Changes between Version 1 and Version 2 of SecurityTeam/Agenda/Agenda11.08.06


Ignore:
Timestamp:
09/08/06 11:17:49 (14 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • SecurityTeam/Agenda/Agenda11.08.06

    v1 v2  
    11== Meeting Agenda 11 August 2006 - NDG Security Configuration at the BODC == 
    22 
    3 The aim of this meeting is determine the system configuration for all the NDG Security components at the BODC:  To migrate from the current prototype configuration on livglue toward a more production like setup.  This takes into account the new arrangement of the Livgrid servers as follows: 
     3=== Aims === 
     4Determine the system configuration for all the NDG Security components at the BODC:  To migrate from the current prototype configuration on livglue toward a more production like setup.  This takes into account the new arrangement of the Livgrid servers as follows: 
    45 
    5 LIVGRID2 - NDG DEVELOPMENT SERVER 
    6 LIVGRID1 - NDG PRODUCTION SERVER (http://grid.bodc.nerc.ac.uk). 
     6 * LIVGRID2 - NDG DEVELOPMENT SERVER 
     7 * LIVGRID1 - NDG PRODUCTION SERVER (http://grid.bodc.nerc.ac.uk). 
    78 
    8  
    9  1. Review of NDG Security.  
    10  
    11  1. Migration from LIVGLUE TO LIVGRID2. 
    12    * Services running on LIVGLUE, Delete/uninstall NDG-Security s/w on LIVGLUE and build everything from scratch 
    13    * Installing NDG-Security Software on LIVGRID2. 
    14    * Need ROOT/Pseudo permission to install and configure. 
    15    * LIVGRID1 will be NDG-Production Server (http://grid.bodc.nerc.ac.uk).  All NDG requests will be routed to this Machine. 
    16            
     9=== Agenda === 
     10 1. Review of NDG Security 
     11   * What are the Components and which of these do you need to deploy at the BODC? e.g. !MyProxy, Session Manager Web Service, Attribute Authority Web Service etc. See Use Case [wiki:SecurityTeam/UseCases/DataProviderDeployment] 
    1712 1. !MyProxy Server 
    1813   * suitable host 
     
    2318   * Automated start up from boot: xinetd or SysV Init script 
    2419   * Any other security issues or measures to be taken to secure host ... 
    25     
    26      
    27  1. Migrating Credential Repository database from MySQL to ORACLE. 
     20 1. Session Manager Web Service 
     21   * suitable host 
     22   * firewall considerations 
     23   * Interface to !MyProxy - considerations for this  
     24   * Interface to the Credential Repository 
     25 1. Attribute Authority Web Service 
     26   * suitable host 
     27   * firewall considerations 
     28   * User Roles Interface to Oracle Database  
     29 1. Migration from LIVGLUE TO LIVGRID2. 
     30   * Services running on LIVGLUE, Delete/uninstall NDG-Security s/w on LIVGLUE and build everything from scratch 
     31   * Installing NDG-Security Software on LIVGRID2. 
     32   * User/group permissions for installation and configuration 
     33   * LIVGRID1 will be NDG-Production Server (http://grid.bodc.nerc.ac.uk).  All NDG requests will be routed to this Machine.    
     34 1. Migrating Credential Repository database from MySQL to Oracle. 
    2835    * What is the Credential Repository and what does it do? 
    29     * Creation of Database tables under BODC ORACLE Server.  Q. Before or after migrating to new Development Server? 
     36    * Creation of Database tables under BODC Oracle Server.  Q. Before or after migrating to new Development Server? 
    3037    * New custom Python class for BODC Oracle db interface to NDG Security Credential Wallet