Upload File

infrastructure provisioning in the context of organization

  • Home
  • Software
  • Infrastructure Provisioning in the context of organization
30

Upload: katarina-valalikova

Post on 22-Jan-2018

1.334 views

Category:

Software


0 download

Report

TRANSCRIPT

Page 1: Infrastructure Provisioning in the context of organization

Katarina Valalikova

Infrastructure Provisioningin the context of organization

[email protected]@KValalikova

Page 2: Infrastructure Provisioning in the context of organization

Agenda

● Cloud, infrastructure, provisioning, OpenStack

● Identity management

● Infrastructure management

● Infrastructure and Identity Management

Page 3: Infrastructure Provisioning in the context of organization

Clouds

Cloud

Hardware specialists

Operation team

Maintenance

Money

Datacenter

Robustness and scalability

Page 4: Infrastructure Provisioning in the context of organization

● Virtual machines

● Bare metal

● Orchestration

● Containers

● ….

Heat

Neutron

NOVA

Magnum

Page 5: Infrastructure Provisioning in the context of organization

Heat

Neutron

NOVA

Magnum

Users

???? ?

?

?

??

What about the users?

Page 6: Infrastructure Provisioning in the context of organization

How to automate user provisioning?

● OpenStack Keystone

– Tenant/Project, User provisioning

– User tenant assignment

– Accesses for Virtual Machines

● Automation in the context of organization?

– Reusing of information

● Accesses and possibilities inside VirtualMachine

Page 7: Infrastructure Provisioning in the context of organization

DB Application

DB

HR

IDM

LDAP

UNIX

Who am I? What do I do?

● Company Evolveum

● Java Developer & Identity Engineer

● IDM midPoint

– Provisioning

– Deprovisioning

– Identities

– Groups

– Projects

Page 8: Infrastructure Provisioning in the context of organization

Who am I? What do I do?

● Company Evolveum

● Java Developer & Identity Engineer

● IDM midPoint

– Provisioning

– Deprovisioning

– Identities

– Groups

– Projects

DB Application

DB

HR

IDM

LDAP

UNIX

Page 9: Infrastructure Provisioning in the context of organization

Education

Insurance

Technical

Experiences

● Different companies

● Different areas

● Different requirements

Page 10: Infrastructure Provisioning in the context of organization

prc = new PropertyResolverConverter(Application.get().getConverterLocator(), Session.get().getLocale()); - if(object instanceof String){ + if (object instanceof String) { String label = (String) object; String key; - if (label == null || label.trim().equals("")){ + if (label == null || label.trim().equals("")) { PropertyResolver.setValue(expression, getInnermostModelOrObject(), null, prc); } else { + if (!isStrict) { // set default value from input and overwrite later if key is found + PropertyResolver.setValue(expression, getInnermostModelOrObject(), label, prc); + } for (LookupTableRowType row : lookupTable.getRow()) { if (label.equals(WebMiscUtil.getOrigStringFromPoly(row.getLabel()))) { key = row.getKey(); - PropertyResolver.setValue(expression, getInnermostModelOrObject(), key, prc); } } } - } else if (object == null){ - PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); + } else if (object == null) { + PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); } } @Override - public void detach() {} + public void detach() { + } }

Who and what?

● Technical view

Page 11: Infrastructure Provisioning in the context of organization

prc = new PropertyResolverConverter(Application.get().getConverterLocator(), Session.get().getLocale()); - if(object instanceof String){ + if (object instanceof String) { String label = (String) object; String key; - if (label == null || label.trim().equals("")){ + if (label == null || label.trim().equals("")) { PropertyResolver.setValue(expression, getInnermostModelOrObject(), null, prc); } else { + if (!isStrict) { // set default value from input and overwrite later if key is found + PropertyResolver.setValue(expression, getInnermostModelOrObject(), label, prc); + } for (LookupTableRowType row : lookupTable.getRow()) { if (label.equals(WebMiscUtil.getOrigStringFromPoly(row.getLabel()))) { key = row.getKey(); - PropertyResolver.setValue(expression, getInnermostModelOrObject(), key, prc); } } } - } else if (object == null){ - PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); + } else if (object == null) { + PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); } } @Override - public void detach() {} + public void detach() { + } }

Who and what?

● Technical view

● Management view

Page 12: Infrastructure Provisioning in the context of organization

prc = new PropertyResolverConverter(Application.get().getConverterLocator(), Session.get().getLocale()); - if(object instanceof String){ + if (object instanceof String) { String label = (String) object; String key; - if (label == null || label.trim().equals("")){ + if (label == null || label.trim().equals("")) { PropertyResolver.setValue(expression, getInnermostModelOrObject(), null, prc); } else { + if (!isStrict) { // set default value from input and overwrite later if key is found + PropertyResolver.setValue(expression, getInnermostModelOrObject(), label, prc); + } for (LookupTableRowType row : lookupTable.getRow()) { if (label.equals(WebMiscUtil.getOrigStringFromPoly(row.getLabel()))) { key = row.getKey(); - PropertyResolver.setValue(expression, getInnermostModelOrObject(), key, prc); } } } - } else if (object == null){ - PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); + } else if (object == null) { + PropertyResolver.setValue(expression, getInnermostModelOrObject(), object, prc); } } @Override - public void detach() {} + public void detach() { + } }

Who and what?

● Technical view

● Management view

● Business view

Page 13: Infrastructure Provisioning in the context of organization

Group A

Group C Group B

Is IDM sufficient?

● Companies with big fluctuation

● Quickly growing companies

● Companies providing serviciesfor wider population

● Users, Account, Projects,

● Organization units, Services,Groups, Infrastructure,...

Page 14: Infrastructure Provisioning in the context of organization

What is the hardest thing for me?

● Interacting with people

● Get agreement

● Get help (whithin a reasonable time)

● Effectivity

● Infrastructure settings

● Application installation

● Gain accesses and permissions

Page 15: Infrastructure Provisioning in the context of organization

Is there a way how to solve it?

● midPoint and OpenStack together?

● Can it work somehow?

● Are there any advantages?

● Positive impacts?

Web Application

HR

IDM

LDAP

UNIX

Page 16: Infrastructure Provisioning in the context of organization

Use case – New employee

Page 17: Infrastructure Provisioning in the context of organization

Use case – New employee

HR

Page 18: Infrastructure Provisioning in the context of organization

Use case – New employee

HR

IDM

Page 19: Infrastructure Provisioning in the context of organization

Use case – New employee

DB Application

DB

HR

IDM

LDAP

UNIX

Page 20: Infrastructure Provisioning in the context of organization

Use case – New project

DB Application

DB

HR

IDM

LDAP

UNIX

Project

Page 21: Infrastructure Provisioning in the context of organization

Use case – New component

OpenStack

DB Application

DB

HR

IDM

LDAP

UNIX

Project

Page 22: Infrastructure Provisioning in the context of organization

MidPoint and OpenStack together?

● Connector

● Run/Stop VM

● User management

● Tenant Management

● User (in Role) for Tenant

ConnectorDB

HR

IDM

LDAP

UNIX

Page 23: Infrastructure Provisioning in the context of organization

Demo

● New Employee

● New Project

● midPoint – OpenStack integration

● Different views

Page 24: Infrastructure Provisioning in the context of organization

Pre-configured demo resources

● OpenLDAP

– User management

– Group management – based on project

– Group membership management

● OpenStack

– User management

– Tenant management

– User to Tenant (in Role)

Page 25: Infrastructure Provisioning in the context of organization

Demo Organizational Structure

● Project

– Create new tenant in OpenStack, run/stop virtualmachine

– Define project structure – LDAP groups

● Organization

– Different divisions of organization

● Cooperation

– Partners, Customers,...

Page 26: Infrastructure Provisioning in the context of organization

Demo Roles

● LDAP Roles

– Create users

– Create groups

● OpenStack Roles

– Tenant

– Virtual Machine

Page 27: Infrastructure Provisioning in the context of organization

Demo Resources for new VM

● LDAP – installed inside new VM

● Unix – users to the VM

Page 28: Infrastructure Provisioning in the context of organization

What are the benefits?

● One tool

● All about organization under one roof

● Global view of organization

– Resource

– VMs

– Users

– Projects

– ...

One tool All information under one roof

Page 29: Infrastructure Provisioning in the context of organization

Thank you for your attention

@[email protected]

Page 30: Infrastructure Provisioning in the context of organization

Summary

● MidPoint and OpenStack

● Reusing existing information

● Global view of organization

● Automation of some processes

● Security

● Flexibility

● Adaptability

● Reliability

Web Application

HR

IDM

LDAP

UNIX


Infrastructure Provisioning Quality Inspection Program (IPQIP)

Introduction to the Cluster Infrastructure and the Systems Provisioning Engineering teams

AWS Infrastructure Database Design & Development · 2019-07-18 · AWS Infrastructure Database Design & Development Case Study Provisioning the AWS infrastructure for running a web

Context-Aware and Process-Centric Knowledge Provisioningdbis.eprints.uni-ulm.de › 1192 › 1 › GOR_15a.pdf · 2015-08-11 · Context-Aware and Process-Centric Knowledge Provisioning

Infrastructure Provisioning 02 | What’s New in System Center 2012 R2 Jump Start

Speeding Up Infrastructure Provisioning with CloudForms · PDF fileSpeeding Up Infrastructure Provisioning with CloudForms Jason Dillaman Principal Architect, Red Hat Nick Lane Consultant,

Backend Infrastructure Design & Development · Backend Infrastructure Design & Development Case Study Upgrade the cloud infrastructure and automate the product provisioning and deployment

Infrastructure as a Service (IaaS) - Concordia Universityglitho/F14_Cloud_Chapter4_IaaS.pdf · Infrastructure as a Service (IaaS) ... Dynamic service provisioning ... User interface

A Hybrid Model of Context-aware Service Provisioning Implemented on Smart Phones

FLEXIBLE ORGANIZATION OF REPOSITORIES FOR PROVISIONING CLOUD … · 2 REQUIREMENTS OF CLOUD INFRASTRUCTURE PROVISIONING Both grid computing and cloud computing are attempts at utility

Failure aware resource provisioning for hybrid cloud infrastructure

User Oriented Provisioning of Secure Virtualized Infrastructure

UNIT III INFRASTRUCTURE AS A SERVICE (IAAS) Virtual ... · Provisioning in the Cloud Context Introduction and Inspiration Elastic Load Balancer Auto Scaling CloudWatch ... machines’

On qo s provisioning in context aware wireless sensor networks for healthcare

Implementing Virtual Provisioning on EMC CLARiiON · PDF fileImplementing Virtual Provisioning on EMC CLARiiON and Celerra with VMware Infrastructure Applied Technology ... VMware

Hadoop analytics provisioning based on a virtual infrastructure

SERVERLESS ARCHITECTURE IN YOUR BUSINESS€¦ · Serverless architecture delivers the infrastructure that success is built upon. Painless Provisioning With Serverless, provisioning

Network Infrastructure & Service Provisioning

Vmm Level Distributed Transparency Provisioning Using Cloud Infrastructure Technology

Provisioning Your Storage Infrastructure

On-Demand Infrastructure Services Provisioning Best Practices

86% 50% Infrastructure provisioning Enterprise-class multi- tenant infrastructure for hybrid environments System Center capabilities Application

Infrastructure as Code whitepaper - d0. · PDF fileContents Introduction to Infrastructure as Code 1 The Infrastructure Resource Lifecycle 1 Resource Provisioning 3 AWS CloudFormation

Implementing Virtual Provisioning on EMC CLARiiON … · Implementing Virtual Provisioning on EMC CLARiiON and Celerra with VMware Infrastructure Applied Technology Abstract This

Jagran New Media automates infrastructure provisioning

Implementing Virtual Provisioning on EMC Symmetrix with ... · Implementing Virtual Provisioning on EMC Symmetrix with VMware Infrastructure 3 Applied Technology 4 Executive summary

BYOD: Implementation, Infrastructure Provisioning and

Converged Network Infrastructure Enabling Resource Optimization … · Converged Network Infrastructure Enabling Resource Optimization and Flexible Service Provisioning (CONFES) T

deploying f5 automated network provisioning for vmware infrastructure

May 24-26 2004 S. Timm--Infrastructure and Provisioning at Fermilab HDCF 1 Infrastructure and Provisioning at the Fermilab High Density Computing Facility

Provisioning the IoT - Jfokus · 1. Put IoT provisioning into context 2. Demo: modular provisioning 3. Apache ACE Today's goals

Dynamic Provisioning of Resources in a Hybrid Infrastructure

Provisioning Market 2009: Divide and Conquersales presence, and partner ecosystem of these powerhouse vendors. Context: Provisioning is an important subset of enterprise identity management

Security Infrastructure for Context-Aware Middleware

An Infrastructure Modelling Tool for Cloud … Infrastructure Modelling Tool for Cloud ... such as DevOps. ... infRastructure modellinG tool for clOud provisioNing),