Crazy horse metaphor aside, I've a lot to figure out and not a whole lot of time in which to do so:
- Architect and implement a band new SDX environment. All of it.
- AAA policies and their proper build and application, including those intended for use with 2-factor authentication (Duo, apparently?)
- GSLB between primary and secondary datacenters
- Proper implementation of FIPS cert signing services for Epic ePrescription
- App delivery/load balancing for brand new VMWare Horizon/View/Workspace VDI
All challenges I look forward to tackling, and I plan on capturing as much of that experience as I can here. I've already benefited from my previous documentation efforts; Past Me saved Current Me from having to completely relearn how the 10.5+ UI works with Policy Labels.
Thanks, Past Me!
Dusting things off (without getting it in my hair)
Something else I look forward to doing here is what I did at BMHCC: consolidating Epic's web applications behind a shiny new SDX/VPX environment while keeping our SSL Labs scores as high as possible. Content Switch ALL THE THINGS!I've already begun this work using HSWeb, since it's by far the easiest to manage. I've had to dust off some of the CSW policy expression stuff and learn a few new things in this new 11.x interface, but so far the build is going well. My biggest challenge now is getting the names of all production and non-production servers, what applications they run, and which versions of those applications they run. Currently, most are built behind a set of F5 appliances, and those VIP's will either need to move or be replaced.
More to follow!
