6 - Remote access is required for …
8 1. Developers to access deploy/test environments (credentials to be issued per POD / user)
9 2. Connection of each environment to Jenkins master hosted by Linux Foundation for automated deployment and test
11 - OpenVPN is generally used for remote however community hosted labs may vary due to company security rules
12 - POD access rules / restrictions …
14 - Refer to individual test-bed as each company may have different access rules and acceptable usage policies
16 - Basic requirement is for SSH sessions to be established (initially on jump server)
17 - Majority of packages installed on a system (tools or applications) will be pulled from an external repo.
19 Firewall rules should include
24 Lights-out Management:
26 - Out-of-band management for power on/off/reset and bare-metal provisioning
27 - Access to server is through lights-out-management tool and/or a serial console
28 - Intel lights-out ⇒ RMM http://www.intel.com/content/www/us/en/server-management/intel-remote-management-module.html
29 - HP lights-out ⇒ ILO http://www8.hp.com/us/en/products/servers/ilo/index.html
30 - CISCO lights-out ⇒ UCS https://developer.cisco.com/site/ucs-dev-center/index.gsp
32 Linux Foundation - VPN service for accessing Lights-Out
33 Management (LOM) infrastructure for the UCS-M hardware
35 - People with admin access to LF infrastructure:
39 3. daniel.smith@ericsson.com
41 5. fatih.degirmenci@ericsson.com
43 7. jonas.bjurel@ericsson.com
44 8. jose.lausuch@ericsson.com
45 9. joseph.gasparakis@intel.com
46 10. morgan.richomme@orange.com
49 13. stefan.k.berg@ericsson.com
50 14. szilard.cserey@ericsson.com
53 - The people who require VPN access must have a valid
54 PGP key bearing a valid signature from one of these
55 three people. When issuing OpenVPN credentials, LF
56 will be sending TLS certificates and 2-factor
57 authentication tokens, encrypted to each recipient's PGP key.
Code Review / pharos.git / blob