SlideShare ist ein Scribd-Unternehmen logo
1 von 39
Downloaden Sie, um offline zu lesen
Social Connections 11 Chicago, June 1-2 2017
All you need to know about
Orient Me
Nico Meisenzahl, panagenda
@nmeisenzahl
PLATINUM SPONSORS
GOLD SPONSORS
SILVER SPONSORS
Social Connections 11 Chicago, June 1-2 2017
Nico Meisenzahl
• Consultant at panagenda
• IBM Connections since version 3.0 / 2010
• IBM Notes / Domino since 2008
• Focusing in ICS
• Deployment & consulting
• Optimization and migration
• “panagendian” since 2016
• IBM Champion
@nmeisenzahl
linkedin.com/in/nicomeisenzahl
meisenzahl.org
nico.meisenzahl
+49 170 7355081
nico.meisenzahl@panagenda.com
Social Connections 11 Chicago, June 1-2 2017
Agenda
• What is Docker, Kubernetes, CfC?
• Orient Me
• Tips & tricks
Social Connections 11 Chicago, June 1-2 2017
What is…
Social Connections 11 Chicago, June 1-2 2017
What is Docker?
• xx
Social Connections 11 Chicago, June 1-2 2017
VM vs. Container
Social Connections 11 Chicago, June 1-2 2017
Docker pros
• More efficient resource allocation
• Linux containers
• Isolated user space within one OS
• Kernel will be shared
• Light weight
• Scalable and agile
Social Connections 11 Chicago, June 1-2 2017
What is Kubernetes?
• Container orchestration/management tool
• Allows to manage & scale container across many
hosts
• “kubectl” command & optional web ui
• Built by Google to manage
their environment
• Open source
Social Connections 11 Chicago, June 1-2 2017
What is IBM Spectrum CfC?
• Container management toolkit based on
• Kubernetes
• Docker repository
• Helm
• ELK stack
• etcd
• Web UI to deploy, manage, monitor and scale
containers
• https://goo.gl/uGeXv9
Social Connections 11 Chicago, June 1-2 2017
Orient Me
Social Connections 11 Chicago, June 1-2 2017
Big picture
Social Connections 11 Chicago, June 1-2 2017
Based on…
• IBM services/code
• Apache ZooKeeper
• MongoDB
• Redis
• Solr
Social Connections 11 Chicago, June 1-2 2017
System Requirements
• RHEL / CentOS 7.3
• designed to be horizontally scalable, but one
node deployment will work
• All System requirements
https://goo.gl/HNgEJW
• Test environment (one node): 4 Cores, 16 GB
RAM, 200 GB disk
Social Connections 11 Chicago, June 1-2 2017
Installation steps (1)
• Download from Fix
Central
• Install Spectrum CfC
using /opt/deployCfC/
deployCfC.sh
Social Connections 11 Chicago, June 1-2 2017
Installation steps (2)
• Setting up persistent volumes using
provided scripts
• Local (one node only!)
• NFS
• Enable profile events
• TDISOL (tdi-profiles-config.xml)
• Profiles (profiles-config.xml)
Social Connections 11 Chicago, June 1-2 2017
Installation steps (3)
• Install Orient Me using
hybrid/microservices/hybridcloud/install.sh
• Configure IHS
• Forward /social & /itm
• Secure your IHS Proxy configuration:
https://goo.gl/KDalJr
Social Connections 11 Chicago, June 1-2 2017
Installation steps (3)
• Populate Profiles & Communities
• Configure the Action Center
• Optional: Configure mail service
(Exchange only)
• Optional: Secure Redis communication
Social Connections 11 Chicago, June 1-2 2017
Installation guides
• Knowledge Center: https://goo.gl/CvUmzN
• Martti Garden:
http://socialibmer.com/orient-me-
installation-and-integration-guide/
Social Connections 11 Chicago, June 1-2 2017
Tips & tricks
Social Connections 11 Chicago, June 1-2 2017
Define mount points for…
• /pv
• Persistent Docker volumes
• /var/lib
• Docker with Images, Containers, …
• Elasticsearch, Repository, …
• Around 20 GB after installation
• /opt
• CfC root directory
Tip: Do not move /var/lib/docker/overlay
Social Connections 11 Chicago, June 1-2 2017
Installation: root vs. sudo
• Installation with sudo will work, but:
• Root password will be asked
• Kubectl within sudo session
• export PATH=$PATH:/usr/local/bin
• Export PATH before CfC setup
• Customize /root/.bashrc
Social Connections 11 Chicago, June 1-2 2017
DNS vs. /etc/hosts
• Container will talk to your Connections
environment
• Hosts entries will work but many
customizations are needed
• Use DNS and be happy ;-)
• Test only: Install bind server and redeploy kube-
dns pods
Social Connections 11 Chicago, June 1-2 2017
Reconfigure Orient Me settings
• kubectl edit configmaps
Social Connections 11 Chicago, June 1-2 2017
Redeploy Containers
• Why?
• configuration changes
• Runtime issues
• kubectl delete pods xxx
• Use kubectl delete --all pods --namespace=default to
recreate all Orient Me containers
Social Connections 11 Chicago, June 1-2 2017
Internet access is needed!
• Why?
• Docker Hub
• Kubernetes & Helm installation (curl)
• CfC Installation (yum)
• Solr pods (yum)
• Direct access is the only supported one
• Proxy configuration will work too
• You may need to reconfigure this after updates!
Social Connections 11 Chicago, June 1-2 2017
Proxy configuration (before CfC setup)
• Customize /etc/environment
• http_proxy=“http://yourproxy”
https_proxy=“https://yourproxy”
no_proxy=“localhost, 127.0.0.1,*.cfc”
• Create /etc/systemd/system/docker.service.d/http-
proxy.conf
• [Service]
Environment=“HTTP_PROXY=http://yourproxy”
Environment=“HTTPS_PROXY=https://yourproxy”
Environment=“no_proxy=localhost, 127.0.0.1,*.cfc”
Social Connections 11 Chicago, June 1-2 2017
Proxy configuration (after Installation)
• Customize Configmap
• proxy-http: http://yourproxy
proxy-https: https://yourproxy
noproxy: localhost,127.0.0.1,*.cfc
• Customize “env” section within
application configuration
• at least for Solr
• Redeploy pods
Social Connections 11 Chicago, June 1-2 2017
footer.jsp
• will not be loaded on Orient Me
• Move your customizations into header.sjp
• Touchpoint
• Piwik
• …
Social Connections 11 Chicago, June 1-2 2017
Changing the admin user password
1. Change password using CfC UI
2. Login to local Docker registry
• docker login master.cfc:8500
3. Recreate secrets
• kubectl delete secret myregkey
• kubectl create secret docker-registry myregkey --docker-
server=https://master.cfc:8500 --docker-
username=admin --docker-password=<yourpsw> --
docker-email=connections@us.ibm.com
Social Connections 11 Chicago, June 1-2 2017
HTTPS only communication (CNX)
• Posting & likes will not work by default
• Reconfigure configmap
• Redeploy pods
• orient-webclient-*
• itm-service-*
• More information: https://goo.gl/doada3
Social Connections 11 Chicago, June 1-2 2017
Troubleshoot Redis configuration
• SELECT * FROM HOMEPAGE.MT_CFG_SETTINGS
WHERE NAME LIKE 'c2.export.redis%'
Social Connections 11 Chicago, June 1-2 2017
People migration
• Issues?
• Check if CNX is reachable
• kubectl exec -it people-migrate-* -- curl --insecure -v
https://cnx6.pana.local/profiles/admin/atom/profiles.do
• Any MongoDB related issues?
• kubectl exec -it mongo-0 -- mongo mongo-0 -eval
'rs.status()’
• Migration takes 15-20 minutes for every 10k
users
Social Connections 11 Chicago, June 1-2 2017
Reinstall Orient Me (In case of failure)
• hybridcloud/bin/clean.sh
• Will remove all Orient Me pods/services
• Spectrum CfC will stay
• Delete persistent content manually (/pv)
• Reinstall using install script
Social Connections 11 Chicago, June 1-2 2017
Limitations
• Sametime Proxy integration will not be
loaded on Orient Me
• No embedded experience (Third party
integrations)
• SPNEGO SSO seems not to work
• PMR is under investigation
Social Connections 11 Chicago, June 1-2 2017
More resources
• Kubernetes cheat sheet:
https://kubernetes.io/docs/user-
guide/kubectl-cheatsheet/
• My troubleshooting session (yesterday)
• Slides will be available soon
Social Connections 11 Chicago, June 1-2 2017
Q&A
SOCCNX11 All you need to know about Orient Me
PLATINUM SPONSORS
GOLD SPONSORS
SILVER SPONSORS

Weitere ähnliche Inhalte

Was ist angesagt?

What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...
What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...
What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...Heiko Voigt
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections Adminblastpanagenda
 
IBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 EditionIBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 Editionpanagenda
 
Automate IBM Connections Installations and more
Automate IBM Connections Installations and moreAutomate IBM Connections Installations and more
Automate IBM Connections Installations and morepanagenda
 
Deploying Web Applications with WildFly 8
Deploying Web Applications with WildFly 8Deploying Web Applications with WildFly 8
Deploying Web Applications with WildFly 8Arun Gupta
 
Best Practices for Installing IBM Verse on Premises
Best Practices for Installing IBM Verse on PremisesBest Practices for Installing IBM Verse on Premises
Best Practices for Installing IBM Verse on PremisesTimsterC
 
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)Howard Greenberg
 
ActiveMQ 5.9.x new features
ActiveMQ 5.9.x new featuresActiveMQ 5.9.x new features
ActiveMQ 5.9.x new featuresChristian Posta
 
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...Howard Greenberg
 
Web Performance First Aid
Web Performance First AidWeb Performance First Aid
Web Performance First AidAlan Seiden
 
One Neos CMS - many websites
One Neos CMS - many websitesOne Neos CMS - many websites
One Neos CMS - many websitespunkt.de GmbH
 
How to be a lion tamer
How to be a lion tamerHow to be a lion tamer
How to be a lion tamerWannes Rams
 
How to be a lion tamer
How to be a lion tamerHow to be a lion tamer
How to be a lion tamerSharon James
 
Forking Successfully - or is a branch better?
Forking Successfully - or is a branch better?Forking Successfully - or is a branch better?
Forking Successfully - or is a branch better?Colin Charles
 
Simplify integrations-final-pdf
Simplify integrations-final-pdfSimplify integrations-final-pdf
Simplify integrations-final-pdfChristian Posta
 

Was ist angesagt? (19)

Domino testing presentation
Domino testing presentationDomino testing presentation
Domino testing presentation
 
What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...
What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...
What is cool with Domino V10, Proton and Node.JS, and why would I use it in ...
 
Webinar: IBM Connections Adminblast
Webinar: IBM Connections AdminblastWebinar: IBM Connections Adminblast
Webinar: IBM Connections Adminblast
 
IBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 EditionIBM Connections Adminblast - Soccnx 12 Edition
IBM Connections Adminblast - Soccnx 12 Edition
 
Automate IBM Connections Installations and more
Automate IBM Connections Installations and moreAutomate IBM Connections Installations and more
Automate IBM Connections Installations and more
 
Deploying Web Applications with WildFly 8
Deploying Web Applications with WildFly 8Deploying Web Applications with WildFly 8
Deploying Web Applications with WildFly 8
 
Best Practices for Installing IBM Verse on Premises
Best Practices for Installing IBM Verse on PremisesBest Practices for Installing IBM Verse on Premises
Best Practices for Installing IBM Verse on Premises
 
Node and Azure
Node and AzureNode and Azure
Node and Azure
 
Mini-Training: Redis
Mini-Training: RedisMini-Training: Redis
Mini-Training: Redis
 
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)
September-2021 OpenNTF Webinar: Domino Online Meeting Integration (DOMI)
 
RESTful Services
RESTful ServicesRESTful Services
RESTful Services
 
ActiveMQ 5.9.x new features
ActiveMQ 5.9.x new featuresActiveMQ 5.9.x new features
ActiveMQ 5.9.x new features
 
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...
October OpenNTF Webinar - What we like about Domino/Notes 12, recommended new...
 
Web Performance First Aid
Web Performance First AidWeb Performance First Aid
Web Performance First Aid
 
One Neos CMS - many websites
One Neos CMS - many websitesOne Neos CMS - many websites
One Neos CMS - many websites
 
How to be a lion tamer
How to be a lion tamerHow to be a lion tamer
How to be a lion tamer
 
How to be a lion tamer
How to be a lion tamerHow to be a lion tamer
How to be a lion tamer
 
Forking Successfully - or is a branch better?
Forking Successfully - or is a branch better?Forking Successfully - or is a branch better?
Forking Successfully - or is a branch better?
 
Simplify integrations-final-pdf
Simplify integrations-final-pdfSimplify integrations-final-pdf
Simplify integrations-final-pdf
 

Ähnlich wie SOCCNX11 All you need to know about Orient Me

Two wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsTwo wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsLetsConnect
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connectionspanagenda
 
2014 11-05 hpcac-kniep_christian_dockermpi
2014 11-05 hpcac-kniep_christian_dockermpi2014 11-05 hpcac-kniep_christian_dockermpi
2014 11-05 hpcac-kniep_christian_dockermpiQNIB Solutions
 
Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore   december 2017 - v02Kubernetes meetup bangalore   december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02Kumar Gaurav
 
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!LetsConnect
 
Migration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done thatMigration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done thatSharon James
 
patroni-based citrus high availability environment deployment
patroni-based citrus high availability environment deploymentpatroni-based citrus high availability environment deployment
patroni-based citrus high availability environment deploymenthyeongchae lee
 
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...LetsConnect
 
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems Integration
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems IntegrationJenkins Pipeline @ Scale. Building Automation Frameworks for Systems Integration
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems IntegrationOleg Nenashev
 
Building A SaaS with CoreOS, Docker, and Etcd
Building A SaaS with CoreOS, Docker, and EtcdBuilding A SaaS with CoreOS, Docker, and Etcd
Building A SaaS with CoreOS, Docker, and EtcdRoss Kukulinski
 
What You Missed: OpenStack Summit Austin
What You Missed: OpenStack Summit AustinWhat You Missed: OpenStack Summit Austin
What You Missed: OpenStack Summit AustinNetApp
 
Network Infrastructure as Code with Chef and Cisco
Network Infrastructure as Code with Chef and CiscoNetwork Infrastructure as Code with Chef and Cisco
Network Infrastructure as Code with Chef and CiscoMatt Ray
 
ABS 2014 - Android Kit Kat Internals
ABS 2014 - Android Kit Kat InternalsABS 2014 - Android Kit Kat Internals
ABS 2014 - Android Kit Kat InternalsBenjamin Zores
 
Philadelphia MongoDB User Group - Your First MongoDB Application
Philadelphia MongoDB User Group - Your First MongoDB ApplicationPhiladelphia MongoDB User Group - Your First MongoDB Application
Philadelphia MongoDB User Group - Your First MongoDB ApplicationMichael Lynn
 
Social Connections 13 - Troubleshooting Connections Pink
Social Connections 13 - Troubleshooting Connections PinkSocial Connections 13 - Troubleshooting Connections Pink
Social Connections 13 - Troubleshooting Connections PinkNico Meisenzahl
 
DEVNET-1007 Network Infrastructure as Code with Chef and Cisco
DEVNET-1007	Network Infrastructure as Code with Chef and CiscoDEVNET-1007	Network Infrastructure as Code with Chef and Cisco
DEVNET-1007 Network Infrastructure as Code with Chef and CiscoCisco DevNet
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKrishna-Kumar
 

Ähnlich wie SOCCNX11 All you need to know about Orient Me (20)

Two wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsTwo wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting Connections
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
 
2014 11-05 hpcac-kniep_christian_dockermpi
2014 11-05 hpcac-kniep_christian_dockermpi2014 11-05 hpcac-kniep_christian_dockermpi
2014 11-05 hpcac-kniep_christian_dockermpi
 
Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore   december 2017 - v02Kubernetes meetup bangalore   december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02
 
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!
Migration from 5.x and 5.5 to Connections 6.0 – Been there, done that!
 
Migration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done thatMigration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done that
 
patroni-based citrus high availability environment deployment
patroni-based citrus high availability environment deploymentpatroni-based citrus high availability environment deployment
patroni-based citrus high availability environment deployment
 
ITB2017 - Keynote
ITB2017 - KeynoteITB2017 - Keynote
ITB2017 - Keynote
 
Connections 5.x to 6.0 migration
Connections 5.x to 6.0 migrationConnections 5.x to 6.0 migration
Connections 5.x to 6.0 migration
 
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
 
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems Integration
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems IntegrationJenkins Pipeline @ Scale. Building Automation Frameworks for Systems Integration
Jenkins Pipeline @ Scale. Building Automation Frameworks for Systems Integration
 
Building A SaaS with CoreOS, Docker, and Etcd
Building A SaaS with CoreOS, Docker, and EtcdBuilding A SaaS with CoreOS, Docker, and Etcd
Building A SaaS with CoreOS, Docker, and Etcd
 
What You Missed: OpenStack Summit Austin
What You Missed: OpenStack Summit AustinWhat You Missed: OpenStack Summit Austin
What You Missed: OpenStack Summit Austin
 
Network Infrastructure as Code with Chef and Cisco
Network Infrastructure as Code with Chef and CiscoNetwork Infrastructure as Code with Chef and Cisco
Network Infrastructure as Code with Chef and Cisco
 
Docker Kubernetes Istio
Docker Kubernetes IstioDocker Kubernetes Istio
Docker Kubernetes Istio
 
ABS 2014 - Android Kit Kat Internals
ABS 2014 - Android Kit Kat InternalsABS 2014 - Android Kit Kat Internals
ABS 2014 - Android Kit Kat Internals
 
Philadelphia MongoDB User Group - Your First MongoDB Application
Philadelphia MongoDB User Group - Your First MongoDB ApplicationPhiladelphia MongoDB User Group - Your First MongoDB Application
Philadelphia MongoDB User Group - Your First MongoDB Application
 
Social Connections 13 - Troubleshooting Connections Pink
Social Connections 13 - Troubleshooting Connections PinkSocial Connections 13 - Troubleshooting Connections Pink
Social Connections 13 - Troubleshooting Connections Pink
 
DEVNET-1007 Network Infrastructure as Code with Chef and Cisco
DEVNET-1007	Network Infrastructure as Code with Chef and CiscoDEVNET-1007	Network Infrastructure as Code with Chef and Cisco
DEVNET-1007 Network Infrastructure as Code with Chef and Cisco
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
 

Mehr von Nico Meisenzahl

Cloud-Native & Sustainability: How and Why to Build Sustainable Workloads
Cloud-Native & Sustainability: How and Why to Build Sustainable WorkloadsCloud-Native & Sustainability: How and Why to Build Sustainable Workloads
Cloud-Native & Sustainability: How and Why to Build Sustainable WorkloadsNico Meisenzahl
 
Container Day Security: How to Prevent Your Kubernetes Cluster From Being Hacked
Container Day Security: How to Prevent Your Kubernetes Cluster From Being HackedContainer Day Security: How to Prevent Your Kubernetes Cluster From Being Hacked
Container Day Security: How to Prevent Your Kubernetes Cluster From Being HackedNico Meisenzahl
 
Festive Tech Calendar: Festive time with AKS networking
Festive Tech Calendar: Festive time with AKS networkingFestive Tech Calendar: Festive time with AKS networking
Festive Tech Calendar: Festive time with AKS networkingNico Meisenzahl
 
ContainerConf 2022: Hijack Kubernetes
ContainerConf 2022: Hijack KubernetesContainerConf 2022: Hijack Kubernetes
ContainerConf 2022: Hijack KubernetesNico Meisenzahl
 
ContainerConf 2022: Kubernetes is awesome - but...
ContainerConf 2022: Kubernetes is awesome - but...ContainerConf 2022: Kubernetes is awesome - but...
ContainerConf 2022: Kubernetes is awesome - but...Nico Meisenzahl
 
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being Hacked
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being HackedKCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being Hacked
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being HackedNico Meisenzahl
 
KCD Munich 2022: Hijack a Kubernetes Cluster - a Walkthrough
KCD Munich 2022: Hijack a Kubernetes Cluster - a WalkthroughKCD Munich 2022: Hijack a Kubernetes Cluster - a Walkthrough
KCD Munich 2022: Hijack a Kubernetes Cluster - a WalkthroughNico Meisenzahl
 
Cloud Love Conference: Kubernetes is awesome, but...
Cloud Love Conference: Kubernetes is awesome, but...Cloud Love Conference: Kubernetes is awesome, but...
Cloud Love Conference: Kubernetes is awesome, but...Nico Meisenzahl
 
How to Prevent Your Kubernetes Cluster From Being Hacked
How to Prevent Your Kubernetes Cluster From Being HackedHow to Prevent Your Kubernetes Cluster From Being Hacked
How to Prevent Your Kubernetes Cluster From Being HackedNico Meisenzahl
 
Container Days: Hijack a Kubernetes Cluster - a Walkthrough
Container Days: Hijack a Kubernetes Cluster - a WalkthroughContainer Days: Hijack a Kubernetes Cluster - a Walkthrough
Container Days: Hijack a Kubernetes Cluster - a WalkthroughNico Meisenzahl
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughNico Meisenzahl
 
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...Nico Meisenzahl
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughNico Meisenzahl
 
azdevcom - Hijack a Kubernetes Cluster
azdevcom - Hijack a Kubernetes Clusterazdevcom - Hijack a Kubernetes Cluster
azdevcom - Hijack a Kubernetes ClusterNico Meisenzahl
 
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...Nico Meisenzahl
 
Continuous Lifecycle: Hijack Kubernetes
Continuous Lifecycle: Hijack KubernetesContinuous Lifecycle: Hijack Kubernetes
Continuous Lifecycle: Hijack KubernetesNico Meisenzahl
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughNico Meisenzahl
 
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CDGitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CDNico Meisenzahl
 
Azure Meetup Hamburg: Production-Ready Terraform Deployments on Azure
Azure Meetup Hamburg: Production-Ready Terraform Deployments on AzureAzure Meetup Hamburg: Production-Ready Terraform Deployments on Azure
Azure Meetup Hamburg: Production-Ready Terraform Deployments on AzureNico Meisenzahl
 
Microsoft DevOps Forum 2021 – DevOps & Security
 Microsoft DevOps Forum 2021 – DevOps & Security Microsoft DevOps Forum 2021 – DevOps & Security
Microsoft DevOps Forum 2021 – DevOps & SecurityNico Meisenzahl
 

Mehr von Nico Meisenzahl (20)

Cloud-Native & Sustainability: How and Why to Build Sustainable Workloads
Cloud-Native & Sustainability: How and Why to Build Sustainable WorkloadsCloud-Native & Sustainability: How and Why to Build Sustainable Workloads
Cloud-Native & Sustainability: How and Why to Build Sustainable Workloads
 
Container Day Security: How to Prevent Your Kubernetes Cluster From Being Hacked
Container Day Security: How to Prevent Your Kubernetes Cluster From Being HackedContainer Day Security: How to Prevent Your Kubernetes Cluster From Being Hacked
Container Day Security: How to Prevent Your Kubernetes Cluster From Being Hacked
 
Festive Tech Calendar: Festive time with AKS networking
Festive Tech Calendar: Festive time with AKS networkingFestive Tech Calendar: Festive time with AKS networking
Festive Tech Calendar: Festive time with AKS networking
 
ContainerConf 2022: Hijack Kubernetes
ContainerConf 2022: Hijack KubernetesContainerConf 2022: Hijack Kubernetes
ContainerConf 2022: Hijack Kubernetes
 
ContainerConf 2022: Kubernetes is awesome - but...
ContainerConf 2022: Kubernetes is awesome - but...ContainerConf 2022: Kubernetes is awesome - but...
ContainerConf 2022: Kubernetes is awesome - but...
 
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being Hacked
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being HackedKCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being Hacked
KCD Munich 2022: How to Prevent Your Kubernetes Cluster From Being Hacked
 
KCD Munich 2022: Hijack a Kubernetes Cluster - a Walkthrough
KCD Munich 2022: Hijack a Kubernetes Cluster - a WalkthroughKCD Munich 2022: Hijack a Kubernetes Cluster - a Walkthrough
KCD Munich 2022: Hijack a Kubernetes Cluster - a Walkthrough
 
Cloud Love Conference: Kubernetes is awesome, but...
Cloud Love Conference: Kubernetes is awesome, but...Cloud Love Conference: Kubernetes is awesome, but...
Cloud Love Conference: Kubernetes is awesome, but...
 
How to Prevent Your Kubernetes Cluster From Being Hacked
How to Prevent Your Kubernetes Cluster From Being HackedHow to Prevent Your Kubernetes Cluster From Being Hacked
How to Prevent Your Kubernetes Cluster From Being Hacked
 
Container Days: Hijack a Kubernetes Cluster - a Walkthrough
Container Days: Hijack a Kubernetes Cluster - a WalkthroughContainer Days: Hijack a Kubernetes Cluster - a Walkthrough
Container Days: Hijack a Kubernetes Cluster - a Walkthrough
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a Walkthrough
 
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...
Azure Zürich User Group: Azure Kubernetes Service – more than just a managed ...
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a Walkthrough
 
azdevcom - Hijack a Kubernetes Cluster
azdevcom - Hijack a Kubernetes Clusterazdevcom - Hijack a Kubernetes Cluster
azdevcom - Hijack a Kubernetes Cluster
 
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...
Continuous Lifecycle: Enhance Your Compliance and Governance With Policy-Base...
 
Continuous Lifecycle: Hijack Kubernetes
Continuous Lifecycle: Hijack KubernetesContinuous Lifecycle: Hijack Kubernetes
Continuous Lifecycle: Hijack Kubernetes
 
Hijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a WalkthroughHijack a Kubernetes Cluster - a Walkthrough
Hijack a Kubernetes Cluster - a Walkthrough
 
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CDGitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
 
Azure Meetup Hamburg: Production-Ready Terraform Deployments on Azure
Azure Meetup Hamburg: Production-Ready Terraform Deployments on AzureAzure Meetup Hamburg: Production-Ready Terraform Deployments on Azure
Azure Meetup Hamburg: Production-Ready Terraform Deployments on Azure
 
Microsoft DevOps Forum 2021 – DevOps & Security
 Microsoft DevOps Forum 2021 – DevOps & Security Microsoft DevOps Forum 2021 – DevOps & Security
Microsoft DevOps Forum 2021 – DevOps & Security
 

Kürzlich hochgeladen

Computer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsComputer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsSeth Reyes
 
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDEADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDELiveplex
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8DianaGray10
 
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...Aggregage
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostMatt Ray
 
Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxMatsuo Lab
 
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019IES VE
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding TeamAdam Moalla
 
Igniting Next Level Productivity with AI-Infused Data Integration Workflows
Igniting Next Level Productivity with AI-Infused Data Integration WorkflowsIgniting Next Level Productivity with AI-Infused Data Integration Workflows
Igniting Next Level Productivity with AI-Infused Data Integration WorkflowsSafe Software
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Adtran
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfDaniel Santiago Silva Capera
 
20230202 - Introduction to tis-py
20230202 - Introduction to tis-py20230202 - Introduction to tis-py
20230202 - Introduction to tis-pyJamie (Taka) Wang
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Commit University
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAshyamraj55
 
AI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarAI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarPrecisely
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Will Schroeder
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1DianaGray10
 
Machine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfMachine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfAijun Zhang
 
Building AI-Driven Apps Using Semantic Kernel.pptx
Building AI-Driven Apps Using Semantic Kernel.pptxBuilding AI-Driven Apps Using Semantic Kernel.pptx
Building AI-Driven Apps Using Semantic Kernel.pptxUdaiappa Ramachandran
 

Kürzlich hochgeladen (20)

20150722 - AGV
20150722 - AGV20150722 - AGV
20150722 - AGV
 
Computer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsComputer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and Hazards
 
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDEADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8
 
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
 
Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptx
 
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019
IESVE Software for Florida Code Compliance Using ASHRAE 90.1-2019
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team
 
Igniting Next Level Productivity with AI-Infused Data Integration Workflows
Igniting Next Level Productivity with AI-Infused Data Integration WorkflowsIgniting Next Level Productivity with AI-Infused Data Integration Workflows
Igniting Next Level Productivity with AI-Infused Data Integration Workflows
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
 
20230202 - Introduction to tis-py
20230202 - Introduction to tis-py20230202 - Introduction to tis-py
20230202 - Introduction to tis-py
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
 
AI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarAI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity Webinar
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1
 
Machine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfMachine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdf
 
Building AI-Driven Apps Using Semantic Kernel.pptx
Building AI-Driven Apps Using Semantic Kernel.pptxBuilding AI-Driven Apps Using Semantic Kernel.pptx
Building AI-Driven Apps Using Semantic Kernel.pptx
 

SOCCNX11 All you need to know about Orient Me

  • 1. Social Connections 11 Chicago, June 1-2 2017 All you need to know about Orient Me Nico Meisenzahl, panagenda @nmeisenzahl
  • 3. Social Connections 11 Chicago, June 1-2 2017 Nico Meisenzahl • Consultant at panagenda • IBM Connections since version 3.0 / 2010 • IBM Notes / Domino since 2008 • Focusing in ICS • Deployment & consulting • Optimization and migration • “panagendian” since 2016 • IBM Champion @nmeisenzahl linkedin.com/in/nicomeisenzahl meisenzahl.org nico.meisenzahl +49 170 7355081 nico.meisenzahl@panagenda.com
  • 4. Social Connections 11 Chicago, June 1-2 2017 Agenda • What is Docker, Kubernetes, CfC? • Orient Me • Tips & tricks
  • 5. Social Connections 11 Chicago, June 1-2 2017 What is…
  • 6. Social Connections 11 Chicago, June 1-2 2017 What is Docker? • xx
  • 7. Social Connections 11 Chicago, June 1-2 2017 VM vs. Container
  • 8. Social Connections 11 Chicago, June 1-2 2017 Docker pros • More efficient resource allocation • Linux containers • Isolated user space within one OS • Kernel will be shared • Light weight • Scalable and agile
  • 9. Social Connections 11 Chicago, June 1-2 2017 What is Kubernetes? • Container orchestration/management tool • Allows to manage & scale container across many hosts • “kubectl” command & optional web ui • Built by Google to manage their environment • Open source
  • 10. Social Connections 11 Chicago, June 1-2 2017 What is IBM Spectrum CfC? • Container management toolkit based on • Kubernetes • Docker repository • Helm • ELK stack • etcd • Web UI to deploy, manage, monitor and scale containers • https://goo.gl/uGeXv9
  • 11. Social Connections 11 Chicago, June 1-2 2017 Orient Me
  • 12. Social Connections 11 Chicago, June 1-2 2017 Big picture
  • 13. Social Connections 11 Chicago, June 1-2 2017 Based on… • IBM services/code • Apache ZooKeeper • MongoDB • Redis • Solr
  • 14. Social Connections 11 Chicago, June 1-2 2017 System Requirements • RHEL / CentOS 7.3 • designed to be horizontally scalable, but one node deployment will work • All System requirements https://goo.gl/HNgEJW • Test environment (one node): 4 Cores, 16 GB RAM, 200 GB disk
  • 15. Social Connections 11 Chicago, June 1-2 2017 Installation steps (1) • Download from Fix Central • Install Spectrum CfC using /opt/deployCfC/ deployCfC.sh
  • 16. Social Connections 11 Chicago, June 1-2 2017 Installation steps (2) • Setting up persistent volumes using provided scripts • Local (one node only!) • NFS • Enable profile events • TDISOL (tdi-profiles-config.xml) • Profiles (profiles-config.xml)
  • 17. Social Connections 11 Chicago, June 1-2 2017 Installation steps (3) • Install Orient Me using hybrid/microservices/hybridcloud/install.sh • Configure IHS • Forward /social & /itm • Secure your IHS Proxy configuration: https://goo.gl/KDalJr
  • 18. Social Connections 11 Chicago, June 1-2 2017 Installation steps (3) • Populate Profiles & Communities • Configure the Action Center • Optional: Configure mail service (Exchange only) • Optional: Secure Redis communication
  • 19. Social Connections 11 Chicago, June 1-2 2017 Installation guides • Knowledge Center: https://goo.gl/CvUmzN • Martti Garden: http://socialibmer.com/orient-me- installation-and-integration-guide/
  • 20. Social Connections 11 Chicago, June 1-2 2017 Tips & tricks
  • 21. Social Connections 11 Chicago, June 1-2 2017 Define mount points for… • /pv • Persistent Docker volumes • /var/lib • Docker with Images, Containers, … • Elasticsearch, Repository, … • Around 20 GB after installation • /opt • CfC root directory Tip: Do not move /var/lib/docker/overlay
  • 22. Social Connections 11 Chicago, June 1-2 2017 Installation: root vs. sudo • Installation with sudo will work, but: • Root password will be asked • Kubectl within sudo session • export PATH=$PATH:/usr/local/bin • Export PATH before CfC setup • Customize /root/.bashrc
  • 23. Social Connections 11 Chicago, June 1-2 2017 DNS vs. /etc/hosts • Container will talk to your Connections environment • Hosts entries will work but many customizations are needed • Use DNS and be happy ;-) • Test only: Install bind server and redeploy kube- dns pods
  • 24. Social Connections 11 Chicago, June 1-2 2017 Reconfigure Orient Me settings • kubectl edit configmaps
  • 25. Social Connections 11 Chicago, June 1-2 2017 Redeploy Containers • Why? • configuration changes • Runtime issues • kubectl delete pods xxx • Use kubectl delete --all pods --namespace=default to recreate all Orient Me containers
  • 26. Social Connections 11 Chicago, June 1-2 2017 Internet access is needed! • Why? • Docker Hub • Kubernetes & Helm installation (curl) • CfC Installation (yum) • Solr pods (yum) • Direct access is the only supported one • Proxy configuration will work too • You may need to reconfigure this after updates!
  • 27. Social Connections 11 Chicago, June 1-2 2017 Proxy configuration (before CfC setup) • Customize /etc/environment • http_proxy=“http://yourproxy” https_proxy=“https://yourproxy” no_proxy=“localhost, 127.0.0.1,*.cfc” • Create /etc/systemd/system/docker.service.d/http- proxy.conf • [Service] Environment=“HTTP_PROXY=http://yourproxy” Environment=“HTTPS_PROXY=https://yourproxy” Environment=“no_proxy=localhost, 127.0.0.1,*.cfc”
  • 28. Social Connections 11 Chicago, June 1-2 2017 Proxy configuration (after Installation) • Customize Configmap • proxy-http: http://yourproxy proxy-https: https://yourproxy noproxy: localhost,127.0.0.1,*.cfc • Customize “env” section within application configuration • at least for Solr • Redeploy pods
  • 29. Social Connections 11 Chicago, June 1-2 2017 footer.jsp • will not be loaded on Orient Me • Move your customizations into header.sjp • Touchpoint • Piwik • …
  • 30. Social Connections 11 Chicago, June 1-2 2017 Changing the admin user password 1. Change password using CfC UI 2. Login to local Docker registry • docker login master.cfc:8500 3. Recreate secrets • kubectl delete secret myregkey • kubectl create secret docker-registry myregkey --docker- server=https://master.cfc:8500 --docker- username=admin --docker-password=<yourpsw> -- docker-email=connections@us.ibm.com
  • 31. Social Connections 11 Chicago, June 1-2 2017 HTTPS only communication (CNX) • Posting & likes will not work by default • Reconfigure configmap • Redeploy pods • orient-webclient-* • itm-service-* • More information: https://goo.gl/doada3
  • 32. Social Connections 11 Chicago, June 1-2 2017 Troubleshoot Redis configuration • SELECT * FROM HOMEPAGE.MT_CFG_SETTINGS WHERE NAME LIKE 'c2.export.redis%'
  • 33. Social Connections 11 Chicago, June 1-2 2017 People migration • Issues? • Check if CNX is reachable • kubectl exec -it people-migrate-* -- curl --insecure -v https://cnx6.pana.local/profiles/admin/atom/profiles.do • Any MongoDB related issues? • kubectl exec -it mongo-0 -- mongo mongo-0 -eval 'rs.status()’ • Migration takes 15-20 minutes for every 10k users
  • 34. Social Connections 11 Chicago, June 1-2 2017 Reinstall Orient Me (In case of failure) • hybridcloud/bin/clean.sh • Will remove all Orient Me pods/services • Spectrum CfC will stay • Delete persistent content manually (/pv) • Reinstall using install script
  • 35. Social Connections 11 Chicago, June 1-2 2017 Limitations • Sametime Proxy integration will not be loaded on Orient Me • No embedded experience (Third party integrations) • SPNEGO SSO seems not to work • PMR is under investigation
  • 36. Social Connections 11 Chicago, June 1-2 2017 More resources • Kubernetes cheat sheet: https://kubernetes.io/docs/user- guide/kubectl-cheatsheet/ • My troubleshooting session (yesterday) • Slides will be available soon
  • 37. Social Connections 11 Chicago, June 1-2 2017 Q&A

Hinweis der Redaktion

  1. Ship, micro services, isolated containers, more efficient resources usage From a development toolset to a production solution
  2. hardware virtualization vs. operating-system-level virtualization. OS resources will be shared. Only binaries/libraries, app itself are part of the container
  3. isolated CPU, memory, I/O, and network resources
  4. Etcd = With etcd you can easily manage cluster coordination and state management
  5. Apache ZooKeeper enables highly reliable distributed coordination of group services used by an application. MongoDB is an open-source database that uses a document-oriented rather than relational data model. Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache and message broker. Solr provides distributed indexing, replication and load-balanced querying, automated failover and recovery, and centralized configuration.
  6. ProxyRequest Off