Server Build Books Bb Template

5/22/2018 Server Build Books Bb Template

1/7

Government of Newfoundland and LabradorOffice of the Chief Information Officer

Solution Delivery Branch

SERVERBUILDBOOKPurpose: The Server Build Book documentation is intended to rovide Oerations with an accurate account ofall confi!urations modifications to !et the server to its roduction state includin! any confi!uration modificationsmade as a result of vulnerability assessments and other security hardenin! efforts" #elated relevant informationertainin! to alications and databases hosted on these environments can be found in the comanion

$lication Build Book"

Server Name

Server Environment %roduction Sta!in! Test Develoment

Server Location && Indicate current location 'build( transition or other)( final locationdetermined by Data Centre staff **

Server Purpose && Indicate the server urose and environment( e+amle, Database(%roduction **

Project Name

Project Number && DTC Number **

Appication Number && $lication Number **

Project Description && %rovide a short descrition of the ro-ect" **

I!POR"AN"NO"ES#OR$O!PLE"IN%"&ISDO$U!EN".ach section of the Server Build Book must be comleted in full" If a articular section is not alicable to thisro-ect( then you must write Not Applicableand rovide a reason"

Important Note, No sections are to be deleted from this document"

Te+t contained within && ** rovides information on how to comlete or more detailed descrition of whatneeds to be catured in that section and can be deleted once the section has been comleted"

Server Build Book &Server name* %a!e / of 0

Temlate 1ersion Oerations 2( 34/25425/2 6i!h Sensitivity


2/7


"ABLE O# $ON"EN"S

Net'or( Arc)itecture Dia*ram++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ,

SERVERSPE$I#I$A"IONS++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ,

Server 7odel and Serial Number""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""2

OPERA"IN%S-S"E!INS"ALLA"ION+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++,

NE".ORKSE""IN%S++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ,

#IRE.ALL$ON#I%URA"ION/LO$ALSERVER0++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++1

SO#".AREINS"ALLED++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1

SE$URI"-&ARDENIN%+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ++++++ 1

SSL $ER"I#I$A"ES++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 2

A$$ESS+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 2

$dministrator $ccount Information"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" 8

9ser : Service $ccounts""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""8

Sudoers Confi!uration"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" 8

;ile System""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" 8

S$&EDULED"ASKS++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 3

SERVER!ONI"ORIN%+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 3

S-DI REPOR"#OR .INDO.S+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 3

$#%4&"!L #OR AI56UNI56LINU5+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +3

I!POR"AN"NO"ES+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++3

PREPAREDB-++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++3

REVIE.EDB-++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 7

APPROVEDB-+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 7

Server Build Book &Server name* %a!e 3 of 0Temlate 1ersion Oerations 2"/( 34/25//5/2 6i!h Sensitivity


3/7


NETWORKARCHITECTUREDIAGRAM

Description && %rovide a detailed descrition of the technical architecture 'infrastructure)includin! how each iece fits in to the overall solution" **

"ec)nica Arc)itecture Dia*ram

&& insert dia!ram's) **

&& $n annotated Network $rchitecture Dia!ram is re


4/7


Primar9 DNS Server

Secon8ar9 DNS Server

DNS Entr9 && %rovide DNS .ntry and:or any ;>DN : $liases associated with Server **

FIREWALLCONFIGURATION(LOCALSERVER)

Loca #ire'a $oni*urationDetais

&& List the firewall information to be recorded for this server" Get the detailedhost firewall rules for local firewall( such as 7icrosoft 9$G **

SOFTWAREINSTALLED'Non5Business $lication)

Description && This section will include all software installed and confi!ured on this serverthat is re


5/7


services 'such as IIS or any service altered from the normal settin!) theyshould be clearly described in this section" **

SSL CERTIFICATES

$ertiicate cassiication;8escription or i8entiication

&& %rovide details on how the SSL Certificates are used" **

@eb server to alication

$lication to database

$ertiicate e=pir9 && %rovide details on SSL Certificate e+iry" **

ACCESS

ADMINISTRATORACCOUNTINFORMATION

Description && Identify all administrators created for this server= ensure to include 9serID(Name and $ccess Level" **

UserID $ontact name Access Leve

USER/ SERVICEACCOUNTS

Description && Identify all other System 9sers created for this server= ensure to include9serID( Name and $ccess Level" **

UserID $ontact Name Access Leve

SUDOERSCONFIGURATION'Linu+ and $IA only)

FILESYSTEM

Description && Identify all chan!es made to file system ermissions for this server=ensure to include 9serID : !rou( folder : share and ermission !iven" Thisneed to include ermissions !iven and ermissions taken away" **

S)are 6 #o8er 6 #ie names UserID 6 %roup Permission



6/7


SCHEDULEDTASKS

$rontab Entries && %rovide a list of crontab entries" **

.in8o's Sc)e8ue8 "as(s && %rovide a list of @indows Scheduled Tasks" **

SERVERMONITORING

Services to be monitore8be9on8 norma monitorin*sc)eme

&& %rovide a list of additional or secial services to be monitored" Include theservices above the basic OS services re


7/7


APPROVEDBY

!ana*er o Operations @Server 6 Stora*e

'%rint name) 'si!nature) 'date)


Documents

Server Build Books Bb Template