Deployment team task checklist
Before you install the pilot deployment, you should prepare a deployment checklist to ensure you have the information you need to successfully complete the deployment. For example, you should review port requirements, verify DNS resolution, and create one or more spreadsheets that describe the user and group accounts to be imported and any special relationships, such as membership in specific groups that need to be preserved or any special configuration you want to implement.
Creating a deployment checklist is optional, but can help you to collect detailed information about each of the computers targeted for deployment.
The following example illustrates information you can collect and record in a deployment team task checklist.
If you use a deployment checklist, you can also include additional notes and details about the activities performed. For example, a partially completed checklist might look something like this:
Preparing computers for deployment | |
|
Operating system: Sun Solaris 10 with all patches applied (17-April-2017) |
|
Host name and IP address: aspen, 177.29.10.10 |
|
Current DNS configuration: Resolved through the enterprise DNS server, spider.ajax.org |
|
Current time source is NTP server: ntpd on solstice.ajax.org Change for deployment: Use SNTP on the Active Directory domain controller |
|
Current firewall configuration: No port issues |
|
Existing OpenSSH version to be replaced, no other issues found. |
|
Current source of user and group information: /etc/passwd, /etc/group, and NIS domain nwest03 have users who access aspen |
|
Connectivity with the domain controller: Verified by JR (2-May-2011). |
|
User names and UIDs checked for conflicts across the target group: Analyzed by JR and DC (4-May-2017). |
|
Zone requirements analyzed for the target group: Zones required for the target group are nwest01, swest02, corp-main, and nwest03 (9 May 2017). SF to recommend new extended zone descriptions for approval. |
|
Zone identified for this computer: nwest03 |
|
Centrify Agent installed and the computer joined to the Active Directory domain: dc3colorado.ajax.org, OU: US-UNIX-Computers |
|
Groups allowed r denied access identified for this computer: Allowed access group—all_employees, oracle_sys Denied access—consultants, temps |
|
Existing users and groups for this computer imported into Active Directory: Completed by DC (20-May-2017). |
|
Imported user and group profiles mapped to Active Directory accounts: Work complete for users and groups that already had matching Active Directory candidates. Work in progress for the remaining profiles without any matching Active Directory candidate. Target date for completion: 31-May-2017 |
|
Allowed or denied groups configured using parameter values or group policy: TBD |