University of Maine System Active Directory Services - RFP# 2016-027 ADDENDUM #01

Similar documents
Active Directory Automation RFSP # 1382 Addendum # 1 November 5, 2015

How do I Install and Configure MS Remote Desktop for the Haas Terminal Server on my Mac?

Where are Organizations Today? The Cloud. The Current and Future State of IT When, Where, and How To Leverage the Cloud. The Cloud and the Players

Windows and Active Directory The Replacement for Novell Netware

MS Configuring Windows 8.1

Apps. Devices. Users. Data. Deploying and managing applications across platforms is difficult.

SMALL BUSINESS OUTSOURCING

Novell to Microsoft Conversion: Identity Management Design & Plan

Implementing and Managing Microsoft Desktop Virtualization

Troubleshooting and Supporting Windows 7 in the Enterprise

INTRODUCTION TO THE COLUMBIAN COLLEGE PRIVATE CLOUD

How do I Install and Configure MS Remote Desktop for the Haas Terminal Server on my Mac?

VMware Virtual Desktop Manager User Authentication Guide

Implementing and Managing Microsoft Desktop Virtualization en

REMOTELY ACCESS YOUR FILES WITH THE FLAGLER FILECONNECT SYSTEM

MS-50255: Managing, Maintaining, and Securing Your Networks Through Group Policy. Course Objectives. Required Exam(s) Price.

Centrify Identity Service and Mac - Online Training

Network Access Protection (NAP)

Chapter 1 Scenario 1: Acme Corporation

Select IT Consulting Services RFP Technical and Network Support Specialist Services (Lot Group C)

Kaseya IT Automation Framework

MCSA Windows 8 (Exam )

Agency Pre Migration Tasks

Troubleshooting and Supporting Windows 7 in the Enterprise

Mod 2: User Management

Simplify the Deployment and Management of Desktop Virtualization & VDI Technologies. Terry Lewis Solutions Architect

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Active Directory Manager Pro New Features

Implementing Microsoft Azure Infrastructure Solutions

Windows 7/8: Enterprise Desktop Support Technician Ranger Program Five (5) days, Instructor-Led

Administering Windows Server 2012

NCSU SSO. Case Study

Windows Security and Directory Services for UNIX using Centrify DirectControl

Cloud Attached Storage

Device Lifecycle Management

2015 USER GROUP CONFERENCE

Configuration Guide. BES12 Cloud

VVC Technology & Information Resources Catalog of Services

Aurora Hosted Services Hosted AD, Identity Management & ADFS

NETWRIX IDENTITY MANAGEMENT SUITE

Implementing and Managing Microsoft Server Virtualization

MS 20247C Configuring and Deploying a Private Cloud

8.3. Competitive Comparison vs. Microsoft ADMT 3.1

MOC Deploying and Managing Windows 10 Using Enterprise Services

STATE OF NEW YORK IT Transformation. Request For Information (RFI) Enterprise Identity and Access Management Consolidated Questions and Responses

Access Tropical Cloud Desktop from Any Device

BitLocker Encryption for non-tpm laptops

Desktop Management, Profile Migration and Cross Platform Delivery. Technical Overview

Easily integrate Mac into Microsoft System Center

Implementing Microsoft Azure Infrastructure Solutions

Setting up a DNS MX Record for mail.corp.com p. 327 Installing Fedora on the Front-End Mail Server with the Postfix and SpamAssassin Packages

MCTS Guide to Microsoft Windows 7. Chapter 13 Enterprise Computing

IBM Tivoli Endpoint Manager for Lifecycle Management

MS 50255B: Managing Windows Environments with Group Policy (4 Days)

Joining a workstation to the TAMU IT Domain and Profile Migration

GETTING STARTED ON THE WINDOWS SERVICE A GUIDE FOR NEW STAFF MEMBERS

Other documents in this series are available at: servernotes.wazmac.com

Fundamentals of Windows Server 2008 Network and Applications Infrastructure

Allianz Global Investors Remote Access Guide

IBM Tivoli Endpoint Manager for Lifecycle Management

Viking VPN Guide Mac OSX RDP Usage

ACADEMIC PROGRAM REVIEW PC AGE 145 TALMADGE ROAD EDISON, NJ REVIEW DATE. Report Amended October 2011

Enterprise Mobility Management Migration Migrating from Legacy EMM to an epo Managed EMM Environment. Paul Luetje Enterprise Solutions Architect

Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider

Configuration Guide. BlackBerry Enterprise Service 12. Version 12.0

Summer 2013 Cloud Initiative. Release Bulletin

ITEC 495 Capstone Project Ideas

ICT Professional Optional Programmes

UBC Workspace 2.0: Using the Self-Service Portal

Infrastructure Technical Support Services. Request for Proposal

SAFE-T RSACCESS REPLACEMENT FOR MICROSOFT FOREFRONT UNIFIED ACCESS GATEWAY (UAG)

Terminal Server Software and Hardware Requirements. Terminal Server. Software and Hardware Requirements. Datacolor Match Pigment Datacolor Tools

Persona Backup and OS Migration for insync Private Cloud 5.5. June 16, 15

Microsoft Windows Intune: Cloud-based solution

Outline SSS Microsoft Windows Server 2008 Hyper-V Virtualization

Course 20688A: Managing and Maintaining Windows 8

Dell Migration Manager for Active Directory Product Overview

Portland State University Office of Information Technologies Active Directory Standards and Guidelines for Campus Administrators

Install and End User Reference Guide for Direct Access to Citrix Applications

Microsoft Agreement FAQ

Program: Systems Engineering Certificate. Prerequisite: None. Hardware/Software required:

Restructuring Active Directory Domains Within a Forest

MS 10751A - Configuring and Deploying a Private Cloud with System Center 2012

MS Managing and Maintaining Windows 8

Course A: Deploying and Managing Windows 10 Using Enterprise Services

Answers to these questions will determine which mobile device types and operating systems can be allowed to access enterprise data.

Charter Business Desktop Security Administrator's Guide

Designing Windows Server 2008 Active Directory Infrastructure and Services Course 6436B; 5 Days, Instructor-led

Frequently Asked Questions

Global Knowledge MEA Remote Labs. Remote Lab Access Procedure

Configuration Guide BES12. Version 12.1

Transcription:

QUESTIONS 1. On page 12 of the RFP, it mentions the use of a Custom Identity Management (IdM) solution. Could you please share with us the platform and nature of the IdM System or any other relevant details, such as its current functionality as it relates to Active Directory e.g., provisioning, de-provisioning, directory synchronization, password synchronization, password management, group management, etc.? The custom ID solution synchronizes all users and groups from Peoplesoft HR and Campus solutions to OpenLDAP. A process monitors the updates to OpenLDAP and syncs them into Active Directory. The IDM system runs on a Linux server and is a locally developed application written mostly in Java. The IDM provisions and deprovisions users and groups, syncs passwords from LDAP down to Active Directory. Additionally the IDM syncs other directory objects such as OUs which correspond to departments within the UMS. The IDM solution is a one way sync from LDAP to Active Directory. No information flows back up from AD. Group management in the IDM system is controlled by Grouper and we do utilize the self-service portal and delegation to enable business users to manage group memberships in Grouper. 2. Does the current IdM solution provision accounts and groups necessary to all campuses and locations sufficient to their business needs, or will identifying and implementing the appropriate account information to AD be within the scope of this project? The current IDM solution provisions all accounts necessary for the scope of the project. The Active Directory team utilizes a mixture of synced groups and Active Directory only groups. Active Directory only groups will need to be created for file server conversions and possibly for migration steps as well. The selected vendor will be responsible for creation of those groups and must follow UMS standard naming conventions which will be provided. Page 1 of 6

3. On page 12, it mentions the wish to provide Macintosh systems with access to file and print services. With regards to overall functionality, will domain log on and profile migration be included in the scope for Macintosh systems brought into the enterprise domain? Yes, profile migration and domain logons would be within requested scope. Optional functionality would need to provide central management of Macintosh Systems, including but not limited to enforcing encryption, inventory management, imaging, and software distribution. Note that these optional items may prove cost-prohibitive for the project and should be listed separately in the response for consideration. 4. Is there a sufficient network infrastructure between the 7 different campuses at UMS for Active Directory Traffic? Can you provide a logical network diagram as well as information regarding link capacity and redundancy between campuses (and other relevant system locations)? UMS maintains a facilities-based DWDM optical network which interconnects each campus. Currently, each campus is connected at a minimum of 10G in a redundant, geographically diverse, ring topology using G.8032 and Ethernet-based transport services. The router at each campus is a Cisco ASR 9000 series. Each campus is dualhomed to Orono and Portland, where UMS has data center facilities which host AD project virtual servers. The UMS Active Directory domain design currently does not include placing any servers at campus locations. This includes domain controllers, file servers and print servers. All servers will be located at two data centers in Portland and Orono, Maine. 5. On page 14 of the RFP, file share migration is part of the scope of this project. Is UMS currently using Microsoft File Sharing throughout each campus, or are there 3rd party solutions being used? UMS is currently using a mixture of many file sharing servers. Microsoft, Linux and Macintosh based file servers are currently in the environment as well as Drobo, Synology, and NAS-enabled external drives. Page 2 of 6

6. On page 12 of the RFP, Project Planning and assistance is part of the scope of this project. MTC views successful Project Management is a joint effort. Will corresponding Project Management Staff be available at UMS? Yes, there is a project manager currently assigned to this project who will continue to participate throughout the planning and implementation process. 7. On page 12 of the RFP, you mention that UMS is initiating pursuit of cloud-based storage in parallel with this Active Directory project and expects to implement cloud-based storage before the Active Directory migration project is complete. Has UMS chosen a product or solution for this effort? Will file share migrations begin with regular Windows Share, and move to Cloud Storage during the execution of the migration phase? No product or solution has been chosen. UMS plans to choose a vendor and begin implementation of a cloud storage solution during the planning phase of the AD project. Once in place, we would like to migrate files from current sources directly to the cloud solution from the perspective of the user. There may be intermediate steps in the background, but from the users perspectives there is no intermediate step. Note that not all source files are currently on Windows shares. 8. On page 13 of the RFP, it mentions there are an estimated 5,000 user systems (Windows and Mac). What percentage of these machines are Windows vs. Mac? The current number is actually between 6,500 and 8,000 workstations with a 42% Mac, 58% PC breakdown. 9. On page 14 of the RFP, it mentions Print Infrastructure Migration - Migrate current legacy print services infrastructure (1000 printers) to current UMS AD Microsoft print servers. Does the Central UMS AD infrastructure manage printers solely with Active Directory, or is there a 3rd party print management solution in use? PaperCut, Pcounter and Pharos are used in addition to numerous MS Print Servers. Third party print management solutions will continue to be used at these campuses. Page 3 of 6

10. Do trusts currently exist between the campus domains and the destination domain? There is a one way trust between the USM AD and the UMS AD. USM AD trusts the UMS AD. No other trusts currently exist. 11. There is no mention of email in the RFP. Is there any email server or services that are tied to the existing domains? For example Microsoft Exchange No email services are tied to this project. We are a Google Apps for Education customer. 12. Besides file/print servers are other servers to be included in the migration? For example application, web, database or hyper-v servers. There are other servers in the legacy domains, but they will not be migrated as part of this scope of work. 13. Is Mac management software currently in use? Yes for lab workstations, not for faculty/staff devices. The current configuration utilizes OSX server with some Apple Remote Desktop and profile manager. 14. Approximately how many Macs are connected to the domain? There are roughly 2000 Macs which will be connected to the UMS domain. Currently connected to various domains could be between 200-300 devices. 15. What encryption will be used to encrypt the Macs? Filevault2 16. Is encryption currently deployed on Windows workstations? Some campuses are encrypting windows laptops, with a variety of encryption software. The vendor is expected to implement MBAM and Bitlocker for all laptops. 17. How many users will be migrated to the new domain? Page 4 of 6

The new domain has 205,000 accounts encompassing students and staff. There are between 6,500 and 8,000 workstations. Some staff machines will have multiple profiles as they are used by various users within a department. Further breakdown of machine information: 4,700 staff Windows PCs 1,900 staff Mac PCs 1,200 lab Windows PCs 250 lab Mac PCs 18. Are roaming profiles currently in use? Yes in some locations, through various domains. Roaming profiles are not currently widely used. 19. How large is the UMS IT Staff and how many will be participating this it project? How many UMS hours will be dedicated to this project on a weekly basis. There are approximately 180 US:IT staff located at seven campuses, and not all will directly participate in this implementation. Local campus services IT staff will be committed to this project during the implementation, and that number will vary depending on the campus location (approximately 2-8 per location). Other IT staff serving in unified service delivery teams that support the overall University of Maine System, will be allocated as necessary, in order to provide appropriate resources. There are 11 staff members on the core project team who are dedicated to this project and are currently spending approximately (6-8 hours) per week. The hours will adjust accordingly as the project team enters the design and implementation phases of the project, and is dependent upon the established migration plan. 20. Will the IT Staff be responsible for the User Mappings? (User in Domain x to Domain y) UMS IT staff will identify and provide identity data for each campus for the vendor to utilize in their migration solution. 21. Have group mappings been discussed? How will conflicts be resolved (i.e. what if there is a finance group that exists in all domains?) Page 5 of 6

The project team will assess the existing group mappings across the system. Groups will need to be renamed to comply with the standard naming conventions, which are prefaced with a three letter campus code. Processes are in place to handle group management 22. Is Small Business Server installed on the network? NO. 23. Is Windows XP or Windows Server 2003 in use? Although Windows XP is not a supported operating systems by UMS, there are some instances on campuses which will need to be reimaged prior to migrating to the systemwide Active Directory. The selected vendor will not be responsible for upgrading Windows XP machines. Windows 2003 is in use, but the selected vendor will not be responsible for migrating Windows 2003 servers to the new domain. 24. Can you elaborate on the end-state of the project? Will the legacy domains be decommissioned as part of this project? Will application servers continue to run in the legacy domains? Although decommissioning legacy domains is the goal, that is not considered in scope for the work of the vendor or completion of this project. Application servers will remain in the legacy domains until UMS IT staff migrate them to the new domain. All client workstations should be in the new domain. 25. What versions and editions of windows workstation are currently deployed? Windows 7 Professional, Windows 7 Enterprise, Windows 8/8.1 Professional, Windows 8/8.1 Enterprise, Windows 10 Professional, Windows 10 Enterprise. Windows 7 Home is currently in use at some locations, but UMS IT staff will be responsible for imaging those machines to Windows 7 Enterprise before joining the new domain. Page 6 of 6

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information