ARCHITECTURE & INFRASTRUCTURE COMMITTEE MEETING NOTES
Friday, May 8, 2015
9:00 – 10:30 AM
FAC 228D
I.
UT Web (update) / Web Central/ UTS Retirement – Endorse (Jenn Coast, Christina
Konstantinidou, David Moss)
The University is introducing new architecture and funding models to support increased
compliance and security demands, while managing complexity, capability and cost. There is
a proposal to create a constituent platform and capabilities in central distribution layer and
use Multi Protocol Labeled Switching (MPLS). Also a proposal to consolidate equipment to
more capable products that also supports MPLS. Wants to implement shared infrastructure
for small sites to reduce costs. Small and medium sites will have savings. Risk with having a
common platform is that it gives up local switching between subnets at single site. There is
a chart of summary of changes for small, medium, and large sites. Six-year lifecycle cost with
a savings of almost 2.25 million. Move from capital model to central model so no one
building will hold us back.
Move for endorsement, unanimously endorsed.
II.
Campus Network Architecture Changes – Endorse (William Green)
Changes to related network operations manual. Change from 10 mbps download and 1
mbps upload to campus testing server to 7 mbps download and 384 mbps upload to campus
testing server.
Move for endorsement, unanimously endorsed.
III.
EID Authentication Service for Linux – Update (Gabriel and Scott Messec)
Gabriel Hernandez and Scott Messec presented the proposal for a centrally offered eid
authentication service for Linux accounts. Currently each unit is left to develop (or not)
their own strategy for Linux account management. Need to make a working group
comprised of ITS and a select number of interested parties from units across campus to
determine the details of developing the service. The working group would report to AIC in
about three months.
Q. Is it worth including Mac support as well?
A. This might evolve to something like that, and this might evolve to more Linux
development too.
Q. Authorization as well?
A. Yes.
Q. Numbers of Linux Mac users?
A. We don’t have those numbers yet.
System has a central ldap account that is independent and does not authenticate EID.
Chair to be determined.
Move for endorsement for working group, unanimously endorsed.
IV.
Windows Web Hosting Retirement Plan – Discussion (Greg Baker)
Greg Baker discussed the Windows Web Hosting Retirement Plan. With the endorsement of
the Web Technologies and Infrastructure Committee (WTI) in October 2014, Information
Technology Services (ITS) began planning and communicating the intent to retire Windows
Web Hosting, a legacy centrally supported Web hosting environment based on Adobe Cold
Fusion at the University. At the completion of the project, all Windows Web Hosting
websites will be migrated or retired, and all hardware and software associated with
Windows Web Hosting will be decommissioned. Site data will be preserved via existing
Austin Disk subscriptions at the discretion of the site owner.
ITS requests that AIC endorse the Windows Web Hosting Service Retirement Plan. The plan
was endorsed by the Web Technologies & Infrastructure (WTI) Subcommittee on April 29,
2015. June 18th will be the decommissioning date.
Q. What is causing those who have not moved over, to not move over?
A. Some have not responded, some said “I’m looking at options,” etc. Want to use this
endorsement to go to these domains and help them.
Q. Options for engineering?
A. Assisting them in their own cold fusion with ITS funded server. A lot of the ones who have
not moved over or are in progress are student organizations.
Move for endorsement, unanimously endorsed.
V.
Identity and Access Management – Update (C.W. Belcher, David Burns)
C.W. Belcher and David Burns gave an update on Identity and Access Management. (Chart of
Identity & Access Management Roadmap with Updates). Big things: The charter for the IAM
Modernization Program has been approved and high-level project sequencing has been defined.
The Statement of Work for the SailPoint IdentityIQ implementation consultation is scheduled to
be released in May 2015. IAM solution implementation planning, UTLogin realm policy manager
enhancement, Identity assurance framework development, Toopher hard tokens, UTLogin
Toopher integration, Lightweight authentication & bring your own identity, centralized
authentication resiliency enhancement, Apollo roadmap, IAM server refreshes, IAM ASMP
integration strategy, directory services roadmap, and SDS UTS retirement.
Q. Vendors as well? Collaborators?
A. Paid vendors will be on the “inside” architecture. Will need to make a plan for collaborators.
Q. ID card replacement – this might be more BSC than AIC. Is anyone asking the question for
more than ID cards ie. use mobile phones?
A. Yes, the question is being asked.
Q. Can you speak about your staffing position?
A. We do have open positions, and some are being filled. Seeing an upward increase in
projects.
VI.
TSC Certification Training – Update (Sandra Germenis, Cam Beasley)
Sandra Germenis and Cam Beasley gave an update on TSC Certification Training. Sent out a
survey to gage the level of training around TSC. Received around 260 reponses. If scored
above 13 points, then you would be exempt from SANS training. Hopes that 50% will not
have to take the SANS training due to being exempt. Very informative on many levels so
they can focus on where to train to get the most “bang outta their buck.”
Q. Is part of what you’re developing different sets of training?
A. Yes, the surveys will help with that.
Q. Job description was very specific, so those who were not included should fill it out as
well?
A. If they have any of those titles or TSC, they should have filled it out.
Q. What about using Titles and OHS?
A. That would be ideal for us to query but not all of campus uses it.
Will give update next month.
VII.
Office 365 - Update (Sabina Winters)
Sabina Winters gave an update on Office 365. Started large-scale migration in April. Error
rate is .66%. One more set of migrations with Avnon. Migrated communications and
athletics each in one night. Survey result is 4.07 out of 5. Overall great feedback on support.
Q. What number will be remaining?
A. Approx 17,000 and 1800 to be remaining on premise. A lot of them are tests and will
need clean up.
Q. Microsoft sent a guy, what did he find?
A. Need to clean up active directory and move off old hardware. Working with people
getting off of their own servers and onto ours.