grid infrastructure group (charlotte): barry wilkinson jeremy villalobos nikul suthar keyur sheth...
TRANSCRIPT
Grid Infrastructure group (Charlotte):
Barry WilkinsonJeremy VillalobosNikul SutharKeyur Sheth
Department of Computer ScienceUNC-Charlotte
March 16, 2006
VisualGrid project meetingPortal Development
Goals of Infrastructure Group
To develop grid infrastructure Provide technical direction to enable UNC-C,
UNC-A, and EPA sites to interconnect as grid, working with grid infrastructure members at other sites.
Develop a user interface so that users can submit jobs to any site.
Customize interface to satisfy user requirements …
Computing Resources at Charlotte
For initial development:– CS dept. 4-node dual 3.4 GHz Xeon server
• Called coit-grid01.uncc.edu – coit-grid04.uncc.edu• Initially purchased from a grant for Fall 2005 grid
computing course
Planned UNC-C resources to add:– University research 51-node dual Xeon cluster
• Chuck Price and Mike Mosley
– Bioinformatics cluster 41-node and 8-node G5 clusters
• Larry Mays and John Merritt
Software
Globus 4.0.x – provides very basic grid components
OGCE2/Gridsphere portal– User interface
SimpleCA – certificate authority– Globus PKI Security– Complete VisualGrid will have multiple
certificate authorities with cross certification Local Job Schedulers
– Sun Grid Engine and Condor
X509 certificates are used to provide security in a grid system.
Each user needs a certificate issued by a “certificate authority” (CA).
Grid systems use a so-called user proxy certificates to allow resources to control resources on the user’s behalf.
X509 Certificates
Users certified by a local CA
UNC-C
CA
CA’s with Mutual Trust
UNC-C
CA
UNC-A
CA
GT4
Final VisualGrid infrastructure
EPAUNC-A
UNC-CCA
CA
CA
Multiple Grid Nodes
With multiple grid nodes, users need:
Account on each system, and access control set accordingly.
A certificate acceptable by the local certificate authority (i.e. signed by a CA it trusts)
Getting an account
New User
Web-based VisualGrid form
CA/SystemAdministrator
Create accounts, set access control, sign certificate, …
Initial usernameand password
Fill in form
Experimental configuration at UNC-C
CA
CA
coit-grid01
coit-grid03
VisualGrid portal URL:http://coit-grid01.uncc.edu:8080/gridsphere(Portals on other systems for experimentation.)
coit-grid02
coit-grid04
Certificate authorities (SimpleCA)
All with Globus 4.0Sun Grid Engine scheduler on grid01-grid02Condor on Grid 03-grid04
VisualGridPortal
Based upon OGCE2/GridsphereProvides: User login Proxy certificate generation Job submission to any enrolled
system Secure file transfers Informational tools
Portal login page(OGCE2/gridsphere portal)
Usual portlets:
Proxy Manager
Job Submission
File Transfer