SFGH Computing and nework Services
MS Virtual Server and MS SQL Hosting

Overview:

CNS now offers a shared MS Virtual Server environment enabling clients the flexibility to independently run server services without purchasing server hardware. CNS also offers a shared large SQL server environment for the hosting of client databases. Clients use these hosting services for hosting development server and workstation environments, Linux based application servers, Windows web and SQL servers, and miscellaneous small application servers.

CNS provides the following virtual server hosting services:

• IP address and domain naming service: (e.g. myserver.som.ucsf.edu)
• hosting on either 128.218 UCSF or 10.86 DPH networks
• server hardware support of virtual server environment
• physical security of server hardware in the SFGH data center
• installation of guest server operating system
• regular application of Windows OS patches and hot fixes to host servers and guest virtual machines
• guidance and technical assistance on access control and security best practices for guest virtual machines (at additional cost)
• integration into the UCSF Active Directory
• depending upon customer needs, 16-50GB of disk space available per virtual machine (includes OS and all data)
• regular backup of guest virtual machine
• disaster recovery (restoration to the most recent backup)
• offsite backup tape storage with Iron Mountain

CNS provides the following SQL hosting services:

• hosting of client databases on the SFGH CNS SQL server
• encryption of databases (available at additional cost)
• server hardware support of the SQL server environment
• physical security of server hardware in the SFGH data center
• regular application of Windows OS and SQL patches and hot fixes
• initial setup and creation of SQL instances or databases
• creation and maintenance of SQL system administrator and user accounts
• integration into the UCSF Active Directory
• patch and change management of the SQL server
• regular backup of SQL databases
• SQL database maintenance plans (e.g., flat file backup) upon request
• restoration of databases upon request from backups
• offsite backup tape storage with Iron Mountain
• guidance on access control and security best practices for hosted databases (at additional cost)
• up to 20GB of disk space (includes all data and log files)
  
  NOTE: CNS does not offer database administration (DBA) services; customers are expected to have trained DBAs assigned to manage customer SQL databases.

Roles and Responsibilities:

CNS Responsibilities:

1. Installation and maintenance of hardware warranty/support for SQL and Virtual Server hardware.
2. Initial setup of VM, disaster recovery testing, OS patching to the current patch revision.
3. Installation, maintenance, and application of security updates to SQL servers and Windows Virtual Server host.
4. Installation and configuration of Microsoft supported applications on the SQL server environment.
5. Network connectivity to the server.
6. Backup of data.
7. Restoration of data (upon request).
8. Creation of Windows or SQL user accounts and application of AD group permissions.
9. Creation and maintenance of SQL database maintenance plans (e.g., flat file backup) upon request.
10. Uploading and scheduling of SQL DTS (data transformation services) upon request.
11. Documentation of all responsibilities of CNS.

Virtual Server Owner/ Database Administrator Responsibilities:

1. Configuration of the guest virtual machine operating system beyond the default configuration.
2. Installation, configuration testing and validation of any applications loaded on guest virtual machine.
3. System security, including but not limited to:
   a. Host based firewall rules,
   b. Software and security updates,
   c. Security incident response (CNS can provide assistance at additional cost).
4. Application level security, including but not limited to:
   a. User and password management for any users connecting to the system,
   b. User and password management for any users connecting to applications running on the system,
   c. Auditing of user access to resources,
   d. Encryption of PHI,
   e. All aspects of HIPAA and regulatory compliance.
5. Disaster recovery beyond the initial configuration of the server done by CNS.
6. All documentation of all responsibilities of the system owner.
7. Communication of major system changes to CNS in the form of change control messages.
8. Database backup of any databases hosted on guest virtual machines. (Open files used by some databases cannot be backed up and restored by our backup software, so databases must be configured to dump to flat files for proper backups)
9. Creation, modification, and application of permissions to hosted MS SQL database objects.
10. Development and maintenance of applications, queries, and reports for end users/clients.
11. Configuration and troubleshooting of ODBC client connections as needed.
    

Phone: 415-206-5126
Email: support@sfgh.ucsf.edu

Revised: 11-5-2009