Objective:
Provide iSeek access to remote UN offices.Description:
This initiative will allow access to most iSeek pages via: (a) trusted IP from trusted networks; and (b) login name and password from any location. The access will be based on the reverse proxy feature of Apache HTTP Server. In order to secure the content of the site as well as ensure that the site is being accessed only by authorized users the following practice will be followed:
- Access permitted only over encrypted connection (HTTPS, certificate issued by VeriSign)
- Access from the Internet granted only for authenticated users. Authentication performed against the UNODC central registry (LDAP) or other LDAP such as ePAS.
- Access from the Field Offices trusted networks would be granted based on static trusted IP addresses.
Scope:
Initially iSeek will be extended to all UNODC field locations (44 sites), DPI UN Information Centres (63 sites), Sub-regional Offices of the five Regional Commissions (20 sites) and ODA Regional Disarmament Offices (three sites). Upon request this can be further extended to other UN Offices, funds and programmes that do not yet have iSeek access.Output:
- Automatic launch of iSeek to all the offices mention under scope above.
- Login access to iSeek from anywhere.
Impact:
Successful completion of this initiative will make iSeek available to any United Nations locationImplementation approach and timeline:
- Test automated launch on boot-up of iseek.unodc.org from UNODC Delhi office
- Limited rollout of automated launch on boot-up to five UNODC field offices
- Rollout to all 44 UNODC locations
- Test of access to iSeek via login name and password from India, Uzbekistan and Mexico
- General availability of access to iSeek via login name and password
- Rollout to all other locations
