Upload
matt-hamilton
View
957
Download
0
Embed Size (px)
DESCRIPTION
This is a talk I gave at "Adopting Open Source Software within the corporate ICT strategy" in London on 5th December 2013. * How OSS reduces long term risk for CM * Integrating with the unknown * Authentication in heterogeneous environments * Case study - NHS Health and Social Care Information Centre Intranet
Citation preview
Open Source
Matt Hamilton !
Netsight Internet Solutions
The Natural Fit for Content Management in the Enterprise
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Who are Netsight?
We are designers, developers and strategists who build complete solutions for web projects.
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Contents
• How OSS reduces long term risk for CM
• Integrating with the unknown
• Authentication in heterogeneous environments
• Case study - NHS Health and Social Care Information Centre Intranet
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Reducing the Long Term Risk of Content
Management
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Lowers Risk
• Lower risk of project failure
• Lower risk of vendor takeover
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Project Risk
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Lower Project Risk
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Lower Project Risk
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Integrating with the Unknown
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Authentication in Heterogeneous Environments
Design Sample: Corporate Portal with Classic Authentication
Application Pool 4
Web application: Team Sites
Zone Load-Balanced URL
Default
Intranet http://teams
https://teams.fabrikam.com
Default
Intranet http://teams/sites/Team1http://teams/sites/Team2http://teams/sites/Team3
https://teams.fabrikam.com/sites/Team1https://teams.fabrikam.com/sites/Team2https://teams.fabrikam.com/sites/Team3
Web application: My Sites
http://my
http://my/personal/<site_name>Team1 Team2 Team3
http://teams
Users
Zones and authentication
Server farm
Admin site
Services
App poolsWeb applications
Site collections
Sites
Content databases
Zones and URLs
Policies
Zone Team Sites
Zone Policies
Default
Intranet Partner accounts = Deny All
Partner accounts = Deny All
Zone Load-Balanced URL
Default
Intranet http://my
https://my.fabrikam.com
Default
Intranet http://my/personal/User1http://my/personal/User2http://my/personal/User3
https://my.fabrikam.com/personal/User1https://my.fabrikam.com/personal/User2https://my.fabrikam.com/personal/User3
Zone Self-Service Sites
Web application: Partner Web
Application Pool 5
Project1 Project2 Project3
http://partnerweb/sites
Zone Policies
Default
Intranet Partner accounts = Deny All
Partner accounts = Deny All
Zone Load-Balanced URL
Default
Intranet http://partnerweb
https://remotepartnerweb.fabrikam.com
Default
Intranet http://partnerweb/sites/Project1http://partnerweb/sites/Project2http://partnerweb/sites/Project3
https://remotepartnerweb.fabrikam.com/sites/Project1https://remotepartnerweb.fabrikam.com/sites/Project2https://remotepartnerweb.fabrikam.com/sites/Project3
Zone Partner Web Sites
Extranet https://partnerweb.fabrikam.com
Extranet https://partnerweb.fabrikam.com/sites/Project1https://partnerweb.fabrikam.com/sites/Project2https://partnerweb.fabrikam.com/sites/Project3
Customershttp://www.fabrikam.com
Web application: Published Intranet Content
Application Pool 3
HR Facilities Purchasing
http://intranet
Zone Load-Balanced URL
Default
Intranet http://intranet
https://intranet.fabrikam.com
Default
Intranet http://intranethttp://intranet/hrhttp://intranet/facilitieshttp://intranet/purchasing
Zone Published Intranet Sites
Zone Policies
Default
Intranet
https://intranet.fabrikam.comhttps://intranet.fabrikam.com/hrhttps://intranet.fabrikam.com/facilitieshttps://intranet.fabrikam.com/purchasing
Partner accounts = Deny All
Partner accounts = Deny All
Authoring site collection
Web application: Company Internet Site
Application Pool 6
Products Services Support
http://www.fabrikam.com
Zone Load-Balanced URL
Internet http://www.fabrikam.com
Default
Intranet http://fabrikamsite
Zone Load-balanced URL— Administrative
Zone Policies
Default
Intranet
https://fabrikamsite.fabrikam.com
Production site collection
Internet All users = Deny Write
Authors = Full ControlTesters = Deny Write
Authors = Full ControlTesters = Deny Write
Content deployment
Front-end Web servers
Application server
Clustered or mirrored database servers running SQL Server
Web application:Central Administration Site
Application Pool 1Front-end Web Servers
Application server
Clustered or mirrored database servers running SQL Server
Web application:Central Administration Site
Application Pool 1
Load Balancer
IntranetDefaultExtranet
Internal employeesRemote employeesIndividual partnershttp://intranethttp://teamhttp://myhttp://partnerwebhttp://fabrikamsite (authoring)
https://intranet.fabrikam.comhttps://team.fabrikam.comhttps://my.fabrikam.comhttps://remotepartnerweb.fabrikam.comhttps://fabrikamsite.fabrikam.com (authoring)
https://partnerweb.fabrikam.com
Load Balancer
Default group
InternetDirectory — Corporate directory Authentication type:x� UAG, TMG, or ISA — Forms-based authentication x� SharePoint — NTLM or Kerberos
Directory — Active Directory Domain Services (AD DS)Authentication type:x� UAG, TMG, or ISA — Forms-based authentication x� SharePoint — NTLM or Kerberos (same as internal employee)
Directory — AD DS Authentication — Integrated Windows (Kerberos or NTLM)
Anonymous authentication
Application Pool 2
Managed Metadata
IIS Web Site—“SharePoint Web Services”
Unpartitioned services
Access Service
Visio Graphics Service
Excel Calculation Services
Word Services
Word Viewing
PowerPointSecure Store Service
Business Data Connectivity
Search User Profile
Application Pool B
Search
IIS Web Site—“SharePoint Web Services”
Web Analytics
Web Analytics
Managed Metadata
Partitioned services
Partitioned by project in the Partner Web site collection
Managed Metadata
Subscription Settings
Search
Unpartitioned
Unpartitioned instance for the published content
Default groupCustom group
Zone Policies
None
Database settings:��Target size per database = 200 gigabytes (GB)��Site size limits per site = 30 GB��Reserved for second-stage recycle bin = 10%��Maximum number of sites = 6��Site level warning = 5
Database settings:��Target size per database = 200 GB��Storage quota per site = 5 GB��Maximum number of sites = 40��Authoring and Staging site collections hosted in dedicated databases
Database settings:��Target size per database = 200 gigabytes (GB)
Database settings:��Target size per database = 175 gigabytes (GB)��Site size limits per site = 1 GB��Reserved for second-stage recycle bin = 15%��Maximum number of sites = 180��Site level warning = 150
© 2011 Microsoft Corporation. All rights reserved. To send feedback about this documentation, please write to us at [email protected].
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Case study - NHS Health and Social Care Information
Centre Intranet
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Background
• NHS IA (1999)
• CfH (2004)
• IC (2004)
• HSCIC (2013)
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
IC = Information Centre
• Traditionally Microsoft-focussed IT department
• Considered Plone in 2006
• Consultancy to prototype simple Plone portal, primarily for internal comms. and file-sharing
• Didn’t really gain momentum - perhaps too early
• Ultimately superseded by SharePoint 2007
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
CfH = Connecting for Health
• Adopted Plone internally for public web sites in 2009
• Original code developed in-house
• Netsight contracted to provide ongoing support and development
• Approx. 30 days per annum
• Contract still in place today
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
CfH + IC → HSCIC• NHS in UK has undergone radical change
during recession
• Merger of CfH (using Plone for web sites) and IC (using SharePoint for information portal) late 2012
• Major re-structuring of both departments
• Result = HSCIC (Health and Social Care Information Centre)
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
New portal required
• SharePoint 2007 feels like ‘old technology’ and content becoming out of date
• Complete review of information architecture
• Desire by IC to consider non-Microsoft technology after success (and relative cost-effectiveness) of Plone-based public web sites
• Portal should be one central point for communicating merger of both departments
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Initial consultancy
• 3rd party contracted to engage stakeholders and assess business requirements
• Recommended SharePoint 2010
• Likely costs substantially higher than available budget
• IC convinced that SharePoint ‘too broad a solution’
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Netsight consultancy
• Further on-site engagement with stakeholders
• Upon review, 75% of content deemed unnecessary for launch
• Approx. 20% of original ‘features’ identified to fulfil 80% of requirements for launch
• Resulting proposal focused on core content and core functionality; technology agnostic
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Waterfall vs Agile
• List of desired features priced up as waterfall-style project - still too expensive
• Discussed iterative agile approach (prioritisation)
• Short timescale for build and content entry
• Focus on having something workable for ‘day one’
• HSCIC agree this is viable and commit to 60 days of our time
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
‘Day one’ functionality
• Engaging homepage and interface; usable navigation
• One place to access all web-based tools/services
• News, blogs and forums support internal comms.
• Easy access for c. 2000 users (using single sign-on)
• Content subscription and email alerts important
• Department-specific content and IA
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
Document management
• Plone is a great web CMS; SharePoint is a reasonable DMS (Microsoft Office integration etc.)
• Why not retain existing SharePoint for document management..?
• SharePoint search can be initiated from Plone-based intranet
• SSO makes it easy to move between sites + shared user profiles
Adopting Open Source Software within the corporate ICT strategy
London 5th December 2013
http://www.netsight.co.uk/slides