Changes between Version 162 and Version 163 of Doc/gLite/TemplateCustomization


Ignore:
Timestamp:
Feb 26, 2010, 10:51:49 AM (16 years ago)
Author:
/O=GRID-FR/C=FR/O=CNRS/OU=LAL/CN=Michel Jouvin
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • Doc/gLite/TemplateCustomization

    v162 v163  
    325325 *  `GLOBUS_UDP_PORT_RANGE_MAX`: upper port in UDP ephemeral port range. Must be greater or equal to lower. Default: none.
    326326
    327 == LCAS / LCMAPS ==
     327== LCAS / LCMAPS == #LCAS-LCMAPS
    328328
    329329LCAS and LCMAPS are 2 underlying services, generally used together, by most grid services to manage authorization and user mapping. LCAS is responsible for managing authorization based on configured policies (banned users, timeslots permitted...) and LCMAPS is responsible for mapping a grid DN to a Unix user account.
     
    623623''Note: if `MAUI_CONFIG` variable is defined, the content of this variable must contain the full content of `maui.cfg` file and variables `MAUI_SERVER_CONFIG`, `MAUI_SERVER_POLICY` and `MAUI_RMCFG` are ignored.''
    624624
    625 ''Note : in QWG templates for gLite 3.0 and gLite-3.1 until [milestone:gLite-3.1.0-4 gLite-3.1.0-4], MAUI variables described here, except `MAUI_WN_PART` and `MAUI_WN_PART_DEF`, are not available and the complete MAUI configuration must be provided into variable `MAUI_CONFIG`.''
     625In addition to the variable to configure MAUI itself, there is one variable related to resource publishing into the BDII. The default plugin provided with gLite uses Torque to retrieve the number of job slots configured, the number of free slots... This doesn't allow to reflect correctly a configuration where advanced MAUI features like ''standing reservations'' are used. An alternative plugin, based on MAUI, is available and distributed with QWG templates (even though it is totally independent). To use this MAUI-based plugin instead of the Torque-based one, define the following variable in your [source:templates/trunk/sites/example/site/glite/config.tpl gLite parameters] (this variable is ignored if the LRMS used in not Torque):
     626{{{
     627variable GIP_CE_USE_MAUI ?= true;
     628}}}
    626629
    627630=== RSH and SSH Configuration ===
     
    633636 * `SSH_HOSTBASED_AUTH_LOCAL` : when this variable is true and `CE_USE_SSH` is false, configure SSH host-based authentication on each WN restricted to the current WN (ability to use SSH without entering a password only for ssh to the current WN). This is sometimes required by some specific software.
    634637 * `RSH_HOSTS_EQUIV` : If true, `/etc/hosts.equiv` is created with an entry for the CE and each WN. If false an empty `/etc/hosts.equiv` is created. If `undef`, nothing is done. Default is `undef`.
     638
     639=== CE Publishing into BDII ===
     640
     641When using Torque/MAUI, the default plugin provided with gLite to retrieve the number of job slots configured and the number of free slots is using Torque. This doesn't allow to reflect correctly a configuration where advanced MAUI features like ''standing reservations'' are used. An alternative plugin, based on MAUI, is available and distributed with QWG templates (even though it is totally independent). To use this MAUI-based plugin instead of the Torque-based one, define the following variable in your [source:templates/trunk/sites/example/site/glite/config.tpl gLite parameters] (this variable is ignored if the LRMS used in not Torque):
     642{{{
     643variable GIP_CE_USE_MAUI ?= true;
     644}}}
     645
     646This variable is `true` by default in QWG templates. Set it to `false` if you want to use the standard plugin.
     647
     648Another specific feature provided by QWG templates with respect to CE publishing into the BDII is the ability to run plugins in charge of updating CE dynamic information as a cron job on the LRMS host and to cache their outputs for later use by GIP itself. This is generally necessary in a multiple CE configuration and this is mandatory with MAUI-based plugins when using Torque/MAUI as MAUI commands can be executed only on the MAUI server. This ''cache mode'' is also lowering the polling rate on the batch system and protects again temporary failure of the LRMS to respond to the inquiry command (this is quite usual with MAUI when it is overloaded). To activiate this feature, you need to define the following variable in your [source:templates/trunk/sites/example/site/glite/config.tpl gLite parameters]:
     649{{{
     650variable GIP_CE_USE_CACHE ?= true;
     651}}}
     652
     653This variable default depends on the number of CE configured. When there is only one CE, it is `false` for backward compatibility, else it is `true`. But it is recommended to set it to `true` inconditionally.
     654
     655''Note: cache mode, even though it is essentially independent of the LRMS, is currently implemented only for MAUI. Defining this variable for unsupported LRMS has no effect.''
     656
     657
     658
    635659
    636660=== CE Status ===
     
    681705}}}
    682706
    683 === Banning Users ===
    684 Sometimes it is necessary to ban a user from accessing the CE. This can be done by adding their DN to the ban list as follows:
    685 
    686 {{{
    687 "/software/components/lcas/module/1/conf/content"=push('"/O=a-grid/C=XX/O=ANORG/OU=CS/CN=Malicious User"');
    688 }}}
    689 
    690 ''TODO'': make this configurable as a variable (e.g. CE_BANNED_USERS)
     707=== Restricting Access to CEs ===
     708
     709It is possible to ban some users or restrict time slots when the CEs are open for grid usage using LCAS middleware component. QWG allows to easily [#LCAS-LCMAPS configure them].
    691710
    692711=== Home Directory Purging ===