DOCSLIB.ORG

Openlmi Provider for Management of the SSSD Client Components

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Openlmi Provider for Management of the SSSD Client Components MASARYK UNIVERSITY FACULTY}w¡¢£¤¥¦§¨ OF I !"#$%&'()+,-./012345<yA|NFORMATICS OpenLMI provider for management of the SSSD client components MASTER THESIS Pavel Brezinaˇ Brno, spring 2014 Declaration Hereby I declare, that this paper is my original authorial work, which I have worked out by my own. All sources, references and literature used or ex- cerpted during elaboration of this work are properly cited and listed in com- plete reference to the due source. Pavel Brezinaˇ Advisor: RNDr. Jan Kasprzak i Acknowledgement I would like to thank my supervisor for his guidance, Ing. Jakub Hrozek for his great mentoring and RNDr. Anna Jonášová and other OpenLMI devel- opers for all their help. ii Abstract The goal of this thesis is to create an SSSD provider for the OpenLMI project, which would allow a local and remote management of the funda- mental parts of the SSSD system service through the OpenLMI interface. iii Keywords SSSD, OpenLMI, WBEM, CIM, management, administration iv Contents 1 Introduction ............................3 1.1 Goal of this thesis .......................3 1.2 Thesis organization ......................4 2 Web-Based Enterprise Management ...............5 2.1 Architecture ..........................5 2.1.1 Components . .6 2.1.2 Workflow . .8 2.2 Common Information Model .................8 2.2.1 CIM Infrastructure Specification . .8 2.2.2 CIM Schema . .9 2.2.3 Managed Object Format . .9 2.3 Overview of existing implementations ............ 13 2.3.1 SBLIM . 13 2.3.2 WBEM Services . 13 2.3.3 Windows Management Instrumentation . 14 2.3.4 OpenLMI . 14 3 OpenLMI .............................. 15 3.1 LMI Providers ......................... 15 3.2 LMI Shell ........................... 16 3.2.1 Using the shell . 16 3.3 LMI Scripts .......................... 21 3.3.1 Examples . 21 4 System Security Services Daemon ................ 23 4.1 Main features ......................... 23 4.2 Architecture .......................... 24 4.3 Cache management ...................... 26 4.3.1 Record expiration . 27 4.3.2 Negative cache . 27 4.3.3 Mid-point refresh . 27 4.3.4 Periodic updates . 28 4.3.5 Fast in-memory cache . 29 4.3.6 Caching of sudo rules . 29 4.4 Data Providers ........................ 31 4.5 Responders .......................... 32 4.6 Client applications and libraries ............... 33 1 5 Implementation of OpenLMI SSSD provider .......... 34 5.1 CIM Schema for OpenLMI SSSD provider ......... 34 5.1.1 CIM concepts . 34 5.1.2 First revision . 35 5.1.3 Final schema . 37 5.1.4 Designing classes for SSSD components . 40 5.1.5 Designing classes for SSSD domains and subdomains 42 5.2 Considered solutions ..................... 44 5.2.1 OpenLMI provider is self-sufficient . 44 5.2.2 OpenLMI provider and new SSSD responder . 45 5.2.3 OpenLMI provider and SSSD InfoPipe responder . 47 5.3 InfoPipe responder ...................... 48 5.3.1 D-Bus interface . 49 5.4 Modifying configuration ................... 52 5.4.1 Augeas . 52 5.4.2 Application in SSSD . 53 5.5 Simple SSSD D-Bus API ................... 53 5.5.1 Example usage . 55 5.6 SSSD provider for OpenLMI ................. 56 5.7 SSSD OpenLMI scripts .................... 57 5.7.1 Command interface . 57 6 Conclusion ............................. 59 A SSSD CIM schema: MOF ..................... 60 2 1 Introduction Administration of production and internal servers or workstations in a large enterprise environment is a very difficult task that requires many system experts skilled in various system components. Basically every element of the company IT infrastructure provides different tools for its configuration and monitoring. The system administrator has to be aware of many config- uration formats, understand different settings of managed services and then he or she has to find a way how to distribute every single change to each component across all managed computer systems. The Web-Based Enterprise Management (WBEM)1is an open standard that aims at unification of the IT infrastructure management in an enterprise environment. It covers many areas of management and provides tools to further expand its abilities to support new components. Every component is managed by a piece of software called provider that exports its configura- tion and monitoring options into an object oriented interface. One particular implementation of this standard is the OpenLMI. The OpenLMI2is an open source project that aims to bring WBEM closer to Linux-powered systems by creating providers for standard Linux components such as service and software management, network and firewall configuration, disk maintenance etc. 1.1 Goal of this thesis The goal of this thesis is to create an OpenLMI provider for System Se- curity Services Daemon3(SSSD). SSSD is a system service that manages remote identities and policy information stored in a directory server and im- plements a sophisticated caching mechanisms to make this data available in offline scenarios. Every identity and policy object is associated with a do- main. The domain is a logical unit, a container for related objects. SSSD supports multiple domains to be managed on one machine. 1. http://dmtf.org/standards/wbem 2. http://www.openlmi.org/ 3. https://fedorahosted.org/sssd 3 1. INTRODUCTION The thesis should implement the most fundamental parts of SSSD configu- ration, in particular: • to enable and disable domains and services • changing debug level of SSSD components • to provide basic information about managed domains 1.2 Thesis organization The second chapter describes the Web-Based Enterprise Management stan- dard in detail. It goes through its architecture and incorporated standards such as Common Information Model and Managed Object Format. Small part is also devoted to existing implementations of this standard. The third chapter is dedicated to the OpenLMI project. It describes its benefits, user interface and introduces several examples of its usage. The next part is about the SSSD service. It thoroughly describes its architec- ture, components and caching mechanisms. And finally the fifth chapter de- scribes the implementation of the SSSD provider for OpenLMI – its design, pieces and important interfaces. 4 2 Web-Based Enterprise Management Web-Based Enterprise Management (WBEM) is an open standard devel- oped by Distributed Management Task Force (DMTF)1organization. It aims to unify management of system resources in distributed computing envi- ronments – from a low level process, network or storage management to a higher level view on the system state and configuration of specific compo- nents and provided services. Every managed element is looked upon as an object with attributes and methods. WBEM defines how the objects look like, how to transfer their representation over a network and how to call methods on these objects. It also defines a standard set of supported resources and provides base tem- plates to help extending this set with proprietary or open solutions. To achieve its goal, WBEM widely reuses other DMTF standards, mainly Common Information Model (CIM) which provides the tools for descrip- tion of managed elements as objects and introduces basic concepts of how to work with them. It is, however, quite loose on implementation details as it does not specify several key things to make the management really indepen- dent on underlying technologies and software components. For example, it does not specify a protocol to transfer objects over a network or any spe- cific server architecture. WBEM is basically a standardized implementation of CIM which eliminates these weak points by defining new standards like CIM-XML[6] transfer protocol or by declaring that a server has to be split into a controller and providers that take care of selected components. Besides these it also incorporates other standards that help WBEM to fit into enterprise environments such as Service Location Protocol[7] to lo- cate WBEM servers inside a corporate network or Uniform Resource Iden- tifier[8] to identify and distinguish every managed resource. 2.1 Architecture Web-Based Enterprise Management standard consists of several key com- ponents: WBEM server and providers, communication protocol and CIM schema. It does not specify any particular user interface, therefore any kind of command line, graphical or browser user interface can be used to manage 1. A standard development organization: http://www.dmtf.org 5 2. WEB-BASED ENTERPRISE MANAGEMENT remote resources. The architecture is illustrated in Figure 2.1. Access CIM Control Schema User CIM-XML WBEM Server Interface over HTTP Provider ... Provider Operating System Interface Managed System Resources Figure 2.1: Architecture of WBEM 2.1.1 Components This section briefly describes the fundamental components of WBEM stan- dard in the bottom-up order. CIM schema CIM schema defines a set of managed objects. It describes how the objects look like: what attributes do they have, what methods they support and what are the relationships among those objects. For this purpose Common Infor- 6 2. WEB-BASED ENTERPRISE MANAGEMENT mation Model standard and its conceptual object oriented language called Managed Object Format (MOF) are used. More information on these stan- dards can be found in Section 2.2. WBEM provider Provider is a server module that implements selected components of the CIM schema. It basically creates a mapping between operating system re- sources into a format understood by the server. Many providers are depen- dent on underlying operating system, since each system has usually different interface to access its objects – especially the low level ones. WBEM server WBEM server, which is also often called CIM Object Monitor (CIMOM), is the access point between a client and the providers. It handles user au- thentication and authorization and it uses the schema to route commands and data into a particular provider and to call selected method to complete the operation. Depending on implementation, it may also contain a simple persistent database to be used by the providers. Provider interface The WBEM standard itself does not specify any particular programming in- terface between the providers and CIMOM thus basically every implemen- tation defines its own API.
Load more

Recommended publications
  • Red Hat Enterprise Linux 7 Technical Overview
    RED HAT ENTERPRISE LINUX 7 TECHNICAL OVERVIEW Ingo Börnig Senior Solutions Architect, Red Hat 2014-07-08 1 RED HAT ENTERPRISE LINUX 7 | JUNE 2014 AGENDA 1 RED HAT ENTERPRISE LINUX 7 INTRODUCTION 2 LIGHTWEIGHT APPLICATION ISOLATION 3 WINDOWS INTEROPERABILITY 4 FILE SYSTEMS AND STORAGE 5 OPTIMAL PERFORMANCE MANAGEMENT 6 INSTALLATION AND DEPLOYMENT 2 RED HAT ENTERPRISE LINUX 7 | JUNE 2014 AGENDA (cont.) 7 SYSTEM MANAGEMENT AND FEATURES 8 VIRTUALIZATION 9 DESKTOP AND DEVELOPER FEATURES 10 SUMMARY 3 RED HAT ENTERPRISE LINUX 7 | JUNE 2014 RED HAT ENTERPRISE LINUX 7 INTRODUCTION 4 RED HAT ENTERPRISE LINUX 7 | JUNE 2014 RED HAT ENTERPRISE LINUX 7 REDEFINING THE ENTERPRISE OS FLEXIBILITY to STABILITY to efficiently CERTAINTY of quickly adapt to meet challenges of mission-critical demands for datacenter virtualization reliability and business agility and cloud military-grade security 90% OF FORTUNE 500 COMPANIES TRUST RED HAT ENTERPRISE LINUX FOR THEIR CRITICAL BUSINESS INFRASTRUCTURE. 5 RED HAT CONFIDENTIAL | PLATFORM PRODUCT MARKETING RED HAT ENTERPRISE LINUX 7 BASICS ● Based on Fedora 19, the upstream kernel version 3.10 and over 4000 patches (additional features, bugfixes, security errata) ● Supported hardware architectures: ● Intel/AMD 64-bit (x86_64) ● IBM POWER ● IBM System z ● Support for 32-bit applications enabled via inclusion of 32-bit libraries (multilib). 6 RED HAT ENTERPRISE LINUX 7HIGHLIGHTS RED HAT 7 STABLE AND FLEXIBLE EFFICIENT CERTAINTY OF MISSION-CRITICAL RELIABILITY AND MILITARY-GRADE SECURITY MILITARY-GRADE AND RELIABILITY
    [Show full text]
  • Configure. Manage. Monitor
    OpenLMI Configure. Manage. Monitor. March 2013 Linux System Management Today Is this you? 2 Storage ●Done with local commands: ●parted ●pvcreate, lvcreate, vgcreate ●mdraid ●vgextend, resize2fs 3 Networking ●Edited /etc/sysconfig/networking scripts ●nmcli command line tool 4 Notice anything? 5 Notice anything? ●Both methods require a local shell ●The methods had an entirely unrelated user experience 6 Training Costs ●There is a completely isolated path to learning administration of either approach ●Learning either task does not help you learn the other 7 Training Costs ●System services ●Installing software and patches ●Firewall ●Performance tuning ●... 8 Research ●“The difficulty of managing these components is directly impacting our customers' ability to consume more Linux” -- 2011 Red Hat Customer Survey Results (paraphrased) 9 OpenLMI ●Provide a complete system for System Management ●Local and network-facing API ●Common interface for all subsystems ●Built on industry-standard protocols 10 Blivet ●Split from the Anaconda installer project ●Python library for manipulating storage at all levels 11 NetworkManager ●D-BUS API ●Consistency guarantees on changes 12 systemd ●D-BUS API for monitoring system services ●Journald API for log monitoring 13 DMTF-CIM ●Industry-standard model for system management ●Comprehensive object-oriented design addressing most aspects of system capabilities 14 What about simplicity? ●CIM is a complex model that many find intimidating 15 LMIShell ●Python-based scripting environment for OpenLMI/CIM ●Simplifies the
    [Show full text]
  • Configuration and Administration of Networking for Fedora 23
    Fedora 23 Networking Guide Configuration and Administration of Networking for Fedora 23 Stephen Wadeley Networking Guide Draft Fedora 23 Networking Guide Configuration and Administration of Networking for Fedora 23 Edition 1.0 Author Stephen Wadeley [email protected] Copyright © 2015 Red Hat, Inc. and others. The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. The original authors of this document, and Red Hat, designate the Fedora Project as the "Attribution Party" for purposes of CC-BY-SA. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version. Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law. Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, MetaMatrix, Fedora, the Infinity Logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries. For guidelines on the permitted uses of the Fedora trademarks, refer to https://fedoraproject.org/wiki/ Legal:Trademark_guidelines. Linux® is the registered trademark of Linus Torvalds in the United States and other countries. Java® is a registered trademark of Oracle and/or its affiliates. XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
    [Show full text]
  • Russell Doty Technology Product Manager, Red Hat Stephen Gallagher System Architect, Red Hat Mid Level Sysadmin
    Administer Production Servers Effectively with OpenLMI Russell Doty Technology Product Manager, Red Hat Stephen Gallagher System Architect, Red Hat Mid Level Sysadmin Routine, day to day tasks Experienced with Microsoft & VMware New to Linux Experienced Linux SysAdmin Big Bag 'O Scripts & ssh Powered by nmcli lvcreate HELP!mkfs.xfs yum parted systemctl Need to Automate! Prerequisite for the automated factory: Robots In other words: An infrastructure and foundation for automation. Client Python CLI Scripting Java C/C++ Remote Communications Abstraction API nmcli yum lvcreate Mkfs.xfs Parted systemctl We Can Build This! Why OpenLMI? Previous Open Source Remote Management Tools Lacked a Strong Foundation – A Management API What is OpenLMI? •A set of Management Agents • That can change the system •A Standardized Remote API •A Standard Communications Infrastructure • Built on XML over https •A Client Environment • Scripting built on Python • CLI • Other languages OpenLMI Providers - Heavy Lifting •Perform management operations •Provide standard API • Low level, functional API • Remote/Local API •Built on existing Linux tools and utilities (e.g. parted, lvcreate, Network Manager) Object Broker - OpenPegasus •Manages Providers • Commands – attributes & methods • Navigation & query • Events (Indications) •Manages Communications • WBEM – CIM/XML over https •Manages Authentication & Access Events - OpenLMI Indications •Notification of Asynchronous Events • e.g. job completion, drive failure, NIC changed state, password changed •Listener registers with CIMOM • Multiple Listeners per event •All registered Listeners notified when event occurs •Powerful tool for monitoring Client Interfaces •OpenLMI API • Low level functional API • Full coverage •LMIShell Modules (EPEL) • Task oriented Python modules • Subset of full API •LMI CLI (EPEL) • Task oriented, user friendly CLI • BASH shell friendly • Least coverage Sounds Interesting..
    [Show full text]
  • Configure, Manage, Monitor Linux Systems Russell Doty [email protected] Red Hat
    Server Management Configure, Manage, Monitor Linux Systems Russell Doty [email protected] Red Hat 1 Copyright © 2014 Red Hat Mid Level Sysadmin Routine, day to day tasks Experienced with Microsoft & VMware New to Linux 2 Copyright © 2014 Red Hat lvcreate nmcli mkfs.xfs HELP!yum parted systemctl 3 Copyright © 2014 Red Hat Experienced Linux Sysadmin Big Bag 'O Scripts & ssh Powered by 4 Copyright © 2014 Red Hat OpenLMI Project Goals ● Improve manageability of Linux systems ● Configuration of remote servers ● Main Initial Focus: configure storage, networks, and authentication ● Broader management support planned ● Reduce learning curve for new SysAdmins to perform common Linux administration tasks ● Provide a foundation for advanced automation and interfaces ● Build on open industry standards ● Open and extensible ● Including 3rd parties and customers 5 Copyright © 2014 Red Hat What Can You Do With OpenLMI? ● Example: Storage ● Determine what storage devices are connected to the system ● Friendly device names & persistent device names ● Partition, format, encrypt, create RAID sets, create logical volumes and volume groups, mount filesystems ● Local & remote block devices ● From programs, scripts or CLI ● CLI example: “lmi> storage raid create –name R1 5 sdb sdc sdd sde sdf” (creates 5 disk RAID 5 set called R1) ● More power and flexibility from LMIShell and OpenLMI API ● Query, configure, monitor and change storage 6 Copyright © 2014 Red Hat What is OpenLMI? ● A set of Management Agents ● That query, modify & monitor systems ● A Standardized
    [Show full text]
  • Oracle® Linux 7 Release Notes for Oracle Linux 7
    Oracle® Linux 7 Release Notes for Oracle Linux 7 E53499-20 March 2021 Oracle Legal Notices Copyright © 2011,2021 Oracle and/or its affiliates. This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited. The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing. If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, then the following notice is applicable: U.S. GOVERNMENT END USERS: Oracle programs (including any operating system, integrated software, any programs embedded, installed or activated on delivered hardware, and modifications of such programs) and Oracle computer documentation or other Oracle data delivered to or accessed by U.S. Government end users are "commercial computer software" or "commercial computer software documentation" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, the use, reproduction, duplication, release, display, disclosure, modification, preparation of derivative works, and/or adaptation of i) Oracle programs (including any operating system, integrated software, any programs embedded, installed or activated on delivered hardware, and modifications of such programs), ii) Oracle computer documentation and/or iii) other Oracle data, is subject to the rights and limitations specified in the license contained in the applicable contract.
    [Show full text]
  • Fedora 25 Networking Guide
    Fedora 25 Networking Guide Configuration and Administration of Networking for Fedora 25 Stephen Wadeley Networking Guide Draft Fedora 25 Networking Guide Configuration and Administration of Networking for Fedora 25 Edition 1 Author Stephen Wadeley [email protected] Copyright © 2016 Red Hat, Inc. and others. The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. The original authors of this document, and Red Hat, designate the Fedora Project as the "Attribution Party" for purposes of CC-BY-SA. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version. Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law. Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, MetaMatrix, Fedora, the Infinity Logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries. For guidelines on the permitted uses of the Fedora trademarks, refer to https://fedoraproject.org/wiki/ Legal:Trademark_guidelines. Linux® is the registered trademark of Linus Torvalds in the United States and other countries. Java® is a registered trademark of Oracle and/or its affiliates. XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
    [Show full text]
  • Red Hat Enterprise Linux Server for ARM 7.1 Release Notes
    Red Hat Enterprise Linux Server for ARM 7.1 Release Notes Release Notes for Red Hat Enterprise Linux Server for ARM Red Hat Customer Content Services Red Hat Enterprise Linux Server for ARM 7.1 Release Notes Release Notes for Red Hat Enterprise Linux Server for ARM Red Hat Customer Content Services Legal Notice Copyright © 2015 Red Hat, Inc. This document is licensed by Red Hat under the Creative Commons Attribution-ShareAlike 3.0 Unported License. If you distribute this document, or a modified version of it, you must provide attribution to Red Hat, Inc. and provide a link to the original. If the document is modified, all Red Hat trademarks must be removed. Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law. Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, MetaMatrix, Fedora, the Infinity Logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries. Linux ® is the registered trademark of Linus Torvalds in the United States and other countries. Java ® is a registered trademark of Oracle and/or its affiliates. XFS ® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries. MySQL ® is a registered trademark of MySQL AB in the United States, the European Union and other countries. Node.js ® is an official trademark of Joyent. Red Hat Software Collections is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
    [Show full text]
  • Red Hat Enterprise Linux 7 7.8 Release Notes
    Red Hat Enterprise Linux 7 7.8 Release Notes Release Notes for Red Hat Enterprise Linux 7.8 Last Updated: 2021-03-02 Red Hat Enterprise Linux 7 7.8 Release Notes Release Notes for Red Hat Enterprise Linux 7.8 Legal Notice Copyright © 2021 Red Hat, Inc. The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/ . In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version. Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law. Red Hat, Red Hat Enterprise Linux, the Shadowman logo, the Red Hat logo, JBoss, OpenShift, Fedora, the Infinity logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries. Linux ® is the registered trademark of Linus Torvalds in the United States and other countries. Java ® is a registered trademark of Oracle and/or its affiliates. XFS ® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries. MySQL ® is a registered trademark of MySQL AB in the United States, the European Union and other countries. Node.js ® is an official trademark of Joyent. Red Hat is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
    [Show full text]
  • Empower 3 Service Release 4
    *716006210* *Ver.01* Empower 3 Service Release 4 Release Notes 716006210 Copyright © Waters Corporation 2020 Version 01 (previously released as Rev.A) All rights reserved General information Copyright notice © 2020 WATERS CORPORATION. PRINTED IN THE UNITED STATES OF AMERICA AND IN IRELAND. ALL RIGHTS RESERVED. THIS DOCUMENT OR PARTS THEREOF MAY NOT BE REPRODUCED IN ANY FORM WITHOUT THE WRITTEN PERMISSION OF THE PUBLISHER. The information in this document is subject to change without notice and should not be construed as a commitment by Waters Corporation. Waters Corporation assumes no responsibility for any errors that may appear in this document. This document is believed to be complete and accurate at the time of publication. In no event shall Waters Corporation be liable for incidental or consequential damages in connection with, or arising from, its use. For the most recent revision of this document, consult the Waters website (www.waters.com). Trademarks CitrixTM is a registered trademark of Citrix Systems, Inc. and/or one or more of its subsidiaries, and may be registered in the United States Patent and Trademark Office and in other countries. EmpowerTM is a trademark of Waters Corporation. LAC/ETM is a trademark of Waters Corporation. Linux® is a registered trademark of Linus Torvalds. Oracle® is a registered trademark of Oracle Corporation and/or its affiliates. Red Hat® is a registered trademark of Red Hat, Inc. THE SCIENCE OF WHAT'S POSSIBLETM is a trademark of Waters Corporation. WatersTM is a trademark of Waters Corporation. Windows® is a registered trademark of Microsoft Corporation in the US and/or other countries.
    [Show full text]
  • Redefining the Enterprise Os Red Hat Enterprise Linux 7
    REDEFINING THE ENTERPRISE OS RED HAT ENTERPRISE LINUX 7 Rodrigo Freire Sr. Technical Account Manager 29/Ago/2014 1 Rodrigo Freire / Ron Pacheco Roadmap At A Glance CY2010 CY2011 CY2012 CY2013 CY2014 RHEL 7 .0 RHEL 6 .0 .1 .2 .3 .4 .5 .6 RHEL 5 .5 .6 .7 .8 .9 .10 .11 Production 1 Production 2 Production 3 *All dates are approximate and subject to change 2> Rodrigo Freire / Ron Pacheco Application Isolation via Containers CONTAINERS ENABLE CONTINUOUS DELIVERY APP HOST OS SERVER LIBS CONTAINER CONTAINER APP LIBS HOST OS SERVER DEVELOPMENT FOCUS OPERATIONS FOCUS ● CODE ● HARDWARE ● APPLICATIONS ● OPERATING SYSTEM ● LIBRARIES AND OTHER ● NETWORKING DEPENDENCIES ● MONITORING ● DATA STORE 4 Rodrigo Freire / Ron Pacheco RHEL 7 Containers Architecture with Docker CLI Containers Containers Containers DOCKER CLI Docker Image SYSTEMD Unit File Cgroups Namespaces SELinux Drivers RHEL Kernel Hardware (Intel, AMD) 5 Rodrigo Freire / Ron Pacheco BENEFITS OF LINUX CONTAINERS 6 Rodrigo Freire / Ron Pacheco MORE EFFICIENT INSTALLATION AND DEPLOYMENT SPEED DEPLOYMENT IN-PLACE UPGRADES PRIORITIZE CRITICAL WITH SERVER PROFILES FROM 6.X TO 7 SERVICES AT START-UP EASILY CREATE CUSTOM SAFELY ROLL-BACK DRAMATICALLY SPEED INSTALL IMAGES DURING INSTALL START-UP TIMES 8 Rodrigo Freire / Ron Pacheco Create, Install, Deploy & Manage Custom Install Images using Live Media Creator Easier installation, deployment, and custom image creation/management across large-scale enterprises ● Spin custom installable images with the help of Live Media Creator Content Sources Custom
    [Show full text]
  • Openlmi Documentation Release Latest
    OpenLMI Documentation Release latest OpenLMI authors October 08, 2014 Contents 1 Client components 3 1.1 LMI metacommand ............................................3 1.2 LMIShell .................................................3 2 Server components 5 3 Table of Contents 7 3.1 OpenLMI client components.......................................7 3.2 OpenLMI server components...................................... 194 Python Module Index 299 i ii OpenLMI Documentation, Release latest OpenLMI = Open Linux Management Infrastructure. OpenLMI is open-source project aiming to improve management of Linux systems using WBEM standards. We reuse many already available open-source WBEM components, adding the missing ones and integrating them into one system management solution. In short, WBEM can be described as a remote API for system management. See WBEM overview for details. Contents 1 OpenLMI Documentation, Release latest 2 Contents CHAPTER 1 Client components There are many already existing tools and libraries to manage WBEM-enabled hosts. see WBEM overview for details. OpenLMI project adds LMI metacommand and LMIShell. 1.1 LMI metacommand A command line utility to perform discovery and operations on remote managed systems. For example, it can start a printing service on remote system: /usr/bin/lmi -h my.server.org service start cups LMI metacommand users do not need to know anything about WBEM, all the complexity is hidden inside. 1.2 LMIShell A high-level python-based WBEM client, that can be used for scripting or as an interactive shell to manage remote systems. For example, one can write a script to start a service: c= connect("my.server.org","root","opensesame") cups=c.root.cimv2.LMI_Service.first_instance({"Name":"cups.service"}) cups.StartService() LMIShell users do not need to know anything about WBEM transport protocols, however some knowledge about the aforementioned remote API becomes necessary.
    [Show full text]