Grid Infrastructure group (Charlotte):

Barry WilkinsonJeremy VillalobosNikul SutharKeyur Sheth

Department of Computer ScienceUNC-Charlotte

March 16, 2006

VisualGrid project meetingPortal Development

Goals of Infrastructure Group

To develop grid infrastructure Provide technical direction to enable UNC-C,

UNC-A, and EPA sites to interconnect as grid, working with grid infrastructure members at other sites.

Develop a user interface so that users can submit jobs to any site.

Customize interface to satisfy user requirements …

Computing Resources at Charlotte

For initial development:– CS dept. 4-node dual 3.4 GHz Xeon server

• Called coit-grid01.uncc.edu – coit-grid04.uncc.edu• Initially purchased from a grant for Fall 2005 grid

computing course

Planned UNC-C resources to add:– University research 51-node dual Xeon cluster

• Chuck Price and Mike Mosley

– Bioinformatics cluster 41-node and 8-node G5 clusters

• Larry Mays and John Merritt

Software

Globus 4.0.x – provides very basic grid components

OGCE2/Gridsphere portal– User interface

SimpleCA – certificate authority– Globus PKI Security– Complete VisualGrid will have multiple

certificate authorities with cross certification Local Job Schedulers

– Sun Grid Engine and Condor

X509 certificates are used to provide security in a grid system.

Each user needs a certificate issued by a “certificate authority” (CA).

Grid systems use a so-called user proxy certificates to allow resources to control resources on the user’s behalf.

X509 Certificates

Users certified by a local CA

UNC-C

CA

CA’s with Mutual Trust

UNC-C

CA

UNC-A

CA

GT4

Final VisualGrid infrastructure

EPAUNC-A

UNC-CCA

CA

CA

Multiple Grid Nodes

With multiple grid nodes, users need:

Account on each system, and access control set accordingly.

A certificate acceptable by the local certificate authority (i.e. signed by a CA it trusts)

Getting an account

New User

Web-based VisualGrid form

CA/SystemAdministrator

Create accounts, set access control, sign certificate, …

Initial usernameand password

Fill in form

Experimental configuration at UNC-C

CA

CA

coit-grid01

coit-grid03

VisualGrid portal URL:http://coit-grid01.uncc.edu:8080/gridsphere(Portals on other systems for experimentation.)

coit-grid02

coit-grid04

Certificate authorities (SimpleCA)

All with Globus 4.0Sun Grid Engine scheduler on grid01-grid02Condor on Grid 03-grid04

VisualGridPortal

Based upon OGCE2/GridsphereProvides: User login Proxy certificate generation Job submission to any enrolled

system Secure file transfers Informational tools

Portal login page(OGCE2/gridsphere portal)

Usual portlets:

Proxy Manager

Job Submission

File Transfer