DoD Enterprise White Pages Caroline Bean January 16, 2013 16 JAN 2013

Agenda Overview Architecture COOP Service Desk Backup User Interface 16 JAN 2013 1

Product Information DOD Enterprise White Pages is a web-based user interface that provides the capability to search for, locate, and display persona* based contact information for all DOD Personnel Managed by DISA PEO-ES Located at https://whitepages.mil Government Lead: Caroline Bean Project Lead: Jim Byers (Contractor Support) Development Lead/Architect: Dan Beller (Contract Support) Version 1.0 IOC scheduled for March 2013 *A “persona” is defined as a DoD Person’s current working or other personnel relationship with the DoD. Users may have more than one persona. For example, an individual who has serves the DoD as both a reservist and also a contractor would have two personas. 16 JAN 2013 2

Architecture 2-Tier architecture Web/Application Server as front end DISA’s Enterprise Directory Query Service (EDQS) provides contact information made available by DISA’s Identity Synchronization Service (IdSS) Hosted on the DISA Secure Technology Application Execution (STAX) Platform-as-a-Service (PaaS) White Pages deployed as a web application to a STAX application container Technology Java Platform Enterprise Edition (JEE) Based Application JBoss Enterprise Application Platform (EAP) Active Directory Lightweight Directory Service (AD LDS) Public Key Infrastructure (PKI) Authentication required 16 JAN 2013 3

HTTPS / PKI Authentication Logical Architecture Accreditation Boundary LDAPS HTTPS / PKI Authentication OCSP HTTP IdSS Directory Server Jboss App. Server OCSP Responder STAX Edge Router End User (Internet / NIPRNet) WP APP STAX USER EDQS User access to White Pages Web Application is separate from LDAP Directory No direct user access to LDAP Directory is authorized except through authenticated access to the DoD Enterprise White Pages web application. 16 JAN 2013 4

Implementation Details Standards and profiles X.509 PKI Certificates (CAC/ECA) and Online Certificate Status Protocol (OCSP) Transport Layer Security (TLS) Mutual Authentication HTTPS/HTML/CSS/JavaScript LDAPv3 for searching repository Section 508 for accessibility Interfaces HTTPS to external users LDAPS to EDQS Metrics Number of transactions, number of errors Response times (measured on server) Application up/down time 16 JAN 2013 5

Continuity of Operations (COOP) MAC II system DISA STAX environments are physically distributed to multiple DoD Enterprise Computing Center’s (DECC) Web applications deployed on STAX feature replication of application and data to at least one remote DECC for COOP STAX responsible for COOP planning, testing, and execution STAX guarantees 24-hour maximum restoral time for application and data 16 JAN 2013 6

Service Desk Tier 1 Tier 2 Tier 3 DECC Montgomery (MGM) Service Desk 24/7 Phone: 334-416-3472 DSN: 312-596-3472 Email: disa.montgomery.esd.mbx.mon-service-desk-ticket-requests@mail.mil Tier 2 Secure Technology Application eXecution (STAX) Service Desk DoD Enterprise Email (DEE) Service Desk DoD Enterprise White Pages Program Management Office (PMO) Tier 3 Application Developer/Vendor (Solers/Deloitte) 16 JAN 2013 7

Questions? 16 JAN 2013 8

Basic Search Interface *Though the screen shot says U//FOUO, this is test data and is really UNCLASSIFIED. 16 JAN 2013 9

Advanced Search Interface *Though the screen shot says U//FOUO, this is test data and is really UNCLASSIFIED. 16 JAN 2013 10

Initial Results Interface *Though the screen shot says U//FOUO, this is test data and is really UNCLASSIFIED. 16 JAN 2013 11

Contact Card *Though the screen shot says U//FOUO, this is test data and is really UNCLASSIFIED. 16 JAN 2013 12

Physical Architecture- Directory Server Primary Failover DECC Montgomery STAX PaaS Production East Web Data JBoss EAP EDQS Scaling as Needed EDQS Enclave LDAPS DECC Ogden STAX PaaS Production West Web Data JBoss EAP EDQS Scaling as Needed EDQS Enclave LDAPS EDQS 16 JAN 2013 13