|
Size: 2281
Comment:
|
← Revision 24 as of 2008-10-30 11:40:35 ⇥
Size: 3824
Comment: converted to 1.6 markup
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| #acl DvGroup:read,write,delete,revert,admin All:read [[TableOfContents]] |
## page was renamed from NoteBook Registration #acl DvGroup:read,write,delete,revert,admin All:read |
| Line 8: | Line 7: |
| In future the MAC addresses and responsible persons of all mobile devices have to be known to the computer center. | The MAC addresses and responsible persons of all mobile devices have to be made known to the computer center. |
| Line 13: | Line 12: |
| a. via cable attached Ethernet interface for trusted devices (see [#Trusteddevice below]) a. via wireless interface in addition to a. the device has to use a special SSID and a WEP key identical to those which are configured for the internal network at DESY in Hamburg.[[BR]] On request you will get the SSID and WEB by uco-zn. |
a. via cable attached Ethernet interface for trusted devices (see [[#Trusteddevice|below]]) a. via wireless interface<<BR>> in addition to being trusted, the device has to use a special SSID and a WEP key. These are identical for the internal networks at DESY, both in Hamburg and Zeuthen.<<BR>> You will get the SSID and WEP key from uco-zn on request. If you do not use the WEP key your registered notebook will only get access to the guest subnet. |
| Line 19: | Line 18: |
| cable based and wireless interface [[BR]] {{The MAC address of the device and the responsible person must be known to the computer center too.}} For this purpose the Web form http:// must filled out by a |
cable based and wireless interface <<BR>> The network access to non trusted devices will be limited to the same services like other external hosts (no AFS). ||<tablestyle="background-color:#FFE0DF;">The [[mac_address| MAC address]] of the device and the responsible person must be made known to the computer center.|| * For this purpose the Web form <<BR>> http://register.ifh.de/cgi-bin/register?conf=notebook <<BR>> must filled out inside the local area network. <<BR>> '''Everyone who has an account at DESY''' is authorised to fill the Web form '''from every PC (excluded guest subnet)'''.<<BR>> 15 minutes after the registration the notebook should get access to the network. The maximum expiration time of registration is one year, the default 7 days. * From outside you can send a request to UCO Zeuthen, email uco-zn@desy.de, asking to register the mac addresses of your notebook. |
| Line 25: | Line 28: |
| [[Anchor(Trusteddevice)]] | <<Anchor(Trusteddevice)>> |
| Line 33: | Line 36: |
| and obey the rules and sign the form mentioned there. The form has to be | obey the rules and sign the form mentioned there. The form has to be |
| Line 35: | Line 38: |
| {{{ email : uco-zn@desy.de | {{{ email : uco-zn@desy.de |
| Line 39: | Line 43: |
| In the following we denote a notebook for which a signature of the responsible person is available a "trusted(registered)" notebook. All mobile devices for which the responsible person for that device did not sign the document mentioned above Devices registered at DESY in Hamburg are considered as trusted devices too. After the receipt of the signed form we will activate for the notebook the internal network access. If you would like to connect your notebook to the internal DESY network in Hamburg too we will communicate the information to Hamburg and initiate the registration if necessary. |
* We denote a notebook for which a signature of the responsible person is available a '''trusted device '''. * For DESY notebooks centrally supported by DV Zeuthen you should only take attention: [[http://dvinfo.ifh.de/NotebookSecurityWindows|Notebook Security Windows]] and [[http://dvinfo.ifh.de/NotebookSecurityLinux|Notebook Security Linux ]] <<BR>> If you follow these instructions you meet the requirements given in the RSR statement. * Whereas the wireless network interfaces of devices registered at DESY in Hamburg are considered as trusted devices too, you have to register the cable based network interface in Zeuthen additionally. * All mobile devices for which the responsible person did not sign the document mentioned above are '''non trusted devices'''. * After the receipt of the signed form we will activate the internal network access for the notebook. * If you would like to connect your notebook to the internal DESY network in Hamburg too we will communicate the information to the network group in Hamburg and initiate the registration of the '''wireless''' interface if necessary. You have to contact the [[http://www-it.desy.de/network/intranet/services/dns/beauftragte.html|network segment administrator]] to register the '''cable''' interface. |
Notebook and Mobile Devices (Internet) Network Access @ DESY Zeuthen
If you want to connect a notebook or other mobile device to the DESY Zeuthen network you have to follow the instructions below. The MAC addresses and responsible persons of all mobile devices have to be made known to the computer center.
Network Access Facilities
1. Internal access
via cable attached Ethernet interface for trusted devices (see below)
via wireless interface
in addition to being trusted, the device has to use a special SSID and a WEP key. These are identical for the internal networks at DESY, both in Hamburg and Zeuthen.
You will get the SSID and WEP key from uco-zn on request. If you do not use the WEP key your registered notebook will only get access to the guest subnet.
2. External access (guest subnet, non trusted devices)
cable based and wireless interface
The network access to non trusted devices will be limited to the same services like other external hosts (no AFS).The MAC address of the device and the responsible person must be made known to the computer center.
For this purpose the Web form
http://register.ifh.de/cgi-bin/register?conf=notebook
must filled out inside the local area network.
Everyone who has an account at DESY is authorised to fill the Web form from every PC (excluded guest subnet).
15 minutes after the registration the notebook should get access to the network. The maximum expiration time of registration is one year, the default 7 days.From outside you can send a request to UCO Zeuthen, email uco-zn@desy.de, asking to register the mac addresses of your notebook.
How to register as a trusted device
The DESY Computer Security Council (RSR) demands that the persons responsible for a computer that should be connected to the internal DESY network have to read
obey the rules and sign the form mentioned there. The form has to be sent to uco Zeuthen:
email : uco-zn@desy.de fax : +49 33762 77216 surface mail : DESY Zeuthen, UCO, Platanenallee 6, 15738 Zeuthen
We denote a notebook for which a signature of the responsible person is available a trusted device .
- For DESY notebooks centrally supported by DV Zeuthen you should only take attention:
Notebook Security Windows and Notebook Security Linux
If you follow these instructions you meet the requirements given in the RSR statement.
- Whereas the wireless network interfaces of devices registered at DESY in Hamburg are considered as trusted devices too, you have to register the cable based network interface in Zeuthen additionally.
All mobile devices for which the responsible person did not sign the document mentioned above are non trusted devices.
- After the receipt of the signed form we will activate the internal network access for the notebook.
If you would like to connect your notebook to the internal DESY network in Hamburg too we will communicate the information to the network group in Hamburg and initiate the registration of the wireless interface if necessary. You have to contact the network segment administrator to register the cable interface.