Few Highlights from HEPIX/HEPNT Alberto Pace. Warning  This is not a comprehensive report.  See Alan Silverman’s excellent summary if you need this.

Slides:

Advertisements

Similar presentations

Single Sign-On with GRID Certificates Ernest Artiaga (CERN – IT) GridPP 7 th Collaboration Meeting July 2003 July 2003.

Advertisements

CERN, Information Technology Department

HEP Data Sharing … … and Web Storage services Alberto Pace Information Technology Division.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Optimizing the User Experience Throughout the Infrastructure Consolidation Process Dan Smith, Enterprise Solutions Manager, GTSI Chris Theon, Practice.

Password?. Project CLASP: Common Login and Access rights across Services Plan

1/11/2000LDAP Status Report - HEPix - JLab 2000 LDAP Status Report Michel Jouvin LAL / IN2P3

Secure Messaging Nick Hall & James Clifford Microsoft.

Understanding Active Directory

Presented by: Mark Hendricks

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

Business Productivity Online Suite Enterprise class software delivered via subscription services hosted by Microsoft and sold with partners.

Chapter 5 Managing a Server. Overview  Server management  Examine networking models  Learn how users are authenticated  Manage users and groups 

Maintaining and Updating Windows Server 2008

Making Identity and Access Management Real – The Early Days Brian Lauge Pedersen Senior Technology Specialist.

Exchange deployment at CERN and new ideas for SPAM fighting Michel Christaller, Emmanuel Ormancey, Alberto Pace.

Internet Services Alberto Pace. Internet Services Group u Mission and Goals u Provide core computing services, worldwide u Three specific areas u Collaborative.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

Windows 2000 and Active Directory Services at UQ Scott Sinclair Senior Systems Programmer Software Infrastructure Group

Virtual Private Networks Alberto Pace. IT/IS Technical Meeting – January 2002 What is a VPN ? u A technology that allows to send confidential data securely.

Managing CERN Desktops with Systems Management Server (SMS 2003) Michel Christaller Internet Services Group Department of Information Technology CERN May.

Working with Workgroups and Domains

BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,

Collaboration and Content Customer solution case study The Yaroslavl region Government creates knowledge base of public authorities of the Yaroslavl region.

HEPiX Catania 19 th April 2002 Alan Silverman HEPiX Large Cluster SIG Report Alan Silverman 19 th April 2002 HEPiX 2002, Catania.

HEPiX Orsay 27 th April 2001 Alan Silverman HEPiX Large Cluster SIG Report Alan Silverman 27 th April 2001 HEPiX 2001, Orsay.

Chapter 7: Using Windows Servers to Share Information.

© 2011 PLANET TECHNOLOGIES, INC. Extending User Profiles with Line of Business Data Patrick Curran, MCT FEBRUARY 24, 2013.

Welcome to HEPNT Gian Piero Siroli, Physics Dept., Univ. of Bologna LAL, HEPiX-HEPNT 2001.

IMPLEMENTING F-SECURE POLICY MANAGER. Page 2 Agenda Main topics Pre-deployment phase Is the implementation possible? Implementation scenarios and examples.

Designing Active Directory for Security

SMS 2003 Deployment and Managing Windows Security Rafal Otto Internet Services Group Department of Information Technology CERN 26 May 2016.

INFSO-RI Enabling Grids for E-sciencE Getting Started Guy Warner NeSC Training Team Induction to Grid Computing and the National.

Configuring Directory Certificate Services Lesson 13.

Nov 1, 2000Site report DESY1 DESY Site Report Wolfgang Friebel DESY Nov 1, 2000 HEPiX Fall

Solving the Inherent Problems with the Personal Computer Presented by: Douglas A. Brown President / Chief Technology Office Presented.

Moving Large Amounts of Data Rob Schuler University of Southern California.

The NICE 2000 Web Services Ivan Deloose, Frédéric Hemmer, Alberto Pace, Maciej Sobczac, and others Information Technology Division - CERN.

HEPiX-HEPNT 2000 Report Enrico M.V. Fasanelli & Gian Piero Siroli.

Virtual techdays INDIA │ august 2010 virtual techdays INDIA │ august 2010 Moving/Co-existing your messaging platform to the cloud with Exchange.

1 CERN’s Computer Security Challenges Denise Heagerty CERN Computer Security Officer Openlab Security Workshop, 27 Apr 2004.

15-Apr-1999D.P.Kelsey - HEPNT update - HEPiX/RAL1 HEPNT an update David Kelsey CLRC Rutherford Appleton Lab, UK rl.ac.uk

Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Current Deployment (NT4) n Minimal central infrastructure u DHCP/DNS service (non NT) u WINS service (but not supported) u Software image repository u.

Password? CLASP Project FOCUS Meeting, 12 October 2000 Denise Heagerty, IT/IS.

Single Sign-On across Web Services Ernest Artiaga CERN - OpenLab Security Workshop – April 2004.

Status of Exchange deployment Alberto Pace for the IT/IS group Desktop Forum, April 3 rd 2003.

HEPiX 2 nd Nov 2000 Alan Silverman Proposal to form a Large Cluster SIG Alan Silverman 2 nd Nov 2000 HEPiX – Jefferson Lab.

Module 1: Overview of Microsoft Office SharePoint Server 2007.

Plan for the Exchange 2000 Deployment Proposal Desktop Forum IT/IS 30/10/02.

The New CERN Mail Services Information for group Administrators Alberto Pace for the Internet Service Group and the Mail Migration Task Force.

Status of W2K at INFN Gian Piero Siroli, Dept. of Physics, Univ. of Bologna and INFN HEPiX-HEPNT 2000, Jefferson Lab.

Password? CLASP Phase 2: Revised Proposal FOCUS, 3 May 2001 Denise Heagerty, IT/IS.

Module 1: Introduction to Windows 2000 and Networking.

CERN IT Department CH-1211 Genève 23 Switzerland t Single Sign On, Identity and Access management at CERN Alex Lossent Emmanuel Ormancey,

Overview Microsoft Windows XP Pro (SP2) Microsoft Windows Server 2003 User accounts and groups File sharing and file permissions Password/Lockout Policy.

Module 2: IT Professionals in an Enterprise. IT Professional Roles IT Management and Processes Professional Development for IT Professionals.

Fermilab supports several authentication mechanisms for user and computer authentication. This talk will cover our authentication systems, design considerations,

Virtual Private Networks

Chapter 7: Using Windows Servers

Secure Connected Infrastructure

New Developments in Central Directory Service and Account Provisioning Dan Menicucci Enterprise Architect - University of Pittsburgh.

City-wide Active Directory Project Town Hall II

Microsoft List Schedule April – May 2016

Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.

Easy Way to prepare Microsoft Exam - Dumps4Download.in

Implementing Client Security on Windows 2000 and Windows XP Level 150

Internet Engineering Course

Agenda The current Windows XP and Windows XP Desktop situation

Brian Dunleavy NHS Business Manager, Eurodata Systems plc

Presentation transcript:

Few Highlights from HEPIX/HEPNT Alberto Pace

Warning  This is not a comprehensive report.  See Alan Silverman’s excellent summary if you need this (on the DMM web site)  This presentation contains highlights on few arbitrary selected topics that I have been particularly following during the meeting

Windows Infrastructure  Windows used at all labs, with or without infrastructure  DESY, IN2P3 and SLAC deploying active directory  Slac focussing on Server 2003 and XP workstation  Desy currently building the “Registry” (== CCDB)  In2p3 Forest in production with 7 labs, total 11 foreseen  Talk from Microsoft on Windows SFU (Services for Unix)

Virus and Worms  All labs have dedicated resources for virus and worm tracking  Affects all operating systems and mail  Unmanaged desktop environments are the most exposed to attacks  Taken seriously at all laboratories  Main point: supporting unmanaged desktop is a non- scalable task

Mail  Public domain software or Exchange  Slac migrating from Exchange 5.5 to 2003  Anti spam a hot topic  Often an activity with dedicated resources  Many labs using Spamassin or its derivatives  Few implemented Bayesian filters  A constant race between spammers and mail administrators  No labs currently using commercial products  Some labs seeks collaborations, other seeks commercial solutions

Other points  Password synchronization  While waiting for single sign-on technologies, SLAC, FNAL introducing Unix/Windows password synchronization. Jlab already did it several years ago.  From the user point of view, similar to single sign on  Certificate distribution issues  Certificates will be used for grid authentication and could be used for secure and web authentication  A technology that has proven to be reliable, but that end-users often do not understand the technology leading to insecure environments. A centralized management / identity management necessary  Windows Terminal Services  User successfully at DESY, SLAC, Oxford, RAL. CERN is not pioneering this area.

Conclusion  Useful meeting, lot of technical content, several in depth technical peer-to-peer discussions  Same technologies used across all labs means similar problems  Plenty of synergies and opportunities  Sharing ideas works very well, cross-lab collaborations more difficult but possible