See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.
COURSE of the MONTH
9 days, 20 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
ITIL configuration management in virtual environments
Posted on 2013-01-02
1) If you were to do an audit of "configuration management" (as defined by ITIL) in an environment with all virtual servers, and desktops, what sort of areas would you look at for good controls? Can you give perhaps 5 top checks in this area?
2) What kind of things can go and do wrong with poor/lack of configuration management? Whats the risks?
2) What kind of things can go and do wrong with poor/lack of configuration management? Whats the risks?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
6
4
3
13 Comments
Active today
1.
a. user permissions.
b. security.
c. upgrades and patches.
d. documentation design.
2.
failure of service. e.g. applying patches without testing
a. user permissions.
b. security.
c. upgrades and patches.
d. documentation design.
2.
failure of service. e.g. applying patches without testing
Active 4 days ago
>a. user permissions.
Can you elaborate on user permissions in virtual environments?
Can you elaborate on user permissions in virtual environments?
Active 4 days ago
What exactly is ITIL asking you to do with good "configuration management"? I.e. what would poor configuration management look like? What does good configuration management look like?
Active today
ITIL is a framework, which is about good procedures and documentation.
Configuration Management, is about the documentation of changes, against the Configuration Database.
Configuration Management, is about the documentation of changes, against the Configuration Database.
Active 4 days ago
So re user permissions and security, are you saying you just need to document what those user permissions and security settings are? And thats it?
Active 3 days ago
number of virtual servers and change requests for each VM created
VM sprawl is the biggest problem because....
Licencing of servers, applications
Capacity of virtual hosts and storages - memory, CPU, storage space
If you are lucky and have completely separate production and pre-production hardware capacity and performance can be less of a problem
this leads to undue costs for licensing, poor performance and production issues if the hardware is connected
VM sprawl is the biggest problem because....
Licencing of servers, applications
Capacity of virtual hosts and storages - memory, CPU, storage space
If you are lucky and have completely separate production and pre-production hardware capacity and performance can be less of a problem
this leads to undue costs for licensing, poor performance and production issues if the hardware is connected
Active 4 days ago
Do ITIL do any books on exactly what they expect from good configuration management?
Im struggling to see the real benefits of configuration management to be honest.
Im struggling to see the real benefits of configuration management to be honest.
Active 3 days ago
all my experience with ITIL is they give you a process thats generic enough you should be able to apply it to anything but with no real guidance for specific products
its just a case of common sense, if you have good change management then config management is just checks on that to make sure it matches documentation
its just a case of common sense, if you have good change management then config management is just checks on that to make sure it matches documentation
Active 4 days ago
>>its just a case of common sense, if you have good change management then config management is just checks on that to make sure it matches documentation
Could you just elaborate a bit more on this please
Could you just elaborate a bit more on this please
Active 3 days ago
when you build a system you should document it and maintain it
i,e, SAN (Storage Array Network) capacity, connected hosts, allocated storage etc
a change request would document any changes to this configuration and then the document would be updated this would give you your configuration management.
Obviously you can apply config management to lots of things and not just hardware or software it could be licensing agreements
i,e, SAN (Storage Array Network) capacity, connected hosts, allocated storage etc
a change request would document any changes to this configuration and then the document would be updated this would give you your configuration management.
Obviously you can apply config management to lots of things and not just hardware or software it could be licensing agreements
Active 4 days ago
So lack of configuration management is essentially
Build server X - document settings
Change setting to server X - dont (or forget to) document the updated (changed) setting
And thats all there is to it? Most systems I would imagine can report on current settings anyway, without a need to duplicate that with your own document - so I am struggling to see the whole point in it, or what can go wrong...
Build server X - document settings
Change setting to server X - dont (or forget to) document the updated (changed) setting
And thats all there is to it? Most systems I would imagine can report on current settings anyway, without a need to duplicate that with your own document - so I am struggling to see the whole point in it, or what can go wrong...
Active 3 days ago
a lot of it depends on the size of the system and the amount of IT staff working on it i ripped/paraphrased this of the wiki page which i think sums up why it might be important for you and the point i was trying to put across
Technical - Data that describes the CI's capabilities which include software version and model numbers, hardware and manufacturer specifications and other technical details like networking speeds and data storage size. Keyboards, mice and cables are considered consumables. this helps with support and capacity planning, helps to resolve issues and by knowing what the system is designed to do and capable of aids planning for the future
Ownership - Part of financial asset management, ownership attributes record purchase date, warranty, location and responsible person for the CI. Identification numbers like bar codes and type, like software, hardware and documentation are also ownership attributes.
Helps track items for support and ensures things are maintained and refreshed
Relationship - The relationships between hardware items (e.g. a printer), software (e.g. drivers), and users (i.e. Alice). Helps to assess impact of an item on the environment i.e. server X goes down, its has application Y installed on it which affects users A, B and C
Technical - Data that describes the CI's capabilities which include software version and model numbers, hardware and manufacturer specifications and other technical details like networking speeds and data storage size. Keyboards, mice and cables are considered consumables. this helps with support and capacity planning, helps to resolve issues and by knowing what the system is designed to do and capable of aids planning for the future
Ownership - Part of financial asset management, ownership attributes record purchase date, warranty, location and responsible person for the CI. Identification numbers like bar codes and type, like software, hardware and documentation are also ownership attributes.
Helps track items for support and ensures things are maintained and refreshed
Relationship - The relationships between hardware items (e.g. a printer), software (e.g. drivers), and users (i.e. Alice). Helps to assess impact of an item on the environment i.e. server X goes down, its has application Y installed on it which affects users A, B and C
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
- Networking Hardware-Other
- MultiMedia Applications
- Switches / Hubs
- Displays / Monitors
- ATEN Technology
- Hardware, Network Architecture, *Kernel-based Virtual Machine (KVM)
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg).
If you're interested in additional methods for monitoring bandwidt…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses
Course of the Month9 days, 20 hours left to enroll
762 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.