for each user to manually assign an IP address to the host, minimizing setup problems.  At the same time, it involves managing MAC addresses for host management.
+
The University of Tokyo requires that all the computers using the university's network must be properly managed.
The School of Science host management system assumes that each user logs into the system and registers his/her host MAC address.  It provides proper host management by assigning IP addresses to only registered hosts via DHCP.
+
A university-wide security firewall is in place.
 
+
It is recommended that personal computers use a university-wide private network called the PROTECTED network.
 
 
== Supported users ==
 
All faculty and students with an account for the School of Science authentication system can use the host management system (as long as, in the relevant Department/Facility subnet, MAC addresses are managed via DHCP by the host management system).
 
 
 
* [[School of Science network account]]
 
  
 +
Depending on the major and facility, the computer may be connected to the conventional networks.
 +
The SoS DHCP Management system manages the computer that are connected to conventional networks by automatically setting IP addresses by DHCP.
  
 
== Preparation for use ==
 
== Preparation for use ==
27行目: 26行目:
  
 
* [[端末の管理|Host management]] (Japanese) (information for subnet administrators)
 
* [[端末の管理|Host management]] (Japanese) (information for subnet administrators)
 
  
 
=== Preparation by users ===
 
=== Preparation by users ===
  
Log into the authentication system and fill in the '''email address for notification''' field in the '''Edit user information''' page.  In addition, fill in the '''Contact telephone number''' field, which is required for system administration.  Upon approval for network access (if appropriate) or upon removal of registration by the administrator, the notification is sent to the entered e-mail address.
+
To log in to this system, use the client certificate issued by the School of Science account.
 
 
* [https://sds.adm.s.u-tokyo.ac.jp/user/ Authentication system] (user login page)
 
 
 
[[ファイル:Dhcp-0.png]]
 
  
 +
* [[School of Science account]]
  
 
== “Login” page ==
 
== “Login” page ==
  
Access the following URL to log into the host management system (subnet administrators can also access the URL to log into the system).
+
Access the following URL to log into SoS DHCP Management system (subnet administrators can also access the URL to log into the system).
 
 
* [https://dhcp.adm.s.u-tokyo.ac.jp/ Host management system]
 
  
 +
* [https://dhcp.adm.s.u-tokyo.ac.jp/ SoS DHCP Management system]
  
 
== Procedures for using the service ==
 
== Procedures for using the service ==
49行目: 43行目:
 
* Visit the URL above to access the “Login” page.
 
* Visit the URL above to access the “Login” page.
  
[[ファイル:Dhcp-1.png]]
+
[[ファイル:Dhcp2-1.png]]
  
* Login requires a user certificate or password.
+
* A list of registered hosts is displayed.
** For the installation of the user certificate in the browser, click here.
+
* Enter the "MAC address" and "Description" of the computer to be registered and press the "Add host" button to register, and the settings will be reflected in about 10 minutes.
** For login with the password, enter the user ID and password for the authentication system.
 
  
* After login, the following menu options are available.
+
[[ファイル:Dhcp2-2.png]]
** Application: Apply for a host registration or confirm/cancel the applications.
 
** Registered: Confirm or remove registered hosts.
 
** Guest: Register guests or confirm/remove registered guests.
 
 
 
* In the “Application” page, apply for a host registration.
 
 
 
[[ファイル:Dhcp-2.png]]
 
 
 
 
 
* Fill in the “MAC address” and “Description” fields.
 
** For a host with multiple interfaces to access wired and Wi-Fi networks, apply for a host registration for each interface.
 
** No application is required for Wi-Fi and VPN networks that support automatic registration.
 
** In the “Description” field, enter the PC’s name or model name to facilitate the subsequent identification of the host.
 
** If your Department/Facility subnet has been configured not to require approval, the host is registered immediately upon applying for a host registration.
 
** If your Department/Facility subnet has been configured to require approval, the host is registered after the subnet administer receives and approves the application.
 
** Access via DHCP becomes available about 10 minutes after registration.
 
 
 
[[ファイル:Dhcp-3.png]]
 
 
 
 
 
* In the “Registered” page, registered hosts can be confirmed.
 
 
 
[[ファイル:Dhcp-4.png]]
 
 
 
 
 
* Guests can also be registered for DHCP access.
 
** For all subnets, guest registration does not require approval.
 
** The registration is automatically removed in 24 hours.
 
** The guest registration allows DHCP address assignment for access to the relevant Department/Facility subnet via DHCP.  For guest access to Wi-Fi, click here.
 
  
 +
* You can remove by pressing the "Remove" button on the right side of the registered host.
  
 
== Procedures for administrators ==
 
== Procedures for administrators ==
  
 
* The “Login” page is the same as that for users.
 
* The “Login” page is the same as that for users.
** For the use of administrator menu options, log into the system with the certificate.
+
* If you have administrator privileges, the "Admin menu" is also displayed.
* Administrators can use the Subnet Menu in addition to the User Menu.
+
* The following menu options are available
 
+
** Admins: Add, confirm, or remove subnet administrators.
* The following Subnet Menu options are available (User Menu options are also available).
+
** Address ranges: Add, confirm, or remove IP address ranges for DHCP.
** Administrators: Add, confirm, or remove subnet administrators.
+
** Registered hosts: Add, confirm, or remove registered hosts.
** Address Range: Add, confirm, or remove IP address ranges for DHCP.
+
** Fixed assignments: Add, confirm, or remove hosts with fixed IP addresses for DHCP.
** Application: Confirm or approve/reject applications for host registration.
+
** Leases: View a list of currently leased IP addresses.
** Registered: Confirm, add, or remove registered hosts.
 
** Guest: Confirm, add, or remove registered guest hosts.
 
** Fixed Assignment: Register, confirm, or remove hosts with fixed IP addresses for DHCP.
 
** Leased: View a list of currently leased IP addresses.
 
** Search: Search for registration information by MAC address.
 
** Log: View a list of non-registered MAC addresses.
 
 
 
First, the “Address Range” field must be filled.  Enter the IP address range for DHCP, which can be changed if required.  The setting takes effect in about 10 minutes.  IP addresses already in use are changed after the lease time has elapsed (six hours by default).
 
 
 
For subnets configured to require approval, the subnet administrator is informed of an application for host registration by e-mail.  In such cases, go to the “Application” page and confirm the application.  Then, approve or reject the application.
 
 
 
In addition to registration approval, subnet administrators can confirm or remove registered hosts.  For subnets configured not to require approval, the subnet administrator has no regular tasks.
 
  
 +
The first thing you need to set is the address range.
 +
Enter the range of IP addresses used for DHCP.
 +
This can be changed at any time.
 +
The setting itself will be reflected in about 10 minutes, but the address already in use will be changed after the lease time (30 minutes) has elapsed.
  
 
[[Category: Information Technology Team]]
 
[[Category: Information Technology Team]]

2020年10月20日 (火) 13:13時点における最新版

Information Technology Team > Host management system

日本語

1 Outline

The University of Tokyo requires that all the computers using the university's network must be properly managed. A university-wide security firewall is in place. It is recommended that personal computers use a university-wide private network called the PROTECTED network.

Depending on the major and facility, the computer may be connected to the conventional networks. The SoS DHCP Management system manages the computer that are connected to conventional networks by automatically setting IP addresses by DHCP.

2 Preparation for use

2.1 Subnet administrator

Ask the Information Technology Team by e-mail to implement host management using DHCP by the host management system.

For host management, including the process of implementation, see the page below.

2.2 Preparation by users

To log in to this system, use the client certificate issued by the School of Science account.

3 “Login” page

Access the following URL to log into SoS DHCP Management system (subnet administrators can also access the URL to log into the system).

4 Procedures for using the service

  • Visit the URL above to access the “Login” page.

Dhcp2-1.png

  • A list of registered hosts is displayed.
  • Enter the "MAC address" and "Description" of the computer to be registered and press the "Add host" button to register, and the settings will be reflected in about 10 minutes.

Dhcp2-2.png

  • You can remove by pressing the "Remove" button on the right side of the registered host.

5 Procedures for administrators

  • The “Login” page is the same as that for users.
  • If you have administrator privileges, the "Admin menu" is also displayed.
  • The following menu options are available
    • Admins: Add, confirm, or remove subnet administrators.
    • Address ranges: Add, confirm, or remove IP address ranges for DHCP.
    • Registered hosts: Add, confirm, or remove registered hosts.
    • Fixed assignments: Add, confirm, or remove hosts with fixed IP addresses for DHCP.
    • Leases: View a list of currently leased IP addresses.

The first thing you need to set is the address range. Enter the range of IP addresses used for DHCP. This can be changed at any time. The setting itself will be reflected in about 10 minutes, but the address already in use will be changed after the lease time (30 minutes) has elapsed.