Deployment-Checklist.md

Deployment Checklist

This checklist should be verified once the environment is ready, and before it can be consumed.

Deployment checklist is divided into 2 parts -

1. Infrastructure Checklist – This checklist lists the required installations for all the modules.
2. Application Checklist – This checklist lists the dependent services, configurations, required roles, any explicit permissions, etc. for all the modules.

1. Infrastructure Checklist
Below are the list of infrastructure items which should be checked per module, before using them.

Module Name	Infrastructure Checklist	Additional Information
Kernel	PostgreSQL
	SMTP Server	If mail notification is enabled
	SMS Gateway	If SMS notification is enabled
	HDFS
	LDAP	Import ldif
Pre-Registration	PostgreSQL
	SMTP Server	If mail notification is enabled
	SMS Gateway	If SMS notification is enabled
	HDFS
	LDAP
Registration	TPM
	SMTP Server	If mail notification is enabled
	SMS Gateway	If SMS notification is enabled
	Devices	Fingerprint Slab, Iris, Webcamera, Printer, Scanner
	LDAP
Registration Processor	Virus Scanner	ClamAV virusscanner service should be accessible from dmz and secure zone using IP:Port
	SMTP Server	If mail notification is enabled
	SMS Gateway	If SMS notification is enabled
	HDFS	HDFS should be accessible, and write permission to regproc user should be provided
	ActiveMQ	ActiveMQ should be installed and accessible using IP:Port
	LDAP
	PostgresSQL
ID Repository	HDFS
	LDAP
	PostgresSQL
ID Authentication	SMTP Server	If mail notification is enabled
	SMS Gateway	If SMS notification is enabled
	LDAP
	PostgresSQL

2. Application Checklist
Below are list of items to be checked for each module to work.

Module Name	Application Checklist	Additional Information
Kernel	Configurations	kernel.properties, application.properties
Pre-Registration	Virus Scanner
	HDFS
	Configurations	pre-registration.properties, application.properties
	HDFS
	Kernel Services	Authmanager, AuditManager, MasterData, CryptoManager, KeyManager, SmsNotifier, EmailNotifier, Config Server, OTPManager
Registration	Kernel Services	AuthManager, Sync Data Service, Key Manager, Notification Manager, Master Data, User Salt Service, User Detail Service
	Pre-Registration Services	Pre-Registration Sync Service
	Registration Processor Services	Packet Receiver, Packet Sync Status, Packet Status
	ID Authentication Services	Internal Authentication Service
	Devices and/or MDS	Fingerprint/Iris/Webcamera/Printer/Scanner
	Configurations	registration.properties, application.properties, spring.properties Required properties for library URL, HealthCheck URL, TPM availability needs to be changed in the file present at - "Registration-services/src/main/resources /spring.properties"
Registration Processor	Kernel Services	AuthManager, AuditManager, MasterData, CryptoManager, KeyManager, Signature, RidGenerator, SmsNotifier, EmailNotifier
	ID Authentication Services	Internal Authentication Service
	ID Repository Services	IDRepo Identity and VID Services
	ABIS
	Configurations	registration-processor.properties, RegistrationProcessorAbis.json These configurations should be updated with correct hdfs, activemq, virusscanner ip/port, etc.
ID Repository	Kernel Services	AuditManager, CryptoManager, Config Server, AuthManager
	Configurations	ID Schema, VID Policy Schema, id-repository.properties
	Job	Salt Generator
LDAP Roles	roles=REGISTRATION_PROCESSOR, ID_AUTHENTICATION, REGISTRATION_ADMIN, REGISTRATION_SUPERVISOR, REGISTRATION_OFFICER
ID Authentication	Kernel Services	AuditManager, CryptoManager, AuthManager, Config Server, OTPManager, Email Notifier, SMS Notifier, Signature, Master Data, TokenID Generator
	ID Repository Services	ID Repo Identity and VID Services
	Configurations	ID Auth Mapping, id-authentication.properties
	Job	Salt Generator
LDAP Roles	roles=REGISTRATION_PROCESSOR, ID_AUTHENTICATION, REGISTRATION_ADMIN, REGISTRATION_SUPERVISOR, REGISTRATION_OFFICER