1 / 18

User Interface installation and configuration

User Interface installation and configuration. Yubiryn Ramírez G. ULA – Venezuela Ninth EELA Tutorial for Users and System Administrator Bogotá, 08.03.2007. Outline. What is a UI? Installing User Interface Installation pre-requisites Security pre-requisites site-info.def

celerina-andeana
Télécharger la présentation

User Interface installation and configuration

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. User Interface installation and configuration Yubiryn Ramírez G. ULA – Venezuela Ninth EELA Tutorial for Users and System Administrator Bogotá, 08.03.2007

  2. Outline • What is a UI? • Installing User Interface • Installation pre-requisites • Security pre-requisites • site-info.def • UI Installation and Configuration • Default VO • Testing User Interface Bogotá, Ninth EELA Tutorial, 08.03.2007

  3. What is a UI? • The UI is a suite of clients and API that users and applications can use to access the gLite services. • The gLite UI includes the following components: • VOMS command-line tools • Workload Management System clients and APIs • Logging and Bookkeeping clients and APIs • Data Transfer command-line clients and APIs • Data Catalog command-line clients and APIs • gLite I/O client and APIs • R-GMA client and APIs • LFC client Bogotá, Ninth EELA Tutorial, 08.03.2007

  4. Installing User Interface Bogotá, Ninth EELA Tutorial, 08.03.2007

  5. Pre-requisites (1) • Start from the base machine you installed in the INTRODUCTORY tutorial • Verify that these packages are installed and properly configured: • Java SDK • Ntp daemon • edg_VO_Gilda rpm • glite-yaim-3.0.11 • gilda_ig-yaim-3.0.0-37 Bogotá, Ninth EELA Tutorial, 08.03.2007

  6. Pre-requisites (2) • Install ntp if not already available for your system: apt-get install ntp • Add your time server in /etc/ntp.conf restrict 157.253.50.3 mask 255.255.255.255 nomodify notrap noquery server ntp-1.infn.it • Edit /etc/ntp/step-tickers adding your(s) time server(s) hostname • If you are running a firewall, you will have to allow inbound comminication on the NTP port: -A INPUT -s <NTP-serverIP-1> -p udp --dport 123 -j ACCEPT • Activate the ntpd service with the following commands: ntpdate cronos.cenam.mx service ntpd start chkconfig ntpd on • You can check ntpd’s status with: ntpq -p Bogotá, Ninth EELA Tutorial, 08.03.2007

  7. Pre-requisites (3) • Add gLite apt repository • Create the file glite.list in the/etc/apt/sources.list.ddirectory and put this row on it: rpm http://glitesoft.cern.ch/EGEE/gLite/APT/R1.4/ rhel30 externals Release1.4 updates • Update apt repository apt-get update apt-get upgrade • Install glite-yaim-3.0.0-11 rpm http://glitesoft.cern.ch/EGEE/gLite/APT/R3.0/rhel30/RPMS.Release3.0/glite-yaim-3.0.0-11.noarch.rpm • Install gilda_ig-yaim-3.0.0-37 rpm http://grid018.ct.infn.it/apt/gilda_app-i386/utils/gilda_ig-yaim-3.0.0-37.noarch.rpm Bogotá, Ninth EELA Tutorial, 08.03.2007

  8. Security pre-requisites • Request a X509 host certificate for the User Interface you are going to install from a Certification Autority (CA). For example, to get host certificates from the GILDA CA, go to: https://gilda.ct.infn.it/CA/mgt/restricted/srvreq.php • Install host certificates (hostcert.pem and hostkey.pem) in /etc/grid-security chmod 644 hostcert.pem chmod 400 hostkey.pem • If you plan to use certificates released by unsupported EGEE CA’s, be sure that their public key, signing policy and CRLs (usually distributed with an rpm) are installed in /etc/grid-security/certificates • For the VO GILDA, the RPM is available from https://gilda.ct.infn.it/RPMS/ca_GILDA-1.0-6.i386.rpm Bogotá, Ninth EELA Tutorial, 08.03.2007

  9. site-info.def (1) • Copy the yaim configuration template file: cp /opt/glite/yaim/examples/gilda_ig-site-info.def /root/my-site-info.def • Open /root/my-site-info.def file using a text editor and set the following values according to your grid environment: MY_DOMAIN=super.unam.mx CE_HOST=gilda-ce.eela.ifufrj.br RB_HOST=glite-rb.ct.infn.it WMS_HOST=eela-138.$MY_DOMAIN PX_HOST=grid001.ct.infn.it BDII_HOST=eela-136.$MY_DOMAIN MON_HOST=rgmasrv.ct.infn.it FTS_HOST=fts.$MY_DOMAIN REG_HOST=rgmasrv.ct.infn.it Bogotá, Ninth EELA Tutorial, 08.03.2007

  10. site-info.def (2) • Set the repositories: OS_REPOSITORY="rpm http://mnto04.uniandes.edu.co/yam sl3-i386 os contrib updates" LCG_REPOSITORY="rpm http:// mnto04.uniandes.edu.co/yam glite_sl3-i386 3_0 3_0_externals 3_0_updates condor" IG_REPOSITORY="rpm http:// mnto04.uniandes.edu.co/yam ig_sl3-i386 3_0_0 utils" GILDA_REPOSITORY="rpm http:// mnto04.uniandes.edu.co/yam gilda_sl3-i386 app 3_0_0" CA_REPOSITORY="rpm http://eela-136.super.unam.mx/rep glite_sl3-i386 security" Bogotá, Ninth EELA Tutorial, 08.03.2007

  11. site-info.def (3) • Add LFC settings: LFC_HOST=eela-131.$MY_DOMAIN • Check/Modify VO and VOMS specific configurations: VOS=“gilda alice eumed eela euchina … ALL_VOS=“gilda alice eumed eela euchina … ALL_VOMS=“gilda alice eumed eela euchina … #Specific VO settings VO_<VONAME>_<CONFIG_ITEM>=… Bogotá, Ninth EELA Tutorial, 08.03.2007

  12. UI Installation and Configuration • Install the UI: /opt/glite/bin/gilda_ig_install_node /root/my-site-info.def GILDA_ig_UI This command will download and install all the needed packages • Configure the UI: /opt/glite/bin/gilda_ig_configure_node /root/my-site-info.def GILDA_ig_UI Bogotá, Ninth EELA Tutorial, 08.03.2007

  13. !WARNING! Due to a bug on VOMS RPM Please verify the content of file: /opt/glite/etc/vomses/gilda-voms.ct.infn.it It must be: "gilda" "voms.ct.infn.it" "15001" "/C=IT/O=GILDA/OU=Host/L=INFN Catania/CN=voms.ct.infn.it/Email=emidio.giorgio@ct.infn.it" "gilda“ Bogotá, Ninth EELA Tutorial, 08.03.2007

  14. Default VO • You can set the default Virtual Organization for user accessing your UI editing the file /opt/glite/etc/glite_wmsui_cmd_var.conf [ ErrorStorage = "/tmp/glite/glite-ui" ; DefaultLogInfoLevel = 1 ; LoggingTimeout = 10 ; rank = - other.GlueCEStateEstimatedResponseTime ; NSLoggerLevel = 1 ; LoggingSyncTimeout = 10 ; DefaultVo = "gilda" ;  Set your default VO here OutputStorage = "/tmp/glite/glite-ui" ; ListenerStorage = "/tmp/glite/glite-ui" ; RetryCount = 3 ; DefaultStatusLevel = 1 ; requirements = other.GlueCEStateStatus == "Production" ; ] Bogotá, Ninth EELA Tutorial, 08.03.2007

  15. Testing User Interface Bogotá, Ninth EELA Tutorial, 08.03.2007

  16. Create user account # adduser <your surname> # passwd <your surname> • Log on with user account # su – gildauser • Create .globus directory # mkdir .globus • Copy your own certificates to the UI in directory .globus • Verify permissions of the certificates # chmod 400 userkey.pem # chmod 644 usercert.pem Bogotá, Ninth EELA Tutorial, 08.03.2007

  17. References • gLite v3.0 Advanced Installation and Configuration Guide http://glite.web.cern.ch/glite/packages/R3.0/R20060502/doc/installation_guide_3.0-2.html • Gilda site install instructions https://gilda.ct.infn.it/docs/GILDAsiteinstall-3_0_0.html Bogotá, Ninth EELA Tutorial, 08.03.2007

  18. Questions … Bogotá, Ninth EELA Tutorial, 08.03.2007

More Related