Sown-Auth Migration
From SUWS-wiki
- Move NWMONITOR/NAGIOS check to gw as that is a box that is know to be monitored by NWMONITOR.
- This requires some iptables and syslog configuration.
- It would be useful if this could be documented, in case we want to move/add to another server in future.
- Morse is best placed to do this.
- Fix SOWN-Bot's SVN/Git reminders so they don't depend or check SVNs on auth.
- daveruss will look into fixing this.
- Move Debsums to auth2 and make sure DEBSUMS checks run are run there.
- daveruss will look into this
- Remove auth as a DNS server from all bind configuration.
- daveruss has removed ns2 record associated with auth for ipv4 ipv6 and reverse records.
- Check all resolv.conf files for auth (10.13.0.252) still being used as a DNS server.
- daveruss has checked all the resolv.conf files and resolvconf.d files and removed all references to 10.13.0.252.
- Radius checks for Radmatrix need to be moved to auth2.
- These have been moved, as has check_eapol script.
- eapol_test has been recompiled on auth2 and placed in the appropriate directory.
- /etc/freeradius/proxy.conf needs updating for shared secrets. However, these will only work via sown-auth's ECS IP. It is probably worth switching this over to auth2 and having this as auth2 primary ECS interface and auth2's current IP on a virtual interface on the same physical interface.
- Remove Icinga config (MySQL query to auth sown_data DB, service checks, service dependencies etc.) that are dependent on auth.
- daveruss has done this marking the commented out lines with "auth-based check".
- Fix widgets on www.sown.org.uk homepage for host and service checks, etc.
- daveruss will look into this.
