CONTENT S
2. Hardware Requirements.....................................................................................................................................................................................10
3. Software......................................................................................................................................................................................................................12
4. Disaster Recovery...................................................................................................................................................................................................12
ANNEXURE–D (PERFORMA FOR FORMAL HANDING OVER AND TAKING OVER OF EOFFICE SERVERS) ..............................18
Date of Date of
S.No. Ver sion Amended By Amendments
Release Amendment
1. 1.0 19-01-2014
Specifications revised in
Annexur e A- Requirements for
eOffice Premium edition.
2. 1.1 12-12-2014 11-12-2014 eOffice Division
Specifications revised in
Annexur e A- Requirements for
eOffice Lite edition.
Revision of categories based on
user base revised in Annexur e
- A.
eOffice deployments types
3. 2.0 01-06-2016 01-06-2016 eOffice Division
based on products revised in
Annexur e - A.
Hardware requirements
revised in Annexur e - A.
1 . PURPOSE OF T HE DOCUM ENT
The eOffice Product is being implemented across the Government levels of Centre, State and Districts.
The deployment of eOffice product can be on the cloud infrastructure of National Data Centre (NDC),
State Data Centres (SDC), large organisations with their own data center infrastructure or special
deployments in department’s computer cells/ units due to sensitive nature of the departments or the
different way of conducting work/ business.
Deployment Strategy
Approach & Model for Deployment
Defining the Responsibility Matrix
Process and Guidelines
Provisioning a Secured Infrastructure
Availability of Deployment Infrastructure:
The eOffice Deployment Framework categorizes eOffice deployment into three broad types based on
location and for each type, the corresponding check lists & roles and responsibilities matrix are also
defined.
Deployment Type
Under this type, the ministries and departments of GOI are deployed in National Data Centre
(NDC).
Type II: Deployment in local NIC/ Depar tments ser ver s due to sensitive natur e of
wor king
Under this type, the deployment is done in department’s computer cells/ units due to the
sensitive nature of the departments. Their computer cells may not be full-fledged data centers
but subject to fulfilling of eOffice pre-requisites, the eOffice deployment is done. The access to
eOffice in these departments is strictly made available as per department’s rules and
regulations and is generally in their private IPs based network. e.g. PMO, Cabinet Secretariat
etc.
Type III: Deployment in local Depar tments Data centr es or State Data Centr es (SDC)
Under this type, the deployment is done in departments’ data center where the organizations
are very large and they have their own full-fledged data center infrastructure (including DR)
with applications running 24 x 7. In this category, if eOffice is for the state government then
the deployment is to be done at State Data Centre (SDC).
eOffice Project Division has prepared the server (or compute) and storage requirements based
3 . T YPE I DEPLOYMENT GUI DELI NES
The Type I deployment is essentially meant for the central government ministries and departments
and will start once the approval for hosting is received by eOffice Project Division.
1. Based on the eOffice version (Lite or Premium), the necessary provisioning will be done as
per the details mentioned in Annexur e - A.
2. The DNS will be registered under the sub-domain eoffice.gov.in
3. eOffice instance will be setup as per the eOffice Setup instructions provided time to time.
4. The eOffice is restricted to NICNET/ NKN and check at firewall level may be ascertained.
5. The user authentication happens through NIC email-id. The LDAP forms etc. are to be
submitted by concerned departments directly to Mail services group. The departments must
also obtain the LDAP bind string from Mail services group and shared it with ESA.
6. All eOffice sites have to be mandatorily SSL enabled. The SSL certificate must be obtained for
each eOffice instance and configured.
7. Sync the server timings with NDC NTP server. This is critical activity and must be doubly
assured.
8. Register the site with Nagios so that it comes under monitoring dashboard.
9. Ensure that all the forms for scheduling the backup are submitted to NDC.
10. Ensure that DB replication is running.
11. The administrator must refer to check list and ensure that all the activities are checked before
keeping a record of the same.
(Ref: Annexur e - B).
12. The roles and responsibilities for Type I deployment need to be strictly followed.
(Ref: Annexur e - C).
13. After all above activities are completed and the instance is up and running (but not yet Live)
send formal mail to eOffice PMU, eOffice Implementation Core Group, and all eOffice Project
Team members.
14. After the department Goes Live, send another formal communication as above.
4 . T YPE I I AND I I I DEPLOYMENT GUI DELI NES
Under these types, the deployment is done either in department’s computer cells/ units or State Data
Centres (SDC). These sites will be under the control of Department or Local NIC cells or SDC, as the
case may be.
1. Based on the eOffice version (Lite or Premium), the necessary provisioning is made available
by the respective department as per Annexur e - A.
2. DNS registration as per SDC/ Department policy.
3. Training to be provided to the system admin team of SDC or Department.
4. eOffice instance will be setup by local admin team under the supervision of eOffice team as
per the eOffice setup instructions provided time to time.
5. The user authentication mechanism will be done through LDAP.
6. SSL certificate is recommended.
7. Sync the server timings with NTP server.
8. Department may register their eOffice instance with local monitoring tools, if available.
9. Schedule the backups as per SDC/ Department policy.
10. Setup the DB replication.
11. The administrator must refer to Check List and ensure that all the activities are checked.
(Ref: Annexur e - B)
12. The roles and responsibilities for deployment need to be strictly followed.
(Ref: Annexur e - C)
13. Knowledge transfer to local admin team and sign out.
(Ref: Annexur e - D)
14. After all above activities are completed and the instance is up and running (but not yet Live)
send formal mail to eOffice PMU, eOffice Implementation Core Group, and all eOffice Project
Team members.
15. After the department Goes Live, send another formal communication as above.
ANNEXURE–A ( REQUI REMENT S FOR EOFFI CE)
For above mentioned categories, hardware and software requirements are classified in following
sections. The components required are:
2. Storage Area Network (SAN): SAN storage should be available. Database/ Application will be
installed in the SAN areas, which will be individually mounted in each server or to EXSi, in case of
Virtualization environment. The demand for storage will only increase in future; therefore,
additional SAN may be required.
4. Power Requirement: The administrator/ manager of the site where the servers will be hosted
2. HARDWARE REQUI REMENTS
Ser ver s and SAN Specifications for eOffice Lite (eLeave - eTour )
Database Ser ver SR Ser ver Application Ser ver s
Categor y
RAM SAN
S.No. Based on RAM RAM Cor es
Cor es Cor es Qty. (GB, (TB)
User Base (GB) (GB) (each)
each)
1. Category 1 16 4 8 2 1 16 4 0.5
2. Category 2 24 4 12 2 1 16 6 0.75
3. Category 3 32 4 16 2 1 32 6 1
4. Category 4 32 6 16 4 1 32 8 1.25
5. Category 5 48 6 16 4 2 24 8 2
6. Category 6 48 8 16 4 2 32 8 3
7. Category 7 64 12 32 4 2 32 12 4
8. Category 8 64 16 32 4 2 48 18 5
4. DI SASTER RECOVERY
Due to the critical nature of applications, there is a need of DR. DR should be at remote location.
The typical setup is same as the primary and any changes in applications (WAR/ Version or
Products) as well as data (PostgreSQL, ZODB, File System) to be replicated, either using storage-
based replication, or host-based replication. The DR solution should support databases
(PostgreSQL in virtual/ physical scenarios), DR Drills and failover. The har dwar e, softwar e and
other infr astr uctur e r esour ces for DR need to be pr ovisioned separ ately.
ANNEXURE–B ( CHECK LI ST S)
14. DB replication
13. DB replication
14. Deployment confirmation sent to Project Manager, eOffice Project Team and PMU
These sites are fully under the control of eOffice Systems Administrators (ESA). The roles and
responsibilities matrix for Type I deployments are as follows:
These sites will be under the control of Department or Local NIC cells or SDC. The roles and
responsibilities matrix for Type II and III deployments are as follows:
2. Power cabling DC
H/ W assembling, RAID
3. Department
configuration and Firmware
Management IP assignment
4. DC
(OA/ ILO)
5. Placing servers in DC DC
7. IP allocation to servers DC
8. SAN allocation DC
Installation of OS/ database will
be done by Local Admin Teams.
ESA will provide training to the
Local Admin Team & will
Configuring Servers / Creation of
9. Local Admin Team supervise the installation.
VMs
However, ESA team’s role
during supervision will be
limited to specific issue
resolution only.
10. Allotment of Public/ Private IPs Local Admin Team
17. Generation of activation key ESA
ESA team will provide support
18. DB server/ replication setup Local Admin Team
for specific issue resolution
ESA team will provide support
19. eOffice Setup Local Admin Team
for specific issue resolution
20. Deployment of activation key Local Admin Team
Issue of SSL Certificate and its Department &
21.
deployment Local Admin Team
22. LDAP bind configuration Local Admin Team
DC & Local Admin Initial Support will be provided
23. Backup scheduling
Team by ESA
NIC Mail Group &
24. Secondary LDAP setup If applicable
Local Admin Team
Local Admin Team
25. Starting of services and Go live
& ESA
DC & Local Admin
26. Disaster Recovery setup
Team
ESA team can provide support
27. Monitoring and trouble shooting Local Admin Team
for specific issue resolution
ESA team will provide support
28. Performance and availability Issues Local Admin Team
for specific issue resolution
29. Data ownership Department
This will be a planned activity
with advance intimation. The
30. Release management Local Admin team
release document will be
provided by ESA team.
ANNEXURE–D (PERFORMA FOR FORMAL HANDI NG OVER AND T AK I NG OVER OF EOFFI CE SERVERS)
Per for ma for for mal Handing over and taking over of the eOffice Ser ver s deployed at State Data Centr e (SDC) or Local Data Centr es
Behind
Ser ver / Softwar e Stor ag
Ser ver Physical/ Load
S.No. VM and Pr ivate IP Public IP Backup IP Allotte
Descr iption VM Balancer
Specificat ions ver sion (in GB
(Y/ N)
1 Database Server
2. DB SR Server
Application
3.
Servers
The servers mentioned in above table are hereby handed over to ________________________________
_______________________________________ [Name of the Designated official with designation and office details]
on ___________________ [Date of transfer] [Time].
The Server Administrator Passwords are also provided to them in sealed envelope. On taking over,
the designated administrator is required to immediately have the passwords and other credentials
changed.
Official Taking over << Signature of the Designated Server Administrator from the State DIT / NIC State Unit /
Department>>
Roles and Responsibilities & Ser vices of the Designated Ser ver Administr ator (DSA)
eOffice Project Division, NIC Delhi shall provide new releases with release notes to the DSA for
deploying, as and when a new version is released.
ANNEXURE-E (EOFFI CE DEPLOYMENT READY RECKONER)