Changes between Version 1 and Version 2 of SecurityTeam/Agenda/Agenda11.08.06
- Timestamp:
- 09/08/06 11:17:49 (14 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
SecurityTeam/Agenda/Agenda11.08.06
v1 v2 1 1 == Meeting Agenda 11 August 2006 - NDG Security Configuration at the BODC == 2 2 3 The aim of this meeting is determine the system configuration for all the NDG Security components at the BODC: To migrate from the current prototype configuration on livglue toward a more production like setup. This takes into account the new arrangement of the Livgrid servers as follows: 3 === Aims === 4 Determine the system configuration for all the NDG Security components at the BODC: To migrate from the current prototype configuration on livglue toward a more production like setup. This takes into account the new arrangement of the Livgrid servers as follows: 4 5 5 LIVGRID2 - NDG DEVELOPMENT SERVER6 LIVGRID1 - NDG PRODUCTION SERVER (http://grid.bodc.nerc.ac.uk).6 * LIVGRID2 - NDG DEVELOPMENT SERVER 7 * LIVGRID1 - NDG PRODUCTION SERVER (http://grid.bodc.nerc.ac.uk). 7 8 8 9 1. Review of NDG Security. 10 11 1. Migration from LIVGLUE TO LIVGRID2. 12 * Services running on LIVGLUE, Delete/uninstall NDG-Security s/w on LIVGLUE and build everything from scratch 13 * Installing NDG-Security Software on LIVGRID2. 14 * Need ROOT/Pseudo permission to install and configure. 15 * LIVGRID1 will be NDG-Production Server (http://grid.bodc.nerc.ac.uk). All NDG requests will be routed to this Machine. 16 9 === Agenda === 10 1. Review of NDG Security 11 * What are the Components and which of these do you need to deploy at the BODC? e.g. !MyProxy, Session Manager Web Service, Attribute Authority Web Service etc. See Use Case [wiki:SecurityTeam/UseCases/DataProviderDeployment] 17 12 1. !MyProxy Server 18 13 * suitable host … … 23 18 * Automated start up from boot: xinetd or SysV Init script 24 19 * Any other security issues or measures to be taken to secure host ... 25 26 27 1. Migrating Credential Repository database from MySQL to ORACLE. 20 1. Session Manager Web Service 21 * suitable host 22 * firewall considerations 23 * Interface to !MyProxy - considerations for this 24 * Interface to the Credential Repository 25 1. Attribute Authority Web Service 26 * suitable host 27 * firewall considerations 28 * User Roles Interface to Oracle Database 29 1. Migration from LIVGLUE TO LIVGRID2. 30 * Services running on LIVGLUE, Delete/uninstall NDG-Security s/w on LIVGLUE and build everything from scratch 31 * Installing NDG-Security Software on LIVGRID2. 32 * User/group permissions for installation and configuration 33 * LIVGRID1 will be NDG-Production Server (http://grid.bodc.nerc.ac.uk). All NDG requests will be routed to this Machine. 34 1. Migrating Credential Repository database from MySQL to Oracle. 28 35 * What is the Credential Repository and what does it do? 29 * Creation of Database tables under BODC O RACLEServer. Q. Before or after migrating to new Development Server?36 * Creation of Database tables under BODC Oracle Server. Q. Before or after migrating to new Development Server? 30 37 * New custom Python class for BODC Oracle db interface to NDG Security Credential Wallet