Participants:

Matthew Viljoen (EGI)
Alessandro Paolini (EGI)
Linda Cornwall (STFC, RAL, PPD)
Dmytro Karpenko (NDGF)
Jerome Pansanel
Miroslav Dobrucky (IISAS)
Stephane Gerard (BEgrid)
Vincent Brillault (EGI-CSIRT/CERN)
Vincenzo Spinoso
Enol Fernandez
Gianfranco Sciacca (NGI_CH)
Emir Imamagic
George Ryall (STFC - GOC-DB)
Joao Pina
Kostas Koumantaros
Dave Kelsey (STFC/security)
Sven Gabriel


ACTION: Egi operations will open tickets against the failing ARGUS servers

==========================================
Matthew Viljoen (EGI.eu) made an introduction reporting some news from EOSC-hub etc.

analysis of different areas in EGI and EUDAT in order to propose how to proceed with the harmonization, with the integration of services, procedures, processes
 
Request to NGIs ROD teams to properly handle the alarms on the dashboard
In NGI_FRANCE: they are moving on the scenario where each site is responsible of checking the ROD dashboard by themselves
Vincenzo, Alessandro: we need to assess the ROD status with each NGI

Proposal to change the OMB format/frequency: asking feedback to NGI managers

New member in the EGI Operations team (Bruce Becker)

================================================================
10:15 - 10:30 UMD and Operations news 15'
Vincenzo Spinoso (INFN) presented some operations news, among which:

improvement plan of FedCloud Security
decommission of UMD3 (end of March)
automatic packaging of UMD/CMD software(evaluating Jenkins)
cloud accounting issues on some sites, technical configuration problems (in CYFRONET they have an older OpenStack version not compatible with CASO, in CATANIA maybe an issue with the service)

--- from the chat ---
Enol Fernández:
JUNO is EOL'ed since 2015-12-07

Kostas Koumantaros:
Sorry what happens with individual sites it not an issue for OMB

Cornwall, Linda:
We have always agreed sites should use supported versions of OpenStack anyway for various reasons, including security

Jerome Pansanel:
I am not sure that so many sites are running supported version of OpenStack. Probably only Ubuntu based site.

10:39Enol Fernández:
I would argue that running Juno is not following the "Service Operations Security Policy" : You should follow IT security best practices that include pro-actively applying software
patches, updates or configuration changes related to security.
---------------------------------

===============================================

Vincent Brillault (CERN) reported about some issues with the NGIs ARGUS servers:


NGI ARGUS central monitoring: the NGI servers should be configured properly
several ARGUS servers are still not passing the tests
ACTION: Egi operations will open tickets against the failing ARGUS servers

===============================================

Enol Fernandez (EGI.eu) talked about FedCloud Plans for 2018

deprecating OCCI
moving towards orchestration, IaaS Federated access tool
AAI: moving from VOMS to OAuth2.0/OIDC (with CheckIn)
Information discovery, Accountin, Monitoring, Security

DaveKelsey: do you have plan to review the policies together the SPG?
Vincenzo: yes, we will work together

--- from the chat ---
Kostas Koumantaros:
How would you unify Authentication, Accounting, information system

10:51Kostas Koumantaros:
in essence what you propose is to use openstack

10:51Kostas Koumantaros:
api

Kostas Koumantaros:
Argo Messaging Queue is planed to be deprecated

10:56Kostas Koumantaros:
what you mean is Argo Messaging Service

Enol Fernández (EGI Foundation):
Kostas: yes ARGO messaging service
---------------------------

Authentication (OIDC) and Accounting are unified
for the API we can keep the diversity in the fedcloud

Kostas: deprecating OCCI means stopping developing OCCI related software and affecting services used by many communities
Enol: we need to move forward in order to grow and support new communities and software
we have enough time to make the clients ready

Kostas: switching OCCI off could be a bad idea on the user communities point of view
Enol: many communities are still compliant with OIDC, anyway we are going to help and support the communities with this migration

--- from the chat ---
Kostas Koumantaros:
How do you justif choosing IM if you don't know what the users want

11:08Kostas Koumantaros
or need

Enol Fernández (EGI Foundation)
IM is not mandatory, is the tool we will operate initially in EGI

11:09Enol Fernández:
We have other tools in the radar

Enol Fernández (EGI Foundation):
Terraform, SlipStream, OCCOPUS

======================================
AOB and DONM

next OMB meeting April 5th