June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Introduction to gLite gLite Basic Services Antun Balaž SCL, Institute of Physics.

Slides:



Advertisements
Similar presentations
Introduction to Linux Clusters and Grids
Advertisements

CHEP 2000, Roberto Barbera Roberto Barbera (*) GENIUS: a Web Portal for the GRID Meeting Grid.it, Bologna, (*) work in collaboration.
GT 4 Security Goals & Plans Sam Meder
E-science grid facility for Europe and Latin America gLite Overview Vanessa Hamar Universidad de Los Andes.
INFSO-RI Enabling Grids for E-sciencE Workload Management System and Job Description Language.
FP7-INFRA Enabling Grids for E-sciencE EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.
High Performance Computing Course Notes Grid Computing.
Job Submission The European DataGrid Project Team
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
A Computation Management Agent for Multi-Institutional Grids
The Community Authorisation Service – CAS Dr Steven Newhouse Technical Director London e-Science Centre Department of Computing, Imperial College London.
INFSO-RI Enabling Grids for E-sciencE EGEE Middleware The Resource Broker EGEE project members.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) gLite Grid Services Abderrahman El Kharrim
INFSO-RI Enabling Grids for E-sciencE Security, Authorisation and Authentication Mike Mineter Training, Outreach and Education National.
Grid Security Overview The Globus Project™ Copyright (c) 2002 University of Chicago and The University of Southern California. All.
Slides for Grid Computing: Techniques and Applications by Barry Wilkinson, Chapman & Hall/CRC press, © Chapter 1, pp For educational use only.
Basic Grid Job Submission Alessandra Forti 28 March 2006.
Makrand Siddhabhatti Tata Institute of Fundamental Research Mumbai 17 Aug
Riccardo Bruno INFN.CT Sevilla, Sep 2007 The GENIUS Grid portal.
Workload Management WP Status and next steps Massimo Sgaravatto INFN Padova.
1 School of Computer, National University of Defense Technology A Profile on the Grid Data Engine (GridDaEn) Xiao Nong
Computational grids and grids projects DSS,
Enabling Grids for E-sciencE ENEA and the EGEE project gLite and interoperability Andrea Santoro, Carlo Sciò Enea Frascati, 22 November.
G RID M IDDLEWARE AND S ECURITY Suchandra Thapa Computation Institute University of Chicago.
L ABORATÓRIO DE INSTRUMENTAÇÃO EM FÍSICA EXPERIMENTAL DE PARTÍCULAS Enabling Grids for E-sciencE Grid Computing: Running your Jobs around the World.
Grid Technologies  Slide text. What is Grid?  The World Wide Web provides seamless access to information that is stored in many millions of different.
DataGrid WP1 Massimo Sgaravatto INFN Padova. WP1 (Grid Workload Management) Objective of the first DataGrid workpackage is (according to the project "Technical.
INFSO-RI Enabling Grids for E-sciencE Workload Management System Mike Mineter
- Distributed Analysis (07may02 - USA Grid SW BNL) Distributed Processing Craig E. Tull HCG/NERSC/LBNL (US) ATLAS Grid Software.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Security and Job Management.
EGEE-II INFSO-RI Enabling Grids for E-sciencE An Introduction to the EGEE Project Presented by Min Tsai ISGC 2007, Taipei With thanks.
EGEE-III INFSO-RI Enabling Grids for E-sciencE Feb. 06, Introduction to High Performance and Grid Computing Faculty of Sciences,
TERENA 2003, May 21, Zagreb TERENA Networking Conference, 2003 MOBILE WORK ENVIRONMENT FOR GRID USERS. TESTBED Miroslaw Kupczyk Rafal.
EGEE-II INFSO-RI Enabling Grids for E-sciencE The GILDA training infrastructure.
US LHC OSG Technology Roadmap May 4-5th, 2005 Welcome. Thank you to Deirdre for the arrangements.
1 Grid2Win: porting of gLite middleware to Windows Dario Russo INFN Catania
Authorisation, Authentication and Security Guy Warner NeSC Training Team Induction to Grid Computing and the EGEE Project, Vilnius,
Glite. Architecture Applications have access both to Higher-level Grid Services and to Foundation Grid Middleware Higher-Level Grid Services are supposed.
INFSO-RI Enabling Grids for E-sciencE Αthanasia Asiki Computing Systems Laboratory, National Technical.
EGEE-III INFSO-RI Enabling Grids for E-sciencE Feb. 06, Introduction to High Performance and Grid Computing Faculty of Sciences,
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Alexandre Duarte CERN IT-GD-OPS UFCG LSD 1st EELA Grid School.
EGEE is a project funded by the European Union under contract IST WS-Based Advance Reservation and Co-allocation Architecture Proposal T.Ferrari,
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Grid2Win: Porting of gLite middleware to.
DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.
Workload Management System Jason Shih WLCG T2 Asia Workshop Dec 2, 2006: TIFR.
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Grid2Win : gLite for Microsoft Windows Roberto.
WLCG Authentication & Authorisation LHCOPN/LHCONE Rome, 29 April 2014 David Kelsey STFC/RAL.
Segundo Taller Latino Americano de Computación GRID – Primer Taller Latino Americano de EELA – Primer Tutorial Latino Americano de EELA
INFSO-RI Enabling Grids for E-sciencE Introduction to Grid Computing, EGEE and Bulgarian Grid Initiatives, Sofia, South.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Practical using WMProxy advanced job submission.
User Interface UI TP: UI User Interface installation & configuration.
13th EELA Tutorial, La Antigua, 18-19, October E-infrastructure shared between Europe and Latin America FP6−2004−Infrastructures−6-SSA
EGI-InSPIRE RI Grid Training for Power Users EGI-InSPIRE N G I A E G I S Grid Training for Power Users Institute of Physics Belgrade.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Overview of gLite, the EGEE middleware Mike Mineter Training Outreach Education National.
Consorzio COMETA - Progetto PI2S2 UNIONE EUROPEA Grid2Win : gLite for Microsoft Windows Elisa Ingrà - INFN.
EGEE is a project funded by the European Union under contract IST GENIUS and GILDA Guy Warner NeSC Training Team Induction to Grid Computing.
INFN/IGI contributions Federated Clouds Task Force F2F meeting November 24, 2011, Amsterdam.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI Services for Distributed e-Infrastructure Access Tiziana Ferrari on behalf.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Authentication, Authorisation and Security Mike Mineter, National e-Science Centre.
Antonio Fuentes RedIRIS Barcelona, 15 Abril 2008 The GENIUS Grid portal.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) gLite Grid Introduction Salma Saber Electronic.
Enabling Grids for E-sciencE Work Load Management & Simple Job Submission Practical Shu-Ting Liao APROC, ASGC EGEE Tutorial.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Overveiw of the gLite middleware Yaodong Cheng
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI solution for high throughput data analysis Peter Solagna EGI.eu Operations.
Grid Computing: Running your Jobs around the World
Grid2Win: Porting of gLite middleware to Windows XP platform
Introduction to Grid Technology
CRC exercises Not happy with the way the document for testbed architecture is progressing More a collection of contributions from the mware groups rather.
Grid Security Overview
EGEE Middleware: gLite Information Systems (IS)
Presentation transcript:

June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Introduction to gLite gLite Basic Services Antun Balaž SCL, Institute of Physics Belgrade

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Set of basic Grid services Job submission/management File transfer (individual, queued) Database access Data management (replication, metadata) Monitoring/Indexing system information

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Multi-institution issues Trust Mismatch Mechanism Mismatch Certification Authority Certification Authority Domain A Server X Server Y Policy Authority Policy Authority Task Domain B Sub-Domain A1Sub-Domain B1 No Cross- Domain Trust

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Why Grid security is hard Resources being used may be valuable & the problems being solved sensitive - Both users and resources need to be careful Dynamic formation and management of virtual organizations - Large, dynamic, unpredictable… VO Resources and users are often located in distinct administrative domains - Can’t assume cross-organizational trust agreements - Different mechanisms & credentials

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Why Grid security is hard 2 Interactions are not just client/server, but service-to-service on behalf of the user - Requires delegation of rights by user to service - Services may be dynamically instantiated Standardization of interfaces to allow for discovery, negotiation and use Implementation must be broadly available & applicable - Standard, well-tested, well-understood protocols; integrated with wide variety of tools Policy from sites, VO, users need to be combined - Varying formats Want to hide as much as possible from applications!

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Grid solution: use of VOs Certification Domain A GSI Certification Authority Sub-Domain B1 Authority Federation Service Virtual Organization Domain No Cross- Domain Trust

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Effective policy governing access within a collaboration

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Use delegation to establish dynamic distributed system Computing Center VO Rights Computing Center Service

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia GSI implementation Compute Center SSL/WS-Security with Proxy Certificates VO Rights VO Users Services (running on user’s behalf) Rights’’ Rights’ Access Local Policy on VO identity or attribute authority CAS or VOMS issuing SAML or X.509 ACs Authz Callout KCA MyProxy

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia “Logging on” to the Grid To run programs, authenticate to Grid: voms-proxy-init –voms VONAME Enter PEM pass phrase: *************** Creates a temporary, local, short-lived proxy credential for use by our computations Delegation = remote creation of a (second level) proxy credential, which allows remote process to authenticate on behalf of the user

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia User view of the Grid User Interface Grid services User Interface

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia What really happens Filecatalogue Logging & Book-keeping WMSStorageElementComputingElement InformationService Job Status DataSets info Auth. &Auth. Job Submit Event Job Query Job Status Input “sandbox” Input “sandbox” + Broker Info Output “sandbox” Output “sandbox” Publish SE & CE info User interface

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Workload Management System (WMS) Distributed scheduling  multiple UIs where you can submit your job  multiple WMSs from where the job can be sent to a CE  multiple CEs where the job can be put in a queuing system Distributed resource management  multiple information systems that monitor the state of the grid  Information from SE, CE, sites

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Authentication and Authorization Authentication  User obtains certificate from CA  Connects to UI by ssh  Downloads certificate  Invokes Proxy certificate  Single logon – to UI - then Secure Socket Layer with proxy identifies user to other nodes Authorization - currently  User joins Virtual Organisation  VO negotiates access to Grid nodes and resources (CE, SE)  Authorization tested by CE, SE: VOMS (or grid- mapfile) maps user to local accounts

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia User Interface (UI) UI is the user’s interface to the Grid - Command-line interface to  Proxy certificate  Job operations To submit a job Monitor its status Retrieve output  Data operations Upload file to SE Create replica Discover replicas  Other grid services To run a job user creates a JDL (Job Description Language) file

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Computing Element (CE) Homogeneous set of worker nodes Grid gate node Local resource management system: Condor / PBS / LSF master Gatekeeper Job request Loc. Info system Logging A&A Information system L&B A CE is a grid batch queue with a “grid gate” front-end:

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Storage Element (SE) Storage elements hold files: write once, read many Replica files can be held on different SE:  “close” to CE; share load on SE File Catalogue - what replicas exist for a file and where are they? Loc. Info System Event Logging A&A GridFTP Disk arrays or tapes Info system L&B Gatekeeper File transferRequests

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia WMS (RB) Run the Workload Management System  To accept job submissions  Dispatch jobs to appropriate Compute Element (CE)  Allow users To get information about their status To retrieve their output A configuration file on each UI node determines which WMS node(s) will be used When a user submits a job, JDL options are to:  Specify CE  Allow RB to choose CE (using optional tags to define requirements)  Specify SE (then RB finds “nearest” appropriate CE, after interrogating File catalogue service)

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Logging and Bookkeeping Who did what and when? What’s happening to my job? Usually runs on RB node Information System Receives periodic (~5 min) updates from CE, SE Used by WMS (RB) node to determine resources to be used by a job Currently BDII is used

A E G I S June 24-25, 2008 Regional Grid Training, University of Belgrade, Serbia Lessons learned Grid structure is complicated but hidden from end-users, enabling all the comfort they need Users just need to join the VO and obtain certificates: we already have the SEE-GRID VO! Use of Grid is then just as easy as the use of a computer cluster

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.