Unix Services
Central System Administration
Unix Services provides central system administration for all Unix
and Linux based general purpose computing resources at BNL.
The program implementation is broken up into four major components.
Purpose
Centralized administration provides the ability to enforce DOE
mandates across the enterprise. Further, it improves our
overall security posture and allows users to receive faster response
to support requests.
Implementation
Through the CFEngine program, Unix Services provides automatic
centralized configuration management. This is how Unix
Services applies necessary baseline configurations.
ITD Unix services maintains patches and security resources for
its supported operating systems
through services such as the Red Hat Network for Red Hat systems,
and through software and operating system mirrors.
Unix and Linux systems at BNL authenticate against the Microsoft
Active Directory. This provides a single-sign-on capabilities,
allowing users to have a fewer passwords to remember.
The Ordo based host scanning tool required for running a Unix or
Linux based operating system on the BNL intranet provides auditing
of compliance and system configurations.
Also in Unix Service's tool kit, for those systems that request
or require it, are system monitoring and
file integrity scanners.
The Unix Services administration and configuration plans are not
a "black box" approach. Governance of the program is
transparent. The current version of the centralization
documentation is always open available for review:
Centralization_Document-current.doc.
 Last Modified:
February 14, 2011
To reach ITD Unix Services for any support issues, please contact the
ITD Helpdesk via email (itdhelp@bnl.gov)
or call x5522. In any communications, please include the name of the
machine(s) in question, as well as their operating system, software package
and other relevant information which will allow ITD to help you more
effectively.
|
