December 17, 2015 A Secure VO Software for ATLAS Grid User Management Dantong Yu Brookhaven National Lab.

Slides:



Advertisements
Similar presentations
LNL M.Biasotto, Roma, 22 novembre Some notes on WP6 INFN Testbed.
Advertisements

Steve Traylen Particle Physics Department Experiences of DCache at RAL UK HEP Sysman, 11/11/04 Steve Traylen
PM Options Setup Organizations Navigate to the Organizations Application under the Administration Module.
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
Authorization Working Group Report WP6 Meeting 5 March 2002, Paris.
The Division of Labor on a Campus Hosting Open Journal Systems and Open Conference Systems.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006.
A Model for Grid User Management Rich Baker Dantong Yu Tomasz Wlodek Brookhaven National Lab.
AustrianGrid, LCG & more Reinhard Bischof HPC-Seminar April 8 th 2005.
Security Mechanisms The European DataGrid Project Team
Status of Globus activities within INFN (update) Massimo Sgaravatto INFN Padova for the INFN Globus group
National Computational Science National Center for Supercomputing Applications National Computational Science Alliance Setup Package Requirements Jim Basney.
Hyrax Installation and Customization Dan Holloway James Gallagher.
Module 14: Configuring Print Resources and Printing Pools.
GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.
INFN-GRID Globus evaluation (WP 1) Massimo Sgaravatto INFN Padova for the INFN Globus group
C. Loomis – Testbed Status – 28/01/2002 – n° 1 Future WP6 Tasks Charles Loomis January 28, 2002
VOX Project Status T. Levshina. Talk Overview VOX Status –Registration –Globus callouts/Plug-ins –LRAS –SAZ Collaboration with VOMS EDG team Preparation.
CN1176 Computer Support Kemtis Kunanuraksapong MSIS with Distinction MCT, MCTS, MCDST, MCP, A+
G RID M IDDLEWARE AND S ECURITY Suchandra Thapa Computation Institute University of Chicago.
Authorization Package for TB1 Authorization Working Group Third DataGrid Project Conference 3-5 October 2001, Frascati.
Grid User Management System Gabriele Carcassi HEPIX October 2004.
GUMS Gabriele Carcassi PPDG Collaboration meeting June 27, 2004.
23-Oct-03D.P.Kelsey, LCG Security Update, HEPiX1 LCG Security Update HEPiX-HEPNT, TRIUMF, 23 October 2003 David Kelsey CCLRC/RAL, UK
EDG Security European DataGrid Project Security Coordination Group
BNL VO Management and Grid Mapfile Generation Brookhaven National Lab.
VO Management on the US-ATLAS/CMS Test Grids Rick Cavanaugh University of Florida DataTAG/WP4 Meeting 23 May, 2002.
Getting started DIRAC Project. Outline  DIRAC information system  Documentation sources  DIRAC users and groups  Registration with DIRAC  Getting.
User Management: Authentication & Authorization on the NorduGrid Balázs Kónya, AndersWäänänen 3 rd NorduGrid Workshop, 23 May, 2002 Helsinki.
Chapter 11 Working with Credit Card Methods of Processing Credit Cards Preparing for Cyber Cash Authoring a Credit card Transaction.
University of Bristol 5th GridPP Collaboration Meeting 16/17 September, 2002Owen Maroney University of Bristol 1 Testbed Site –EDG 1.2 –LCFG GridPP Replica.
INFSO-RI Enabling Grids for E-sciencE Installing a gLite VOMS Server Giuseppe La Rocca INFN EGEE Tutorial Rome November 2005.
VO management: Progress since Chicago Workshop Vincenzo Ciaschini 23/5/2002 CNAF – Bologna.
Portal Update Plan Ashok Adiga (512)
INFSO-RI Enabling Grids for E-sciencE Installing a gLite VOMS server Joachim Flammer Integration Team, CERN EMBRACE Tutorial, Clermont-Ferrand.
Module 8: Managing Software Distribution. Collections Packages Programs Advertisements Collections Packages Programs Advertisements How Software.
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
December 26, 2015 RHIC/USATLAS Grid Computing Facility Overview Dantong Yu Brookhaven National Lab.
USATLAS deployment We currently use VOMS Role based authorization in production within USATLAS. In the VO we have defined 4 groups/roles that satisfy our.
The OSG and Grid Operations Center Rob Quick Open Science Grid Operations Center - Indiana University ATLAS Tier 2-Tier 3 Meeting Bloomington, Indiana.
VO Box Issues Summary of concerns expressed following publication of Jeff’s slides Ian Bird GDB, Bologna, 12 Oct 2005 (not necessarily the opinion of)
GRID Centralized Management of the Globus grid-mapfile Carlo Rocca, INFN Catania.
Last update 21/01/ :05 LCG 1Maria Dimou- cern-it-gd Current LCG User Registration, VO management and Authorisation Procedures VOMS workshop
GraDS MacroGrid Carl Kesselman USC/Information Sciences Institute.
Last update 31/01/ :41 LCG 1 Maria Dimou Procedures for introducing new Virtual Organisations to EGEE NA4 Open Meeting Catania.
Security Mechanisms The European DataGrid Project Team
Open Science Grid Build a Grid Session Siddhartha E.S University of Florida.
Client installation DIRAC Project. DIRAC Client Software  Many operations can be performed through the Web interface  Even more to come  However, certain.
Status of Globus activities Massimo Sgaravatto INFN Padova for the INFN Globus group
1 SURAGrid User/Host Certificate Authority SURAgrid Meeting MARCH 26, 2010 Jim Jokl University of Virginia.
VOX Project Tanya Levshina. 05/17/2004 VOX Project2 Presentation overview Introduction VOX Project VOMRS Concepts Roles Registration flow EDG VOMS Open.
The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.
Initiating Teragrid Sessions Raghu Reddy. Outline Motivation Initial Setup –Certificates –Proxies –Grid-map file entries and DNs Softenv for customizing.
VOX Project Status T. Levshina. 5/7/2003LCG SEC meetings2 Goals, team and collaborators Purpose: To facilitate the remote participation of US based physicists.
Why a Commercial Provider should Join the Academic Cloud Federation David Blundell Managing Director 100 Percent IT Ltd Simple, Flexible, Reliable.
Client installation Beijing, 13-15/11/2013. DIRAC Client Software Beijing, /11/2013 DIRAC Tutorial2  Many operations can be performed through the.
Gilda certificates. Certification Authority
Access to the GRID Access by means of an User Interface (UI). It could be: –A dedicated PC, installed in a similar way to the others grid elements –UI.
Overview of the New Security Model Akos Frohner (CERN) WP8 Meeting VI DataGRID Conference Barcelone, May 2003.
Installing and Configuring Moodle. Download Download latest Windows Install package from Moodle.orgMoodle.org.
Upgrade on Windows 7. DownloadSoftware Download Software from link provided in Webliography: e/
Classic Storage Element
A Model for Grid User Management
EDG Configuration and Authentication
Update on EDG Security (VOMS)
Report on GLUE activities 5th EU-DataGRID Conference
The EU DataGrid Security Services
The EU DataGrid Security Services
The GENIUS Security Services
Presentation transcript:

December 17, 2015 A Secure VO Software for ATLAS Grid User Management Dantong Yu Brookhaven National Lab

December 17, 2015 The packages I am using: GroupMan: VO server management tools new edg-mkgridmap package

December 17, 2015 Virtual Organization GUMS: A scalable Grid User Management System User info UNM

December 17, 2015 grid-mapfile generation mkgridmap grid-mapfile o=atlas, dc=ppdg-atagrid, dc=org ou=us-atlas, OU=People ou=atlas-dc1, CN=Dantong YuCN=Jason SmithCN=Ed-May DOE Science Grid Certificate Authorities OU=People CN=Dantong YuCN=Jason SmithCN=Ed-May CA server VO server

December 17, 2015 Configure mkgridmap.conf #### GROUP: group URI [lcluser] group ldaps://atlasgrid01.usatlas.bnl.gov:6220/ou=us- atlas,o=atlas,dc=ppdg-datagrid,dc=org #group ldap://grid-vo.nikhef.nl/ou=testbed1,o=atlas,dc=eu- datagrid,dc=org #group ldap://grid-vo.nikhef.nl/ou=testbed1,o=cms,dc=eu- datagrid,dc=org #### Optional - DEFAULT LOCAL USER: default_lcluser lcluser default_lcluser AUTO #### Optional - AUTHORIZED VO: auth URI auth ldap:// spider.usatlas.bnl.gov /ou=people,o=o=atlas,dc=ppdg-datagrid,dc=org #### Optional - ACL: deny|allow pattern_to_match allow *INFN* #### Optional - GRID-MAPFILE-LOCAL #gmf_local /opt/edg/etc/grid-mapfile-local

December 17, 2015 Grid-mapfile generated …. #---The following Users are added on Wed Jun 25 12:30:18 EDT # "/O=doesciencegrid.org/OU=People/CN=Dantong Yu " dtyu "/O=doesciencegrid.org/OU=People/CN=Edward May " enm "/O=doesciencegrid.org/OU=People/CN=Jason A. Smith " smithj4 "/O=doesciencegrid.org/OU=People/CN=Patrick T. McGuigan " grid_a "/O=doesciencegrid.org/OU=People/CN=Richard Baker " rbaker "/O=doesciencegrid.org/OU=People/CN=Robert W. Gardner Jr " rwg #--Above Users added on Wed Jun 25 12:30:18 EDT #

December 17, 2015 Current Status The First Stage Development Is Completed Available to Be Downloaded at: Ready to Run, Detailed Man Page

December 17, 2015 Characteristics Tractable, Flexible Easy Installation and Management, after you do the RPM installation and setup your local configuration, the remain part will be automatically done by the software package Cron Mode to run the script to generate the new gridmap and add them into your original grid-mapfile The VO server could control who can access the VO server. The site has to register with the VO server. The registration process is automatically done by the rpm installation script. It mail out the site host certificate to the VO administrator. ( Dantong is volunteer to act as the administrator) Support GSI, every site which wants to download the VO information must has a host certificate, this host certificate is used to mutually authenticate with the VO server

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.