Location
|
stepping stone GmbH, Neufeldstrasse 9, CH-3012 Bern
|
Date
|
Friday, the 9th of August 2013
|
Time
|
09:00 until 10:00
|
Participants
|
- Pat Kläy <pat.klaey@stepping-stone.ch>: PKL
- Tiziano Müller <tiziano.mueller@stepping-stone.ch>: TMU
- Michael Eichenberger <michael.eichenberger@stepping-stone.ch>: MEI (Transcript)
|
Non participants
|
- Christian Affolter <christian.affolter@stepping-stone.ch>: CAF
- Christian Wittkowski <christian.wittkowski@devroom.de>: CWI
|
Agenda
|
- State of the firewall for the stoney cloud and next steps.
- State of the test installation of the stoney cloud and next steps.
- phpldapadmin: Update config to remove default unique attributes like mail and maybe uid as well (uid is enforced by the directory server).
- Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates).
- Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
- ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
- ou=notification,uid=4.... (for reseller specific notificatations)
- The actual selfcare interface rights would be separated from the (online) backup entry.
- Test users for the (online) backup service are needed.
- State of the backup server and next steps.
|
No.
|
Text
|
What?
|
Who?
|
When?
|
1
|
State of the firewall for the stoney cloud and next steps:
- Node FW sripts are looking good, please make sure, that these scripts are called during the boot process.
- Init Script calls /usr/local/scripts/netfilter/local/chains/<NODE-NAME>/all_chains.sh.
- /etc/init.d/stoney-cloud-firewall
- Remove iptables from default runlevel
iptables | default (update stage4 on build system).
- Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
|
To Do
|
TMU
|
2013-08-09
|
2
|
Create a script, that makes sure, that the local /usr/local/scripts/netfilter/local/chains/* scripts are up to date (svn up).
|
To Do
|
TMU
|
2013-08-17
|
3
|
Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with
$servers->setValue('unique','attrs',array());
|
To Do
|
TMU
|
2013-08-09
|
4
|
Update /etc/openldap/ldap.conf with
URI ldaps://<VIP-SERVER-NAME>:636
|
To Do
|
All
|
2013-08-09
|
5
|
Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates), both showing to the same root directory /var/www/selfcare/htdocs:
-
selfcare.stepping-stone.ch (necessary rewrite in a second stage).
- selfcare.<RESELLER>
|
To Do
|
PKL
|
2013-08-09
|
6
|
selfcare:
|
To Do
|
TMU
|
2013-08-09
|
7
|
Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
- ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
- ou=notification,uid=4.... (for reseller specific notificatations)
- The actual selfcare interface rights would be separated from the (online) backup entry.
|
To Do
|
MEI
|
2013-08-09
|
8
|
Test Backup Account Entry (especially for the Groups).
|
To Do
|
TMU
|
2013-08-09
|
9
|
Test users for the (online) backup service are needed.
|
To Do
|
MEI
|
2013-08-09
|
10
|
State of the backup server and next steps.
|
Info
|
All
|
2013-08-09
|
11
|
Isntall new Infrastructure
|
Info
|
All
|
2013-08-09
|
12
|
|
Info
|
All
|
2013-08-09
|