SlideShare a Scribd company logo

Los Alamos Puppet Case Study

Puppet
Puppet

Case study of how Los Alamos uses Puppet to manage their OS X environment.

Technology
1 of 2
Download to read offline
CASe STudy LOS ALAMOS NATIONAL LAbORATORy Los ALAmos uses PuPPet to gAin “Prior to using Puppet, visibiLity into their dePLoyed mAc managing the Mac OS X systems in our net work was a challenge. os X environment And meet There was a real lack of visibility nist stAndArds into b oth the numb er of Mac s on Los Alamos National Laboratory is one of the world’s the network and their configuration. premier research organizations and is engaged in strategic science on behalf of national security. Los Pu p p e t h as m a d e a real di f f e re n ce Alamos’ networks not only employ a wide variety of to our administrators who were devices and operating systems, they are also held previously having to walk to each Mac to strict security guidelines for the configuration and and service it individually.” security software on all of their systems, including systems running Mac OS X. Puppet helps support hundreds of —Allan Marcus, Solutions Architect, Macs, gains visibility into the devices on their networks and Los Alamos National Laboratory ensures that they meet security standards for those systems stArting environment • Over 1700 Mac desktops, that checked in on a regular basis, were being managed. That number continues to grow. • There was a complete lack of visibility into the actual number of Macs on the network. There were over 3,400 Macs registered but many of these systems were no longer active. • Requirements for least privilege on desktops caused problems because of the need to update software and antivirus. The need to update software was often given as a reason to grant Reductive Labs administrative rights to individual users. www.reductivelabs.com • Prior to using Puppet they weren’t using any institutional tel: 503.805.9065 administrative tools to manage Macs. It was highly manual and a twitter: @reductivelabs time intensive process.
CASe STudy Key objectives for PuPPet dePLoyment • gain visibility – They needed to understand the number of Macs on their network, their configuration, and whether they met security requirements. • Configuration Management – Los Alamos is governed by NIST Special Publication 800-53 which has requirements for configuration management controls of all desktop assets. • enforcement of Least Privilege – NIST Special Publication 800-53 has requirements for enforcing the most restrictive set of rights needed by users. without Puppet, users often requested “we have strong and required administrative privileges in order to regularly update requirements for their Symantec security software on their Macs. implementing a benefits obtAined secure network. • enhanced visibility – After deploying Puppet, they were able to Not only did see information about the Macs connected to the network. Puppet help • Improved efficiency – The use of Puppet has dramatically us meet NIST improved their ability to administer and update their Macs on their requirements network, a previously manual process. for configuration • Adherence to Compliance Standards – Puppet allowed Los Alamos to meet NIST standards for both configuration management and management and least privileges guidelines. least privilege, • Accelerated Troubleshooting – with the enhanced visibility has the Puppet come the benefit of accelerated troubleshooting. field technicians architetcure itself now have the configuration information available to them to proved to be remotely identify problems and prioritize updates. extremely secure.” Why PuPPet? —Allan Marcus, Solutions • Cross Platform Support – Los Alamos started using Puppet to Architect, Los Alamos support their Mac OS X environment, but Puppet’s cross platform National Lab support for other versions of unix was important in their decision. They are currently exploring expanding their use of Puppet to include their Linux systems, as well. • Open Source Solution – Cost was important in their choice of Puppet, as it provided the most cost effective solution to both meet their key objectives without a capital budgeting process. In addition, Los Alamos has found the open source community helpful in addressing any issues that surface. • Highly secure architecture – before they moved forward with Puppet, Los Alamos had their security experts test the software for adherence to their rigorous security standards. Their security Reductive Labs experts were impressed with how secure Puppet was. www.reductivelabs.com tel: 503.805.9065 twitter: @reductivelabs LOS ALAMOS NATIONAL LAbORATORy • LOS ALAMOS, NM • www.LANL.gOv

Recommended

Los Alamos Puppet Case Study
Los Alamos Puppet Case Study Los Alamos Puppet Case Study
Los Alamos Puppet Case Study
Puppet
 
Android Virtualization: Opportunity and Organization
Android Virtualization: Opportunity and OrganizationAndroid Virtualization: Opportunity and Organization
Android Virtualization: Opportunity and Organization
National Cheng Kung University
 
Microkernel Evolution
Microkernel EvolutionMicrokernel Evolution
Microkernel Evolution
National Cheng Kung University
 
Embedded Hypervisor for ARM
Embedded Hypervisor for ARMEmbedded Hypervisor for ARM
Embedded Hypervisor for ARM
National Cheng Kung University
 
Embedded Virtualization for Mobile Devices
Embedded Virtualization for Mobile DevicesEmbedded Virtualization for Mobile Devices
Embedded Virtualization for Mobile Devices
National Cheng Kung University
 
Harnessing the Power of the Cloud Part 1
Harnessing the Power of the Cloud Part 1Harnessing the Power of the Cloud Part 1
Harnessing the Power of the Cloud Part 1
GovLoop
 
Case study puppet
Case study puppetCase study puppet
Case study puppet
Teruo Adachi
 
Citrix Puppet Case Study
Citrix Puppet Case StudyCitrix Puppet Case Study
Citrix Puppet Case Study
Puppet
 

Recommended

Los Alamos Puppet Case Study
Los Alamos Puppet Case Study Los Alamos Puppet Case Study
Los Alamos Puppet Case Study
Puppet
 
Android Virtualization: Opportunity and Organization
Android Virtualization: Opportunity and OrganizationAndroid Virtualization: Opportunity and Organization
Android Virtualization: Opportunity and Organization
National Cheng Kung University
 
Microkernel Evolution
Microkernel EvolutionMicrokernel Evolution
Microkernel Evolution
National Cheng Kung University
 
Embedded Hypervisor for ARM
Embedded Hypervisor for ARMEmbedded Hypervisor for ARM
Embedded Hypervisor for ARM
National Cheng Kung University
 
Embedded Virtualization for Mobile Devices
Embedded Virtualization for Mobile DevicesEmbedded Virtualization for Mobile Devices
Embedded Virtualization for Mobile Devices
National Cheng Kung University
 
Harnessing the Power of the Cloud Part 1
Harnessing the Power of the Cloud Part 1Harnessing the Power of the Cloud Part 1
Harnessing the Power of the Cloud Part 1
GovLoop
 
Case study puppet
Case study puppetCase study puppet
Case study puppet
Teruo Adachi
 
Citrix Puppet Case Study
Citrix Puppet Case StudyCitrix Puppet Case Study
Citrix Puppet Case Study
Puppet
 
Ravinder manch
Ravinder manchRavinder manch
Ravinder manch
chunnuchauhan
 
PuppetConf track overview: Culture
PuppetConf track overview: CulturePuppetConf track overview: Culture
PuppetConf track overview: Culture
Puppet
 
Zynga Puppet Case Study
Zynga Puppet Case StudyZynga Puppet Case Study
Zynga Puppet Case Study
Puppet
 
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPNCase Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
Puppet
 
Al hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & ElevationsAl hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & Elevations
Saqib Haroon
 
Giant puppet
Giant puppetGiant puppet
Giant puppet
Gaurav Patil
 
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Puppet
 
Shadow Puppet
Shadow PuppetShadow Puppet
Shadow Puppet
Nur Rohman
 
Linux Desktop Automation
Linux Desktop AutomationLinux Desktop Automation
Linux Desktop Automation
Rui Lapa
 
Open air theatre Case Study
Open air theatre Case StudyOpen air theatre Case Study
Open air theatre Case Study
Amal Sridar
 
Choki dhani Jaipur Case Study
Choki dhani Jaipur Case StudyChoki dhani Jaipur Case Study
Choki dhani Jaipur Case Study
michellesahay
 
Sun Microsystems Puppet Case Study
Sun Microsystems Puppet Case StudySun Microsystems Puppet Case Study
Sun Microsystems Puppet Case Study
Puppet
 
Sun Microsystems Puppet Case Study
Sun Microsystems Puppet Case StudySun Microsystems Puppet Case Study
Sun Microsystems Puppet Case Study
Puppet
 
Research Issues in P2P Netwroks
Research Issues in P2P NetwroksResearch Issues in P2P Netwroks
Research Issues in P2P Netwroks
sabumt
 
NICS Puppet Case Study
NICS Puppet Case StudyNICS Puppet Case Study
NICS Puppet Case Study
Puppet
 
Presentation11
Presentation11Presentation11
Presentation11
KellyCheah
 
kali linux
kali linux kali linux
kali linux
Avinash Hanwate
 
Tech trendnotes
Tech trendnotesTech trendnotes
Tech trendnotes
Studying
 
Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...
David Wallom
 
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
eLiberatica
 
Komputasi Awan
Komputasi AwanKomputasi Awan
Komputasi Awan
Michael Sunggiardi
 
Manage your switches like servers
Manage your switches like serversManage your switches like servers
Manage your switches like servers
Cumulus Networks
 

More Related Content

Viewers also liked

Zynga Puppet Case Study
Zynga Puppet Case StudyZynga Puppet Case Study
Zynga Puppet Case Study
Puppet
 
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPNCase Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
Puppet
 
Al hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & ElevationsAl hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & Elevations
Saqib Haroon
 
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Puppet
 

Viewers also liked (11)

Ravinder manch
Ravinder manchRavinder manch
Ravinder manch
 
PuppetConf track overview: Culture
PuppetConf track overview: CulturePuppetConf track overview: Culture
PuppetConf track overview: Culture
 
Zynga Puppet Case Study
Zynga Puppet Case StudyZynga Puppet Case Study
Zynga Puppet Case Study
 
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPNCase Study: Green Field Implementation of Puppet 3.0 at ESPN
Case Study: Green Field Implementation of Puppet 3.0 at ESPN
 
Al hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & ElevationsAl hamra arts complex Lahore complete Plans,Sections & Elevations
Al hamra arts complex Lahore complete Plans,Sections & Elevations
 
Giant puppet
Giant puppetGiant puppet
Giant puppet
 
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
Windows - Having Its Ass Kicked by Puppet and PowerShell Since 2012
 
Shadow Puppet
Shadow PuppetShadow Puppet
Shadow Puppet
 
Linux Desktop Automation
Linux Desktop AutomationLinux Desktop Automation
Linux Desktop Automation
 
Open air theatre Case Study
Open air theatre Case StudyOpen air theatre Case Study
Open air theatre Case Study
 
Choki dhani Jaipur Case Study
Choki dhani Jaipur Case StudyChoki dhani Jaipur Case Study
Choki dhani Jaipur Case Study
 

Similar to Los Alamos Puppet Case Study

Sun Microsystems Puppet Case Study
Sun Microsystems Puppet Case StudySun Microsystems Puppet Case Study
Sun Microsystems Puppet Case Study
Puppet
 
Research Issues in P2P Netwroks
Research Issues in P2P NetwroksResearch Issues in P2P Netwroks
Research Issues in P2P Netwroks
sabumt
 
NICS Puppet Case Study
NICS Puppet Case StudyNICS Puppet Case Study
NICS Puppet Case Study
Puppet
 
Presentation11
Presentation11Presentation11
Presentation11
KellyCheah
 
Tech trendnotes
Tech trendnotesTech trendnotes
Tech trendnotes
Studying
 
Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...
David Wallom
 
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
eLiberatica
 
MorphLabs Puppet Case Study
MorphLabs Puppet Case StudyMorphLabs Puppet Case Study
MorphLabs Puppet Case Study
Puppet
 
2015 04 bio it world
2015 04 bio it world2015 04 bio it world
2015 04 bio it world
Chris Dwan
 
Container Mythbusters
Container MythbustersContainer Mythbusters
Container Mythbusters
inside-BigData.com
 
Clickability Puppet Case Study
Clickability Puppet Case StudyClickability Puppet Case Study
Clickability Puppet Case Study
Puppet
 
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
Daniel Krook
 
Run Book Automation with PlateSpin Orchestrate
Run Book Automation with PlateSpin OrchestrateRun Book Automation with PlateSpin Orchestrate
Run Book Automation with PlateSpin Orchestrate
Novell
 

Similar to Los Alamos Puppet Case Study (20)

Sun Microsystems Puppet Case Study
Sun Microsystems Puppet Case StudySun Microsystems Puppet Case Study
Sun Microsystems Puppet Case Study
 
Sun Microsystems Puppet Case Study
Sun Microsystems Puppet Case StudySun Microsystems Puppet Case Study
Sun Microsystems Puppet Case Study
 
Research Issues in P2P Netwroks
Research Issues in P2P NetwroksResearch Issues in P2P Netwroks
Research Issues in P2P Netwroks
 
NICS Puppet Case Study
NICS Puppet Case StudyNICS Puppet Case Study
NICS Puppet Case Study
 
Presentation11
Presentation11Presentation11
Presentation11
 
kali linux
kali linux kali linux
kali linux
 
Tech trendnotes
Tech trendnotesTech trendnotes
Tech trendnotes
 
Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...Supporting Research through "Desktop as a Service" models of e-infrastructure...
Supporting Research through "Desktop as a Service" models of e-infrastructure...
 
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
"Sun Open Source Universe" by Vassilis Boulogiorgos @ eLiberatica 2008
 
Komputasi Awan
Komputasi AwanKomputasi Awan
Komputasi Awan
 
Manage your switches like servers
Manage your switches like serversManage your switches like servers
Manage your switches like servers
 
MorphLabs Puppet Case Study
MorphLabs Puppet Case StudyMorphLabs Puppet Case Study
MorphLabs Puppet Case Study
 
2015 04 bio it world
2015 04 bio it world2015 04 bio it world
2015 04 bio it world
 
Nomura UCCSC 2009
Nomura UCCSC 2009Nomura UCCSC 2009
Nomura UCCSC 2009
 
Construct an Efficient and Secure Microkernel for IoT
Construct an Efficient and Secure Microkernel for IoTConstruct an Efficient and Secure Microkernel for IoT
Construct an Efficient and Secure Microkernel for IoT
 
Container Mythbusters
Container MythbustersContainer Mythbusters
Container Mythbusters
 
Clickability Puppet Case Study
Clickability Puppet Case StudyClickability Puppet Case Study
Clickability Puppet Case Study
 
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
 
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
 
Run Book Automation with PlateSpin Orchestrate
Run Book Automation with PlateSpin OrchestrateRun Book Automation with PlateSpin Orchestrate
Run Book Automation with PlateSpin Orchestrate
 

More from Puppet

Puppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepoPuppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepo
Puppet
 
2021 04-15 operational verification (with notes)
2021 04-15 operational verification (with notes)2021 04-15 operational verification (with notes)
2021 04-15 operational verification (with notes)
Puppet
 
Enforce compliance policy with model-driven automation
Enforce compliance policy with model-driven automationEnforce compliance policy with model-driven automation
Enforce compliance policy with model-driven automation
Puppet
 
Automating it management with Puppet + ServiceNow
Automating it management with Puppet + ServiceNowAutomating it management with Puppet + ServiceNow
Automating it management with Puppet + ServiceNow
Puppet
 
Simplified Patch Management with Puppet - Oct. 2020
Simplified Patch Management with Puppet - Oct. 2020Simplified Patch Management with Puppet - Oct. 2020
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 

More from Puppet (20)

Puppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepoPuppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepo
 
Puppetcamp r10kyaml
Puppetcamp r10kyamlPuppetcamp r10kyaml
Puppetcamp r10kyaml
 
2021 04-15 operational verification (with notes)
2021 04-15 operational verification (with notes)2021 04-15 operational verification (with notes)
2021 04-15 operational verification (with notes)
 
Puppet camp vscode
Puppet camp vscodePuppet camp vscode
Puppet camp vscode
 
Modules of the twenties
Modules of the twentiesModules of the twenties
Modules of the twenties
 
Applying Roles and Profiles method to compliance code
Applying Roles and Profiles method to compliance codeApplying Roles and Profiles method to compliance code
Applying Roles and Profiles method to compliance code
 
KGI compliance as-code approach
KGI compliance as-code approachKGI compliance as-code approach
KGI compliance as-code approach
 
Enforce compliance policy with model-driven automation
Enforce compliance policy with model-driven automationEnforce compliance policy with model-driven automation
Enforce compliance policy with model-driven automation
 
Keynote: Puppet camp compliance
Keynote: Puppet camp complianceKeynote: Puppet camp compliance
Keynote: Puppet camp compliance
 
Automating it management with Puppet + ServiceNow
Automating it management with Puppet + ServiceNowAutomating it management with Puppet + ServiceNow
Automating it management with Puppet + ServiceNow
 
Puppet: The best way to harden Windows
Puppet: The best way to harden WindowsPuppet: The best way to harden Windows
Puppet: The best way to harden Windows
 
Simplified Patch Management with Puppet - Oct. 2020
Simplified Patch Management with Puppet - Oct. 2020Simplified Patch Management with Puppet - Oct. 2020
Simplified Patch Management with Puppet - Oct. 2020
 
Accelerating azure adoption with puppet
Accelerating azure adoption with puppetAccelerating azure adoption with puppet
Accelerating azure adoption with puppet
 
Puppet catalog Diff; Raphael Pinson
Puppet catalog Diff; Raphael PinsonPuppet catalog Diff; Raphael Pinson
Puppet catalog Diff; Raphael Pinson
 
ServiceNow and Puppet- better together, Kevin Reeuwijk
ServiceNow and Puppet- better together, Kevin ReeuwijkServiceNow and Puppet- better together, Kevin Reeuwijk
ServiceNow and Puppet- better together, Kevin Reeuwijk
 
Take control of your dev ops dumping ground
Take control of your dev ops dumping groundTake control of your dev ops dumping ground
Take control of your dev ops dumping ground
 
100% Puppet Cloud Deployment of Legacy Software
100% Puppet Cloud Deployment of Legacy Software100% Puppet Cloud Deployment of Legacy Software
100% Puppet Cloud Deployment of Legacy Software
 
Puppet User Group
Puppet User GroupPuppet User Group
Puppet User Group
 
Continuous Compliance and DevSecOps
Continuous Compliance and DevSecOpsContinuous Compliance and DevSecOps
Continuous Compliance and DevSecOps
 
The Dynamic Duo of Puppet and Vault tame SSL Certificates, Nick Maludy
The Dynamic Duo of Puppet and Vault tame SSL Certificates, Nick MaludyThe Dynamic Duo of Puppet and Vault tame SSL Certificates, Nick Maludy
The Dynamic Duo of Puppet and Vault tame SSL Certificates, Nick Maludy
 

Recently uploaded

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 

Recently uploaded (20)

Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontology
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by Anitaraj
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDM
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
JohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptx
 

Los Alamos Puppet Case Study

  • 1. CASe STudy LOS ALAMOS NATIONAL LAbORATORy Los ALAmos uses PuPPet to gAin “Prior to using Puppet, visibiLity into their dePLoyed mAc managing the Mac OS X systems in our net work was a challenge. os X environment And meet There was a real lack of visibility nist stAndArds into b oth the numb er of Mac s on Los Alamos National Laboratory is one of the world’s the network and their configuration. premier research organizations and is engaged in strategic science on behalf of national security. Los Pu p p e t h as m a d e a real di f f e re n ce Alamos’ networks not only employ a wide variety of to our administrators who were devices and operating systems, they are also held previously having to walk to each Mac to strict security guidelines for the configuration and and service it individually.” security software on all of their systems, including systems running Mac OS X. Puppet helps support hundreds of —Allan Marcus, Solutions Architect, Macs, gains visibility into the devices on their networks and Los Alamos National Laboratory ensures that they meet security standards for those systems stArting environment • Over 1700 Mac desktops, that checked in on a regular basis, were being managed. That number continues to grow. • There was a complete lack of visibility into the actual number of Macs on the network. There were over 3,400 Macs registered but many of these systems were no longer active. • Requirements for least privilege on desktops caused problems because of the need to update software and antivirus. The need to update software was often given as a reason to grant Reductive Labs administrative rights to individual users. www.reductivelabs.com • Prior to using Puppet they weren’t using any institutional tel: 503.805.9065 administrative tools to manage Macs. It was highly manual and a twitter: @reductivelabs time intensive process.
  • 2. CASe STudy Key objectives for PuPPet dePLoyment • gain visibility – They needed to understand the number of Macs on their network, their configuration, and whether they met security requirements. • Configuration Management – Los Alamos is governed by NIST Special Publication 800-53 which has requirements for configuration management controls of all desktop assets. • enforcement of Least Privilege – NIST Special Publication 800-53 has requirements for enforcing the most restrictive set of rights needed by users. without Puppet, users often requested “we have strong and required administrative privileges in order to regularly update requirements for their Symantec security software on their Macs. implementing a benefits obtAined secure network. • enhanced visibility – After deploying Puppet, they were able to Not only did see information about the Macs connected to the network. Puppet help • Improved efficiency – The use of Puppet has dramatically us meet NIST improved their ability to administer and update their Macs on their requirements network, a previously manual process. for configuration • Adherence to Compliance Standards – Puppet allowed Los Alamos to meet NIST standards for both configuration management and management and least privileges guidelines. least privilege, • Accelerated Troubleshooting – with the enhanced visibility has the Puppet come the benefit of accelerated troubleshooting. field technicians architetcure itself now have the configuration information available to them to proved to be remotely identify problems and prioritize updates. extremely secure.” Why PuPPet? —Allan Marcus, Solutions • Cross Platform Support – Los Alamos started using Puppet to Architect, Los Alamos support their Mac OS X environment, but Puppet’s cross platform National Lab support for other versions of unix was important in their decision. They are currently exploring expanding their use of Puppet to include their Linux systems, as well. • Open Source Solution – Cost was important in their choice of Puppet, as it provided the most cost effective solution to both meet their key objectives without a capital budgeting process. In addition, Los Alamos has found the open source community helpful in addressing any issues that surface. • Highly secure architecture – before they moved forward with Puppet, Los Alamos had their security experts test the software for adherence to their rigorous security standards. Their security Reductive Labs experts were impressed with how secure Puppet was. www.reductivelabs.com tel: 503.805.9065 twitter: @reductivelabs LOS ALAMOS NATIONAL LAbORATORy • LOS ALAMOS, NM • www.LANL.gOv