Hi
Question/Issue:
We are trying to find out how to maintain job integrity while promoting using LCM? This is from a process security perspective that "only tested and approved items should move from QA to PROD"
Use Case/Scenario:
We are using BO in a three scale landscape (Windows Server). DEV, QA and PRD are all are in a same network. LCM is installed on BO DEV.
I create a job having report objects to move from DEV -> QA. This job can have multiple iterations ie. to incorporate changes in the DEV and move to QA for testing. Once the final version is tested in QA, only the "tested" objects should move from QA -> PRD.
Two ways to do the above is:
1. Copy the existing job which promoted items from DEV to QA and then change the Destination to Production. This will ensure object integrity because only initially packaged & tested objects will be present in this job (and no new untested QA objects can be added and "piggy backed" promoted to PROD)
Problem with this approach:
When i make a copy of the existing job, it does not allow me to change the source system but only the destination. Which means I'll essentially be moving DEV objects to Prod. However, we should not move objects from from DEV -> PRD. Ideally, LCM should allow to copy the original job and also change the source system to QA so that the original job is just "updated" to pick originally promoted DEV equivalent objects from QA).
2. Create a New job in QA and manually choose equivalent DEV objects that were originally promoted using previous DEV -> QA Job.
Problem with this approach:
This breaks the "promotion process" from a security perspective because we cannot ensure "only the tested objects are promoted to production". There is a chance human error or malicious intentions that the new job can be modified to include untested items or different version items.
So, would like to know from LCM Product Management whether:
- Is it possible to change the source system of LCM jobs?
- To maintain the interity, is it required to create two jobs
DEV -> QA - Job1
QA -> PRD - Job2 (With same objects as in Job1)
Please suggest. This is relavant from ITIL Security Management process point of view. (Information Security Management System)
Thanks.
Edited by: Deepb on May 4, 2011 7:21 PM