MOP UDM Deployment-22.8: AWS Based
MOP UDM Deployment-22.8: AWS Based
MOP UDM Deployment-22.8: AWS Based
UDM Deployment-22.8
AWS Based—
ZTS Software
SW COMPONENT VERSION CHECKSUM (SHA256)
UDM Software
2.AWS account
3.AWS EKS cluster enabled
4.EC2 server (Linux) with aws cli, helm, kubectl and docker installed. (Deployment server).
2. Image Onboarding
1.Load the images into S3 bucket from local jump(ubantu) server.
4. Login to ECR
2. ztsref_values.yaml -Use Acord tool to generate yaml ref file which contains—this file contains the
information about Replica count/memory & CPU Means Resource Information
This file is generated through Nokia yang-based planning tool using Generic.xml & share by
Network Team.
AUSF_UDM_NGCAL2280314\INSTALL_MEDIA\SCHEMA/Generic.xml
Learning -1
Pods are Not Scheduled due to labels mis match with cluster nodes
- Node Selector and node Affinity to be update with correct labels for all helm charts values.yaml
Learning -2
AUSF Pod is not running fully due to Config error
-Ueauthn pod resource metrics release value is present as 2 instead of 1 for initial deployment
UDM overview---
UDM—Nudm-sdm—it manages all subscribers data and services. It allows to retrieve user
subscription data when required.
—Nudm-ueauth-- This service provides updated authentication related subscriber data to the
subscribed NF . For AKA based authentication, it supports 5G AKA and EAP-AKA’ algorithms.
Nudm-uecm—it is use to context data mgmt. like customer data is inside the old AMF then its use to
quay for new AMF & carried out old to new AMF,
NIM - NRF Interaction Module service -- This service allows AUSF_UDM services to register its
availability with NRF over Nnrf interface. The service instances are used to discover other NFs and
their services.
HTTP/2 Load balancer (LB):It acts a dedicated interface for communication between AUSF_UDM
services and external NFs
Lawful Interception (LI): This service provides both X1 and X2 interfaces for UDM and AUSF Network
functions. It is used to intercept the subscriber related events. & collect and provide
communications data of individuals or organizations to law enforcement department.
ARPF: -Authentication credential repository & processing function This service provides
Authentication vector generation logic for all AKA based authentications. It provides APIs for UDM-
UEAUTH service for requesting Authentication vectors. It also support Encrypt/De Encrypt facility for
Subscriber Key(Ki).
SIDF: Subscriber Identity De-Concealing Function (SIDF) –basically it supports de-conceals SUCI to
SUPI
Trigger: It supports LDAP interface from AUSF_UDM for Subscriber profile access from OneNDS/SDL.
----------------------------------------------------------Configuration/Integration-----------------------------------------
Let us understand with an example, below mention configuration for ldap, we need to configure at udm side, there is 4
service in UDM so we have to update below mention configuration at all service.
Step1-for udmUeauth
1.Kubectl exec -it <pod name> -n <namespace name> -c <container name> bash
2.ssh -p 2024 cmadmin/pw-xyz
PriorityValue 1
CapacityValue 1
PortValue 16611
PriorityValue 1
CapacityValue 1
PortValue 16611
Step2-for udmee
1.Kubectl exec -it <pod name> -n <namespace name> -c <container name> bash
PriorityValue 1
CapacityValue 1
PortValue 16611
PriorityValue 1
CapacityValue 1
PortValue 16611
Step3-for udmsdm
1.Kubectl exec -it <pod name> -n <namespace name> -c <container name> bash
PriorityValue 1
CapacityValue 1
PortValue 16611
PriorityValue 1
CapacityValue 1
PortValue 16611
Step4-for udmUeauth
1.Kubectl exec -it <pod name> -n <namespace name> -c <container name> bash
PriorityValue 1
CapacityValue 1
PortValue 16611
PriorityValue 1
CapacityValue 1
PortValue 16611
For NetAct Integration we need to give below mention information to NetAct team