Technical Board Meeting, CNAF, 14 Feb. 2004

Slides:

Advertisements

Similar presentations

MyProxy Guy Warner NeSC Training.

Advertisements

DataGrid is a project funded by the European Commission under contract IST WP2 – R2.1 Overview of WP2 middleware as present in EDG 2.1 release.

Site Authorization Service (SAZ) at Fermilab Vijay Sekhri and Igor Mandrichenko Fermilab CHEP03, March 25, 2003.

GUMS status Gabriele Carcassi PPDG Common Project 12/9/2004.

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

The Community Authorisation Service – CAS Dr Steven Newhouse Technical Director London e-Science Centre Department of Computing, Imperial College London.

Asynchronous Web Services Approach Enrique de Andrés Saiz.

Riccardo Bruno INFN.CT Sevilla, Sep 2007 The GENIUS Grid portal.

LSC Segment Database Duncan Brown Caltech LIGO-G Z.

EGEE is a project funded by the European Union under contract IST The way ahead Alistair Mills Grid Deployment Group

VOMS Alessandra Forti HEP Sysman meeting April 2005.

A DΙgital Library Infrastructure on Grid EΝabled Technology ETICS Usage in DILIGENT Pedro Andrade

The huge amount of resources available in the Grids, and the necessity to have the most up-to-date experimental software deployed in all the sites within.

Eric Shook, Anand Padmanabhan Grid Research & educatiOn IoWa (GROW) ITS Academic Technologies – Research Services The University of Iowa Iowa City,

Open Science Grid OSG CE Quick Install Guide Siddhartha E.S University of Florida.

TERENA 2003, May 21, Zagreb TERENA Networking Conference, 2003 MOBILE WORK ENVIRONMENT FOR GRID USERS. TESTBED Miroslaw Kupczyk Rafal.

Certification and test activity IT ROC/CIC Deployment Team LCG WorkShop on Operations, CERN 2-4 Nov

VOMS: Status & Plans Vincenzo Ciaschini, Valerio Venturi MWSG Meeting, CERN, Feb

EGEE is a project funded by the European Union under contract IST EGEE tutorial introduction Roberto Barbera University of Catania and INFN.

SAM Sensors & Tests Judit Novak CERN IT/GD SAM Review I. 21. May 2007, CERN.

Database authentication in CORAL and COOL Database authentication in CORAL and COOL Giacomo Govi Giacomo Govi CERN IT/PSS CERN IT/PSS On behalf of the.

EGEE-II INFSO-RI Enabling Grids for E-sciencE Real Life Examples Tickets – Real life examples Mário David LIP - Lisbon.

EMI INFSO-RI ARC tools for revision and nightly functional tests Jozef Cernak, Marek Kocan, Eva Cernakova (P. J. Safarik University in Kosice, Kosice,

Last update 21/01/ :05 LCG 1Maria Dimou- cern-it-gd Current LCG User Registration, VO management and Authorisation Procedures VOMS workshop

1 AHM, 2–4 Sept 2003 e-Science Centre GRID Authorization Framework for CCLRC Data Portal Ananta Manandhar.

Experiment Support CERN IT Department CH-1211 Geneva 23 Switzerland t DBES Andrea Sciabà Hammercloud and Nagios Dan Van Der Ster Nicolò Magini.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Communication tools between Grid Virtual.

Daniele Spiga PerugiaCMS Italia 14 Feb ’07 Napoli1 CRAB status and next evolution Daniele Spiga University & INFN Perugia On behalf of CRAB Team.

Introduction to Portals.

EGEE is a project funded by the European Union under contract IST Enabling bioinformatics applications to.

VOX Project Tanya Levshina. 05/17/2004 VOX Project2 Presentation overview Introduction VOX Project VOMRS Concepts Roles Registration flow EDG VOMS Open.

The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.

INFN GRID Production Infrastructure Status and operation organization Cristina Vistoli Cnaf GDB Bologna, 11/10/2005.

Site Authorization Service Local Resource Authorization Service (VOX Project) Vijay Sekhri Tanya Levshina Fermilab.

EGEE is a project funded by the European Union under contract IST Issues from current Experience SA1 Feedback to JRA1 A. Pacheco PIC Barcelona.

II EGEE conference Den Haag November, ROC-CIC status in Italy

RI EGI-TF 2010, Tutorial Managing an EGEE/EGI Virtual Organisation (VO) with EDGES bridged Desktop Resources Tutorial Robert Lovas, MTA SZTAKI.

DGAS Distributed Grid Accounting System INFN Workshop /05/1009, Palau Giuseppe Patania Andrea Guarise 6/18/20161.

Antonio Fuentes RedIRIS Barcelona, 15 Abril 2008 The GENIUS Grid portal.

Virtual Organization Management Registration Service (VOMRS) T. Levshina J. Weigand S. White Co-Authors: L. Bauerdick, G. Carcassi, I. Fisk, A. Heavey,

EGEE is a project funded by the European Union under contract IST Job Submission Giuseppe La Rocca EGEE NA4 Generic Applications INFN Catania.

Servizi core INFN Grid presso il CNAF: setup attuale

Jean-Philippe Baud, IT-GD, CERN November 2007

Practical using C++ WMProxy API advanced job submission

INFNGRID Technical Board, Feb

Job monitoring and accounting data visualization

Regional Operations Centres Core infrastructure Centres

Apache web server Quick overview.

Classic Storage Element

StoRM: a SRM solution for disk based storage systems

CE-Monitor Luigi Zangrando INFN-Padova

How to connect your DG to EDGeS? Zoltán Farkas, MTA SZTAKI

Practicals on VOMS and MyProxy

WP1 WMS release 2: status and open issues

GILDA Project Valeria Ardizzone INFN Catania Italy

NAREGI-CA Development of NAREGI-CA NAREGI-CA Software CP/CPS Audit

f f FermiGrid – Site AuthoriZation (SAZ) Service

Brief overview on GridICE and Ticketing System

R-GMA Security Stephen Hicks UK Cluster Security

Accounting at the T1/T2 Sites of the Italian Grid

Grid2Win: Porting of gLite middleware to Windows XP platform

Job Application Monitoring e cosa offre JAM G. Donvito,G. Maggi,M

The GILDA testbed Roberto Barbera University of Catania and INFN

NA4 Test Team Status Test meeting, 07/09/04

Grid2Win: Porting of gLite middleware to Windows XP platform

Update on EDG Security (VOMS)

Danilo Dongiovanni INFN-CNAF

INFNGRID Workshop – Bari, Italy, October 2004

The INFN-GRID RLS A. Cavalli - INFN-CNAF

Presentation transcript:

Technical Board Meeting, CNAF, 14 Feb. 2004 Production VOMS experience D. Cesini - INFN-CNAF, V.Venturi-INFN-CNAF, A. Paolini – INFN-CNAF www.eu-egee.org EGEE is a project funded by the European Union under contract IST-2003-508833

Summary Gridit managed VOs (LDAP and VOMS) overview Some simple Production Server Statistics VOMS encountered problems (based on our experience) Server Version 1.2.18 Admin Interface Version 0.7.1 – 0.7.5 Client /Users side Server side Admin Interface side

Virtual Organizationions in GRIDIT 7 VOs LDAP managed 4 VO VOMS managed - only 2 submitted jobs to the Grid 4 voms-server are running on the same host 155 User in VOs managed by voms 93 user in VOs managed by ldap The same user can be in different VOs

Statistics for testbed008 (1/2) Jul. 15 2004 – Feb. 13 2005 for INFNGRID Sep. 07 2004 – Feb. 13 2005 for CDF 1174 Certificates for INFNGRID 310 Certificates for CDF Less than 50 certificates /day

Statistics for testbed008 (2/2) Jul. 15 2004 – Feb. 13 2005 for INFNGRID Sep. 07 2004 – Feb. 13 2005 for CDF Less than 300 certificates /month

Encountered Problems Client/User side (1/3) The right command is voms-proxy-init --voms vo-name and not voms-proxy-init (equivalent to grid-proxy-init)  No explicit warning, job submission will probably fail

Encountered Problems Client/User side (2/3) UI and VOMS server clocks must be synchronized or proxy creation will fail giving strange error messages. This is becoming frequent with the introduction of User Interfaces not managed by the lcfg server.

Encountered Problems Client/User side (3/3) – The only serious one MyProxy cannot be used with VOMS proxy certificates  Should be fixed into the next deployed release Server side – Good news: very few problems The Certification Revocation List did not update automatically. Patched with a cron job. VOMS server restart was needed only twice for the cdf VO – voms-proxy-init hangs forever. This should be fixed into the next deployed release.

Encountered Problems Admin Interface side Even if a web based interface exists, it is not very user friendly and some features are not working (i.e. – the user search utility) Version 0.7.1 Removing the administrator role to a user means delete completely the user from the VO The max VO name length is 6 characters (we already have 2 VOs with longer names and the walk around is not easy to implement) voms-httpd unstable No VO Usage Rules Agreement button present Upgrade to Version 0.7.5 VO Databases changed (db ownership) but configuration files were left unmodified. Missed mailer configuration. Neither the user, nor the administrator received notification after the submission of a join request. VO Usage Rules Agreement button is present, but it is not possible to add a link to the Rules.

Encountered Problems

Conclusions 4 VOMS server are currently running (on the same host) in the production grid, but only two VOs had already used it The load was not heavy during the production period Apart from MyProxy incompatibility no serious problems were encountered in the client and server middleware The admin interface should be improved