UAB IT Academic Computing

Similar documents
MIDDLEWARE: SINGLE SIGN ON AUTHENTICATION AND AUTHORIZATION FOR GROUPS

Internet2 Overview, Services and Activities. Fall 2007 Council Briefings October 7, 2007

NMI Component Testing Guidelines Pertaining to: NMI Release 1 (released May 7, 2002)

The Rise of Middleware. Ken Klingenstein, Director Internet2 Middleware Initiative

New trends in Identity Management

Leveraging the InCommon Federation to access the NSF TeraGrid

Organizing a Campus Change: Planning for Identity and Access Management Improvements at UF

Higher Education PKI Initiatives

Liberty Alliance Project

Report for the GGF 15 Community Activity: Leveraging Site Infrastructure for Multi-Site Grids

A VO-friendly, Community-based Authorization Framework

TRUST IDENTITY. Trusted Relationships for Access Management: AND. The InCommon Model

Federated access to Grid resources

Cyberinfrastructure Framework for 21st Century Science & Engineering (CIF21)

Cookbook. 20th October (DRAFT version 0.45)

Potential for Technology Innovation within the Internet2 Community: A Five-Year View

Shibboleth as a Tool for Authorized Access Control to the Subversion Repository System

CILogon Project

SLCS and VASH Service Interoperability of Shibboleth and glite

AA Developers Meeting

einfrastructures Concertation Event

Introduction to Identity Management Systems

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Single Sign-On Architectures. Jan De Clercq Senior Member of Technical Staff Technology Leadership Group Hewlett-Packard

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

LionShare: A Hybrid Secure Network for Academic Collaboration. Michael J. Halm, Marek Hatala, Derek Morr and Alex Valentine

Canadian Access Federation: Trust Assertion Document (TAD)

The Future of the Internet

Outline. March 5, 2012 CIRMMT - McGill University 2

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Virtual Organizations in Academic Settings

Integrating Identity Management Aspirations and Issues

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Federal-State Connections: Opportunities for Coordination and Collaboration

Identity and Access Management PIN App Owner Town Hall Meeting. March 31, 2015 Tuesday 3:00 4:30 p.m. Taubman, T-520 (HKS)

The Future of Indoor Plumbing. Dr Ken Klingenstein Director, Internet2 Middleware and Security

Authentication for Virtual Organizations: From Passwords to X509, Identity Federation and GridShib BRIITE Meeting Salk Institute, La Jolla CA.

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

ISA 767, Secure Electronic Commerce Xinwen Zhang, George Mason University

GÉANT Community Programme

Cisco on Cisco. Executive Overview. Version 2.0, Q1, FY 07. Cisco Public. Sal Pearce Cisco Systems, Inc. All rights reserved.

Middleware, Ten Years In: Vapority into Reality into Virtuality

Presented by Wolfgang Ziegler, Open Grid Forum

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Leveraging Globus Identity for the Grid. Suchandra Thapa GlobusWorld, April 22, 2016 Chicago

Grids and Security. Ian Neilson Grid Deployment Group CERN. TF-CSIRT London 27 Jan

Karyn Higa-Smith, Research Program Manager

Network Device Provisioning

Canadian Access Federation: Trust Assertion Document (TAD)

APAN 25 Middleware Session, Hawaii Jan.24, 2008 Japanese University PKI (UPKI) Update and Shibboleth using PKI authentication

1. Federation Participant Information DRAFT

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Some thoughts on the evolution of Grid and Cloud computing

Cloud Transformation Program Cloud Change Champions May 23, 2018

Resources and Services Virtualization without Boundaries (ReSerVoir)

Clemson HPC and Cloud Computing

Identity Management In Red Hat Enterprise Linux. Dave Sirrine Solutions Architect

Interagency Advisory Board Meeting Agenda, Wednesday, April 24, 2013

Should You Use Liberty or Passport for Digital Identities?

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

FeduShare Update. AuthNZ the SAML way for VOs

Report to World Bank. April 21, 2011

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

Media (NEM) Initiative

Cisco Collaborative Knowledge

(60 min) California State Updates

Managing Trust in e-health with Federated Identity Management

OATH : An Initiative for Open AuTHentication

UAB Research Compu1ng Resources and Ac1vi1es

Goal. TeraGrid. Challenges. Federated Login to TeraGrid

The University of Oxford campus grid, expansion and integrating new partners. Dr. David Wallom Technical Manager

Thebes, WS SAML, and Federation

Effective: 12/31/17 Last Revised: 8/28/17. Responsible University Administrator: Vice Chancellor for Information Services & CIO

THEBES: THE GRID MIDDLEWARE PROJECT Project Overview, Status Report and Roadmap

Canadian Access Federation: Trust Assertion Document (TAD)

Collaborative Technologies and Enterprise Middleware:

IRNC:RXP SDN / SDX Update

The AAF - Supporting Greener Collaboration

20533B: Implementing Microsoft Azure Infrastructure Solutions

CNI Spring Taskforce

EGEE and Interoperation

INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES

DEPLOYING MULTI-TIER APPLICATIONS ACROSS MULTIPLE SECURITY DOMAINS

Juliusz Pukacki OGF25 - Grid technologies in e-health Catania, 2-6 March 2009

ACCI Recommendations on Long Term Cyberinfrastructure Issues: Building Future Development

A Guanxi Shibboleth based Security Infrastructure for e-social Science

Grid Scheduling Architectures with Globus

Polycom RealPresence Platform Director

OGCE User Guide for OGCE Release 1

USGv6: US Government. IPv6 Transition Activities 11/04/2010 DISCOVER THE TRUE VALUE OF TECHNOLOGY

ConCert FAQ s Last revised December 2017

Great Plains Network. Kate Adams, GPN

Scientific data processing at global scale The LHC Computing Grid. fabio hernandez

Prescription Monitoring Program Information Exchange (PMIX) Architecture. Version 1.0. April 2012

Extending Services with Federated Identity Management

A Simplified Access to Grid Resources for Virtual Research Communities

30 Nov Dec Advanced School in High Performance and GRID Computing Concepts and Applications, ICTP, Trieste, Italy

InCommon Federation: Participant Operational Practices

SAML-Based SSO Configuration

Transcription:

UAB IT Academic Computing David L Shealy, Director Jill Gemmill, Asst. Director John-Paul Robinson, System Programmer Lead

Mission Provide leadership for UAB research community while interfacing important initiatives to appropriate information technologies that enable success, and Provide a test-bed for advanced technologies and a mechanism for migration of selected technologies into production, core IT services

Goals FY06 1. UABgrid Computing Pilot Project involving ITAC and several campus HPC user groups Demonstrate using http://uabgrid.uab.edu as an environment for running applications, such as BLAST Measure and compare computing performance UABgrid versus batch processing for several applications using a matrix including characteristics of application, infrastructure, and ease-of-use. 2. Collaborative Technologies Pilot Project Establish a pilot Shibboleth deployment for inter-institutional user authentication and authorization of access to common workspace supporting calendar, document sharing, data sharing, and communications technologies to desktop.

Middleware Invisible services, between application and network, allowing people to work together without being limited by the boundaries of their computing and local administrative environments Virtual Organization Collaborations, research partnerships, communities of users who communicate regularly and share data, resources, and services. Yesterday s lab is today s Virtual Organization (VO).

Summary of Presentations Internet2 Member Meeting UAB NMI Testbed Program: Integrated Directory Services, Weblogin, and Grid Computing [September 2004] Middleware-Enabled Tools for Virtual Organizations, Jill Gemmill and John-Paul Robinson [May 2005] EDUCAUSE Middleware Workshop UABgrid: A Foundation for Collaboration and Computation Jill Gemmill [June 2005]

Integrated Directory Services Where is UAB Today? Single authoritative identity management directory Single management point for Creating BlazerID password resets user account creation/deactivation Implemented latest NMI schema recommendations (Groups, H.350, eduperson, eduorg, LDAP Recipe) Even more applications using LDAP

UAB Authoritative Directory

What is the Grid? Emerging standards for integration of different computing environments into what appears as a single computing environment Standards bodies involved are: Global Grid Forum OASIS; W3 consortium; Distributed Mgt. Task Force; Web Services Interoperability Org.; Internet2 and Liberty Alliance

Why is Grid Computing Important? 20 th Century Research Model: a single institution concerned about information held internally and accessed by its own people 21 st Century Model: Virtual Organizations form dynamically across institutional boundaries to access and share distributed information and resources (eg: cabig and National E-Network for Primary Care Research see NIH Roadmap) Opportunity exists to leverage home institutions authentication and attribute storage (directory) systems

What is a campus grid UABgrid today Gain access using BlazerID and password - authentication Job submission via web interface Authorization decisions made based on institutional attributes to provide access to a set of resources (compute, storage, and data) Grid Security is based on security provided by digital certificates; UABgrid allows user key management or makes that transparent http://uabgrid.uab.edu/

Example User-Friendly Interface GridBLAST For jobs run repeatedly, it is possible to build a userfriendly interface Example: BLAST Access using BlazerID and password Queries and Results easily uploaded & downloaded Web UI can be hosted on your server Web UI can be written in any development language

UABGrid Architecture

UABGrid Software Infrastructure

SURAgrid Demo April 2005 BlazerID and password IDENTITY MGT. GridTools Resources SURAGrid (Portal) and CA Bridge Digital Certificate Login Kerberos Login University of Virginia IDENTITY MGT. GridTools Resources Louisiana State University IDENTITY MGT. GridTools Resources

Shibboleth provides inter-institutional trust for identity FEDERATION Shibboleth Software Authenticate at home; can mix types of authentication used at each institution Resource owner controls access to a resource NO ROOT AUTHORITY Trust Fabric established by institutional policies Who invented federation? INTERNET2, EDUCAUSE, LIBERTY ALLIANCE.and UAB

VO Workspace of the Future Identity and Attributes shared across applications and organizations Access Control to all shared resources based on rules, e.g. membership Flexible and secure Creating one large, seamless data set from many distributed sets, with secure access Scalability possible (alternatives to one account per user per system) Collaboration tools Shared file space Video/Voice conferencing Any tool you need

(Identity) Institutional Attributes Privacy VO Workspace of the Future Resources VO Membership List Member Roles Data VO Public VO Private VO Workspace

Academic Computing People David L. Shealy, Director Jill Gemmill, Assistant Director John-Paul Robinson, Lead Systems Programmer Jason Lynn, ISS 2 GRA s Zachariah Garner Ramesh Puljala Rajani Sadasivam Aditya Srinivasan Pravin Joshi Silbia Peechakara Prahalad Achutharao YiYi Chen Song Zhou

UAB Middleware Team & Support IT Academic Computing David L. Shealy Jill Gemmill John-Paul Robinson Jason Lynn Zach Garner Ramesh Puljala Rajani Sadasivam Aditya Srinivasan Pravin Joshi Silbia Peechakara Yiyi Chen Other IT Divisions Sheila Sanders, VPIT Landy Manderson David Green Acknowledgement of Support UAB Office VPIT NSF ANI-0123937 via SURA-2002-103 NMI Testbed Participant Shealy, Gemmill NSF EPS-0096193 Alabama EPSCoR Cooperative Agreement : Internet2 Initiative Griffin (PI), Cordes, Gemmill, Graves, Hancock, Shealy NSF ANI-022710 ViDe.Net: Middleware for Scalable Video Services for Research and Higher Education. Gemmill (PI), Chatterjee, Johnson, Verharen NSF ANI-0330543 NMI Enabled Open Source Collaborative Tools for Virtual Organizations. Gemmill (PI), Robinson, Shealy

EXTRA SLIDES One Time Registration

EXTRA SLIDES Login for Registered Users

EXTRA SLIDES User Environment

EXTRA SLIDES Usage Management Details (One Time Registration)

EXTRA SLIDES UABGrid Summary

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback