Presentation is loading. Please wait.

Presentation is loading. Please wait.

Gridification progress report

Published byJemima Lester Modified over 6 years ago

Similar presentations

Presentation on theme: "Gridification progress report"— Presentation transcript:

1 Gridification progress report
For gridification: Martijn Steenbakkers

2 Gridification Architecture

3 Authentication control flow EDG gatekeeper
NOW (EDG1.2), EDG 1.3 EDG1.4, EDG2.x Gatekeeper Gatekeeper LCAS config TLS auth TLS auth ACL Id timeslot Yes/no LCAS (so) LCAS client gridmap LCMAPS clnt LCMAPS Id assist_gridmap apply creds * config credlist Jobmanager-* Jobmanager-* role2uid role2afs * And store in job repository

4 LCAS 1.0 (EDG release 1.2) First prototype: shared object (lcas.mod)
Dynamic library calls from edg-gatekeeper 3 static authorization modules: Allowed users (grid-mapfile or allowed_users.db) Banned users (ban_users.db) Available timeslots (timeslots.db) LCFG object obj-lcas installs authorization databases No plug-ins supported yet Documentation:

5 Integration tests Linked dynamically instead of statically
Development testbed: occasional crashes (hard to reproduce) Bugzilla bugs: 431, 471 Memory corruption and memory leaks in Globus code (found a.o. with insure++) New patch available: edg-gatekeeper d ATF discussion last week: Rewrite gatekeeper ?

6 LCAS 1.1 (EDG release 1.3) Shared object with the 3 authorization modules Plug-in framework added (based on dynamic library calls) List of plug-ins to be loaded in lcas.db Example plug-in: lcas_plugin_example.c Plug-in has to provide the following interfaces: int plugin_initialize(int argc, char ** argv) int plugin_confirm_authorization( lcas_request_t request, lcas_cred_id_t user_cred) int plugin_terminate() Documentation soon available Please develop plug-ins (ACL, accounting, quota checks)

7 Future LCMAPS local credentials LCAS 2.0:
Library implementation of credential generation plug-in framework Replace gridmap(dir), but keep functionality Logical place to add role support EDG release 1.4 (?) AFS/Kerberos support: EDG release 2.x LCAS 2.0: first prototype AAA server with simple policy language EDG release 2.0 (?) Additional modifications to gatekeeper required error&status handling: Getting a useful message to the user Rewrite partially ? Other components (job repository, FLIDS, FABNAT) > EDG 2.x

Download ppt "Gridification progress report"

Similar presentations

AAA Architecture Use of a AAA Server Application Specification to Support Generic AAA Applications Across a Mesh of Interconnected AAA Servers With Policy.

AAA Architecture Use of a AAA Server Application Specification to Support Generic AAA Applications Across a Mesh of Interconnected AAA Servers With Policy.
Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.

Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.
Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.

Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.
METALOGIC s o f t w a r e © Metalogic Software Corporation 2004-2006 DACS Developer Overview DACS – the Distributed Access Control System.

METALOGIC s o f t w a r e © Metalogic Software Corporation DACS Developer Overview DACS – the Distributed Access Control System.
Gridification Task Development Plan for Release 1.1 – 2.0 For Gridification: David Groep

Gridification Task Development Plan for Release 1.1 – 2.0 For Gridification: David Groep
Site Authorization Service (SAZ) at Fermilab Vijay Sekhri and Igor Mandrichenko Fermilab CHEP03, March 25, 2003.

Site Authorization Service (SAZ) at Fermilab Vijay Sekhri and Igor Mandrichenko Fermilab CHEP03, March 25, 2003.
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.

Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.
WP4 Gridification Subsystem overlap Globus & existing systems LCAS and AAA in WP4 for Gridification Task: David Groep

WP4 Gridification Subsystem overlap Globus & existing systems LCAS and AAA in WP4 for Gridification Task: David Groep
DGC Paris 4.03.02 Community Authorization Service (CAS) and EDG Presentation by the Globus CAS team & Peter Kunszt, WP2.

DGC Paris Community Authorization Service (CAS) and EDG Presentation by the Globus CAS team & Peter Kunszt, WP2.
WP4 Gridification Subsystem overlap & existing systems for Gridification Task: David Groep

WP4 Gridification Subsystem overlap & existing systems for Gridification Task: David Groep
Tina design review Main design decisions. Top level modules. Responsibilities. Phases A & B. Test plan. Time table.

Tina design review Main design decisions. Top level modules. Responsibilities. Phases A & B. Test plan. Time table.
WP4 Security Update For WP4: David Groep

WP4 Security Update For WP4: David Groep
WP4 Gridification Security Components in the Fabric overview of the WP4 architecture as of D4.2 for Gridification Task: David Groep

WP4 Gridification Security Components in the Fabric overview of the WP4 architecture as of D4.2 for Gridification Task: David Groep
1©2005 OnTapSolutions5 December 2005 Service Oriented Architecture with O.K.I. Tom Coppeto OnTapSolutions Stuart Sim Sun Microsystems 5 December 2005.

1©2005 OnTapSolutions5 December 2005 Service Oriented Architecture with O.K.I. Tom Coppeto OnTapSolutions Stuart Sim Sun Microsystems 5 December 2005.
From legacy desktop application to Single Page Application By Jens Munk Freelance consultant.

From legacy desktop application to Single Page Application By Jens Munk Freelance consultant.
Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.
WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.

WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
Andrew McNab - Manchester HEP - 26 June 2001 WG-H / Support status Packaging / RPM’s UK + EU DG CA’s central grid-users file www.gridpp.ac.uk grid “ping”

Andrew McNab - Manchester HEP - 26 June 2001 WG-H / Support status Packaging / RPM’s UK + EU DG CA’s central grid-users file grid “ping”

Similar presentations

Ads by Google