390 likes | 402 Views
The GILDA t-Infrastructure. Giuseppe LA ROCCA INFN Catania giuseppe.larocca@ct.infn.it ACGRID-II School 2-14 November 2009 Kuala Lumpur - Malaysia. Outline. Introduction to the different e-Infrastructures The t-Infrastructure The GILDA Project CA, VOMS, Testbed, ..
E N D
The GILDA t-Infrastructure Giuseppe LA ROCCA INFN Catania giuseppe.larocca@ct.infn.it ACGRID-II School 2-14 November 2009 Kuala Lumpur - Malaysia
Outline Introduction to the different e-Infrastructures The t-Infrastructure The GILDA Project CA, VOMS, Testbed, .. How to join in GILDA GILDA Support System GILDA wiki Multiple middleware coxesistence Run different tutorials with GILDA References
The t-Infrastructure Why t-Infrastructure? e-Infrastructure for production t-Infrastructure for training Need guaranteed response for tutorials; limit the vulnerability of production systems use training grid have training CA able to change middleware to prepare participants for future releases on production system Also: need safe resources for installation training easy entry point for new communities
The GILDA Test-bed 20 + sites in 3 Continents (not all on-line at the same time)
The GILDA Certification Authority default certificate lifetime is 14 days ~35% of personal certificates requested have been renewed at least once!
The GILDA VOMS More than 1400 people registered in the GILDA VO!
The GILDA Portals Demonstrative Applications
Dear User, you can download your GILDA Personal Certificate going, *with the same browser you used to submit the request*, to the URL: https://gilda.ct.infn.it/cgi-bin/gucert.pl?0A44 Your certificate is valid for $CERTIFICATE_DAYS_VALUE days. After that you can go to: https://voms.ct.infn.it:8443/voms/gilda/webui/request/user/create and register to the GILDA VOMS (usually, registration takes a working day). Then, you can go to the GILDA Grid Demonstrator at the URL: https://grid-demo.ct.infn.it or, if you are participating to a tutorial or an induction course, to the GILDA Grid Tutor at the URL: https://grid-tutor.ct.infn.it (for LCG) or https://glite-tutor.ct.infn.it (for gLite) Remember that: 1) whenever you are prompted for the Operating System, use the username and the password you have chosen when you requested the GILDA Personal Certificate as username and as password; 2) whenever you are prompted for the GRID username and password and the passphrase of your GILDA Personal Certificate as password. Best Regards The GILDA CA Manager GILDA Certification Authority Tel: +39 095 378 5469 Fax: +39 095 378 5231 Via S. Sofia, 64 I-95123 Catania ITALY http://gilda.ct.infn.it/CA/ How to get a personal certificate (3/5) From: GILDA-CA <gilda-ca@ct.infn.it> To: <email address given in the request form> Subject: GILDA Personal Certificate for <username> Just click the link to get the certificate.
How to get a personal certificate (4/5) • You will be informed that a new certificate is available in your browser certificate list. • Very important: you HAVE TO use the same browser in all the previous steps • It’s suggested now to export the certificate and store it in a safe place. • The certificate exporting procedure and the extension of the file is browser dependent (*.p12 for Mozilla/Netscape/FireFox and *.pfx for Internet Explorer). • Exported certificates need to be converted in PEM format (*.pem). This is the certificate format used by the gLite security services.
VOMS Registration (1/4) Dear User, you can download your GILDA Personal Certificate going, *with the same browser you used to submit the request*, to the URL: https://gilda.ct.infn.it/cgi-bin/gucert.pl?0A44 Your certificate is valid for 365 days. After that you can go to: https://voms.ct.infn.it:8443/voms/gilda/webui/request/user/create and register to the GILDA VO (usually, registration takes a working day). Then, you can go to the GILDA Grid Demonstrator at the URL: https://grid-demo.ct.infn.it or, if you are participating to a tutorial or an induction course, to the GILDA Grid Tutor at the URL: https://grid-tutor.ct.infn.it or https://grid-tutor1.ct.infn.it Remember that: 1) whenever you are prompted for the Operating System, use the username and the password you have chosen when you requested the GILDA Personal Certificate as username and as password; 2) whenever you are prompted for the GRID username and password and the passphrase of your GILDA Personal Certificate as password. Best Regards The GILDA CA Manager … Just follow the link to be registered to the GILDA VO In the same e-mail we showed before you can seen one more link:
VOMS Registration (2/4) This page will be only accessible if you have imported successfully the received certificate
VOMS Registration (3/4) Confirm your VO registration request following the above link
VOMS Registration (4/4) Finally you will get a confirmation e-mail Now you are member of the GILDA VO!!!
The GILDA Training Material Up to 2 TB of training materials already downloaded!
University courses using GILDA France Spain Italy
GILDA is not gLite centric Triggered by the requirements of ICEAGE Summer Schools the GILDA Team has pioneered co-existence of several middleware on the same physical resources. A single t-Infrastructure can be reused also when teaching more than one middleware The different middleware share physical resources as well as the authorization infrastructure Multi middleware features deployed also on other ICEAGE sites in GILDA This approach will be reused by EELA-2 Middleware co-existence in GILDA
GILDA Tutorials Tutorial for Users The different types of tutorials we can run on GILDA : Tutorial for Site Administrators Grid Schools/Tut. for Appl. developers Customized events Tutorial for Trainers
Tutorial for Users Requisites Audience Requisites: Basic Unix/Linux commands knowledge (command line) Basic concepts of networking (ssh, scp, etc.) Technical Requisites: A computing room equipped with computers that can be used by students or a simple class room where students can bring their own laptops Four possibilities to access the training infrastructure: Use of a dedicated UI server Use of UIs running on virtual machines Use of the UI PnP on Linux Accounts Use of the GILDA glite-tutor.ct.infn.it UI server A network connection with the outside Internet bandwidth of at least 8 Mbit/s a FastEthernet (10/100 Mbit/s) and/or a Wi-Fi (IEEE802.11b/g802.11b/g at 11/54 Mbit/s) local area network a big screen and a video-projector; a sound system (microphone + amplifier + loud speakers) if the room is big.
Requesting tutorial for Users From GILDA web site: https://gilda.ct.infn.it
Tutorial for S.Adm: Requisites Audience Requisites: Advanced Unix/Linux commands knowledge (command line) Unix/Linux administration knowledge Good knowledge of networking and relative services (DNS, Firewall, etc.) Technical Requisites: A network connection having outside Internet bandwidth of at least 8 Mbit/s a FastEth. (10/100 Mbit/s) and/or a WiFi (IEEE802.11b/g - 11/54 Mbit/s) LAN A computing room equipped with desktops that can be used by students or a simple class room where students can bring their own laptops At least one machine (either real or virtual, with Xen or VMware) each 2 users. Machines must have direct and inverse resolution, so either : - Machines with public IP, direct/reverse solved by public DNS (or) - Machines with private IP solved by a local DNS ("pointed" by students) Real machines should have at least 1 GB of memory per processor (dual processor machines are preferred) and at least 80 GByte of internal hard-disk The machines must be at the disposal of tutors at least 1 week before the tutorial A big screen and a video-projector (a 2nd video-projector for the machine to install would be better); A sound system (microphone + amplifier + loud speakers) if the room is big.
Tutorial for S.Adm: Request The requesting procedure is the same as for users … A further step is necessary after the form submission. It is necessary to send a list of hostnames to the: GILDA-CA mailing list (gilda-ca@ct.infn.it) This list of hostnames will be used to generate GILDA HOST certificates.
Grid Schools: Requiriments Audience Requisites: Researchers having User tutorial requisites The Application responsible must participate to the Grid School Technical Requisites: A network connection having outside Internet bandwidth of at least 8 Mbit/s a FastEth. (10/100 Mbit/s) and/or a WiFi (IEEE802.11b/g - 11/54 Mbit/s) LAN A computing room equipped with desktops that can be used by students or a simple class room where students can bring their own laptops At least 10 real or virtual (with Xen or VMware) machines. These machines must have public IP addresses and must be registered on a local DNS with direct and inverse name resolution. Real machines should have at least 1 GB main memory per processor (dual processor machines are preferred) and at least 80 GByte of internal hard-disk The machines must be installed by tutors at least 1 week before the tutorial A big screen and a video-projector (a 2nd video-projector for the machine to install would be better); A sound system (microphone + amplifier + loud speakers) if the room is big. Appropriate Surveillance, Fire extinguishing systems, Cooling fans and Electricity power must be granted during the school
Applications Survey There is a standardized way to organize a Grid School, like tutorials for users and site admin tutorials Normally Grid Schools are planned at the beginning of a project due to their huge request of resources Planning are normally done on TB Meetings or during Workshops. In order to collect applications a survey must be submitted to the community (http://grid.ct.infn.it/infn/questionario/index.php?sid=57546&lang=en) The list of potential applications must be provided to the TB in order to be evaluated ATTENTION! The number of application is limited to max 15 The number of days shouldn’t be less than 10 (working days) Applications will be installed on GILDA or other infrastructure (e. g. EUASIAGRID)
Summary and conclusions GILDA is a real virtual laboratory for dissemination of grid computing: It is a “de facto” standard t-Infrastructure adopted both by EGEE and some EU-FP6/FP7 projects (EELA, EUCHINAGRID, EUINDIAGRID, EUMEDGRID, ICEAGE, EUASIAGRID, … ) It is a complete suite of grid elements (test-bed, CA, VO, monitoring systems, web portals, virtual services, user interface plug&play) and applications fully dedicated to dissemination purposes and pre-porting of new applications to EGEE Infrastructure GILDA runs the latest production version of the gLite middleware (and also some pre-production ones) to make the transition from the t-Infrastructure to the e-Infrastructure easy and transparent Everybody working in training is welcome to use GILDA but, more importantly, to contribute to it in all possible ways
Useful Links GILDA home page https://gilda.ct.infn.it GILDA Certification Authority https://gilda.ct.infn.it/CA/ GILDA Virtual Organization https://voms.ct.infn.it:8443/voms/gilda/ GILDA Support System http://gilda-support.ct.infn.it GILDA Form for Bookings https://gilda.ct.infn.it/request_tutorial/index.php GILDA Repository of Training Material https://grid.ct.infn.it/twiki/bin/view/GILDA/WebHome GILDA Virtual Services https://gilda.ct.infn.it/VirtualServices.html
Thanks! Istanbul, Turkey Beijing, China Bogotá, Colombia Cairo, Egypt