|
|
URT requires that your network already be set up to use TCP/IP with DHCP, Microsoft Networking (including established NT domains) or Novell NetWare, Catalyst switches, and VLANs. Before you install URT, make sure that your network is configured appropriately.
If you have not set up Microsoft Networking or Novell NetWare, see the product documentation for instructions. The following sections discuss other requirements your network should meet before you install URT:
URT works only with VLANs. You should already have a network configured for VLANs before installing URT. This document does not describe the details of setting up VLANs or planning an effective VLAN or VTP domain design.
If you do not have VLANs defined on your network, you must first configure your switches for VLANs. Some Catalyst switches can share VLAN definitions through Inter-Switch Links (ISLs) or trunking.
To create VLANs use CiscoWorks2000 or the command-line interface (CLI). You must also have established VTP domains before creating the VLANs. You can create VTP domains either by using the CLI on the switch or by using the CiscoView application.
For details about creating VLANs and VTP domains, see these publications:
When setting up switch ports for VLAN membership, you can set the ports as dynamic or static, depending on your other requirements.
If the switch port is static, URT does not dynamically assign the user to a VLAN; instead, the user is assigned to the VLAN defined for the port.
Ports in dynamic modes are used for dynamically assigning VLANs based on username (for names mapped in URT), or by MAC address. You must define ports as dynamic if you want URT to apply your username to VLAN mapping, placing the user in the desired VLAN.
You may use the VMPS server for the switch if you need to assign VLANs by MAC address only.
If you are not already using MAC-based dynamic VLANs, change port states on the switches during URT configuration. Use CiscoView or switch commands to change the state of switch ports from static to dynamic.
Step 2 Double-click the port whose state you want to change.
CiscoView displays the attributes for the port.
Step 3 Set VLAN Port Admin Status to dynamic.
 |
Tip To change several ports at once, you can select multiple ports by holding down the Shift key or the Ctrl key while making your selections, or by clicking and dragging the mouse to draw a box around the desired ports. Then select Configure>Port, click the VLAN Port Admin Status box for each port, and select Dynamic. |
URT can dynamically assign a VLAN only to users whose systems are directly connected to a port in dynamic mode on a supported switch. Only one system can be connected to a port in dynamic mode. There must be no other network hardware between the user and the switch. For example, if there is a hub on a user's desk, with several systems connected to the hub, URT does not handle requests coming from those hub-connected systems even if the hub is connected to a supported switch port.
To ensure that URT handles each user, make sure that each work area has sufficient connections, so that hubs are not required. Hubs can be eliminated by replacing them with switches and by running more lines to the user's desk.
DHCP servers and domain servers must be reachable from both the logon VLAN and user VLANs. Making them reachable requires a routing configuration with:
If you do not already use DHCP to dynamically assign IP addresses to user workstations, install and configure DHCP before installing URT. URT affects only systems that use DHCP to acquire an IP address. See the documentation supplied with your DHCP server for information on setting up the server.
Configure your DHCP server to support all VLANs and subnets defined on your network. Make sure that you have adequate IP addresses in the subnet used by the VLAN that you plan to define as the URT logon VLAN. You will define a logon VLAN for each VTP domain in your network.
Logon VLANs support all DHCP-supported systems that could log on to the VTP domains. If you do not have an adequate number of IP addresses in the logon VLAN subnet, users may experience delays or failures during NT or Novell Directory Services (NDS) domain logon and logoff, because they will not be able to obtain a required IP address.
You must also allow the following traffic access to all subnets (settings for traffic access are defined on the routers in your network):
In the DNS field of the DHCP server Logon VLAN scope, add the IP addresses of your VLAN Policy Servers. This entry allows the web client to be redirected to the VLAN Policy Server for the URT web logon page. If one VLAN Policy Server is down, the secondary VLAN Policy Server is accessed to display the web logon page.
If you are using Microsoft TCP/IP software, configure your user system to use DHCP, to obtain an IP address.
Step 2 Open the TCP/IP protocol properties page.
Step 3 Select Obtain an IP address from a DHCP server, and click OK.
Step 4 Click OK on the Network Control Panel, and reboot if required.
If you are using another vendor's TCP/IP software, follow the instructions provided with your software to configure the system to use DHCP.
URT places no special requirements on client systems to log on to their domain server.
 |
Caution Prior to installing URT, a Windows or Novell client should be tested to ensure that it is working properly with DHCP and the related domain controller. |
Posted: Wed May 21 14:56:33 PDT 2003
All contents are Copyright © 1992--2003 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.
