This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
NETPDTC NETPDTC AIM Enterprise AIM Enterprise
Centralization Centralization
Peg David, NETPDTC N621, AIM Tech PM
Roy Hoyt, NETC N74 Functional PM/Resource Sponsor Bruce Bare, NETC N62
AIM Team: Tiffany Dombrowski, AIM PMRon Zinnato, Lead Engineer
18 Sep 2012
OverviewOverview
• Enterprise Site AIM I/AIM II & CPM Rel 5.0 hosting
• Authority to Operate (ATO) • Planning for eDMZ and SSC NOLA Transition • Issues - • Non-NETC Sites/Commands • AIM Content Repository RIS/Requirements• AIM IMI Library demos
AIM Central Site Hosting at NETPDTCAIM Central Site Hosting at NETPDTC• NETC N74, N6 and NETPDTC Enterprise Migration Plan
– Nearly complete migrating AIM content and processing to NETPDTC Citrix Metaframe-based servers
• Benefits Include:‒ Simultaneous access by geographically dispersed Center
and contractor personnel for collaborative development and maintenance
‒ Support for future centralized enterprise data mining for reuse, repurpose, and reference (R3)
‒ Significantly faster access to software updates‒ Potential for automated workflow
CPM Hosting at NETPDTCCPM Hosting at NETPDTC
• Benefits Include:‒ Enterprise production hosting and support vs. current
contractor environment with limited server configuration and bandwidth
‒ Leverages NETC domain sys admin, database management, and information assurance expertise at NETPDTC
‒ Co-located with rest of NETC enterprise IT applications and off-site COOP support
AIM ATO StatusAIM ATO Status• NETC/ODAA treating Central AIM as ‘new’ System
standing up inside eDMZ• As such, Interim Authority to Test (IATT) granted to
build servers/test: 16 May – 30 Nov 2012• C&A Package in NETPDTC IA review, NETPDTC IA
submission due to NETC IA 28 SEP• C&A reviews: NETC IA max 45 days/ODAA max 90
days • Deploying AIM Enterprise into PRODUCTION in
eDMZ dependent on ODAA-signed ATO
Risk & Risk ManagementRisk & Risk Management
1 2 3 4 5
Impact
Pro
bab
ilit
y 1
0
30
5
0
70
9
0
2 1
3
Low Medium High
Description:1.NETPDTC Shared Services demand vs capacity tenuous - competing high pri projects, IA mandates, DCC TF NOLA planning/support 2.Technical ‘gremlins’ & time to mitigate 3.ODAA 90 day review period
Mitigation Plan: •PMs/Task Leads monitor project tasks, schedules & technical mitigations closely; weekly status reviews •Use lead/lag times to advantage; advancing schedule where feasible•Continue liaison closely w/ IA review teams, adjudicate STIGs/Scans •Goal: complete internal LOE NLT end SEP
AIM Central Site – eDMZ standupAIM Central Site – eDMZ standup• Benefits AIM when Application migrates to SSC NOLA eDMZ
• Upon ATO receipt, Central Site will migrate into eDMZ; data/accounts/CPM
• Comms and Functional Test Plans coordinated with Centers / Users/AIM Team; identify downtime date; Production Release Review consensus ‘go live’ deploy into Production
• ‘ESS’ CITRIX accounts transition to ‘NTSS’ CITRIX accounts; no new form required; Centers validate their users/info on spreadsheet ; PM office to maintain SAAR repository
• Remaining Centers/accounts or new commands will transition directly into eDMZ
AIM Central Site – CPM eDMZ standupAIM Central Site – CPM eDMZ standup
• Production CPM remains hosted by AIMEREON until ODAA grants ATO for AIM eDMZ‒ CPM Rel 5.0 server builds complete in eDMZ ‒ Conducted formal GAT working w/ AIM SSO‒ CeTARS Web service, AIM enterprise data
environment Web service, and PPP Repository integrated into CPM on NETPDTC server
‒ ATO allows .mil and .com access
Issue:Issue:Privilege LevelsPrivilege Levels
• 5 levels implemented in Central Site AIM II per CNATT request
• 3 levels implemented in Central Site AIM I per SSP request
• CPM-style role/privilege structure tasked and funded by NETC N74/NAWCTSD
– Via AIMEREON Task Order 0011 Task 3.2.8 – Scheduled be on-line Dec 2012
Issue:Issue:Hosting Test EnvironmentHosting Test Environment
• NMCI AIM users needed to test ongoing system enhancements as part of formal Govt Acceptance Testing (GAT) process
• Cannot install in-process AIM updates on local NMCI PCs nor access contractor-hosted virtual server to conduct tests
• NETPDTC to establish test instances of AIM I and AIM II to support ongoing requirement
Issue:Issue:Blocking Word MacrosBlocking Word Macros
• NMCI does not allow MS-Word macros to be enabled on NMCI desktop PCs once Win 7/Office 2010 is installed
• This poses crippling limitation on stand-alone desktop installations of AIM under NMCI
• Options for AIM Central site inside eDMZ?
Issue:Issue:Software Release Process Software Release Process
• CNATT Migration to AIM II Rel 5.0; currently using AIM 4.0
• CNATT requirement to maintain local NMCI AIM II instances to support effective community-wide business process
• Discussion re NMCI certification process / schedule• Impact of NMCI certification delay / push of Rel 5.0
NAVSEA 07TR, SLC, SLC learning sites• Stringent data handling controls re unclassified No Foreign
Dissemination Navy Nuclear Power Information, mandated by NAVSEA 08
• NETC/NETPDTC stood up SLC enclave on TRANET_C (NAS PCOLA) to host: ref matl, e-library, IETMs, NNPI content, course curriculum info, AIM content, NNPI/NOFORN, used by SLC DETs
– How does this fit into AIM program from enterprise view?– Rqmt to host AIM Application on TRANET_C? For SLC /
others?– Is TRANET_C interim option until NOLA data center
migration? – SSC NOLA is certified for NOFORN data
Non-NETC Sites ImplementationNon-NETC Sites Implementation• 1 Oct 11 - SSP TRIDENT AIM I Central Site instance
transitioned from NAWCTSD to NETPDTC – fully operational – AIM I and LO Module production work
• NAVSEA 07TR AIM I Central Site instance TBD per decision re support for NOFORN NNPI data
• Other interested communities: Navy Medicine NAVSPECWARCEN (hosted by NAVSOC) NAVRES DANTES Regional Maintenance Centers – Norfolk / San Diego Naval Shipyards (hosted in Norfolk)
AIM Content Repository RISAIM Content Repository RISEnterprise Requirements’ RIS for Ancillary Data Storage Area •NETC needs Content Repository – store data/files – Configuration Mgmt•Partner with existing ‘system’ •Current link from NMCI seats to TRANET storage will be ‘broken’ – part of network migration – no reach back
Notional Plan •Expand current centrally managed ‘AIM enterprise’ content repository – accessible by CAC from .com/.mil with fully adequate storage space•AIM Enterprise has multiple components: AIM I, AIM II, CPM, LO and ancillary file shares•Configuration management (could be COTS product) needed; as well as business rules/governance •DRAFT RIS distro’d to all Centers for collating requirements/comments
AIM Central Site ImplementationAIM Central Site Implementation• Points of contact:
(Metaframe Sys Admins)‒ AIM team: Ron Zinnato/Steve Wicinski/Jim Ferrall
• Implementation resources including POC and schedules, planning document templates, and narrated help videos available on AIM information Web page:http://aim.aimereon.com/aim/AIM-Central-Site-Hosting-at-NETPDTC.ashx
Implementation Issue: Jobs ServerImplementation Issue: Jobs Server• A number of processes in AIM I/II take a long time to
complete: e.g., Trainee Guide print preview, large course export, large course import
• Current NETPDTC implementation requires Central Site user to remain logged into Citrix session with CAC inserted in local workstation until process completed
• Jobs Server concept developed by NETPDTC and AIM teams would permit user to begin long-running process, transfer process to Jobs Server, end Metaframe session, and then log back into Metaframe later to retrieve product of long-running process completed on Jobs Server
• Functionality tasked/funded under new Task Order to AIMEREON
Implementation Issue:Implementation Issue:Job Server approachJob Server approach
(contd)(contd)
Jobs Server
Metaframe Servers
File Share
Job OutputCheck for Completion/
Retrieve Output
Job Request
AIM Central Site ArchitectureAIM Central Site Architecture