Presentation is loading. Please wait.

Presentation is loading. Please wait.

CREAM Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids.

Published byJanis Ellis Modified over 8 years ago

Similar presentations

Presentation on theme: "CREAM Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids."— Presentation transcript:

1 CREAM Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids

2 27 August 2013 Sara Bertocco - gLite Middleware Administration2 Documentation Main reference guide: https://twiki.cern.ch/twiki/bin/view/EMI/https://twiki.cern.ch/twiki/bin/view/EMI/\ GenericInstallationConfigurationEMI3 Other documentation: EMI http://www.eu-emi.eu/products/-/asset_publisher/ http://www.eu-emi.eu/products/-/asset_publisher/ \1gkD/content/cream-3#Documentation_AN3 EGI-UMD http://repository.egi.eu/2013/02/18/cream-1-14-2/

3 27 August 2013 Sara Bertocco - gLite Middleware Administration3 Prerequisites: OS Required: a standard 64 bit SL(C)5 64 bit SL(C)6 Linux distribution properly installed. Check OS version installed with cat /etc/redhat-release

4 27 August 2013 Sara Bertocco - gLite Middleware Administration4 Repositories: No DAG, Yes EPEL The DAG repository must be removed or deactivated: rm /etc/yum.repos.d/dag.repo or mv /etc/yum.repos.d/dag.repo /etc/yum.repos.d/dag.repo.remove or enabled=0 in /etc/yum.repos.d/dag.repo The EPEL repository must be installed wget \ http://fedora-mirror01.rbc.ru/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm \ --no-check-certificate yum install epel-release-6-8.noarch.rpm --nogpgcheck -y (*) Use –nogpgcheck to avoid to import the epel gpg key

5 27 August 2013 Sara Bertocco - gLite Middleware Administration5 Repositories: EMI 3 distribution EMI repositories can be installed manually (configuring yum.repo files and giving EMI repositories precedence over EPEL. Check guide) through emi-release package (suggested): wget \ http://emisoft.web.cern.ch/emisoft/dist/EMI/3/sl6/x86_64/base/emi-release-3.0.0-2.el6.noarch.rpm \ --no-check-certificate yum install./ emi-release-3.0.0-2.el6.noarch.rpm

6 27 August 2013 Sara Bertocco - gLite Middleware Administration6 Repositories: Certification Authorities Complete information on Certification Authorities distribution: https://wiki.egi.eu/wiki/EGI_IGTF_Release We need: wget \ http://repository.egi.eu/sw/production/cas/1/current/repo-files/EGI-trustanchors.repo -O \ /etc/yum.repos.d/EGI-trustanchors.repo

7 27 August 2013 Sara Bertocco - gLite Middleware Administration7 Installation: CA certificates The CA certificates can be installed issuing: yum install ca-policy-egi-core --nogpgcheck -y (*) To install gpg key (so not needed –nogpgcheck): http://repository.egi.eu/sw/production/cas/1/GPG-KEY-EUGridPMA-RPM-3

8 27 August 2013 Sara Bertocco - gLite Middleware Administration8 Installation: CREAM CE The CREAM CE can be installed issuing: yum install emi-cream-ce

9 27 August 2013 Sara Bertocco - gLite Middleware Administration9 Exercise 1: EMI3 CREAM CE Installation Install the CREAM CE Relevant files: http://wiki.scc.kit.edu/gridkaschool/index.php/Exercise_1:_EMI3_CREAM_CE_Installation

10 27 August 2013 Sara Bertocco - gLite Middleware Administration10 Choose the Batch System Supported batch systems: LSF must be installed and configured by hand PBS Torque yaim configuration provided (S)GE yaim configuration provided Condor supported in the BLAH component (the component that implements the interface with the batch system), but not in information providers and in yaim configuration modules SLURM supported in the BLAH component, supported in information providers (not much stable), partially supported in yaim (check EMI products documentation)

11 27 August 2013 Sara Bertocco - gLite Middleware Administration11 Install the Batch System We choose to install PBS Torque with torque master co-hosted with CREAM: yum install emi-torque-server yum install emi-torque-utils (*) If you are running Torque, and your CREAM CE node is NOT the torque master, on the CE you install only the emi-torque-utils metapackage: yum install emi-torque-utils

12 27 August 2013 Sara Bertocco - gLite Middleware Administration12 Enable munge (1) MUNGE is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. Check that munge is installed: rpm -qa |grep munge munge-libs-x.y.z munge-x.y.z

13 27 August 2013 Sara Bertocco - gLite Middleware Administration13 Enable munge (2) Enable munge on your torque cluster: Install the munge package (if it is not installed) on your pbs_server, submission hosts and all worker node hosts in your cluster. On one host generate a key with /usr/sbin/create-munge-key Copy the key, /etc/munge/munge.key to your pbs_server, submission hosts and all worker node hosts on your cluster. Pay attention the ownership of that file must be: -r-------- 1 munge munge 1024 Jan 03 09:57 munge.key if needed: chown munge:munge /etc/munge/munge.key chmod 400 /etc/munge/munge.key Start the munge daemon on these nodes service munge start chkconfig munge on

14 27 August 2013 Sara Bertocco - gLite Middleware Administration14 Exercise 2: Batch System Installation Install the Batch System: yum install emi-torque-server yum install emi-torque-utils /usr/sbin/create-munge-key chown munge:munge /etc/munge/munge.key chmod 400 /etc/munge/munge.key service munge start chkconfig munge on scp /etc/munge/munge.key Relevant files: http://wiki.scc.kit.edu/gridkaschool/index.php/http://wiki.scc.kit.edu/gridkaschool/index.php/\ Exercise_2:_Torque_Batch_System_Installation

15 27 August 2013 Sara Bertocco - gLite Middleware Administration15 CREAM configuration Configuration tool: YAIM The YAIM modules needed to configure each middleaware component are automatically installed with the middleware. Relevant configuration files are: users.conf groups.conf wn-list.conf site-info.def vo.d/ services/glite-creamce

16 27 August 2013 Sara Bertocco - gLite Middleware Administration16 Configuration: files customization An example of file to customize is in /opt/glite/yaim/examples siteinfo/site-info.def siteinfo/services/glite-creamce vo.d/* users.conf (described in users.conf.README) groups.conf (described in groups.conf.README) wn-list.conf (described in wn-list.conf.README) IMPORTANT: The configuration files coming with the YAIM rpm are just examples! Please review them and edit your own in a safe location! /opt/glite/yaim/* is overwritten on every yaim update

17 27 August 2013 Sara Bertocco - gLite Middleware Administration17 Configuration: users.conf customization users.conf is described in users.conf.README This file defines the pool account user mapping, i.e. the UNIX users to be created on the service nodes that need them (mainly CE and WNs). File format (fields must not have any white space): UID:LOGIN:GID1[,GID2,...]:GROUP1[,GROUP2,...]:VO:FLAG: UID = user ID LOGIN = login name GID1 = primary group ID GID2 = secondary group ID GROUP1 = primary group GROUP2 = secondary group VO = virtual organization FLAG = string to identify special users Example: 45003:dteam003:45000:dteam:dteam::

18 27 August 2013 Sara Bertocco - gLite Middleware Administration18 Configuration: groups.conf customization groups.conf is described in groups.conf.README This file defines the VOMS group mapping, i.e. the user categories that must be accepted by the grid services provided by a site. It indicates for each category to which kind of local accounts the user should be mapped, where applicable. File format (fields must not have any white space): "VOMS_FQAN":GROUP:GID:FLAG:[VO] VOMS_FQAN = VOMS proxy fully qualified attribute name GROUP = UNIX group GID = UNIX GID FLAG = string to identify special users VO = virtual organization (optional. It allows the VO to be specified explicitly, otherwise it will be derived from the VOMS FQAN) Examples: "/my-VO/ROLE=lcgadmin":::sgm: "/my-VO/foobar/ROLE=admin":::foobar_admin: "/my-VO/foobar/*":::foobar_group: "/my-VO/*"::::

19 27 August 2013 Sara Bertocco - gLite Middleware Administration19 Configuration: wn-list.conf customization wn-list.conf is described in wn-list.conf.README This file defines the list of WN hostnames (FQDN) in the site. Hostnames have to be Fully Qualified Domain Names (FQDN) Example: gks-026.scc.kit.edu

20 27 August 2013 Sara Bertocco - gLite Middleware Administration20 Exercise 3: Users Groups and WN list conf Configure users, groups and worker node list Create your own Copy example files from examples to Customize users.conf adding testers.eu-emi.eu users Customize groups.conf adding testers.eu-emi.eu groups Fill your wn-list.conf Relevant files: http://wiki.scc.kit.edu/gridkaschool/index.php/http://wiki.scc.kit.edu/gridkaschool/index.php/\ Exercise_3:_Configuration_of_users,_groups_and_worker_node_list

21 27 August 2013 Sara Bertocco - gLite Middleware Administration21 Configuration: site files customization site-info.def is the main configuration file needed to execute the yaim command. It contains the list of variables common to multiple node types in form of key-value pairs. Some comments and information to the variables are online in the example file https://twiki.cern.ch/twiki/bin/view/LCG/Site-https://twiki.cern.ch/twiki/bin/view/LCG/Site-\ info_configuration_variables#site_info_def vo.d directory was created to make the configuration of the DNS-like VOs easier. It contains a file name per VO whose name has to be the lower-cased version of the VO name. The matching file should contain the definitions for that VO. In case the VO is also defined in site-info.def, the vo.d file will overwrite the variables which are defined there. services/glite-creamce Contains cream-ce node type specific variables, it contains a list of key-value pairs.

22 27 August 2013 Sara Bertocco - gLite Middleware Administration22 Configuration verification Verify if all need variables are configured: /opt/glite/yaim/bin/yaim -v \ -s /root/siteinfo_dir/site-info.def -n creamCE Verify the file syntax source site-info.def

23 27 August 2013 Sara Bertocco - gLite Middleware Administration23 Exercise 4: Site-info customization Edit and customize your site-info.def Uncomment dteam VO parameters in your site-info.def Add DECH VO configuration parameters Edit and customize your services/glite-creamce Verify the configuration Documentation reference: https://twiki.cern.ch/twiki/bin/view/LCG/https://twiki.cern.ch/twiki/bin/view/LCG/ \ Site-info_configuration_variables#site_info_def Relevant files: http://wiki.scc.kit.edu/gridkaschool/index.php/http://wiki.scc.kit.edu/gridkaschool/index.php/\ Exercise_4:_Site-info_customization

24 27 August 2013 Sara Bertocco - gLite Middleware Administration24 Install the host certificate The CREAM CE node requires the host certificate/key files to be installed. If you do not have one already, contact your national Certification Authority (CA) to understand how to obtain a host certificate. Make sure to place the two files in the target node into the /etc/grid-security directory. Set the proper mode and ownerships: chown root.root /etc/grid-security/hostcert.pem chown root.root /etc/grid-security/hostkey.pem chmod 644 /etc/grid-security/hostcert.pem chmod 400 /etc/grid-security/hostkey.pem

25 27 August 2013 Sara Bertocco - gLite Middleware Administration25 Exercise 5: CREAM+Torque configuration Finally we are ready to configure: /opt/glite/yaim/bin/yaim -c \ -s /root/siteinfo_dir/site-info.def -n creamCE \ -n TORQUE_server -n TORQUE_utils Relevant files: http://wiki.scc.kit.edu/gridkaschool/index.php/Exercise_5http://wiki.scc.kit.edu/gridkaschool/index.php/Exercise_5:\ _EMI_3_CREAM_CE_%2B_Torque_Server_Configuration

26 27 August 2013 Sara Bertocco - gLite Middleware Administration26 Troubleshooting – Init scripts /etc/init.d/tomcat6 To start/stop the CREAM service, it is just necessary to start/stop the CREAM container. In case the new BLAH blparser is used, this will also start it (if not already running). /etc/init.d/glite-ce-blah-parser If necessary to explicitly start the new BLAH blparser /etc/init.d/glite-ce-blparser Used if the old BLAH blparser is used, before starting tomcat, start it on the BLPARSER_HOST /etc/init.d/bdii /etc/init.d/mysqld /etc/init.d/glite-lb-locallogger /etc/init.d/globus-gridftp service gLite start/stop/restart

27 27 August 2013 Sara Bertocco - gLite Middleware Administration27 Relevant Configuration Files CREAM configuration file (by yaim-cream-ce) /etc/glite-ce-cream/cream-config.xml BLAH configuration file (by yaim-cream-ce) /etc/blah.config BLparser configuration file (by yaim-cream-ce) /etc/blparser.conf (only for the old blparser). glexec configuration file (by yaim-cream-ce) /etc/glexec.conf LCAS configuration file for glexec (by yaim-cream-ce) /etc/lcas/lcas-glexec.db LCMAPS configuration file for glexec (by yaim-cream-ce) /etc/lcmaps/lcmaps-glexec.db LCAS configuration file for gridftpd (by yaim-cream-ce) /etc/lcas/lcas.db (only when Argus is not used). LCMAPS configuration file for gridftpd (by yaim-core) /etc/lcmaps/lcmaps.db (only when Argus is not used). ARGUS configuration file for gridftpd ( /etc/grid-security/gsi-pep-callout.conf) (only when the CREAM CE is configured to use ARGUS).

28 27 August 2013 Sara Bertocco - gLite Middleware Administration28 Troubleshooting – Log files (1) The relevant log files are: The tomcat log file /usr/share/tomcat5/logs/catalina.out The trustmanager log file /usr/share/tomcat5/logs/trustmanager.log The new BLAH blparser log files /var/log/cream/glite-ce-bnotifier.log /var/log/cream/glite-ce-bupdater.log The old BLAH blparser log files /var/log/cream/glite-xxxparser.log xxx=batch sys The gridftp log files /var/log/globus-gridftp.log /var/log/gridftp-session.log

29 27 August 2013 Sara Bertocco - gLite Middleware Administration29 Troubleshooting – Log files (2) The relevant log files are: The CREAM log file /var/log/cream/glite-ce-cream.log /var/log/cream-es/glite-ce-cream-es.log The verbosity can be increased modifying the files /etc/glite-ce-cream/log4j.properties /etc/glite-ce-cream-es/log4j.properties changing: log4j.logger.org.glite=info, fileout with: log4j.logger.org.glite=debug, fileout You may also change the attributes log4j.appender.fileout.MaxFileSize and log4j.appender.fileout.MaxBackupIndex to change the maximum file size and the maximum number of log files to be kept.

30 27 August 2013 Sara Bertocco - gLite Middleware Administration30 Troubleshooting – Log files (3) The relevant log files are: The glexec log file /var/log/messages (syslog) or set by yaim GLEXEC_CREAM_LOG_DESTINATION GLEXEC_CREAM_LOG_FILE GLEXEC_CREAMLCASLCMAPS_LOG The verbosity can be changed editing the glexec configuration file /etc/glexec.conf

31 27 August 2013 Sara Bertocco - gLite Middleware Administration31 Important on automatic updates An update of an RPM not followed by configuration can cause problems. STRONG RECOMMENDATION: NOT TO USE AUTOMATIC UPDATE PROCEDURE OF ANY KIND.

32 27 August 2013 Sara Bertocco - gLite Middleware Administration32 Questions ?

Download ppt "CREAM Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids."

Similar presentations

12th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATOR www.eu-eela.org E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.

12th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATOR E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.
Instalación y configuración de CE+WN Angelines Alberto CIEMAT Grid Tutorial, Sept. 2007.

Instalación y configuración de CE+WN Angelines Alberto CIEMAT Grid Tutorial, Sept
Accounting Update Dave Kant Grid Deployment Board Nov 2007.

Accounting Update Dave Kant Grid Deployment Board Nov 2007.
1 Kolkata, Asia 2 2011 - Joint CHAIN/EU-IndiaGrid2/EPIKH School for Grid Site Administrators, 03.02.2011 www.epikh.eu The EPIKH Project (Exchange Programme.

1 Kolkata, Asia Joint CHAIN/EU-IndiaGrid2/EPIKH School for Grid Site Administrators, The EPIKH Project (Exchange Programme.
Www.see-grid-sci.eu SEE-GRID-SCI Hands-On Session: Computing Element (CE) and site BDII Installation and Configuration Dusan Vudragovic Institute of Physics.

SEE-GRID-SCI Hands-On Session: Computing Element (CE) and site BDII Installation and Configuration Dusan Vudragovic Institute of Physics.
1 Worker Nodes Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids.

1 Worker Nodes Installation&Configuration Sara Bertocco INFN Padova 11 th International GridKa School 2013 – Big Data, Clouds and Grids.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) VOMS Installation and configuration Bouchra

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) VOMS Installation and configuration Bouchra
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) CE+WN+siteBDII Installation and configuration Bouchra

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) CE+WN+siteBDII Installation and configuration Bouchra
1 Introduction to the tutorial for site managers Antonio Fuentes Red.es/RedIRIS EGEE/EUMedGrid/EELA Tutorial for Managers Sevilla,

1 Introduction to the tutorial for site managers Antonio Fuentes Red.es/RedIRIS EGEE/EUMedGrid/EELA Tutorial for Managers Sevilla,
Www.epikh.eu The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Workload Management System + Logging&Bookkeeping Installation.

The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Workload Management System + Logging&Bookkeeping Installation.
Www.eu-eela.eu E-science grid facility for Europe and Latin America LFC Server Installation and Configuration Antonio Calanducci INFN Catania.

E-science grid facility for Europe and Latin America LFC Server Installation and Configuration Antonio Calanducci INFN Catania.
Www.eu-eela.org E-science grid facility for Europe and Latin America gLite WMS Installation and configuration Riccardo Bruno – INFN.CT 30/06/2008 – 04/07/2008.

E-science grid facility for Europe and Latin America gLite WMS Installation and configuration Riccardo Bruno – INFN.CT 30/06/2008 – 04/07/2008.
FP6−2004−Infrastructures−6-SSA-026409 www.eu-eela.org E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio.

FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America MyProxy server installation Emidio Giorgio.
WNoDeS – Worker Nodes on Demand Service on EMI2 WNoDeS – Worker Nodes on Demand Service on EMI2 Local batch jobs can be run on both real and virtual execution.

WNoDeS – Worker Nodes on Demand Service on EMI2 WNoDeS – Worker Nodes on Demand Service on EMI2 Local batch jobs can be run on both real and virtual execution.
EMI is partially funded by the European Commission under Grant Agreement RI-261611 Argus Policies Tutorial Valery Tschopp - SWITCH EGI TF Prague.

EMI is partially funded by the European Commission under Grant Agreement RI Argus Policies Tutorial Valery Tschopp - SWITCH EGI TF Prague.
EPIKH School for Grid Site Administrators, Amman, 21.12.2011 1/32 Introductions BDII Installation and Configuration Miguel Angel Díaz Corchero

EPIKH School for Grid Site Administrators, Amman, /32 Introductions BDII Installation and Configuration Miguel Angel Díaz Corchero
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org WMS + LB Installation Emidio Giorgio Giuseppe La Rocca INFN EGEE Tutorial, Rome 02-04.November.2005.

INFSO-RI Enabling Grids for E-sciencE WMS + LB Installation Emidio Giorgio Giuseppe La Rocca INFN EGEE Tutorial, Rome November.2005.
9th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS www.eu-eela.org E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.

9th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.
12th EELA Tutorial for Users and System Administrators www.eu-eela.org E-infrastructure shared between Europe and Latin America User Interface installation.

12th EELA Tutorial for Users and System Administrators E-infrastructure shared between Europe and Latin America User Interface installation.
4th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS www.eu-eela.org E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.

4th EELA TUTORIAL - USERS AND SYSTEM ADMINISTRATORS E-infrastructure shared between Europe and Latin America CE + WN installation and configuration.

Similar presentations

Ads by Google