Download System and Identity Accounts

Imagination
To
Realization
Sys Maintenance Tips & Tricks
Presented by: Ken Barnewall
SunGard Higher Education, Professional Services
Wednesday, April 5, 2006
9:30 – 10:30 am
Evaluation Code 313
April 2-5 Orlando, Florida
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
Evaluation Code 313
2
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
ƒ H.O.T Session – Hands On Training
Virtual Personal Computer (VPC) in use
Evaluation Code 313
3
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
ƒ H.O.T Session – Hands On {Technical | Topic | Training}
Virtual Personal Computer (VPC) in use
ƒ Session Leader – Ken Barnewall
Evaluation Code 313
4
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
ƒ H.O.T Session – Hands On {Technical | Topic | Training}
Virtual Personal Computer (VPC) in use
ƒ Session Leader – Ken Barnewall
ƒ Expert – A Definition
Evaluation Code 313
5
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
ƒ H.O.T Session – Hands On {Technical | Topic | Training}
Virtual Personal Computer (VPC) in use
ƒ Session Leader – Ken Barnewall
ƒ Expert – A Definition
Ex – Has been
Evaluation Code 313
6
About this Session
ƒ Matrix Track Session Matrix focused System Administration topics
ƒ H.O.T Session – Hands On {Technical | Topic | Training}
Virtual Personal Computer (VPC) in use
ƒ Session Leader – Ken Barnewall
ƒ Expert – A Definition
Spurt –
Ex – Has been
A drip under pressure
Evaluation Code 313
7
Session Rules of Etiquette
ƒ Feel free to move about
ƒ Ask questions at any time
ƒ E-mail, browsing will slow your machine
ƒ Please be considerate of others
Thank you for your cooperation!
Evaluation Code 313
8
Topics of Discussion/Agenda
ƒ Virtual Environment being used
Evaluation Code 313
9
Topics of Discussion/Agenda
ƒ Virtual Environment being used
ƒ Matrix System Architecture Overview
ƒ System Components
ƒ Toolsets
Evaluation Code 313
10
Topics of Discussion/Agenda
ƒ Virtual Environment being used
ƒ Matrix System Architecture Overview
ƒ System Component Survey
ƒ Toolset
ƒ Configuration Procedures
Evaluation Code 313
11
Topics of Discussion/Agenda
ƒ Virtual Environment being used
ƒ Matrix System Architecture Overview
ƒ System Component Survey
ƒ Toolset
ƒ General Configuration Procedures
ƒ Matrix Upgrades
Evaluation Code 313
12
Topics of Discussion/Agenda
ƒ Virtual Environment being used
ƒ Matrix System Architecture Overview
ƒ System Component Survey
ƒ Toolset
ƒ General Configuration Procedures
ƒ Matrix Upgrades
ƒ Instance Management
Evaluation Code 313
13
Acronyms
as
ASCII
atob
atof
atoi
Auml
A/UX
awk
B
bash
bc
DVI
ed
.edu
egrep
ELF
elm
EM
EM
emacs
ENQ
env
Ccedil
cd
CDE
chargen
chdir
chgrp
chmod
chown
chsh
ci
cmp
crc
cron
csh
ctime
ctype.h
CVS
...d
daemon
dbx
dc
DC1
Evaluation Code 313
14
Imagination
To
Realization
Virtual Personal Computer (VPC)
A really cool development tool
April 2-5 Orlando, Florida
Virtual Personal Computer
ƒ Important Key stokes
ƒ Right-Alt-Del
Ctrl-Alt-Del for the Virtual Machine
ƒ Right-Alt-Enter
Toggle Full Screen Mode
ƒ Right-Alt while moving mouse
Free mouse
ƒ Menu Bar -> Action -> Close
Select Shutdown
Evaluation Code 313
16
Virtual Personal Computer
ƒ Login Information
ƒ Username: madmin
ƒ Password: Summit06
ƒ Domain: MTCH313
Evaluation Code 313
17
Imagination
To
Realization
Matrix System Architecture Survey
April 2-5 Orlando, Florida
Matrix System Architecture Survey
ƒ Domain Controller
Evaluation Code 313
19
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
Active Directory Users and Computers
Evaluation Code 313
20
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
Active Directory Users and Computers
ƒ Single Sign On
Evaluation Code 313
21
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
Active Directory Users and Computers
ƒ Single Sign On
ƒ Application “zone” on client PC
Evaluation Code 313
22
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
Active Directory Users and Computers
ƒ Single Sign On
ƒ Application “zone” on client PC
ƒ Local domain versus trusted domain
Evaluation Code 313
23
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
Active Directory Users and Computers
ƒ Single Sign On
ƒ Application “zone” on client PC
ƒ Local domain versus trusted domain
ƒ Trusts
ƒ
Identity users able to manage accounts
ƒ
Group in trusted domain mapped to matrix
Evaluation Code 313
24
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
ƒ Domain Security
Domain Security Policy
Evaluation Code 313
25
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
ƒ Domain Security Policy
ƒ Group Policy Objects
Active Directory Users and Computers
Group Policy Editor
Resultant Set of Policy
Evaluation Code 313
26
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Authentication and Access
ƒ Domain Security Policy
ƒ Group Policy Objects
ƒ Domain Name System (DNS)
Evaluation Code 313
27
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Application Server
Evaluation Code 313
28
Matrix System Architecture Survey
ƒ Application Server
ƒ Business logic – Application and Software
Components
Component Services
Evaluation Code 313
29
Matrix System Architecture Survey
ƒ Application Server
ƒ Business logic – Application and Software
Components
ƒ Internet Information Server (IIS)
IIS Manager
Evaluation Code 313
30
Matrix System Architecture Survey
ƒ Application Server
ƒ Business logic – Application and Software
Components
ƒ Internet Information Server (IIS)
ƒ Matrix Code Tree
Evaluation Code 313
31
Matrix System Architecture Survey
ƒ Application Server
ƒ Business logic – Application and Software
Components
ƒ Internet Information Server (IIS)
ƒ Matrix Code Tree
ƒ Interface between end users and other servers
Evaluation Code 313
32
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Application Server
ƒ Database Server
Evaluation Code 313
33
Matrix System Architecture Survey
ƒ Database Server
ƒ Microsoft SQL Server
Enterprise Manager
Query Analyzer
Profiler
Evaluation Code 313
34
Matrix System Architecture Survey
ƒ Database Server
ƒ Microsoft SQL Server
ƒ Administrative Database
Evaluation Code 313
35
Matrix System Architecture Survey
ƒ Database Server
ƒ Microsoft SQL Server
ƒ Administrative Database
ƒ Operational Databases
Evaluation Code 313
36
Matrix System Architecture Survey
ƒ Domain Controller
ƒ Application Server
ƒ Database Server
ƒ Reports Server
Evaluation Code 313
37
Matrix System Architecture Survey
ƒ Reports Server
ƒ Crystal Reports Server
Evaluation Code 313
38
Matrix System Architecture Survey
ƒ Reports Server
ƒ Crystal Reports Server
ƒ Delivered Reports
Evaluation Code 313
39
Matrix System Architecture Survey
ƒ Reports Server
ƒ Crystal Reports Server
ƒ Delivered Reports
ƒ Application Interface
Evaluation Code 313
40
Matrix System Architecture Survey
ƒ Reports Server
ƒ Crystal Reports Server
ƒ Delivered Reports
ƒ Application Interface
ƒ Crystal Management Console
ƒ Report Upload and Organization
ƒ Report Security
Evaluation Code 313
41
Matrix System Architecture Survey
ƒ Reports Server
ƒ Crystal Reports Server
ƒ SQL Reporting Services
Evaluation Code 313
42
Imagination
To
Realization
Servers Configuration
April 2-5 Orlando, Florida
Servers Configuration
ƒ Domain Controller
ƒ Authentication and Access
Active Directory
DCPROMO
Evaluation Code 313
44
Servers Configuration
ƒ Domain Controller
ƒ Authentication and Access
Active Directory
Microsoft Message Queuing
Add/Remove Windows Components
Evaluation Code 313
45
Servers Configuration
ƒ Domain Controller
ƒ Authentication and Access
Active Directory
Microsoft Message Queuing
Group Policy Objects
Domain Security Policy
System and Identity Accounts
Evaluation Code 313
46
System and Identity Accounts
ƒ Matrix System Manager
ƒ Installation, Maintenance, Administrative tasks
Evaluation Code 313
47
System and Identity Accounts
ƒ Matrix System Manager
ƒ Installation, Maintenance, Administrative tasks
ƒ Permissions
ƒ Local and network logon rights to all servers,
ƒ Local administrator rights on Matrix application servers
ƒ A Windows Authenticated login on all Matrix SQL
Server instances
ƒ System administrator fixed server role
ƒ Member of the Account Operators group in all domains
where user objects are created or modified.
Evaluation Code 313
48
System and Identity Accounts
ƒ Matrix System Manager
ƒ Installation, Maintenance, Administrative tasks
ƒ Permissions
ƒ Local and network logon rights to all servers,
ƒ Local administrator rights on Matrix application servers
ƒ A Windows Authenticated login on all Matrix SQL
Server instances
ƒ System administrator fixed server role
ƒ Member of the Account Operators group in all domains
where user objects are created or modified.
ƒ Optionally, place in group and use group permissions
Evaluation Code 313
49
System and Identity Accounts
ƒ Matrix System Manager
ƒ Matrix Identity Accounts
Evaluation Code 313
50
System and Identity Accounts
ƒ Matrix Identity Accounts
ƒ Mserv – Matrix Service
ƒ mpriv – Matrix Privileged
Evaluation Code 313
51
System and Identity Accounts
ƒ Matrix Identity Accounts
ƒ Mserv – Matrix Service
ƒ mpriv – Matrix Privilged
ƒ Place in group – Matrix Service Group, remove from
Domain Users Group
Evaluation Code 313
52
System and Identity Accounts
ƒ Matrix Identity Accounts
ƒ Mserv – Matrix Service
ƒ mpriv – Matrix Privilged
ƒ Place in group – Matrix Service Group, remove from Domain
Users Group
ƒ Matrix Service Group Permissions
ƒ Local and network logon rights to all servers,
ƒ A Windows Authenticated login on all Matrix SQL Server
instances
ƒ Member of the Account Operators group in all domains
where user objects are created or modified.
ƒ Mpriv - Local administrator rights on Matrix application servers
Evaluation Code 313
53
System and Identity Accounts
ƒ Matrix System Administrator
ƒ Matrix Identity Accounts
ƒ Crystal Enterprise Identity Account
Evaluation Code 313
54
System and Identity Accounts
ƒ Crystal Enterprise Identity Account
ƒ Secure account for database access from Crystal
Server
Evaluation Code 313
55
System and Identity Accounts
ƒ Crystal Enterprise Identity Account
ƒ Secure account for database access from Crystal
Server
ƒ Identity account for the following Crystal Servers
ƒ Crystal Page Server
ƒ Crystal Program Job Server
ƒ Crystal Report Job Server
Evaluation Code 313
56
System and Identity Accounts
ƒ Crystal Enterprise Identity Account
ƒ Secure account for database access from Crystal
Server
ƒ Identity account for the following Crystal Servers
ƒ Crystal Page Server
ƒ Crystal Program Job Server
ƒ Crystal Report Job Server
ƒ Place in Matrix Service Group, remove from Domain
Users Group
Evaluation Code 313
57
System and Identity Accounts
ƒ Matrix System Administrator
ƒ Matrix Identity Accounts
ƒ Crystal Enterprise Identity Account
ƒ Crystal Reports Admin and User Groups
Evaluation Code 313
58
System and Identity Accounts
ƒ Crystal Reports Admin and User Groups
ƒ Crystal Reports Admins
ƒ
ƒ
ƒ
ƒ
Users responsible for report administration
Upload
Maintenance
Access
Evaluation Code 313
59
System and Identity Accounts
ƒ Crystal Reports Admin and User Groups
ƒ Crystal Reports Admins
ƒ
ƒ
ƒ
ƒ
Users responsible for report administration
Upload
Maintenance
Access
ƒ Crystal Reports Users
ƒ Users running Crystal Reports from Matrix
Evaluation Code 313
60
System and Identity Accounts
ƒ Crystal Reports Admin and User Groups
ƒ Crystal Reports Admins
ƒ
ƒ
ƒ
ƒ
Users responsible for report administration
Upload
Maintenance
Access
ƒ Crystal Reports Users
ƒ Users running Crystal Reports from Matrix
ƒ OS groups mapped in Crystal
Evaluation Code 313
61
System and Identity Accounts
ƒ Matrix System Administrator
ƒ Matrix Identity Accounts
ƒ Crystal Enterprise Service Account
ƒ Crystal Reports Admin and User Groups
ƒ SQL Server Accounts
Evaluation Code 313
62
System and Identity Accounts
ƒ SQL Server Accounts
ƒ SQLServerService
ƒ Identity Account for the MSSQLServer Service
Evaluation Code 313
63
System and Identity Accounts
ƒ SQL Server Accounts
ƒ SQLServerService
ƒ Identity Account for the MSSQLServer Service
ƒ SQLServerAgent
ƒ Identity Account for the SQLSERVERAGENT Service
Evaluation Code 313
64
System and Identity Accounts
ƒ SQL Server Accounts
ƒ SQLServerService
ƒ Identity Account for the MSSQLServer Service
ƒ SQLServerAgent
ƒ Identity Account for the SQLSERVERAGENT Service
ƒ Create before installing SQL Server
ƒ SQL Server install will handle setting permissions
ƒ Microsoft KB article 283811
Evaluation Code 313
65
System and Identity Accounts
ƒ Matrix System Administrator
ƒ Matrix Identity Accounts
ƒ Crystal Enterprise Service Account
ƒ Crystal Reports Admin and User Accounts
ƒ SQL Server Accounts
ƒ Domain Security Policies
Evaluation Code 313
66
System and Identity Accounts
ƒ Domain Security Policies
ƒ Access this computer from the Network
ƒ
ƒ
ƒ
ƒ
All of the Management and Identity Groups
Operating System Groups for the Application
IUSR and IWAM Accounts for IIS
Administrators group required
Evaluation Code 313
67
System and Identity Accounts
ƒ Domain Security Policies
ƒ Access this computer from the Network
ƒ
ƒ
ƒ
ƒ
All of the Management and Identity Groups
Operating System Groups for the Application
IUSR and IWAM Accounts for IIS
Administrators group required
ƒ Allow Log on Locally
ƒ Same as above
Evaluation Code 313
68
System and Identity Accounts
ƒ Domain Security Policies
ƒ Access this computer from the Network
ƒ
ƒ
ƒ
ƒ
All of the Management and Identity Groups
Operating System Groups for the Application
IUSR and IWAM Accounts for IIS
Administrators group required
ƒ Allow Log on Locally
ƒ Same as above
ƒ Log on as a Service
ƒ Service Account Groups
Evaluation Code 313
69
System and Identity Accounts
ƒ Many configuration items
Evaluation Code 313
70
System and Identity Accounts
ƒ Many configuration items
ƒ OS Configuration
Evaluation Code 313
71
System and Identity Accounts
ƒ Many configuration items
ƒ OS Configuration
ƒ Groups to Create
Evaluation Code 313
72
System and Identity Accounts
ƒ Many configuration items
ƒ OS Configuration
ƒ Groups to Create
ƒ Accounts to Create
Evaluation Code 313
73
System and Identity Accounts
ƒ Many configuration items
ƒ
ƒ
ƒ
ƒ
OS Configuration
Groups to Create
Accounts to Create
Assigning Users to Groups
Evaluation Code 313
74
System and Identity Accounts
ƒ Many configuration items
ƒ
ƒ
ƒ
ƒ
ƒ
OS Configuration
Groups to Create
Accounts to Create
Assigning Users to Groups
Assigning OS Permissions
Evaluation Code 313
75
System and Identity Accounts
ƒ Many configuration items
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
OS Configuration
Groups to Create
Accounts to Create
Assigning Users to Groups
Assigning OS Permissions
Assigning Domain Permissions
Evaluation Code 313
76
System and Identity Accounts
ƒ Many configuration items
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
OS Configuration
Groups to Create
Accounts to Create
Assigning Users to Groups
Assigning OS Permissions
Assigning Domain Permissions
Plenty of opportunities for Errors
Evaluation Code 313
77
System and Identity Accounts
ƒ Many configuration items
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
OS Configuration
Groups to Create
Accounts to Create
Assigning Users to Groups
Assigning OS Permissions
Assigning Domain Permissions
Plenty of opportunities for error
ƒ Script It!
Evaluation Code 313
78
Script It
ƒ DCPromo
ƒ dcpromo /answer:answer.txt
Evaluation Code 313
79
Script It
ƒ DCPromo
ƒ dcpromo /answer:answer.txt
ƒ Windows Components – System Optional
Component Manager (SYSOCMGR)
ƒ sysocmgr.exe /i:sysoc.inf /u:path and file name of
answer file
Evaluation Code 313
80
Script It
ƒ DCPromo
ƒ dcpromo /answer:answer.txt
ƒ Windows Components – System Optional
Component Manager (SYSOCMGR)
ƒ sysocmgr.exe /i:sysoc.inf /u:path and file name of
answer file
ƒ Account Creation
ƒ Visual Basic Script file
Evaluation Code 313
81
Script It
ƒ DCPromo
ƒ dcpromo /answer:answer.txt
ƒ Windows Components – System Optional
Component Manager (SYSOCMGR)
ƒ sysocmgr.exe /i:sysoc.inf /u:path and file name of
answer file
ƒ Account Creation
ƒ Visual Basic Script file
ƒ Group Policy
Evaluation Code 313
82
Servers Configuration
ƒ Domain Controller
ƒ Application Server
Evaluation Code 313
83
Servers Configuration
ƒ Application Server
ƒ Pre-Matrix Configuration
ƒ Windows Components
ƒ Prerequisite Software
Evaluation Code 313
84
Servers Configuration
ƒ Application Server
ƒ Pre-Matrix Configuration
ƒ Windows Components
ƒ Prerequisite Applications
ƒ Post-Matrix Configuration
ƒ Internet Information Services
ƒ Component Services
Evaluation Code 313
85
Servers Configuration
ƒ Pre-Matrix Configuration
ƒ Windows Components
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
Internet Information Services 6.0
Microsoft Message Queuing Service
Simple Mail Transport Protocol (SMTP)
Enable ASP.NET
Enable network COM+ Access
Enable network DTC Network Access
Evaluation Code 313
86
Servers Configuration
ƒ Pre-Matrix Configuration
ƒ Prerequisite Applications
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
ƒ
Microsoft Data Access Components (MDAC) 2.8
Microsoft XML Parser (MSXML) 3.0 SP5 and 4.0 SP2
SQL Client Tools
ODBC Driver for SQL Server
Microsoft Word 2000 with HTML Filter 2.0 or Microsoft Word
2003
Microsoft Excel 2000 or Excel 2003
Microsoft .Net Framework 1.1 with Service Pack 1
Microsoft .Net SDK (English) 1.1
Microsoft Software Development Kit (SDK) for Active Directory
Services Interfaces 2.5 (English Language Version)
Evaluation Code 313
87
Servers Configuration
ƒ Pre-Matrix Configuration
ƒ Script It
ƒ Windows Components – System Optional Component
Manager (SYSOCMGR)
ƒ Application Based unattended installs
ƒ Comprehensive Install command file
ƒ C:\temp\AppServerSoftware
Evaluation Code 313
88
Servers Configuration
ƒ Post-Matrix Configuration
ƒ Internet Information Services
ƒ Admin Authentication
ƒ UserGroups.asp
ƒ Self Service Authentication
ƒ UserGroups.aspx
ƒ Recommender CMN_SelectRole.aspx
ƒ Additional Self Service Configuration as noted in CMN
Implementation Guide
ƒ
ƒ
ƒ
ƒ
IISADMPWD
DTC Security and Timeouts
COM+ Security, Identity User and Event Settings
MX_Jobs, CMN_ExtractEngine
Evaluation Code 313
89
Servers Configuration
ƒ Post-Matrix Configuration
ƒ Script It
ƒ IISADMPWD
ƒ COM+ Identity User and Event Settings
Evaluation Code 313
90
Servers Configuration
ƒ Domain Controller
ƒ Application Server
ƒ Database Server
Evaluation Code 313
91
Servers Configuration
ƒ Database Server
ƒ Pre-Matrix Configuration
ƒ SQL Server User Accounts
ƒ Post-Matrix Configuration
ƒ Stored Procedure Permissions
Evaluation Code 313
92
Servers Configuration
ƒ Database Server
ƒ Pre-Matrix Configuration
ƒ SQL Server User Accounts
ƒ Script It
ƒ Post-Matrix Configuration
ƒ Stored Procedure Permissions
ƒ Script It
Evaluation Code 313
93
Servers Configuration
ƒ Domain Controller
ƒ Application Server
ƒ Database Server
ƒ Crystal Reports Server
Evaluation Code 313
94
Servers Configuration
ƒ Crystal Reports Server
ƒ Context Users
ƒ Crystal Page Server
ƒ Crystal Reports Job Server
ƒ Crystal Program Jobs Server
Evaluation Code 313
95
Servers Configuration
ƒ Crystal Configuration Manager
Evaluation Code 313
96
Servers Configuration
ƒ Crystal Configuration Manager – Context Users
Evaluation Code 313
97
Servers Configuration
ƒ Crystal Reports Server
ƒ Context Users
ƒ Crystal Page Server
ƒ Crystal Reports Job Server
ƒ Crystal Program Jobs Server
ƒ Authentication
ƒ Crystal Web Component Server
ƒ Mapped OS Groups
Evaluation Code 313
98
Servers Configuration
ƒ Crystal Web Component Server - Authentication
Evaluation Code 313
99
Servers Configuration
Mapped Groups
Evaluation Code 313
100
Servers Configuration
ƒ Crystal Reports Server
ƒ Context Users
ƒ Crystal Page Server
ƒ Crystal Reports Job Server
ƒ Crystal Program Jobs Server
ƒ Authentication
ƒ Crystal Web Component Server
ƒ Mapped OS Groups
ƒ Reports Virtual Directory
Evaluation Code 313
101
Servers Configuration
ƒ Crystal Reports Server
ƒ Reports Virtual Directory
ƒ Create a Virtual directory in IIS
ƒ Copy ReportsSetup files to virtual folder
ƒ Copy ReportTemplates files to virtual folder
Evaluation Code 313
102
Servers Configuration
ƒ Crystal Reports Server
ƒ Context Users
ƒ Crystal Page Server
ƒ Crystal Reports Job Server
ƒ Crystal Program Jobs Server
ƒ Authentication
ƒ Crystal Web Component Server
ƒ Mapped OS Groups
ƒ Reports Virtual Directory
ƒ Data Source Name (DSN)
ƒ SCTMatrix System DSN – pointing to the operational
database
Evaluation Code 313
103
Imagination
To
Realization
Matrix Installer
April 2-5 Orlando, Florida
Matrix Installer
ƒ Maintain Databases
Evaluation Code 313
105
Matrix Installer
ƒ Maintain Databases
ƒ Maintain Installations
Evaluation Code 313
106
Matrix Installer
ƒ Maintain Databases
ƒ Maintain Installations
ƒ Performs Application Install and Upgrades
Evaluation Code 313
107
Matrix Installer
ƒ Maintain Databases
ƒ Maintain Installations
ƒ Performs Application Install and Upgrades
ƒ Pre-Upgrade Considerations
ƒ IIS
ƒ COM+
ƒ Backups
ƒ Upgrade Directory Format
Evaluation Code 313
108
Imagination
To
Realization
Instance Management
April 2-5 Orlando, Florida
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
Evaluation Code 313
110
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
ƒ Export/Import
Evaluation Code 313
111
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
ƒ Export/Import
ƒ Monitoring User Activity
Evaluation Code 313
112
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
ƒ Export/Import
ƒ Monitoring User Activity
ƒ Log Parser – IIS 6.0 Resource Kit
Evaluation Code 313
113
Instance Management – User Activity
Log Parser Input File Formats
ƒ IIS log files
ƒ Microsoft Windows operating system Event Log files
ƒ Generic comma-separated value (CSV) files
ƒ World Wide Web Consortium (W3C) files
ƒ Text files
ƒ Others
Evaluation Code 313
114
Instance Management – User Activity
Log Parser Output file Formats
ƒ Chart - image files
ƒ CSV
ƒ IIS
ƒ Datagrid - GUI
ƒ NAT - Tab delimited
ƒ SQL
ƒ SysLog - Sends messages
to a Syslog server
ƒ TPL - user defined
templates.
ƒ TSV - Tab-separated or
space-separated values
text.
ƒ W3C - Extended Log File
format.
ƒ XML
Evaluation Code 313
115
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
ƒ Export/Import
ƒ Monitoring User Activity
ƒ Log Parser – IIS 6.0 Resource Kit
ƒ Business Logic – 2.5.1.1 Upgrade
Evaluation Code 313
116
Instance Management – User Activity
ƒ Business Logic Monitoring
ƒ Difficult – No built in COM+ tracing tool
Evaluation Code 313
117
Instance Management – User Activity
ƒ Business Logic Monitoring
ƒ Difficult – No built in tracing tool
ƒ Want to know: What objects are being access from
ASP?
Evaluation Code 313
118
Instance Management – User Activity
ƒ Business Logic Monitoring
ƒ Difficult – No built in tracing tool
ƒ Want to know: What objects are being access from
ASP?
ƒ One solution: Write subscription to listen to COM+,
log results
http://msdn.microsoft.com/library/default.asp?url=/library/enus/dv_vstechart/html/concreatingcomperfmoncounters.asp
Evaluation Code 313
119
Instance Management – User Activity
ƒ Business Logic Monitoring
ƒ Difficult – No built in tracing tool
ƒ Want to know: What objects are being access from ASP?
ƒ One solution: Write subscription to listen to COM+, log
results
ƒ http://msdn.microsoft.com/library/default.asp?url=/library/en
-us/dv_vstechart/html/concreatingcomperfmoncounters.asp
ƒ Sample COM+ Monitoring Utility provided with 2.5.1.1
Upgrade
Evaluation Code 313
120
Instance Management
ƒ Windows 2003 User and Group Management
ƒ Use Organizational Units
ƒ IISADMPWD
ƒ Export/Import
ƒ Monitoring User Activity
ƒ Log Parser – IIS 6.0 Resource Kit
ƒ Business Logic – 2.5.1.1 Upgrade
ƒ SQL Server
Evaluation Code 313
121
Instance Management – User Activity
ƒ SQL Server
ƒ Enterprise Manager
ƒ Current Activity
Evaluation Code 313
122
Instance Management – User Activity
ƒ SQL Server
ƒ Enterprise Manager
ƒ Query Analyzer
ƒ SP_Who
ƒ SP_Who2
Evaluation Code 313
123
Instance Management – User Activity
ƒ SQL Server
ƒ Enterprise Manager
ƒ Query Analyzer
ƒ SQL Profiler
ƒ Matrix Trace template
Evaluation Code 313
124
Instance Management – User Activity
ƒ Tying It All Together
Evaluation Code 313
125
Instance Management
ƒ Windows 2003 User and Group Management
ƒ SQL Server 2000 Database Management
Evaluation Code 313
126
Instance Management – User Activity
SQL Server 2000 Database Management
ƒ Sever Configuration Options
ƒ Optimize Operating System for background
processes
ƒ Maximize throughput for “network” applications
ƒ Boost SQL Server priority
ƒ Database Configuration Options
ƒ Auto Create/Update Statistics Off
ƒ Auto Grow Databases Off
Evaluation Code 313
127
Instance Management – User Activity
SQL Server 2000 Database Management
ƒ Storage Considerations - RAID
ƒ Optimal
Performance Best, Redundancy Good
ƒ DATA: RAID 0 (Striped)
ƒ LOGS: RAID 10 (Striped and mirrored)
ƒ TEMP: RAID 0 (striped)
ƒ First Optimal
Performance Good, Recovery Downtime
ƒ DATA: RAID 0 (Striped)
ƒ LOGS: RAID 1 (Mirrored)
ƒ Second Optimal
Performance OK, Redundancy Good
ƒ DATA: RAID 5 (Striped)
ƒ LOGS: RAID 10 (Striped and mirrored)
Evaluation Code 313
128
Instance Management – User Activity
SQL Server 2000 Database Management
ƒ Monitoring
ƒ DBCC SHOWCONTIG
ƒ Average Bytes Free Per Page – very small
ƒ Average Page Density - very high
ƒ DBCC INDEXDEFRAG
ƒ Statistics
ƒ DBCC SHOW_STATISTICS
ƒ UPDATE STATISTICS
ƒ Statistical Indexes
ƒ Page Faults, Cache Hit Ratios, Cache Misses, Procedure
Recompiles, User Connections
ƒ Use SQL Server Agent to Configure Alerts
ƒ Monitor Table Size – Archive Data if needed
Evaluation Code 313
129
Instance Management
ƒ Windows 2003 User and Group Management
ƒ SQL Server 2000 Database Management
ƒ Multiple Matrix Environments
Evaluation Code 313
130
Instance Management
Multiple Matrix Environments
ƒ Virtual Environments
ƒ Windows 2003 Virtual Server with applicable
software
ƒ Export/Import COM objects
ƒ Restore Admin and Operational Databases
ƒ Copy Code Tree
ƒ Create Active Directory Groups and Accounts
ƒ Register dll’s
Evaluation Code 313
131
Instance Management
Multiple Matrix Environments
ƒ Leveraging Hardware
ƒ Domain Controllers
ƒ Build multiple Matrix environments under the same domain
ƒ Host SQL Server on Domain controller
ƒ Technically, not a problem
ƒ Opens up domain controller to attacks
ƒ Performance can be an issue
ƒ Application Servers
ƒ Limited Duality
ƒ COM – Side-by-side assemblies possible but difficult to implement
ƒ Many dll’s moved outside of COM
ƒ Multiple Web sites
ƒ Access multiple Matrix DB’s of the same version
Evaluation Code 313
132
Instance Management
Multiple Matrix Environments
ƒ Leveraging Hardware
ƒ SQL Servers
ƒ Host Multiple Operational Databases
ƒ Host Multiple Administrative Databases
ƒ Host Crystal Reports Server
ƒ Performance an issue
ƒ Crystal Reports Server
ƒ Host Multiple matrix environments on the same Crystal version
ƒ Requires modification of delivered Crystal reports
ƒ Creation of additional DSN’s
ƒ Account administration may become unwieldy
ƒ Host SQL Reporting Services
ƒ Technically feasible, performance unknown
Evaluation Code 313
133
Instance Management
Multiple Matrix Environments
ƒ Scenario - Add an operational database to an existing environment
ƒ
Same domain 1. Restore/Create the database on the server
2. Launch the Matrix Installer
•
Menu bar, Admin, Maintain Databases
3. Enter the database name, SQL Server and Description. Filegroup
names are selected from a drop-down list
4. Create an Open Database Connectivity (ODBC) Data Source Name
(DSN) for the installation of the added database
5. Add Database Access for the Matrix Application Identities. Mserv,
mpriv, ceserv
6. Grant execute permissions on all stored procedures to the identity
users mserv, mpriv, ceserv
Evaluation Code 313
134
Instance Management
Multiple Matrix Environments
ƒ Scenario – Move a database to a new domain, change database
and installation name
Same general procedures will be followed with some additional steps:
1. Restore the database under the new name
2. Post restore adjustments
3. Use the Matrix installer to add the database to Matrix
4. Create connectivity objects and adjust SQL permissions
5. Authentication steps required due to domain change
Evaluation Code 313
135
Instance Management
Multiple Matrix Environments
ƒ Scenario – Move a database to a new domain, change database and
installation name
Post restore adjustments
Rename the file groups and logical file names associated with the database.
Changing a filegroup name
alter database <database> MODIFY FILEGROUP <filegroup_name> NAME =
<new_filegroup_name>
Changing logical file names
Datafiles
ALTER DATABASE yourdatabasename Modify file (name= 'CurrentlogicalName' ,
newname = 'Preferredlogical name')
Log Files
ALTER DATABASE yourdatabasename Modify file (name=
'CurrentlogicalNameLogfile' , newname = 'Preferredlogical name')
Evaluation Code 313
136
Instance Management
Multiple Matrix Environments
ƒ Scenario – Move a database to a new domain, change database and
installation name
Post restore adjustments
ƒ
Manually change the installation to a new installation name. Update the
SYS_Installations table in the restored database to use a new installation
name.
ƒ
Manually change the group mapping to use the new installation name.
Update the group names in the SYS_InstallationUserGroupMapping table
Evaluation Code 313
137
Instance Management
Multiple Matrix Environments
ƒ Scenario – Move a database to a new domain, change database and
installation name
Authentication adjustments
ƒ
In the SYS_Users table, change the domain moniker of all users whose
identities you will recreate in the Matrix domain
ƒ
Create installation groups in the Matrix instance domain. The names of
these groups should exactly match the names of the groups in the
operational database installation group mapping table.
ƒ
Create the account for a user with the installation administrator role, and
any other users you wish to create this way
ƒ
Add users to the appropriate created installation mapped groups
Evaluation Code 313
138
Summary
ƒ Architecture Survey
ƒ System Configuration techniques
ƒ Monitoring and Maintenance
ƒ Techniques for hosting multiple environments
Evaluation Code 313
139
Imagination
To
Realization
Questions and Answers
April 2-5 Orlando, Florida
Thank You!
Ken Barnewall
[email protected]
Please complete the on-line Evaluation Form
Evaluation Code 313
Without limitation, SunGard, the SunGard logo, Banner, Campus Pipeline, Luminis, PowerCAMPUS, Matrix, and
Plus are trademarks or registered trademarks of SunGard Data Systems Inc. or its subsidiaries in the U.S. and
other countries. Third-party names and marks referenced herein are trademarks or registered trademarks of their
respective owners.
© 2006 SunGard. All rights reserved.
Evaluation Code 313
141