Presentation is loading. Please wait.

Presentation is loading. Please wait.

FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio.

Published byPhilippa Gallagher Modified over 9 years ago

Similar presentations

Presentation on theme: "FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio."— Presentation transcript:

1 FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio INFN Catania First EELA Grid Tutorial for user and system administrators Madrid, 20-24.02.2006

2 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 2 Installing MyProxy Server

3 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 3 Installing MyProxy Server MyProxy is not gLite/lcg native (external dependencies) It is distributed together with the most of gLite services (UI,WMS..) If planning to install on a stand-alone machine just – Set your SLC box adding glitesoft repository echo “rpm http://glitesoft.cern.ch/EGEE/gLite/APT/R1.4/ rhel30 externals Release1.4 updates” > /etc/apt/sources.list.d/glite.list Then install myproxy package – apt-get update – apt-get dist-upgrade – apt-get install myproxy

4 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 4 Installing MyProxy Server 2/3 globus myproxy – Check that $LD_LIBRARY_PATH exports globus and myproxy lib %echo $LD_LIBRARY_PATH /usr/lib:/opt/glite/lib:/opt/glite/externals/lib:/opt/globus/ lib:/opt/glite/externals/myproxy-1.14/lib globusmyproxy – Ckeck that globus bin and myproxy bin directory is into $PATH %echo $PATH /opt/globus/bin:/usr/java/j2sdk1.4.2_08/bin:/usr/bin:/opt/gli te/bin:/opt/glite/externals/bin:/usr/java/j2sdk1.4.2_08/bi n:/opt/glite/externals/bin:/opt/glite/bin:/opt/glite/exter nals/myproxy-1.14/bin:/usr/sue/sbin

5 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 5 Request host certificates for MyProxy Server to a CA (GILDA CA by instance…) – https://gilda.ct.infn.it/CA/mgt/restricted/srvreq.php https://gilda.ct.infn.it/CA/mgt/restricted/srvreq.php Copy host certificate (hostcert.pem and hostkey.pem) in /etc/grid-certificates. – chmod 644 hostcert.pem – chmod 400 hostkey.pem If planning to use certificates released by unsupported EGEE CA’s, be sure that their public key and CRLs (usually distributed with an rpm) are installed. – GILDA CA one is available from https://gilda.ct.infn.it/RPMS/ca_GILDA-0.28.1.i386.rpm Installing MyProxy Server (3/3)

6 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 6 myproxy-server.config Copy /opt/glite/externals/myproxy-1.14/etc/myproxy- server.config to /etc Edit /etc/myproxy-server.config, to define access policies For instance, accept just GILDA or INFN credentials, authorize anyone to retrieve or renew : accepted_credentials "/C=IT/O=INFN/*" accepted_credentials "/C=IT/O=GILDA/*" proxy certificate subjects accepted for storing authorized_retrievers “/C=IT/O=GILDA/*" certificate subject allowed to request credentials delegation authorized_renewevers “*" certificate subject allowed to request credentials renew

7 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 7 Myproxy server init script Download and install the configuration script. rpm –ivh http://grid-deployment.web.cern.ch/grid- deployment/download/RpmDir_i386-rh73- manual/external/myproxy-config-1.1.8-13.edg1.noarch.rpm http://grid-deployment.web.cern.ch/grid- deployment/download/RpmDir_i386-rh73- manual/external/myproxy-config-1.1.8-13.edg1.noarch.rpm Edit /etc/init.d/myproxy.${GLOBUS_LOCATION}/libexec/globus-script-initializer.${libexecdir}/globus-sh-tools.sh MKCONFIG="/etc/rc.d/init.d/myproxy-generate-config.pl $CERTDIR $X509_USER_CERT $EDG_LOCATION/etc/edg-myproxy.conf $CONFIG" MYPROXY=/opt/glite/externals/myproxy-1.14/sbin/myproxy-server.${GLOBUS_LOCATION}/libexec/globus-script-initializer.${libexecdir}/globus-sh-tools.sh MKCONFIG="/etc/rc.d/init.d/myproxy-generate-config.pl $CERTDIR $X509_USER_CERT $EDG_LOCATION/etc/edg-myproxy.conf $CONFIG" MYPROXY=/opt/glite/externals/myproxy-1.14/sbin/myproxy-server Comment Replace Comment

8 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 8 Before start… Listening port, storing directory for credentials and configuration file could be changed setting the appropriate variables (PORT, STORE, CONFIG) on init script. – PORT=“-p 751X” – STORE=“-s /var/myproxy” – CONFIG=“-c $CONFIG” Pay attention to permissions/ownerships for ${STORE} ! (700 – owned by the same user running myproxy daemon).

9 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 9 Be sure that firewall is opened for myproxy daemon listening port. By instance on /etc/sysconfig/iptables add -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 7512 -j ACCEPT service iptables restart /etc/init.d/myproxy start Before start…

10 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 10 Testing MyProxy Server

11 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 11 You will find them on any UI – myproxy-init -s  -s: specifies the hostname of the myproxy server – myproxy-info -s  Get information about stored long living proxy – myproxy-get-delegation -s  Get a new proxy from the MyProxy server – myproxy-destroy -s  Destroy the credential into the server – Check out the myproxy-xxx - - help option MyProxy client commands

12 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 12 Store credentials on MyProxy Server %voms-proxy-destroy (remove local credentials) %myproxy-init -s -p... Enter GRID pass phrase for this identity:... Enter MyProxy pass phrase:... A proxy valid for 168 hours (7.0 days) for user xxx now exists on ui-test.trigrid.it. Now your credentials are stored on MyProxy server, and are available for delegation or renewal by RB

13 FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America First EELA Grid Tutorial for user and system administrators 13 Get delegation %myproxy-get-delegation -s -p Enter MyProxy pass phrase: A proxy has been received for user XXX in /tmp/x509up_u5XX

Download ppt "FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio."

Similar presentations

FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America FiReMan Installation Emidio Giorgio INFN.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America FiReMan Installation Emidio Giorgio INFN.
GLite authentication and authorization Discipline: Grid Computing, 07/08-2 Practical classes Inês Dutra, DCC/FCUP.

GLite authentication and authorization Discipline: Grid Computing, 07/08-2 Practical classes Inês Dutra, DCC/FCUP.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America DPM Server Installation Luciano Diaz ICN-UNAM.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America DPM Server Installation Luciano Diaz ICN-UNAM.
FP6−2004−Infrastructures−6-SSA-026409 E-infrastructure shared between Europe and Latin America DPM Server Installation Claudio Cherubino INFN – Catania.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America DPM Server Installation Claudio Cherubino INFN – Catania.
FP6−2004−Infrastructures−6-SSA-026634 User Interface Installation Valeria Ardizzone INFN – Catania Grid tutorial for users and.

FP6−2004−Infrastructures−6-SSA User Interface Installation Valeria Ardizzone INFN – Catania Grid tutorial for users and.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org Practicals on VOMS and MyProxy Emidio Giorgio INFN Retreat between GILDA and ESR VO, Bratislava,

INFSO-RI Enabling Grids for E-sciencE Practicals on VOMS and MyProxy Emidio Giorgio INFN Retreat between GILDA and ESR VO, Bratislava,
Ninth EELA Tutorial for Users and Managers www.eu-eela.org E-infrastructure shared between Europe and Latin America User Interface installation and configuration.

Ninth EELA Tutorial for Users and Managers E-infrastructure shared between Europe and Latin America User Interface installation and configuration.
Ninth EELA Tutorial for Users and Managers www.eu-eela.org E-infrastructure shared between Europe and Latin America LFC Server Installation and Configuration.

Ninth EELA Tutorial for Users and Managers E-infrastructure shared between Europe and Latin America LFC Server Installation and Configuration.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America Luciano Díaz ICN-UNAM Based on Domenico.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Luciano Díaz ICN-UNAM Based on Domenico.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America GENIUS server installation and configuration.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America GENIUS server installation and configuration.
IST-2006-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America VOMS and MyProxy Server installation and configuration Pedro Henrique.

IST E-infrastructure shared between Europe and Latin America VOMS and MyProxy Server installation and configuration Pedro Henrique.
4th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS www.eu-eela.org E-infrastructure shared between Europe and Latin America BDII Server Installation Vanessa.

4th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS E-infrastructure shared between Europe and Latin America BDII Server Installation Vanessa.
1 Introduction to the tutorial for site managers Antonio Fuentes Red.es/RedIRIS EGEE/EUMedGrid/EELA Tutorial for Managers Sevilla,

1 Introduction to the tutorial for site managers Antonio Fuentes Red.es/RedIRIS EGEE/EUMedGrid/EELA Tutorial for Managers Sevilla,
Www.eu-eela.eu E-science grid facility for Europe and Latin America LFC Server Installation and Configuration Antonio Calanducci INFN Catania.

E-science grid facility for Europe and Latin America LFC Server Installation and Configuration Antonio Calanducci INFN Catania.
Www.eu-eela.org E-science grid facility for Europe and Latin America E2GRIS1 Raúl Priego Martínez – CETA-CIEMAT (Spain)‏ Itacuruça (Brazil), 2-15 November.

E-science grid facility for Europe and Latin America E2GRIS1 Raúl Priego Martínez – CETA-CIEMAT (Spain)‏ Itacuruça (Brazil), 2-15 November.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America AMGA Server Installation Tony Calanducci.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America AMGA Server Installation Tony Calanducci.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org Installation and configuration of gLite Resource Broker Emidio Giorgio INFN EGEE-EMBRACE tutorial,

INFSO-RI Enabling Grids for E-sciencE Installation and configuration of gLite Resource Broker Emidio Giorgio INFN EGEE-EMBRACE tutorial,
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org WMS + LB Installation Emidio Giorgio Giuseppe La Rocca INFN EGEE Tutorial, Rome 02-04.November.2005.

INFSO-RI Enabling Grids for E-sciencE WMS + LB Installation Emidio Giorgio Giuseppe La Rocca INFN EGEE Tutorial, Rome November.2005.
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org WMS & LB Installation Giuseppe La Rocca INFN Catania - Italy First Latin American Workshop.

INFSO-RI Enabling Grids for E-sciencE WMS & LB Installation Giuseppe La Rocca INFN Catania - Italy First Latin American Workshop.
Www.eu-eela.org E-infrastructure shared between Europe and Latin America Security Hands-on Christian Grunfeld, UNLP 8th EELA Tutorial, La Plata, 11/12-12/12,2006.

E-infrastructure shared between Europe and Latin America Security Hands-on Christian Grunfeld, UNLP 8th EELA Tutorial, La Plata, 11/12-12/12,2006.

Similar presentations

Ads by Google