GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training...
1
GILDA testbed GILDA Certificatio n Authority User Support and Training Services in IGI IGI Site Administra tors IGI Users IGI Software Developers (Second Level) IGI ROD (First Level) • Based on a open source tool (XOOPS/xHelp) • Interfaced via SOAP WS with the GGUS The IGI HelpDesk supports both national and international users and VOs together with the IGI resource site managers. Tickets opened by external users, and EGI operations teams are routed inside the IGI HelpDesk through the GGUS The first level support is organized in weekly shifts. The sites are monitored using Nagios tests and, in case of problems, tickets are opened and a first help is provided. The second Level support is provided by specialized teams both from the operations and from the middleware developers. IGI (Italian Grid Initiative) is developing a web portal to ease the access to grid and cloud services; The main goal is to hide the “complexity” of X.509 certificates (request and management); IGTF policies and guidelines have been taken into account when designing the framework. Strong user identification by means of • an IdP belonging to an accredited identity federation (i.e. IDEM federation); • VOMS and MyProxy mechanisms Train users and site administrators to use and operate the Infrastructure based on the EGI/EMI middleware Disseminate the work done to find new applications for long term sustainability Seek, identify, and closely support new communities to deploy their applications and create the computing model Set-up and manage a Production Grid Infrastructure GILDA Virtual Organisati on The GILDA testbed is a full set of core and site grid services where grid beginners can experience grid features Since 2004 GILDA supports national and international projects with its facilities dedicated for grid training and dissemination Training material GILDA CA, now also distributed with EUGridPMA, on request issues X509 certificates ready to be used by anyone for training events GILDA VO complements GILDA CA providing a VO where issued certificates are automatically inserted. The VO is deployed in the whole GILDA testbed GILDA offers in its web site a series of exercises, hands-on supporting the training process. Since 2011, the GILDA web site has been re-engineered using Liferay as portlet container, moving forward towards Science Gateway paradigm https:// gilda.ct.infn.it Used to handle Grid Credentials in a easy way, lightweight and web-affine manner Generate a Grid Credential from a requestID Copy and paste this URL to get your proxy! • Based on Jersey, the open source, production quality JAX-RS (JSR 311) Reference Implementation for building RESTful Web services; • Java #PKCS#11, CoG-Kit, Bouncy Castle and VOMS- APIs libraries; • Thread-safe access to the list of smart cards; • SSL encryption based on trusted host certificate; • eToken PRO 32/64KBytes smart cards; • Caching of proxy certificates for each valid requestID = serial + vo + fqan. For Job Submission and Data Management tasks, the portal uses WS-PGrade (MTA- SZTAKI); Other solutions are under investigation: e.g.: JSAGA (IN2P3); For Cloud resource provisioning the portal is interfaced with WNoDES (INFN-CNAF); VOMS My-proxy server voms- proxy-init myproxy- init GRID Cloud First access Configurat ions Authentic ation FEDERATION CA online MICS WAYF 2 Web Portal CA online bridge Cloud Bridge Job Submissi on Data Manageme nt Accounti ng Grid accounting system 1 3 4 Igi general purpose portal to easily access the Grid The GILDA training infrastructure Igi user support and Helpdesk Model RESTful “lightweight”crypto library API A consolidated Work-plan for application porting
-
Upload
buck-walker -
Category
Documents
-
view
225 -
download
0
Transcript of GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training...
GILDA testbedGILDA testbed
GILDA CertificationAuthority
GILDA CertificationAuthority
User Support and Training Services in IGIUser Support and Training Services in IGI
IGI Site Administrators
IGI Site AdministratorsIGI UsersIGI Users
IGI Software Developers
(Second Level)
IGI Software Developers
(Second Level)
IGI ROD (First Level)
IGI ROD (First Level)
• Based on a open source tool (XOOPS/xHelp)
• Interfaced via SOAP WS with the GGUS
The IGI HelpDesk supports both national and international users and VOs together with the IGI resource site managers. Tickets opened by external users, and EGI operations teams are routed inside the IGI HelpDesk through the GGUS
The first level support is organized in weekly shifts.The sites are monitored using Nagios tests and, in case of problems, tickets are opened and a first help is provided.The second Level support is provided by specialized teams both from the operations and from the middleware developers.
IGI (Italian Grid Initiative) is developing a web portal to ease the access to grid and cloud
services;The main goal is to hide the “complexity” of
X.509 certificates (request and management); IGTF policies and guidelines have been taken into account when designing the framework.
IGI (Italian Grid Initiative) is developing a web portal to ease the access to grid and cloud
services;The main goal is to hide the “complexity” of
X.509 certificates (request and management); IGTF policies and guidelines have been taken into account when designing the framework.
Strong user identification by means of
• an IdP belonging to an accredited identity federation (i.e. IDEM federation);
• VOMS and MyProxy mechanisms
Strong user identification by means of
• an IdP belonging to an accredited identity federation (i.e. IDEM federation);
• VOMS and MyProxy mechanisms
Train users and site administrators to use and operate the Infrastructure based on the EGI/EMI middleware
Disseminate the work done to find new applications for long term sustainability
Seek, identify, and closely support new communities to deploy their applications and create the computing model
Set-up and manage a Production Grid
Infrastructure
GILDAVirtual
Organisation
GILDAVirtual
Organisation
The GILDA testbed is a full set of core and site grid services where grid beginners can experience grid features
Since 2004 GILDA supports national and international projects with its facilities dedicated for grid training and dissemination
Training materialTraining material
GILDA CA, now also distributed with EUGridPMA, on request issues X509 certificates ready to be used by anyone for training events
GILDA VO complements GILDA CA providing a VO where issued certificates are automatically inserted. The VO is deployed in the whole GILDA testbed
GILDA offers in its web site a series of exercises, hands-on supporting the training process. Since 2011, the GILDA web site has been re-engineered using Liferay as portlet container, moving forward towards Science Gateway paradigm
https://gilda.ct.infn.it
Used to handle Grid Credentials in a easy way, lightweight and web-affine manner
Generate a Grid Credential from a requestID
Copy and paste this URL to get your proxy!
• Based on Jersey, the open source, production quality JAX-RS (JSR 311) Reference Implementation for building RESTful Web services;
• Java #PKCS#11, CoG-Kit, Bouncy Castle and VOMS-APIs libraries;
• Thread-safe access to the list of smart cards;
• SSL encryption based on trusted host certificate;
• eToken PRO 32/64KBytes smart cards;
• Caching of proxy certificates for each valid requestID = serial + vo + fqan.
For Job Submission and Data Management tasks, the portal
uses WS-PGrade (MTA-SZTAKI);
Other solutions are under investigation:
e.g.: JSAGA (IN2P3);
For Job Submission and Data Management tasks, the portal
uses WS-PGrade (MTA-SZTAKI);
Other solutions are under investigation:
e.g.: JSAGA (IN2P3);
For Cloud resource provisioning the
portal is interfaced with WNoDES (INFN-
CNAF);
For Cloud resource provisioning the
portal is interfaced with WNoDES (INFN-
CNAF);
VOMS
My-proxy server
voms-proxy-init
myproxy-init
GRID
CloudCloud
First access
Configurations
Authentication
FEDERATIONFEDERATION
CA online MICS
WAYF
2
Web Portal
CA online bridgeCA online bridge
Cloud Bridge
Job Submission
Data Management
Accounting
Grid accounting system
11
3
44
Igi general purpose portal to easily access the Grid
The GILDA training infrastructure
Igi user support and Helpdesk Model
RESTful “lightweight”crypto library API
A consolidated Work-plan for application porting
