Mapping Users and Host Name with IP Address using Active Directory
NetFlow Analyzer by default displays the IP addresses of the Source and Destination that participate in the conversation in a network. In addition to this, an option to associate the IP addresses to Users or Host Name/ MAC address in the NetFlow Analyzer reports. The user name to IP address can be mapped using Active Directory or manually.
If the IP address is not mapped to any user then "only the IP address" will be shown in the reports. Only after the user name is configured and the data gets collected, "user name(s)" will be in displayed reports. Carry out the procedure given below to configure the User Name - IP Address Mapping:
- In the NetFlow Analyzer web client, navigate to Settings>NetFlow > User Name-IP Mapping.
- The User Name - IP Mapping page provides two options. Select an option as per your requirement. The options are:
- Active Directory
- Manual Mapping
Active Directory (AD)
- Click the Active Directory tab available on top
- To get User Names from Active Directory and show it in NetFlow reports
- The details of the columns of the table are:
| Active Directory Details |
Description |
| Server Name |
The names of the Active Directory servers from which the NetFlow Analyzer will associate user name with the IP address. In this case, all the Active Directory servers added to the NetFlow Analyzer will be listed. |
| Assigned Devices |
The NetFlow devices assigned to that particular Active Directory server. |
| Result |
The result imported from the Active Directory. |
| Status |
The current status of the Active Directory's server connection with NetFlow Analyzer. |
| Action |
To delete or edit the AD server details click on the respective icon here. |
| View List |
To view the username and ip mapping details got from AD server. |
- To enable, disable the AD server, select the required AD servers and click the Enable/Disable button
- To add a new AD server, click Add new link on the right side. and fill in the details
- You can add new domains using Add new link.
- Enter the Domain Name, User Name, and a Custom name for the Primary Domain Controller.
- Enter the password of the Primary Domain Controller, and the names of the users to be excluded from the list
Note: To assign devices, Select the devices, which you want to assign/re-assign to the selected AD server. All the available devices are listed in the Available Device(s) list. Select the devices and click right arrow. The selected devices are moved to the Selected Device(s) list. If you want to remove any device from the Selected Device(s) list, select the devices and click the left arrow. The removed devices will be moved back to the Available Device(s) list.
- Click on the Save button to assign the selected devices to the selected AD server. Click Cancel to cancel the assigning of devices to the AD server.
- After associating the devices with the AD server, the AD server and the assigned devices are listed in all the reports and also the interfaces menu.
- Click the "View List" icon to view the list of IP addresses and Users mapped with the AD server.
Manual Mapping
The second tab in the User Name - IP Mapping page provides a provision of manually mapping the user name with IP address. You can create the mapping file in two formats: .txt and .csv
The mapping format for
- .txt file is <IP address=user name>, and
Sample :
192.168.222.74=user1
192.168.222.75=user2
192.168.222.76=user3
192.168.222.77=user4 |
- csv file is <IP address,user name>.
Sample :
192.168.222.74,user1
192.168.222.75,user2
192.168.222.76,user3
192.168.222.77,user4 |
You can create the mapping file in any one of the two formats and import it into NetFlow Analyzer.
Below the Enable/Disable option, a table with the mapping profiles and the devices assigned to it, appears on the screen. The details of the columns of the table are as follows.
| Manual Mapping Details |
Description |
| Mapping Profile Name |
The names of the mapping profiles from which the NetFlow Analyzer will associate user name with the IP address. Click the profile name to view the devices assigned and modify the devices assigned. |
| Assigned Devices |
The NetFlow devices assigned to the particular mapping profile. |
| Actions |
Click the Clear Devices icon to clear the assigned devices.
Edit the mapping profile to configure devices or import options by clicking the Edit icon.
Delete the mapping profile by clicking the Delete icon. |
| View List |
To view the username and IP mapping details imported into the current mapping profile. |
To add a new manual mapping profile, click on the Import link on the right side of the UI.
- Enter the name of the mapping profile
- To import the mapping file from the local host, click the Browse button in the file location field.
- Select the file from the local machine (client machine) and click Open.
- The mapping file in .txt or .csv will be imported.
- To import the mapping file from the remote host, enter the host name or IP address of the remote machine, credentials (user name and password), port, protocol, time interval in minutes and time to start IN hours and minutes for scheduled import.
- Click the Browse button in the file location field.
- Select the file from the remote machine and click Open.
- The mapping file in .txt or .csv will be imported.
- If the name of the file to be imported changes dynamically, select the Change file name dynamically option
Assign devices to the mapping profile
- Select the devices, which you want to assign/re-assign to the selected profile. All the available devices are listed in the Available Device(s) list. Select the devices and click right arrow. The selected devices are moved to the Selected Device(s) list. If you want to remove any device from the Selected Device(s) list, select the devices and click the left arrow. The removed devices will be moved back to the Available Device(s) list.
- Click the Save button to assign the selected devices to the selected profile. Click Cancel to cancel the assigned devices to the profile operation.
After associating the devices to mapping profile, the profile and the assigned devices are listed in the table.
Click the View List icon to view the list of all IP addresses and Users mapped with Manual mapping profile.
