Odyssey Access Client Backup

We use the Juniper Odyssey Access Client for our 802.1x supplicant because of how well it integrates and works with Novell for SSO. One of the issues we’ve had is how to backup/restore our user’s various networks/profiles they create, currently Ju…

Advertisements

We use the Juniper Odyssey Access Client for our 802.1x supplicant because of how well it integrates and works with Novell for SSO. One of the issues we’ve had is how to backup/restore our user’s various networks/profiles they create, currently Juniper does not have a utility or process to do this, so we created one in-house that has been working very well for us. Basically what we want is a backup of all the user’s various networks they have configured without any of our own in-house networks being included. Luckily Juniper has a script writer that can perform various useful tasks like adding/removing networks. Here is our process:

Write an OAC script

  • Odyssey Access Client Administrator—Script Composer
  • We use the Remove Networks option to remove all of our corporate SSIDs, leaving us just the user created ones.
  • Once done we generate the script.

Once our script is written we can move on to the “logic” piece of the puzzle. Now let’s walk through each piece of our process:

Step One: Backup Current Data
First we need to backup the user’s current networks and profiles to ensure at the end the machine can again have network access. For this process we run two commands:

reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientnetworks” C:LiveOACNet.reg
reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientprofiles” C:LiveOACProf.reg

Basically these two commands are doing a reg “dump” of the Odyssey networks and profiles to the local disk.

Step Two: Remove our various SSIDs
Once this script runs, the client will temporarily lose network (wireless) connectivity, this only lasts approximately 10 seconds which is a very reasonable time frame.
To ensure we can recover the user’s networks after each reimage cycle we need to ensure our profiles don’t carry over or exist on the machine, this is due to differences in passwords per year so old data would overwrite current data.For this process we call upon odClientAdministrator.exe to silently run the script we wrote above.

By default odClientAdministrator is located in: C:Program FilesJuniper NetworksOdyssey Access Client

We use the command: odClientAdministrator.exe /I=C:ScriptName.odyClientScript /S

This particular command is well documented in Juniper’s KB at: http://kb.juniper.net/InfoCenter/index?page=content&id=KB10744&actp=s…

Step Three: Backup User’s Data Only
Now we are ready to backup the user’s networks that they have created/added in Odyssey.To accomplish this we run this command:

reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientnetworks” C:OACNetSettings.reg

Again this basically does a reg “dump” of the networks and puts them on the local disk. We can then copy this file off the user’s machine to their network drive to ensure we have a working backup of their data.

Step Four: Reimport Production Data
Now we just reimport the backup we took from step one to ensure the client’s connectivity is restored and they have all their SSIDs back. 

regedit /s C:LiveOACNet.reg
regedit /s C:LiveOACProf.reg 

We actually run this whole process in the context of a batch file, which you can see below:

cls
@echo off
title OAC Backup
echo ************************************************
echo *           OAC Backup Process               *
echo *              Version 1.0                           *
echo *                                                         *
echo ************************************************

echo Backup Live Data
reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientnetworks” C:LiveOACNet.reg
reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientprofiles” C:LiveOACProf.reg

echo Remove APS Wifi Data
cd “C:Program FilesJuniper NetworksOdyssey Access Client”
odClientAdministrator.exe /I=C:YourScript.odyClientScript /S

echo Backup User’s Wireless Data
reg export “HKEY_CURRENT_USERSoftwareFunk Software, Inc.Odysseyclientnetworks” C:OACNetSettings.reg

echo Reimport Live Data
regedit /s C:LiveOACNet.reg
regedit /s C:LiveOACProf.reg

 

This script is not ideal, losing network connectivity for 10 seconds is definitely not preferred but is currently the best way we have to backup and restore Odyssey’s settings for our users. We do have a request for enhancement in with Juniper but who knows how long that process will take.

Author: Travis Kensil

Director of IT. Husband and father. Michigan beachbum.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s