WO1998009402A1 - Management of computer workstations - Google Patents

Management of computer workstations Download PDF

Info

Publication number
WO1998009402A1
WO1998009402A1 PCT/EP1997/004614 EP9704614W WO9809402A1 WO 1998009402 A1 WO1998009402 A1 WO 1998009402A1 EP 9704614 W EP9704614 W EP 9704614W WO 9809402 A1 WO9809402 A1 WO 9809402A1
Authority
WO
WIPO (PCT)
Prior art keywords
workstations
network
program
policy group
policy
Prior art date
Application number
PCT/EP1997/004614
Other languages
French (fr)
Inventor
Bahman Rafatjoo
Thomas Munk-Jakobsen
Original Assignee
Metrix S.A.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Metrix S.A. filed Critical Metrix S.A.
Priority to EP97940122A priority Critical patent/EP0919089A1/en
Priority to AU42072/97A priority patent/AU735348B2/en
Publication of WO1998009402A1 publication Critical patent/WO1998009402A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0894Policy-based network configuration management

Definitions

  • the subject of this application is concerned with modern networks of computers. With the advent of reliable Local Area Networks (LANs) and good quality Wide Area Networks (WANs) it has been possible to interconnect low cost powerful personal computers and file / print server equipment. Such networks of computers have grown very quickly in recent years so that it is not uncommon to find networks ranging from thousands to tens of thousands of computer (nodes) all within the same commercial organisation. Companies usually develop such networks to cover a number of main sites which will be served by LANs and interconnected via WAN links. This structure is in marked contrast to the structure of data networks of 10 years ago where computer terminals were connected directly (or via concentrators) to one or a very few large mainframe computers.
  • LANs Local Area Networks
  • WANs Wide Area Networks
  • a method of managing a plurality of computer workstations interconnected by a network including at least one policy group, the method including the steps of: receiving data relating to the policy group definition; generating a program representative of the policy group definition data ; sending the generated program to each of the plurality of workstations ; instructing the workstations to check, by employing the program, whether or not each respective workstation belongs or does not belong to the at least one policy group; and returning the results of the checking step form each work station to at least one managing station.
  • This invention solves the above problems firstly by allowing the network administrator (i.e. the user of the network management system) to be able to define the membership conditions corresponding to each group which he wishes to create, and then to have them sent to all of the workstations on the network as a script or program data for execution within each agent locally.
  • each workstation will check periodically whether or not it fulfils any group membership and if so it will transmit a trap or event message to the network management station. This in turn on receiving these traps will update its database to reflect this.
  • the membership of each group is checked independently by each workstation, the effect is one of producing an inventory in real time of network status. Policies can therefore be managed with an assurance of accurate and timely information.
  • the novelty of the above approach is in respect of the fact that the decisions for group membership are taken by each workstation itself and independently of any others.
  • the stations are capable of receiving and processing the definition information, be it in the form of a definition file or in the form of an executable script or program which is generated at the management station.
  • This implies the presence of some form of management agent in the workstations, and a communications sub-system which can send to and receive transmissions from the management system, which itself will update its database to record any changes .
  • Figure 1 shows a computer network
  • Figure 2 shows a network management system employing the invention
  • Figure 3 is a flow diagram of an operation according to the invention.
  • Figure 1 shows a standard node computer network 10 which has plural interconnected user workstations 11. The workstations are managed from a main network management station 12.
  • the problem cited above of managing the workstations 11, can be seen in this context as one of updating (reading from or writing to) database entries and as a consequence from/to the real workstation agents.
  • the numbers of workstations 11 start to become large (i.e. from many hundreds to tens of thousands) then, although powerful management systems 12 can access these volumes automatically, it becomes impossible for the human operator to search through such volumes and indicate which agents need to be contacted.
  • the main difficulty then is in being able to define which groupings are significant and to define which of the (maybe thousands of) nodes should belong to which groups.
  • the method of the invention can be employed on network management systems 12 of the type managing the network 10 of figure 1.
  • Such a system 12 is shown in figure 2 and generally consists of the following components: 1.
  • a database for registering network events and recording network component information.
  • a communications sub-system for reading and updating network component status
  • the management database 3 which contains a data record for each of the devices 11 (nodes hubs routers etc.) which are to be found on the network 10.
  • a record will contain information such as the node's network address, its physical parameters and may also contain data related to its identification in the company's environment, such as who is the responsible user and where it is located. Database techniques are used to manage this information on larger scale management systems because of the extent of the information, the numbers of nodes involved and the inter-relationships which may exist between co-operating network devices 11.
  • Manageable devices 11 are those end stations which can be interrogated and updated from the management system 12.
  • This interrogation and updating is performed by sending messages (from the communications sub-system 4) to control programs (known as agents) which reside and are always active locally in the end stations ll.
  • agents are very common in network devices (such as bridges and routers) but are only just becoming available for user workstations.
  • step 3 The steps required for the implementation of the invention are shown in fig 3.
  • the actions are initiated by a network administrator who will decide on the group membership conditions and configure his management station 12 accordingly (step 1). This is then compiled into scripts or programs (step 2) which are sent to all workstation agents on the network 10 (step 3) .
  • step 2 the scripts or programs
  • step 3 the local agent will add it to his list of active group conditions and periodically will check the workstation 11 to see if any changes have taken place which affect the membership conditions.
  • the rate at which this checking (polling) takes place is given by the script, since some conditions are more dynamic than others.
  • a typical check on available disk space might be once every 15 seconds, whereas that for installed software need only be once every 10 minutes. Note that the agent will perform these checks independently of the workstation 11 being connected to the network 10, and will signal them as and when it is reconnected. This is particularly useful for portable PCs.
  • the agent Whenever a change is detected which affects the membership of one or more defined groups, the agent causes a trap message to be sent to the management station 12 to signal this event (step 5) .
  • This trap is used to update the database entries for each group and may also (optionally) generate an alarm condition for the administrator (step 6) .

Abstract

A method of managing a plurality of computer workstations interconnected by a network, the workstations including at least one policy group. The method includes the steps of receiving data relating to the policy group definition and generating a program representative of the policy group definition data. The generated program is sent to each of the plurality of workstations and the workstations instructed to check, by employing the program, whether or not each respective workstation belongs or does not belong to the at least one policy groups. The results of the checking step from each work station are returned to at least one managing station.

Description

MANAGEMENT OF COMPUTER WORKSTATIONS
The subject of this application is concerned with modern networks of computers. With the advent of reliable Local Area Networks (LANs) and good quality Wide Area Networks (WANs) it has been possible to interconnect low cost powerful personal computers and file / print server equipment. Such networks of computers have grown very quickly in recent years so that it is not uncommon to find networks ranging from thousands to tens of thousands of computer (nodes) all within the same commercial organisation. Companies usually develop such networks to cover a number of main sites which will be served by LANs and interconnected via WAN links. This structure is in marked contrast to the structure of data networks of 10 years ago where computer terminals were connected directly (or via concentrators) to one or a very few large mainframe computers.
Not only does this change represent a major difference in technology, but it also gives rise to differences in operating principles. In the old mainframe case, all services were provided and controlled centrally from the company's IT and Operations departments; whereas now there is a strong tendency to decentralise and for individual departments become responsible for their own workstation PCs. In any event, no central control is implied or (usually) imposed on LANs and their connected systems.
Management systems for controlling the network infrastructure of LAN/WAN networks are frequently to be found but to date, few (if any) of these address the problem of managing workstations and their servers (fig 1) . A major problem comes about from the fact that each PC is independent of the others and thus may be configured differently and without reference to them. Each may contain different software suites as well as different hardware. However, since they are all using a common data inf astructure (the LAN/WAN) these differences can give rise to conflicts on data accesses. Furthermore, since no one authority is responsible for all the PCs, no-one can guarantee that software licence provisions are being strictly adhered to. The resolution of these problems implies being able to define inventory classes (for groups of computers) and being able to monitor them on a continuous basis. Added to this is the problem of making changes and updates to such groups of computers as they are found to require it. The actual groupings specified will need to reflect the operational as well as organisational nature of each company concerned. In effect network administrators have to be able to define and redefine them as a company's needs change. According to the present invention, there is provided a method of managing a plurality of computer workstations interconnected by a network, the workstations including at least one policy group, the method including the steps of: receiving data relating to the policy group definition; generating a program representative of the policy group definition data ; sending the generated program to each of the plurality of workstations ; instructing the workstations to check, by employing the program, whether or not each respective workstation belongs or does not belong to the at least one policy group; and returning the results of the checking step form each work station to at least one managing station.
This invention solves the above problems firstly by allowing the network administrator (i.e. the user of the network management system) to be able to define the membership conditions corresponding to each group which he wishes to create, and then to have them sent to all of the workstations on the network as a script or program data for execution within each agent locally. At this point, (the agent residing in) each workstation will check periodically whether or not it fulfils any group membership and if so it will transmit a trap or event message to the network management station. This in turn on receiving these traps will update its database to reflect this. Thus, since the membership of each group is checked independently by each workstation, the effect is one of producing an inventory in real time of network status. Policies can therefore be managed with an assurance of accurate and timely information.
The novelty of the above approach is in respect of the fact that the decisions for group membership are taken by each workstation itself and independently of any others. In order to do this, it is necessary that the stations are capable of receiving and processing the definition information, be it in the form of a definition file or in the form of an executable script or program which is generated at the management station. This in turn implies the presence of some form of management agent in the workstations, and a communications sub-system which can send to and receive transmissions from the management system, which itself will update its database to record any changes .
One example of the present invention will now be described with reference to the accompanying drawings, in which:
Figure 1 shows a computer network;
Figure 2 shows a network management system employing the invention; and Figure 3 is a flow diagram of an operation according to the invention.
Figure 1 shows a standard node computer network 10 which has plural interconnected user workstations 11. The workstations are managed from a main network management station 12.
The problem cited above of managing the workstations 11, can be seen in this context as one of updating (reading from or writing to) database entries and as a consequence from/to the real workstation agents. When the numbers of workstations 11 start to become large (i.e. from many hundreds to tens of thousands) then, although powerful management systems 12 can access these volumes automatically, it becomes impossible for the human operator to search through such volumes and indicate which agents need to be contacted.
The answer to this is to break down this mass of nodes into groups and to manage the groups as if they were individual workstations. That is, an update to a group of (for example) parameter 5 on a group will cause the management system 12 to send an update order to all nodes contained in that group, for an update to parameter 5. Such groups are often called policy groups since all members are subject to the same management rules or policies.
The main difficulty then is in being able to define which groupings are significant and to define which of the (maybe thousands of) nodes should belong to which groups. The method of the invention can be employed on network management systems 12 of the type managing the network 10 of figure 1. Such a system 12 is shown in figure 2 and generally consists of the following components: 1. A graphical user interface 2. A network Management control program(s)
3. A database (for registering network events and recording network component information) .
4. A communications sub-system (for reading and updating network component status) . Of particular importance is the management database 3 which contains a data record for each of the devices 11 (nodes hubs routers etc.) which are to be found on the network 10. Typically a record will contain information such as the node's network address, its physical parameters and may also contain data related to its identification in the company's environment, such as who is the responsible user and where it is located. Database techniques are used to manage this information on larger scale management systems because of the extent of the information, the numbers of nodes involved and the inter-relationships which may exist between co-operating network devices 11. Manageable devices 11 are those end stations which can be interrogated and updated from the management system 12. This interrogation and updating is performed by sending messages (from the communications sub-system 4) to control programs (known as agents) which reside and are always active locally in the end stations ll. These agents are very common in network devices (such as bridges and routers) but are only just becoming available for user workstations.
The steps required for the implementation of the invention are shown in fig 3. The actions are initiated by a network administrator who will decide on the group membership conditions and configure his management station 12 accordingly (step 1). This is then compiled into scripts or programs (step 2) which are sent to all workstation agents on the network 10 (step 3) . Note that normally there will be many group definitions active at any one time. At each workstation 11, on receiving a new group definition, the local agent will add it to his list of active group conditions and periodically will check the workstation 11 to see if any changes have taken place which affect the membership conditions (step 4) . The rate at which this checking (polling) takes place is given by the script, since some conditions are more dynamic than others. A typical check on available disk space, for example, might be once every 15 seconds, whereas that for installed software need only be once every 10 minutes. Note that the agent will perform these checks independently of the workstation 11 being connected to the network 10, and will signal them as and when it is reconnected. This is particularly useful for portable PCs.
Whenever a change is detected which affects the membership of one or more defined groups, the agent causes a trap message to be sent to the management station 12 to signal this event (step 5) . This trap is used to update the database entries for each group and may also (optionally) generate an alarm condition for the administrator (step 6) .

Claims

1. A method of managing a plurality of computer workstations interconnected by a network, the workstations including at least one policy group, the method including the steps of: receiving data relating to the policy group definition; generating a program representative of the policy group definition data; sending the generated program to each of the plurality of workstations; instructing the workstations to check, by employing the program, whether or not each respective workstation belongs or does not belong to the at least one policy groups; and returning the results of the checking step from each work station to at least one managing station.
2. A method according to claim 1, wherein the policy group definition data is received at a remote location.
3. A method according to claim 1 or claim 2 , wherein the generated program is generated at a remote location.
4. A method according to any of claims 1 to 3 , wherein the checking step is performed regardless of whether the workstation is connected to a network or not.
5. A method according to any of the preceding claims, wherein the generated program is altered in response to the returned results.
PCT/EP1997/004614 1996-08-27 1997-08-25 Management of computer workstations WO1998009402A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP97940122A EP0919089A1 (en) 1996-08-27 1997-08-25 Management of computer workstations
AU42072/97A AU735348B2 (en) 1996-08-27 1997-08-25 Management of computer workstations

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB9617859.5 1996-08-27
GBGB9617859.5A GB9617859D0 (en) 1996-08-27 1996-08-27 Management of workstations

Publications (1)

Publication Number Publication Date
WO1998009402A1 true WO1998009402A1 (en) 1998-03-05

Family

ID=10798975

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP1997/004614 WO1998009402A1 (en) 1996-08-27 1997-08-25 Management of computer workstations

Country Status (4)

Country Link
EP (1) EP0919089A1 (en)
AU (1) AU735348B2 (en)
GB (1) GB9617859D0 (en)
WO (1) WO1998009402A1 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1267518A2 (en) * 2001-06-11 2002-12-18 Microsoft Corporation Multiple device management method and system
WO2004001598A3 (en) * 2002-06-20 2004-12-09 British Telecomm Distributed computer
EP1492267A2 (en) * 2003-06-24 2004-12-29 Alcatel Apparatus and method for evaluating in real-time a network policy
US7610333B2 (en) 2002-12-31 2009-10-27 British Telecommunications Plc Method and apparatus for operating a computer network

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4385384A (en) * 1977-06-06 1983-05-24 Racal Data Communications Inc. Modem diagnostic and control system
US5193152A (en) * 1989-11-03 1993-03-09 Racal-Datacom, Inc. Network management system with group naming

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4385384A (en) * 1977-06-06 1983-05-24 Racal Data Communications Inc. Modem diagnostic and control system
US5193152A (en) * 1989-11-03 1993-03-09 Racal-Datacom, Inc. Network management system with group naming

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
CHERITON D R ET AL: "HOST GROUPS: A MULTICAST EXTENSION FOR DATAGRAM INTERNETWORKS", HIGH PERFORMANCE LIGHT-WEIGHT FUEL CELL ELECTRODES, 10 September 1985 (1985-09-10), pages 172 - 179, XP000560608 *
MITROPOULOS S ET AL: "INTEGRATED DISTRIBUTED MANAGEMENT IN INTERCONNECTED LANS", PROCEEDINGS OF THE NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM (NOM, KISSIMMEE, FEB. 14 - 17, 1994, vol. 3 OF 3, 14 February 1994 (1994-02-14), INSTITUTE OF ELECTRICAL AND ELECTRONICS ENGINEERS, pages 898 - 908, XP000452396 *
VASSILA A ET AL: "INTRODUCING ACTIVE MANAGED OBJECTS FOR EFFECTIVE AND AUTONOMOUS DISTRIBUTED MANAGEMENT", BRINGING TELECOMMUNICATION SERVICES TO THE PEOPLE - ISS & N 1995, THIRD INTERNATIONAL CONFERENCE ON INTELLIGENCE IN BROADBAND SERVICE AND NETWORKS, HERAKLION, CRETE, OCT. 16 - 19, 1995. PROCEEDINGS, no. CONF. 3, 16 October 1995 (1995-10-16), CLARKE A;CAMPOLARGO M; KARATZAS N (EDS ), pages 415 - 429, XP000593492 *

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1267518A2 (en) * 2001-06-11 2002-12-18 Microsoft Corporation Multiple device management method and system
EP1267518A3 (en) * 2001-06-11 2003-11-19 Microsoft Corporation Multiple device management method and system
US7237243B2 (en) 2001-06-11 2007-06-26 Microsoft Corporation Multiple device management method and system
JP2009205687A (en) * 2001-06-11 2009-09-10 Microsoft Corp Multiple device management method and system
WO2004001598A3 (en) * 2002-06-20 2004-12-09 British Telecomm Distributed computer
US7937704B2 (en) * 2002-06-20 2011-05-03 British Telecommunications Public Limited Company Distributed computer
US7610333B2 (en) 2002-12-31 2009-10-27 British Telecommunications Plc Method and apparatus for operating a computer network
US8463867B2 (en) 2002-12-31 2013-06-11 British Telecommunications Plc Distributed storage network
EP1492267A2 (en) * 2003-06-24 2004-12-29 Alcatel Apparatus and method for evaluating in real-time a network policy
EP1492267A3 (en) * 2003-06-24 2005-01-12 Alcatel Apparatus and method for evaluating in real-time a network policy

Also Published As

Publication number Publication date
AU4207297A (en) 1998-03-19
GB9617859D0 (en) 1996-10-09
AU735348B2 (en) 2001-07-05
EP0919089A1 (en) 1999-06-02

Similar Documents

Publication Publication Date Title
US7209963B2 (en) Apparatus and method for distributed monitoring of endpoints in a management region
US6732118B2 (en) Method, computer system, and computer program product for monitoring objects of an information technology environment
US6529784B1 (en) Method and apparatus for monitoring computer systems and alerting users of actual or potential system errors
US7418489B2 (en) Method and apparatus for applying policies
US9712409B2 (en) Agile information technology infrastructure management system
US6792456B1 (en) Systems and methods for authoring and executing operational policies that use event rates
US7007104B1 (en) Method and apparatus for integrated network management and systems management in communications networks
US6115743A (en) Interface system for integrated monitoring and management of network devices in a telecommunication network
US20040010716A1 (en) Apparatus and method for monitoring the health of systems management software components in an enterprise
US20040205689A1 (en) System and method for managing a component-based system
US20050102382A1 (en) System and method for network management using instant messaging
US20060085683A1 (en) System and method for managing computer networks
US6675128B1 (en) Methods and apparatus for performance management using self-adjusting model-based policies
US20090070425A1 (en) Data processing system, method of updating a configuration file and computer program product
US7469287B1 (en) Apparatus and method for monitoring objects in a network and automatically validating events relating to the objects
KR20000012194A (en) System for integrating System Management System and Firewall system
US7120633B1 (en) Method and system for automated handling of alarms from a fault management system for a telecommunications network
AU735348B2 (en) Management of computer workstations
CN103414717A (en) Simulation monitoring method and system in regard to C / S structure service system
US7302455B1 (en) System and method for reliably purging statistical records
US20050060124A1 (en) Method and apparatus to enhance product remote customer serviceability
CN112580835B (en) Management method and device of server
Lewis et al. Incorporating business process management into network and systems management
EP1249965B1 (en) Method, computer system, and computer program for monitoring objects of an information technology environment
Neumair et al. Case study: applying management policies to manage distributed queuing systems

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH HU IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW AM AZ BY KG KZ MD RU TJ TM

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH KE LS MW SD SZ UG ZW AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 1997940122

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 09242847

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 1997940122

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

Ref document number: 1998511260

Format of ref document f/p: F

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase

Ref country code: CA

WWW Wipo information: withdrawn in national office

Ref document number: 1997940122

Country of ref document: EP