1 / 63

DoITT Service Offerings

DoITT Service Offerings. Applications, Infrastructure and Capabilities. Agenda Data Center Offerings Storage Management Backup and Data Protection Disaster Recovery and Data Replication Hosting Environment Mainframe Hosting UNIX Hosting (UNIX, Linux) WINTEL Hosting

Samuel
Télécharger la présentation

DoITT Service Offerings

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. DoITT Service Offerings Applications, Infrastructure and Capabilities

  2. Agenda • Data Center Offerings • Storage Management • Backup and Data Protection • Disaster Recovery and Data Replication • Hosting Environment • Mainframe Hosting • UNIX Hosting (UNIX, Linux) • WINTEL Hosting • Database Management – Oracle, SQL and Mainframe Identity and Enterprise Systems Management

  3. DoITT introduction • Presenters • Gregory Neuhaus, Assistant Commissioner, Unix Shared System Services • Diane Sciabarra, Director, Database Technologies • Donovan Hall, Directory Services Engineer • Diane Witek, Director, CityServ - Enterprise Email and Application Hosting Services

  4. DoITT DataCenter Offering • Datacenter Facilities, Storage Management, • Disaster Recovery, Data Replication

  5. Data Center OfferingsFacilities Planning and Management • Storage Management • Enterprise Storage Area network – Scalable storage – Reduced cost over standalone storage • Disaster Recovery and Data Replication • Provide DR Infrastructure and data replication services. Using DWDM technologies to have a 2GB per second data replication channel. • Backup and Recovery Services • Protect data for hosted applications • Facilities Planning and Management • Network management

  6. Enterprise Storage • Scalability of storage is critical for the City’s future application needs • The efficiency and intelligence of storage management is key to the operation of city applications and related services • The demand for storage capacity continues to grow • Replication and Backup • Data replication needs will increase as application availability increases • Disaster recovery continues to increase replication and tape backup needs • Design Considerations • DoITT Overview Open Systems • Design Considerations • Management of Storage • Storage Resource Management

  7. Replication and Backup • Disaster recovery continues to increase replication and tape backup needs • What is your timeframe to recover your application? • Replication significantly increase storage and network requirements • Tape Backups • Do you have the capacity? • What will be your legal requirements to store data?

  8. Overview of DoITT Open System Storage

  9. SAN: Reliability • 2 independent fabrics, providing at least two independent paths for a particular host to its data • Each fabric utilizes separate Brocade directors and separate Hitachi host access ports • No single point of failure • SAN subsystems are actively monitored on a 24x7x365 basis • Silkworm directors utilize Brocade’s FabricWatch monitoring software • As a backup system, Sun Management Center modules actively monitor each director and each frame

  10. SAN: Disaster Recovery • SAN fabrics span three sites utilizing a DWDM ring • Frame-to-frame replication utilizing Hitachi TrueCopy • SAN-attached Veritas Netbackup environment • Provides reliable and timely backup of hosts at MetroTech datacenter • Direct to tape backup/restore options for SAN-attached hosts • Multiple Sun servers in a clustered environment • StorageTek silo utilizing 16 SAN-attached 9940b drives and approximately 6000 tape cartridges

  11. SAN: Security • Built to be managed and monitored over IP networks • To minimize the risks, independent IP networks utilizing secure, independent switches have been configured at each site • Access via a firewalled bastion host • Within the Hitachi frames, storage allocation is handled via LUN masking • Any LUN masking configuration changes are subject to peer review within DoITT’s open systems group • Within the Brocade directors, storage access is handled via hardware-enforced WWN zoning

  12. Application Hosting • Applications (311, NYC.GOV), Email, GIS

  13. Hosting Services • System design and capacity planning • 24x7 Help Desk and Server Support • System development and deployment - Projects are developed from business need to deployment with in-house skills • High availability and disaster recovery planning and systems • Facilities and Network Infrastructure • Testing and deployment methodologies that allow for timely tested deployment of applications

  14. UNIX Shared Services: • Greg Neuhaus • gneuhaus@doitt.nyc.gov(718) 403-8633 • Ricardo Browne • rbrowne@doitt.nyc.gov • (718) 403-8140

  15. DoITT Mainframe Services and Facilities

  16. Mission: • To provide low-cost, efficient, centralized data processing infrastructure services for all City of New York entities • DoITT is the custodian of 200 critical systems and applications for 40 City agencies • Hosting service started April 1, 1979

  17. A Few Accomplishments • Data Center Consolidations: • Dept of Finance – 1991 • Dept of Sanitation – 1992 • HPD – 1995 • Dept of Transportation – 1998 • HRA – 1998 • Dept of Education – 2005

  18. A Few Accomplishments (cont’d) • Web Enabled Systems: • BIS -- 2001 • CFB – 2005 • DOF -- 2001 & ongoing • Property Search • Star Exemption • Tax Rebate System • Bar Codes for semi-automated Payment

  19. Services Include • Large centralized mainframe operation • 24 x 7 x 365 operations support • Infrastructure support • Security administration • File backup/recovery • Operating systems • Database administration • Transaction systems • Network Services (different forum) • Data management • Disaster Recovery • Offsite backup/recovery • Hotsite services • Data replication

  20. New Data Center - Mainframe Servers • T-REX Technology • IBM 2084-304 w/48GB • IBM 2084-303 w/40GB • Total MIPS: 2863

  21. Virtual Tape Environment • 23 TB cache • 1,440 TB Tape Capacity • 512 Virtual Tape Drives • 24 High Speed/Density Tape drives (STK 9840) • 120 GB of data on each tape • FICON Cache Access (100 megabytes/sec)

  22. Drive Systems • DASD Capacity and Throughput • 45 TB capacity • 3 IBM 2105-800 FICON SHARK subsystems • 100 MB/SEC Data Transfer • Logical volumes 8.4 and 25.6 GB each • Synchronous replication to PPRC at 33rd St NYC

  23. Mainframe Security Administration • RACF security • Client agency administrators authorize updates via WITS system (intranet)

  24. Mainframe Operating Systems • z/OS Release 1.5 (1.7 - soon) • Batch job processing • Transaction systems • Unix System Services • Web Services • Linux • Virtual servers • Unix type environment • Web Services

  25. Linux Environment • IBM 2084-304 • IBM 2084-303 • 2 Dedicated IFL Engines • 900 MIPS • 8 GB Real Memory • Runs Under VM • Can define up to 130,000 Virtual Servers • 8 - 1Gigabit Open system Adapters

  26. Backup/Restore Disk Files • SMS Managed Files • Incremental backup daily at file level • Archive files not recently accessed • Non-SMS Managed Files • Backup to tape at volume level • Five generations of backup • ADABAS Backup • Incremental backup daily

  27. Database Systems/Admin • ADABAS/Natural • DBA services • Install/Customize Software AG products • Support Entire-X for Web access to legacy databases • SQL access to ADABAS • ADABAS data replication to other environments • DB2 • Install/Customize DB2 environments • Provide technical assistance

  28. Transaction Systems • Install/maintain CICS software • Customize environment • Install/maintain related software products • Compuware • Computer Associates • Etc. • Provide Client support

  29. LASTLY, • A WORD ABOUT COBOL

  30. Supported Version of COBOL • IBM currently supports COBOL LE (LANGUAGE ENVIRONMENT) for z/OS. • VS/COBOL is not supported and will cease to function in the near future. • COBOL II modules still run and will continue to run for the foreseeable future. • Any new coding should be in COBOL LE for z/OS only.

  31. Status of VS COBOL • VS COBOL has been unsupported for over two decades • VS COBOL load modules will not function with Transaction Server 3.1 • VS COBOL code must be revised and recompiled –preferably using LE • There will be a User Meeting to discuss what steps DOITT is taking to help with application issues

  32. Disaster Recovery • If DoITT Data Center experiences a prolonged outage: • We would restore backup tapes to disk at Hotsite in Philadelphia • Process would take 2 days and data could be up to 1 week old • Planned Hotsite in Manhattan • Data Replication via PPRC • Data would be current • Hotsite will be Citynet hub • Network connectivity already established • LPARs ready to IPL • Applications available within 2 hours of disaster

  33. Mainframe: • Walter Shelley • wshelley@doitt.nyc.gov • (718) 403-8604 • Database (Mainframe): • Diane Sciabarra • dsciabarra@doitt.nyc.gov • (718) 403-8203

  34. Identity Management(Formally Referred to as LDAP)

  35. Identity Management • Identity Management Definition • Managing the information associated with an employee throughout the enterprise • What is Employee Life Cycle Management? • The management of identities across IT services Name Employee ID Title Agency Department/Unit Manager Email Address Telephone Fax User Name Password Cell-phone Pager

  36. Identity Management • Identity Management Goals: • Consistent and up to date identity data • Simplify access using reduced sign-on • Improve efficiency of provisioning and de-provisioning • Improve Security Identity Management provides a framework of services to deliver those goals.

  37. Identity Management • Password Management • Password self-service - User ability to manage central authentication credentials • Reduced sign-on by integration of applications and web services to support central authentication credentials • User password management (Single Sign-On) - Automated sign-on to applications at desktop to provide • Consistent password policy enforcement

  38. Identity Management • Authentication and Authorization • Support centralized authentication and authorization • Future support for Web based SSO (City-Wide) and Federated Web SSO (External agencies) • Future support for PKI and other ‘strong authentication’ mechanisms

  39. Directory Services • Services Supported By The Enterprise Directory Directory Services Now Single Sign-On City Directory – City-Wide White Pages VPN Services Remote Access Portal Future Password Self-Service City Share Portal Datashare DNAHits COIB City Time City-Wide Applications Agency Applications

  40. Future Services Directory Services Password Self-Service City Share Portal Datashare DNAHits COIB City Time City-Wide Applications Agency Applications

  41. Identity Management Contacts: • Rakesh Patel • Manager Enterprise Directory Services, IT Security • rapatel@doitt.nyc.gov • 718-403-8620 • Daniel Srebnick • Assistant Commissioner, IT Security • dsrebnick@doitt.nyc.gov • 718-403-8610 • Directory Services Contact: • Donovan Hall • Directory Services Engineer • dhall@doitt.nyc.gov • 718-403-8065

  42. Server and Desktop Services • Wintel Services • Hosting and Managed Services

  43. Mission: • To Provide highly available and scalable systems to service agencies based on the Wintel platform • Leverage existing and future technologies • Increased cost efficiencies with centralized management and architecture • Follow best practice processes and strategies e.g. Microsoft Information Technology Infrastructure Library

  44. Overview of DoITT Wintel Hosting Systems • Windows 2003 Servers • Manage, maintain and support over 200 Windows based hosts • Manage Wintel hosts across 3 different City datacenters • Application and Database • Manage, maintain, and support over 50 different SQL 2000 and Oracle database instances • Ability to host and support enterprise web applications and web services DoITT Wintel Services • Server Hosting • SharePoint Portal Server • Exchange 2003 • Internet Security and Acceleration (proxy) server • ePolicy Enterprise Virus control server • Host Integration Server • Internet Information Server (IIS 6.0) • AD Hosting Operations • Provide 365 days x 24 hours x 7 daysonsite support • Support disaster recovery environments to ensure business continuity

  45. SDS Strategies • Consolidated infrastructure and support • R & D of both new technologies and methodologies to ensure highest level service for all technology initiatives • Strong Project Management across all SDS programs • Leveraging use of current resources • Includes both DoITT resources and agency Resources

  46. Current Cost Benefits • No license fees for Microsoft Server based Technologies • Microsoft Exchange Server Licenses • Microsoft SQL Server Licenses • Microsoft Host Integration Server Licenses (SNA connectivity) • Lower Blackberry licensing fees – Blackberry Web browsing • No-cost storage, back-up and restoration services • Reduced administrative overhead • Increased staff productivity • Platform upgrade without hardware cost • No Microsoft licensing costs via Outlook Web Access

  47. SDS Hosting Services • Messaging Services • Exchange Hosting and migration services • Blackberry • eMail Archiving • Right Fax Service • Live Communication Server (AD Hosting Required) • Secure Instant Messaging, Application Sharing, Video Conferencing • Domain Hosting • Citywide Active Directory Forest Integration • Distributed Virus Protection • Distributed Monitoring of Server Systems and Applications

  48. SDS Hosting Services (continued) • Application Hosting • Microsoft Windows SharePoint Services (with eGov) • Microsoft SQL Server Hosting • ASP and ASP.NET hosting • .NET Frameworks 1.x and 2.x (Summer 2005) • SNA Connectivity • Host Integration Server • Other Services • McAfee ePolicy • WUS (Windows Updating Service)

  49. SDS IT Collaboration • Work with Unix team for SAN Storage and backup solutions • Work with Mainframe team to provide offsite storage facilities and connectivity to Mainframe environment via Host Integration Server • Work with eGov to provide the foundation for Wintel Based applications • All teams communicate to determine best solutions across all platforms

  50. Participating Agencies • Bronx District Attorney • City Commission on Human Rights • Civilian Complaint Review Board • Department of Consumer Affairs • Department of Buildings • Department of Finance • Department of Sanitation • Department of Youth and Community Development • Mayor’s Office of Film Broadcasting & Theatre • NYC Marketing • Office of Administrative Trials and Hearings • Office of Collective Bargaining • Office of Payroll Administration • Parks Department • Department of Records and Information Services • Taxi and Limousine Commission

More Related