Send netdisco-users mailing list submissions to
netdisco-users@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
netdisco-users-requ...@lists.sourceforge.net
You can reach the person managing the list at
netdisco-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. Re: vendor inventory 'unkown vendor' (Natxo Asenjo)
2. Re: vendor inventory 'unkown vendor' (Alan Buxey)
3. REMOTE_USER ldap apache2 (Natxo Asenjo)
4. Re: ND2 strange node behaviour (Robert Kerr)
5. Re: ND2 strange node behaviour (Nikolaos Milas)
6. Re: vendor inventory 'unkown vendor' (Oliver Gorwits)
7. Re: REMOTE_USER ldap apache2 (Oliver Gorwits)
--- Begin Message ---
On Mon, May 19, 2014 at 4:14 PM, Natxo Asenjo <natxo.ase...@gmail.com>wrote:
>
> In my laptop installation I saw vendor information after discovering
> devices. On the centos vm the vendor inventory is consistently 'unknown
> vendor'.
>
> I have reloaded both the daemon as the web inteface several times.
>
for future reference, the solution was downloading the oui.txt file from
http://standards.ieee.org/develop/regauth/oui/oui.txt and modifying the
bin/netdisco-deploy script with a url containing a copy of this that is
internally available to the host running netdisco. After that, just re-run
the bin/netdisco-deploy script and reload the daemon.
Thanks, netdisco looks really nice!
--- End Message ---
--- Begin Message ---
Hi
It's old but the documentation still exists about the OUI and keeping it up to
date
http://www.netdisco.org/install.html#10__oui_database
alan
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
--- End Message ---
--- Begin Message ---
hi,
I want to use ldap authentication using a apache2 reverse proxy
AuthBasicProvider ldap to our AD. Why ldap? Because I can then use the
require ldap-group directive to limit who gets access to the web interface.
So far the theory. this is the apache vhost settings:
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerName netdisco.domain.tld
ServerAdmin webmaster@localhost
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel info
CustomLog /var/log/apache2/netdisco.access.log combined
ErrorLog /var/log/apache2/netdisco.error.log
RequestHeader unset X-REMOTE_USER
RequestHeader set X-REMOTE_USER "%{REMOTE_USER}e" env=REMOTE_USER
<Location />
AuthBasicProvider ldap
AuthType Basic
AuthName "Netdisco"
AuthLDAPURL
"ldap://domain.local:3268/dc=domain,dc=local?sAMAccountName?sub?(objectClass=*)"
NONE
AuthLDAPBindDN "cn=user,ou=service_accounts,dc=domain,dc=local"
AuthLDAPBindPassword secretpwd
require ldap-group cn=networkadmins,ou=security
groepen,dc=domain,dc=local
</Location>
SSLEngine on
SSLCertificateFile /etc/apache2/sites-available/cert.cer
SSLCertificateKeyFile /etc/apache2/sites-available/cert.key
SSLCACertificateFile /etc/apache2/sites-available/ca.cer
# ProxyRequests Off
ProxyPreserveHost On
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
ProxyPass / http://netdisco.unix.domain.tld:5000/ retry=5
ProxyPassReverse / http://netdisco.unix.domain.tld:5000/
</VirtualHost>
</IfModule>
and in environments/deployment.yml I set:
trust_x_remote_user: true
After restarting both the apache2 proxy as the netdisco web ui I can login
using my ldap credentials but get the netdisco login page afterwards.
Any hints on how to do this?
TIA.
Groet,
natxo
--
Groeten,
natxo
--- End Message ---
--- Begin Message ---
On 19/05/14 11:04, Nikolaos Milas wrote:
> On 29/4/2014 7:53 μμ, Nikolaos Milas wrote:
>> I installed the new version but it did not correct the problem I
>> described. The situation remains as before.
> I have now installed latest Netdisco but the problem persists.
I don't have a solution, but wanted to add I also see the same
behaviour. If I manually run a macsuck of the device all the nodes
re-appear, but something somewhere seems to be archiving things it
shouldn't.
--
Robert Kerr
--- End Message ---
--- Begin Message ---
On 21/5/2014 12:01 μμ, Robert Kerr wrote:
I don't have a solution, but wanted to add I also see the same
behaviour. If I manually run a macsuck of the device all the nodes
re-appear, but something somewhere seems to be archiving things it
shouldn't.
In my case, running a macsuck does not show nodes. For example, here is
what I see right after a macsuck on this device:
Vendor / Model cisco / 296024TT
OS / Version ios / 12.2(35)SE5
Without checking "Archived Data" checkbox:
http://iweb.noa.gr/files/nd2/no_arch_data.png
After checking "Archived Data" checkbox:
http://iweb.noa.gr/files/nd2/with_arch_data.png
(I have zoomed out to show things in one screen.)
Affected interfaces (FastEthernet) 3, 4, 8, 10, 15, 17, 20.
Nodes on these interfaces are active and online, but they don't show up
when "Archived Data" is unchecked; they appear twice and with strange
timestamps when "Archived Data" is checked.
I hope this can be resolved some time soon!
All the best,
Nick
--- End Message ---
--- Begin Message ---
Hi Natxo,
Sorry I did misunderstand what you were on about, but I'm glad you got
there in the end (and thanks to Alan).
I've applied a small patch for the next release of Netdisco to
"support" offline update of OUI and MIB information, with some docs in
the Deployment manual page.
regards,
oliver.
On 2014-05-20 08:41, Natxo Asenjo wrote:
On Mon, May 19, 2014 at 4:14 PM, Natxo Asenjo <natxo.ase...@gmail.com
[1]> wrote:
In my laptop installation I saw vendor information after discovering
devices. On the centos vm the vendor inventory is consistently
'unknown vendor'.
I have reloaded both the daemon as the web inteface several times.
for future reference, the solution was downloading the oui.txt file
from http://standards.ieee.org/develop/regauth/oui/oui.txt [2] and
modifying the bin/netdisco-deploy script with a url containing a
copy of this that is internally available to the host running
netdisco. After that, just re-run the bin/netdisco-deploy script and
reload the daemon.
Thanks, netdisco looks really nice!
Links:
------
[1] mailto:natxo.ase...@gmail.com
[2] http://standards.ieee.org/develop/regauth/oui/oui.txt
--- End Message ---
--- Begin Message ---
Hi Natxo,
On 2014-05-20 13:29, Natxo Asenjo wrote:
After restarting both the apache2 proxy as the netdisco web ui I can
login using my ldap credentials but get the netdisco login page
afterwards.
I guess the X-REMOTE_USER header is not getting to Netdisco, but we
need to be sure.
You can edit the bin/netdisco-web-fg script and uncomment the lines
after the Dancer::Debug comment.
Then run: ~/bin/localenv cpanm --notest Dancer::Debug
Then restart the web daemon. You should have a sidebar with a panel
which shows the HTTP Request Headers as seen by Netdisco application. In
there should be X-REMOTE_USER.
If the header isn't there, then it's Apache. If the header is there,
then we have a bug in Netdisco :)
p.s. I'll see if I can make this easier to enable without editing
netdisco-web-fg in the next release.
regards,
oliver.
Any hints on how to do this?
TIA.
Groet,
natxo
--
Groeten,
natxo
Links:
------
[1] http://netdisco.unix.domain.tld:5000/
[2] http://netdisco.unix.domain.tld:5000/
--- End Message ---
------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos.
Get unparalleled scalability from the best Selenium testing platform available
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs
_______________________________________________
Netdisco mailing list - Digest Mode
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
