Prototype DIRAC portal for EISCAT data Short instruction

Similar documents
Accessing the Curriculum Management System Off-campus Process for obtaining and installing a CMS certificate on a home Mac

Connecting to the Virtual Desktop Infrastructure (VDI)

Office 365 Business and Office 365 Pro Plus Deployment Guide V 1.0

USER MANUAL. SalesPort Salesforce Customer Portal for WordPress (Lightning Mode) TABLE OF CONTENTS. Version: 3.1.0

Guidelines on non-browser access

The Ethic Management System (EMS) User guide

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

Guide to Deploying VMware Workspace ONE. VMware Identity Manager VMware AirWatch 9.1

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1

Bell County. E-Discovery Portal. Training Guide. 1/8/2014 Version 1.0

RealPresence Media Manager

Guide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE

Register by completing the form, or connecting via your GitHub or Google account.

Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager

CHAPTER GETTING STARTED WITH THE ARDUINO WEB EDITOR (Online IDE) Created by Tum Kurtzman

Windows 8.1 User Guide for ANU Staff

2013 RELEASE / S RELEASE COMPARISON GUIDE CONFIGURATION NAVIGATION APPLICATION AREA IN BULLHORN 2013 IN BULLHORN S

Precedence Connector. Best Practice installation guide

ClassLink Launchpad FAQ

Setting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8

PRACTICE-LABS User Guide

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1

PORTAL USER GUIDE DOSE ADMINISTRATION AIDS

Ansible Tower Quick Setup Guide

The LGI Pilot job portal. EGI Technical Forum 20 September 2011 Jan Just Keijser Willem van Engen Mark Somers

ICAT Job Portal. a generic job submission system built on a scientific data catalog. IWSG 2013 ETH, Zurich, Switzerland 3-5 June 2013

Identity Policies. Identity Policy Overview. Establishing User Identity through Active Authentication

GENERAL SETUP (Restricted access to the Super-Administrator)

AMGA metadata catalogue system

Industry Access Portal MUNICIPALITY MODULE User Guide

Health Care Home Risk Stratification Tool

Setting Up Resources in VMware Identity Manager

XFINITY Welcome Packet

IT Access Portal User Guide (Employees)

Red Hat CloudForms 4.6

0. Introduction On-demand. Manual Backups Full Backup Custom Backup Store Your Data Only Exclude Folders.

AvePoint Online Services for Partners 2

Skyline Healthcare Getting Started Guide for New Users

NearPoint 4.2 NEARPOINT SSR CLIENT QUICK START. 3. Viewing and Restoring Items and Files from the Mimosa Archive. 1.

GRID COMPANION GUIDE

FAQ. General Information: Online Support:

Five9 Plus Adapter for Agent Desktop Toolkit

VMware Identity Manager Administration. MAY 2018 VMware Identity Manager 3.2

NIELSEN API PORTAL USER REGISTRATION GUIDE

Precedence Connector. Medical Director installation guide

PRISM - FHF The Fred Hollows Foundation

Work Package 4, Milestone 4.2: First deployment of the consolidated platform

Integrating VMware Workspace ONE with Okta. VMware Workspace ONE

Release Note RM Neon. Contents

30 Nov Dec Advanced School in High Performance and GRID Computing Concepts and Applications, ICTP, Trieste, Italy

AvePoint Online Services 2

VMware Identity Manager Administration

AAI in EGI Current status

Hardware Tokens in META Centre

ZENworks Configuration Management 2017

1. Log in Forgot password? Change language Dashboard... 7

VMware AirWatch - Workspace ONE, Single Sign-on and VMware Identity Manager

Downloading and Managing Firmware in Cisco UCS Central

PRACTICE-LABS User Guide

Remote Desktop Services

SmartSolutions Portal User Guide

Installation & Configuration Guide Enterprise/Unlimited Edition

Health Care Home Risk Stratification Tool

Partner Integration Portal (PIP) Installation Guide

Remote Asset Manager. Version 2.2. Administrator's Guide

Integrating AirWatch and VMware Identity Manager

User Guide. Issued July DocAve Backup for Salesforce User Guide

A VO-friendly, Community-based Authorization Framework

The Kindred Directory allows you to search for employees and locations across all of our lines of business.

Cloud Access Manager Configuration Guide

Driven by a passion to develop our customers, SuperOffice has become one of Europes leading providers of CRM solutions.

CPM Quick Start Guide V2.2.0

3.1 Getting Software and Certificates

Getting Started with the Ed-Fi ODS and Ed-Fi ODS API

Welcome to InSite: A GUIDE TO PROOFING ONLINE. Getting Started Viewing Job Information Uploading Files Viewing Pages Requesting Corrections

AUSkey Quick Start Guide

Contents Registering As a User Security Details 2 Registering as a User About You 4 Registering as a User Work Details 4 Two Step Verification 7

Guest Access User Interface Reference

Login... 3 Dashboard... 4 Submit a Query... 5 My Centre Profile... 5

Using the Portal. The Overview tab displays your Quick Links, announcements from your agency, recent documents, and a list of your agency contacts.

User Guide for the Online Application. OCC Front Office Portal G3 Front Office2.5

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

User Guide. 3CX Recording Manager Standard. Version

RoadsideConnect Web App

Secure Services - Registering

PORTAL USER GUIDE VERSION 1.0

Connect Authenticate

Outline. Infrastructure and operations architecture. Operations. Services Monitoring and management tools

Table of Contents. VMware AirWatch: Technology Partner Integration

SurePassID Local Agent Guide SurePassID Authentication Server 2016

Ektron Advanced. Learning Objectives. Getting Started

How to Access the Ayers Institute's INVEST Videos

EGI-InSPIRE. GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies. Sergio Maffioletti

Technical Support. Web site. 24online Support Contact. ( a) Technical support (Corporate Office):

Introduction to Programming and Computing for Scientists

Release Notes September 2014

Introduction to application management

Login Troubleshooting

European Grid Infrastructure

Instruction Guide! VERITEXT VAULT - ONLINE DEPOSITORY

Transcription:

Prototype DIRAC portal for EISCAT data Short instruction Carl-Fredrik Enell January 19, 2017 1 Introduction 1.1 DIRAC EGI, first European Grid Initiative, later European Grid Infrastructure, and now simply EGI, http://www.egi.eu, is an organisation sited in Amsterdam that federates access to computing and storage facilities in Europe. The H2020 EINFRA-1-2014 project EGI-Engage supports a number of competence centres (CC), one of which is the CC for EISCAT 3D. The EISCAT 3D CC aims at developing the user portal, which is to be the primary interface through which users will browse, download and analyse EISCAT 3D data. We are investigating several options and have chosen to work closely with the developers of the Distributed Infrastructure with Remote Agent Control (DIRAC) project, http://diracgrid.org, which was originally developed for distributing data from the LHCb project at CERN. DIRAC is an interware, mostly written in Python, that provides command-line, web and API interfaces to grid computing and storage resources. A major task in the EISCAT 3D CC has been to implement a prototype DIRAC portal for legacy EISCAT data from the years 2007 (IPY) and 2014 through 2016. 1.2 Layout of the EISCAT DIRAC service The DIRAC portal system for EISCAT data at this allows authenticated users to download as well as make RTG plots of the standard correlated data, archived in Matlab-compatible format. The prototype system consists of: Virtual observatory management system (VOMS) User access to the EISCAT DIRAC portal is managed through membership in groups in the EGI virtual observatory (VO) eiscat.se. The VO management system (VOMS) used by EGI is called Perun and runs at Cesnet, accessible to VOMS managers through a web GUI at https://perun.cesnet.cz Storage element This is a Python program that runs on a dedicated port on a Linux computer at EISCAT Headquarters. It reads and serves data files from a top level directory, where the 2007 and 2014 2016 data directories are linked from an NFS mount to the main data server. File catalogue This database runs on EGI resources at Cyfronet (http://www.cyfronet. krakow.pl) and allows users to list and search the data with a command-line client and the file catalogue application in the web portal. It is updated by a Python script that runs monthly (from cron) on the DIRAC server at EISCAT Headquarters. 1

Web interface A web interface is the main point of access for users. It also runs at Cyfronet and is accessible at http://dirac.egi.eu:8090/dirac/. This web interface presents the user with a desktop (Fig. 1) that looks much like the desktop of any modern computer environment 1. It has applications for file catalogue search, job submission, and more. Figure 1: The DIRAC web GUI 2 Getting access to the DIRAC portal Access to data in DIRAC requires authentication with X.509 certificates. This has proven to be a difficult hurdle for most users to overcome. For typical EISCAT users the procedure described below should work. 1. Log in to your certificate authority. At least for EISCAT users in the Nordic region, this is usually Digicert. Browse to https://www.digicert.com/sso/ using a compliant browser. Firefox, MS Internet Explorer and Safari should all work, but to my best experience Google Chrome and MS Edge don t. On the first page shown you will have to type in the name of your identity provider, i.e. your university or institute. Fig. 2 shows what this looks like for the author, whose identity provider is the Swedish Institute of Space Physics. This will redirect you to a login page where you should be able to log in with the user credentials of your organisation. In many cases this will be the same name and password that you use for your university email and internal web pages. 2. Request a Grid Premium certificate by selecting this in the Product menu and clicking Request certificate, as in Fig. 3. Depending on your browser, the certificate may be installed automatically as part of this step. If not, follow the next step below. 1 well, it looks like an old version of MS Windows 2

Figure 2: Providing the Identity Provider information to Digicert. Type the name of your provider (such as University of X). This figure shows the author typing in his identity provider, which is the Swedish Institute of Space Physics for Eiscat HQ staff. 3. If the Request procedure did not install the certificate automatically in your browser, it can be downloaded by looking up the new certificate in the list My certificates and clicking the download button. This will give you a zip archive with your personal certificate together with a few other authority files. The certificate file (called something like yourname.crt) can then be imported. Fig. 4 shows the details of the author s certificate after a successful import into Firefox. 4. Register to the eiscat.se VO through the Perun service at https://perun.metacentrum. cz/cert/registrar/?vo=eiscat.se. You will have to enter required information and then wait for approval. Fig. shows a completed succesful registration. 5. Ask a VO manager (e.g. the author) to add your VO user to the access groups that you are entitled to (usually your EISCAT associate country and common programme data). Fig. 6 shows how the author edits his own access groups and a similar procedure must be performed for your account. 6. Upload your certificate to the DIRAC proxy, which is the gateway that allows you to access the DIRAC grid services. This is easiest using the DIRAC command line tools. They are Python and UNIX (bash) shell scripts. If you cannot install them, the GUI also provides a proxy upload app. Install the DIRAC client tools. Refer to http://diracgrid.org for this procedure. Export your X.509 certificate in P12 format. The export function of common web browsers is useful. This will ask you to set a password for encryption. Install the certificate for the DIRAC services: 3

Figure 3: Requesting a Grid Premium certificate from Digicert. dirac-cert-convert.sh <YOUR_CERTIFICATE>.p12 Initialise the DIRAC proxy, e.g.: dirac-proxy-init -M -U -g eiscat_common dirac-proxy-init -M -U -g eiscat_common You will be asked for the password of your certificate (the one you set in the export step above). You can then check whether the upload succeeded like this: dirac-proxy-get-uploaded-info and you should then see something like Checking for DNs /DC=org/DC=terena/DC=tcs/C=SE/O=Institutet foer rymdfysik/cn=carl-fredrik Enell fredrik@irf.se ------------------------------------------------------------------------------------------------------------------------------------------------------------------- UserName UserDN UserGroup ExpirationTime PersistentFlag ---------------------------------------------------------------------------------------------------------------------------------------- cenell_1 /DC=org/DC=terena/DC=tcs/C=SE/O=Institutet foer rymdfysik/cn=carl-fredrik Enell fredrik@irf.se eiscat_sw 2017-06-25 11:54:59 True ------------------------------------------------------------------------------------------------------------------------------------------------------------------- 4

Figure 4: The certificate manager in Firefox (Edit Preferences Advanced Certificates) after successfully importing a certificate from Digicert. Figure 5: Registration to the EGI VO eiscat.se through Perun. 5

Figure 6: The Groups tab of the Perun VOMS GUI, showing access groups of the author. This registration will be handled by one of the VO managers so as a normal user you will not see this. It is important that you are a member of the appropriate VOMS group(s), however. 6

3 Searching EISCAT data Once you have an installed certificate, VOMS group access, and an initialised DIRAC proxy, you can start using the web GUI. 1. Go to the prototype portal at http://dirac.egi.eu:8090/dirac/ 2. Select Secure connection at the bottom right. The browser may ask you to select certificate once or twice. 3. Select your VOMS group at the bottom right, e.g. eiscat FI 4. Go to the Windows style menu at the bottom left and browse to the file catalogue GUI. 3.1 Basic search The file catalogue GUI will look much like any file browser. The search will, however, start from a top level directory that you select by right-clicking on a directory in the listing (top right pane) and then clicking Set as starting path (See Fig. 7). EISCAT data are in the directory hierarchy eiscat.se/archive/<year>/. After setting the starting path, additional search criteria can be added using the GUI in the top left pane. See Fig. 8. Click Submit (below the bottom left pane). Figure 7: Selecting a top level directory in the file catalogue GUI The search will list any found files in the bottom right pane. After finding the desired files, you can select files for download or processing in the bottom right pane. 7

Figure 8: Adding metadata search criteria. In this particular case, the top level directory contains only SW UHF data, so the filters shown as an example on the top left will have no effect. After selecting the search criteria, click the Submit button 4 Downloading EISCAT data Files selected in the bottom right pane can be downloaded as a ZIP archive by clicking on the diskette icon, as shown in Fig. 9. 8

Figure 9: Selecting files to download. 5 RTG plotting of EISCAT data files The GUI can also submit processing jobs to the EGI grid. This procedure will usually 1. start a virtual machine on grid resources 2. run the specified software with the selected files as input. At this stage the standard EISCAT RT graph has been implemented and will plot the content of selected data files (by running the RTG script on the open source Matlab-compatible software Octave). The procedure is as follows 1. Select files as for download 2. Click the green job launchpad icon above the file list 3. The job launchpad GUI opens. Right-click on the EISCAT png maker directory icon and select Apply to the selected parameters. See Fig. 10. The field Executable should now show the path to webtg4dirac. 4. Check the other parameters as well and click Submit at the bottom of the job launchpad window. 5. Go to the main menu and browse to the job monitor (Fig. 11). Make sure that your user name is preselected and click Submit to see the status of the job. 6. Once the job is finished, the output will be in the Sandbox. Right-click on the job line to see the menu as in Fig. 12. 9

Figure 10: Submitting a job that will plot the selected EISCAT data files with RTG. Figure 11: The DIRAC job monitor showing the status of the submitted job. 10

Figure 12: The sandbox contains the output files for download. 11

6 Feedback Feedback and bug reports through the EGI RT tracker system, https://rt.egi.eu/rt/ Search/Results.html?Query=Queue%20%3D%20%27dirac4egi-eiscat3d-requirements%27% 20AND%20(Status%20%3D%20%27new%27%20OR%20Status%20%3D%20%27open%27%20OR%20Status% 20%3D%20%27accepted%27%20OR%20Status%20%3D%20%27developed%27%20OR%20Status%20% 3D%20%27stalled%27%20OR%20Status%20%3D%20%27feedback%27), is appreciated. 12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback