Campus Manager

Presenters:Andy Babb

&Ryan Lininger

Denison University

What’s To Come

• Denison’s Background Environment• Previous Setup• Current Setup • Future Setup• The Good and Bad• Questions

Background Environment

• Population: 2,100 Students, 600 Employees, 300 Labs• Cisco Switches

– IOS and CATOS

• Mixed Vendor Wireless (Cisco, 5G)• Have Many VLANs• Distributed routing design

– No single aggregated point for traffic

• Desire to improve students ability to register on their own

Previous NAC Setup• Previous system was home grown system• Previous registration system required up to 10 minutes

for the services to update DHCP information.• No client validation• Much of the information was self reported

– I.E. input errors.

• Lots of staff hours in fall during student move in– Lots of development hours as well

• Sasser and Blaster motivated us to move to a new solution

• Non-persistent client• Out-of-Band solution fits with our network structure• Wired Registration: Use VLAN switching• Wireless Registration (Testing): DHCP/DNS manipulation• LDAP authentication• Student self remediation and validation• Forced Registration and Role Based access in student spaces• Staff hours invested in fall registration process is less than before

and more services are provided

Current NAC Setup

Client Listing

Denison NAC: Future• Recently upgraded Campus Manager• 4.0 moves away from Nessus Scans• Persistent Client for Denison Owned Machines

(possibly students also)• Role Based Management Campus Wide

– Testing role based access in academic areas now

• Helpdesk usage of Campus Manager• Reporting & data mining from Campus

Manager• Disabling clients (policy violations)

The Good• Support

– Vendor and community

• Initial Setup• Admin console runs on Apple and Windows• Console interface is robust• VLAN Switching works well• Administrative view• Protocol support (ssh, telnet, snmp)• Game console registration

Admin Console

Gam

e S

yste

m R

egis

trat

ion

The Bad• Operator permissions are too limited• Operator account interface• Java setup of console is… umm… picky• Reporting is limited• Database API has room for growth• Custom automation and scripting

Questions?

• Andy Babb– Babb@denison.edu

• Ryan Lininger– Liningerr@denison.edu

• Campus Manager Listserv– www.bradfordnetworks.com/CampusMgrArchive/