Cl212
Upcoming SlideShare
Loading in...5
×

Like this? Share it with your network

Share
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
No Downloads

Views

Total Views
1,169
On Slideshare
1,169
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
11
Comments
0
Likes
1

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide
  • Do we need to mention iManager for DNS Migration??
  • f
  • Prior to performing a migration, review TID 7004455. This TID lists recommended pre-check tests to perform to increase the likelihood of a successful iPrint migration. It also contains useful troubleshooting information in the event of a problem. The iPrint Migration tool copies an NLM (psminfo.nlm) from the OES 2 SP1 server to the NetWare server. The NLM is loaded on the NetWare server. The NLM reads the NetWare Print Manager database ([vol]:/ndps/xxxxxxxx.psm/psmdb.dat) and creates a text output of the database attributes and values (psmimport.xml). The printer drivers associated to the NetWare printer agents are copied to the Linux server and uploaded to the Driver Store repository using an iPrint Linux command line tool (iprntman). The /opt/novell/iprint/bin/psmimport.xml is executed using iprntman. iprntman creates the printer agents and their attributes defined in the XML file. As the iPrint migration tool heavily relies on iprntman, it is recommended to test iprntman's ability to authenticate prior to the migration. See TID 7004455 for important iPrint Migration Pre-check steps to increase the probability of a successful migration. Whether the iPrint migration succeeds or fails, users will continue to print to the source server. To test the success or failure of an iPrint migration, go to the /ipp page on the destination server (http://[IPorDNSofDestinationServer]/ipp and install printers.
  • See TID 7004109 to understand why the Consolidate migration is preferred over the Transfer-ID method when iPrint is involved. The TID also shows how to safely perform a Transfer-ID migration after the iPrint service has been migrated using the Consolidate method. Create target printer objects in the Source Printer Context An option within the iPrint Migration is to “Create target printer objects in the Source Printer Context”. Creating a new object (iPrint Linux Printer Agent Object) in the same context as the NetWare Printer Agent Object with the same name is not possible. Because of this, this option will rename the NetWare Printer Agent Object to have an _NW extension to the eDir name. By renaming the NetWare Printer Agent object, workstations pointing to that NetWare object will still be able to print. The iPrint client is not aware of the eDir name, instead, it prints to the printer object in the MOD. The name in the MOD does not change when using this feature. If the iPrint Migration does not succeed, but the migration went far enough to create the /opt/novell/iprint/bin/psmimport.xml file, you can run this command while in the /opt/novell/iprint/bin directory to complete the migration: iprntman psm –xml-import ./psmimport.xml

Transcript

  • 1. Lessons Learned: Novell ® Open Enterprise Server Upgrades Made Easy Martin Weiss Senior Technical Specialist [email_address] Dr. Frieder Schmidt Senior Technical Specialist [email_address]
  • 2. Agenda
    • Before Starting the Migration
    • 3. Novell ® Open Enterprise Server Implementation Guidelines
    • 4. Migration Processes
    • 5. The Novell ® Open Enterprise Server 2 Migration Toolkit
  • 6. Before Starting the Migration
  • 7. Reasons for Migrating
    • End of NetWare ® General Support
      • 3 rd party support has waned
      • 8. March 7, 2010 – Start extended support
    • New Features
      • Dynamic Storage Technology
      • 9. Domain Services for Windows
      • 10. Virtualization
      • 11. Enhanced scalability – 64-bit support
    • Linux and Open Source
      • New possibilities
      • 12. Linux certifications
  • 13. Building Your Knowledge Novell ® Open Enterprise Server 2 Upgrade Resources
    • Training Courses
      • Migration and upgrade
      • 14. Free Training
    • Best Practices Guide
      • Live document
      • 15. User comments
      • 16. Quick response time
      • 17. Real migration scenarios
    • Novell Community
      • Upgrade/migration articles
      • 18. Novell CoolSolutions
      • 19. Wiki
      • 20. Migration forums
    • Social Media
      • Twitter: twitter.com/novelloes
      • 21. Linkedin Groups
      • 22. Facebook
      • 23. YouTube
    Learning Resources
  • 24. Pre-Upgrade/Migration - Analyze and Review the Environment Know your Environment
      • Analyze using Novell ® Support Advisor
      • 25. Verify and document the source environment
    Review, Fix and Stabilize
      • Solve existing issues
      • 26. Apply latest patches before upgrading
    Analyze the Services
      • File, print, DNS, DHCP, access protocols
      • 27. Check that the OES2 services fulfill your requirements
  • 28. Plan the New Environment New Environment Create a written concept Design your target platform
      • OES2 SP2 Services
      • 29. 32 or 64 bit
      • 30. RAM replacement
    Other Applications
      • Anti-Virus and Backup
      • 31. GroupWise ®
      • 32. ZENworks ®
      • 33. Identity Manager
  • 34. Prepare Your Existing Environment (1) C:UsersGlenDocumentspresentation-templateicon-bubleBlueHardwareserver.png AutoYaST + ZENworks Linux Management Server Source for Install and Update Easy Post-installation Frozen Patch Levels Faster than CD/DV D Based on Templates eDirectory ™ Server Cluster Node Remote / Special Purpose
  • 35. Prepare Your Existing Environment (2) Name Resolution
      • (Old, new and temp  servers)
    Timesync
      • Migrate from Timesync to NTP
    eDirectory ™ Security
      • Verify SDI + PKI
      • 38. Can the CA Private Key be exported?
      • 39. Use SDIDIAG and iManager PKI Plugin
    eDirectory ™ Core
      • Review structure, partitioning, replication
      • 40. Versions, patch level, and schema (at 8.8?)
      • 41. Unique naming, ID, and Posix Attributes
  • 42. Novell ® Open Enterprise Server Things to Think About
  • 43. Novell ® Open Enterprise Server Things to Think About
      • Define and Follow your “new” standards
    Standards
      • Linux is case sensitive (User, Groups and other objects)
      • 44. Uniqueness
    Naming
      • system device
      • 45. Local ext3 and LVM
      • 46. /boot / (root) /tmp /var /home
    File System Layout
      • Install only what is really required and used
      • 47. 1. Install, 2. Patch, 3. Configure
    Packet / Pattern Detection
      • Use Bonding for fault tolerance (active-backup)
    LAN Connectivity
      • Use DM-MPIO if possible
      • 48. know if it is cluster or stand-alone
      • 49. Verify certification of storage infrastructure for SLES
    SAN Connectivity
  • 50. Novell ® Open Enterprise Server Things to Think About
      • DNS (same as on NetWare ® )
      • 51. Changes in SLP (move to OpenSLP)
      • 52. HOSTS
    Name Resolution
      • Move from Timesync to NTPD
    Timesync
      • NMAS ™ + Universal Password + Password Policies
      • 53. Implement Universal Password for AFP and CIFS?
    eDirectory ™
      • For what do we need LUM?
      • 54. Convert lower, persistent search, cache only, alternate servers
    Linux User Mgmt
      • Where to put them in eDirectory ™ ?
      • 55. Install user vs. LDAP proxy users
      • 56. One proxy user per service / per location / per server
      • 57. Security
    LDAP Proxy Users
      • LDAP integrated “Linux” DHCP
    DHCP
  • 58. Novell ® Open Enterprise Server Things to Think About
      • Same as on NetWare ®
    DNS
      • Novell Storage Services ™
      • 59. Distributed File System
      • 60. Dynamic Storage Technology
    File Services
      • NCP ™ / CIFS / AFP / NFS / NetStorage
      • 61. CPFL & DFS / DST Support
      • 62. Pure-FTP + Gateway
    File Access Protocols
      • One driver store only
      • 63. Use DNS for Print Manager name resolution
      • 64. Use DSServer2/DSServer3 for LDAP fault tolerance
    iPrint
      • Install only where required
      • 65. Keep plugins current
    iManager
      • See Novell Cluster Services ™ Session
    Cluster Services
  • 66. Migration Processes: Step-by-Step
  • 67. Migration Step-by-Step eDirectory ™ Server To Rollback – just reverse the process Install New Server Add Replicas Change Replica Type Move CA and Verify SDI Move IDM Driversets Change Login Process Verify and Monitor Uninstall Old Server
  • 68. Migration Step-by-Step Cluster (Rolling Upgrade) Remove NetWare ® Node Re-add Server as a Linux Node Migrate Resources to Linux Node Repeat steps 1-3 for all Nodes Do Final Conversion after all nodes are Linux Advantages
    • No new hardware
    • 69. Less effort
    Disadvantage
    • High risk
  • 70. Migration Step-by-Step Cluster (Build a New Cluster) Build New Linux Cluster Move Data using Migration Toolkit or SAN Replication Change Login Script, DNS Entries, UNC paths Remove old Servers from the tree and clean up eDirectory ™ Congratulate yourself on a successful Migration! Advantages
    • Lowest Risk
    • 71. Chance for re-design, consolidation & Test
    Disadvantage
    • More Effort
  • 72. Migration Step-by-Step Remote Server / Special Purpose Install New Server Move / Migrate each service Uninstall Old Server
      • Assign the zones to the new DNS server
      • 73. Reconfigure clients and servers
    DNS Migration
      • Use Migration Toolkit
      • 74. Clean up before migrating
    DHCP Migration
      • Use Migration Toolkit
      • 75. Disable Login and clear connections for final delta-sync
      • 76. Modify Login Scripts
    File Migration
      • Use Migration Toolkit
      • 77. Copy/consolidate and change DNS
      • 78. Remove old queues and gateways
    iPrint Migration
      • Move users per user / department
    User Migration
      • Find and remove existing dependencies
      • 79. Use DNS (CNAME) where possible
      • 80. Use login scripts
    Dependency Cleanup
  • 81. Migration Processes: Transfer-ID
  • 82. Migration “Transfer-ID” eDirectory ™ Server Post-Migration and Cleanup Clean Up eDirectory Check eDirectory Use Migration Tools Transfer eDirectory and Identity Verify Log Files Install New Server Install Pre-Migration pattern Install into the same context as the source server
  • 83. Migration “Transfer-ID” Cluster Node Not needed!
  • 84. Migration “Transfer-ID” Remote Server / Special Purpose Post-Migration and Cleanup Clean up eDirectory Configure and Check Services Install New Server Install Services that will Migrate (NSS, iPrint) Install Pre-Migration pattern Install into same context as source server Use Migration Tools Transfer eDirectory ™ and Identitity Transfer Services File, Print, iFolder, DHCP Verify Log Files
  • 85. Transfer-ID vs. Step-by-Step Transfer-ID Comparison Advantages
      • No new name or IP address required
      • 86. No changes to login scripts required
      • 87. No changes to eDirectory ™ attributes required
      • 88. Fast
    Disadvantages
      • High risk
      • 89. No easy rollback
      • 90. No chance to test
      • 91. No chance to increase the load
      • 92. No chance to re-design
  • 93. Transfer-ID vs. Step-by-Step Recommendation and Best Practice
    • Review your environment and re-design
    • 94. Find and remove your dependencies
    • 95. Remove forgotten “old, inherited stuff”
    • 96. Separate services logically from server names
      • Use DNS name resolution where possible
      • 97. Use secondary IP addresses
    • Start with Step-by-Step and use Transfer-ID later
    Note : Transfer-ID only migrates some applications
  • 98. The Novell ® Open Enterprise Server 2 Migration Toolkit
  • 99. Screenshot of the GUI
  • 100. Supported Platforms Note – Only OES2 is supported as a destination OS, for NetWare destinations, use the older SCMT. Migration Tools Support Matrix Source OS Support eDirectory ™ File Systems
      • Source NetWare ® NSS and Traditional
      • 108. Source Linux NSS, NCP ™ and POSIX
      • 109. Target OES2 NSS, NCP and POSIX
  • 110. Migration Tools Features Service Migrations Non-destructive migration and consolidation File System iPrint CIFS AFP DHCP FTP iFolder NTP Archive and Versioning Migration Tools Migrates Several OES Services Transfer-ID Migration Scheduling E-mail Notification CLI Tools
  • 111. File System: Migration Procedure
    • Many Command Line parameters (see migfiles)
    • 112. The GUI uses a SCMT like approach
      • Drag/drop directories or volumes to the target
      • 113. Select date/time or pattern based filters
    • Uses SMS and nbackup to move data
      • System meta data preservation = SMS Backup
  • 114. File System: Tips and Tricks
    • Load TSAFS with /cluster and /showclustervolumesonnode on the source server
    • Use NSS /NOQUOTACHECKING on the target server
  • 115. iPrint: Migration Procedure iPrint data migrated
      • Printer objects, printer drivers, driver profiles, print managers, ACL's, banners and printer pools
    Using the GUI
      • Select the active print managers on both the source and the target
      • 116. Select all or required printers to migrate
    Printer Migration Naming
      • Printers can keep the same name and context in eDirectory ™ . The original eDirectory print objects are renamed
  • 117. iPrint: Migration Key Points
    • TID 7004455 is the official iPrint migration best practices guide
    • 118. The Migration tool for iPrint
      • Requires successful iprintman authentication
      • 119. Creates duplicate printer objects (NetWare ® to Linux)
      • 120. Option to “migrate” objects to same container (rename _NW)
      • 121. Is a non-risk procedure if choosing 'Consolidate'
      • 122. Creates /opt/novell/iprint/bin/psmimport.xml
      • 123. Does not configure workstations to point to new print manager
  • 124. iPrint: Workstation Migration iPrint printers installed to workstation consist of the following:
      • Printer agent name (without eDirectory ™ context)
      • 125. Address to which Print Manager is bound
    Two strategies to point installed printers to a new server:
    • Address binding ( TID 7005255 )
      • PSMHostAddress value within etc/opt/novell/iprint/conf/ipsmd.conf
    • iPrint printer agent redirection ( TID 3006726 )
  • 126. DHCP: Migration Procedure
    • NetWare ® DHCP configuration is mapped to Linux DHCP
      • The NetWare schema and Linux schema in eDirectory ™ are different
      • 127. All the subnets get migrated inside a single DHCP service (dhcpService object) including leases
    • The GUI and the CLI support three levels of migration
      • Server Level: Migrates NetWare server with all the associated subnets
      • 128. Subnet Level: Migrates the selected NetWare subnets only
      • 129. Tree Level: Migrates all the servers in the tree with the associated data
  • 130. After the Migration to Novell ® Open Enterprise Server
  • 131. Activation / Implementation of NEW Features Wait some time before new features are activated Make sure the migration was successful Monitor the system Fix any problems Implement any additional features (DST, DFS, DSfW, iFolder)
  • 132. Reference Customer Witzenmann GmbH
  • 133. Who is Witzenmann?
      ...for flexible metal elements
      Competent solver of engineering problems
      The Pioneer Company
      Leader in Technology
      Germany  1900 employees Europe  950 employees America  175 employees Asia  175 employees
      Witzenmann-Group 
      HQ Pforzheim Germany
      Business Objectives
      Profitable Growth Global Supplier Technology and Innovation Leadership Quality Leader
      www.witzenmann.com
      Product Range From miniature hose to power station expansion joint HYDRA® metal hoses, expansion joints, metal bellows, motor vehicle components and pipe supports are employed worldwide in numerous branches of industry. With more than 120 years' market experience, Witzenmann has the most extensive range of products in the branch and offers its customers tailored system solutions to meet a very wide range of demands. Witzenmann is certified in accordance with internationally recognised standards in the automotive industry and other industries.
  • 134. The Source Environment
    • ~3000 Employees / ~1400 IT-User
    • 135. 23 Locations in 17 countries worldwide, Headquarter in Germany
    Products being used
    • NetWare ® 6.5
      • Novell Cluster Services ™
      • Novell Storage Services ™
      • iPrint
      • 136. NetStorage, FTP, DNS, DHCP, SLP
    • Novell ® ZENWorks ® Desktop Management 7 on NetWare
    • 137. Novell GroupWise ® 7 on NetWare
  • 138. The Target Environment
    • Novell ® Open Enterprise Server 2
    • 139. Migrated Cluster to Open Enterprise Server 2
    • 140. Server Consolidation into Cluster Nodes
    • 141. Storage Migrated to new SAN Storage Hardware
    • 142. Implemented SAN based Backup Solution
    • 143. New Antivirusprotection
    • 144. ZENWorks ® Desktop Management 7 on Linux Servers
    • 145. Updated to GroupWise ® 8 and migrated to Linux Servers
  • 146. The Migration Project
    • Partners: Dell, EMC, Quantum, Commvault, McAfee
  • 153. Questions and Answers
  • 154. References
    • Upgrade Community - http://www.novell.com/communities/coolsolutions/upgradetooes
    • 155. Upgrading to Open Enterprise Server Guide - http://www.novell.com/documentation/oes2/upgrade_to_oes_lx/ page=/documentation/oes2/upgrade_to_oes_lx/data/front.html
    • 156. iPrint Migration Best Practices – TID 7004455
    • 157. Other iPrint Resources – TIDS 7004109 , 7005255 , 7004910
  • 158.  
  • 159. Unpublished Work of Novell, Inc. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.
  • 160. Supporting Slides
  • 161. Migration Tools Features (Continued)
    • Disable login during data migration
      • User logins are disabled during data migration for better data integrity and to minimize open file errors
    • Sync enhancements
      • Files skipped due to open file errors are migrated during sync, meta data changes like trustee addition etc.
    • Multiple path selection
      • Drag and Drop multiple paths during consolidation
    • Non-English character directories
      • Non-English character support using Novell Client ™
    • Support for cluster data migration