- Equipment status
- Certificate service Statistics
- Roll out plan for version 2 of DOEGrids
- Data center design
The last server for the farm has been built out, but we are having problems with the secure racks. The power to the racks can not be done at this time because of an error in the installation of the racks. This problem is being worked with Plant Engineering and the rack vendor. This will delay the deployment of the secure racks until the March 2003. The complete move of the servers to the secure racks will be done April 2003. We currently have the New Root CA, New Subordinate CA (DOEGrids), plus one server that will end up as a RM or other support system. This completes the build out for the servers - software configurations and testing will be done in November.
| Certs per month issued | ~ 40 – 80 |
| Total Certificates issued: | 565 |
| Certificates revoked: | 54 |
| People Certificates | 235 |
| Services Certificates | 256 |
| Host (internal usage) | 18 |
| Requests in Queue: | 7 |
Tasks |
Dates |
Comments |
| Configure new servers to support DOEGirids.org | 11/15/2002 | All server software is installed and basic configuration is done. Testing must be done before they are put into production. |
| Order media vault | 12/1/2003 | This vault will store the Root CA and associated media for the service. |
| Order Black rack security server | 12/1/2003 | This is the server that will control access to the racks. |
| Order new Root CA server | 12/1/2003 | This server is to replace the current root server, with a lower cost model. |
| Develop operations guide | 12/15/2002 | The first draft is out for review |
| Update EDG files | 2/1/2003 | We must update EDG information before service can be put into production. |
| DoEGrids production service | 2/15/2003 | DOEGrids will be put into parallel production with DOE Science grid service. |
| Complete Black Racks installation. | 3/1/2003 | Delays caused by improper rack instalation. |
| Install Black rack security server | 3/1/2003 | This is the server that will control pin access to the racks as well as logging events. |
| Install media vault | 3/1/2003 | This vault will reside at LBNL. We will also use an offsite repository for security related material - smart cards, etc - off site support and what goes there is a research topic. |
| Add Firewall policies | 3/1/2003 | The new servers are on the firewall subnet. Firewall configuration to support the project will be done by March |
| Move all PKI servers | 4/1/2003 | Servers will be moved to the secure racks after testing of the new racks - security, networking, etc They will be housed in temporary racks until the Black racks are done. |
| Deploy Time servers | 1 qtr 2003 | This service will provide accurate time to the CA servers. We need to also research the ability to provide secure time. |
| Deploy a secure logging service | 2qtr 03 | We need to research how to provide a secure logging service for the CAs. |
