Tier3 User Desktop linux installation and Managing maintaining AFS clients Sabah Salih HEPP The University of Manchester UK 5th Dec. 2005 [email protected] Tier0 Tier1 Tier2 physicist Nobel prize 5th Dec. 2005 [email protected] Experiment A- Accelerators R&D B- Atlas C- Babar D- D0 E- Grid R&D F- Other R&D such FP420 G-Theory 5th Dec. 2005 [email protected] User Desktop 1- Core Software 2- Extra scientific Software 3- Extra none scientific Software 4- Collaborative tools 5- Grid software 6- CERN Extra 6- Security 5th Dec. 2005 [email protected] Core Software Network Servers Editors Kernel Development System Tools Administration Tools Developer Suite Development Tools X Window System Authoring and Publishing Printing Support Graphics OpenAFS Client Games and Entertainment Text-based Internet Packages added to Scientific Linux Office/Productivity YUM APT Engineering and Scientific GNOME Desktop Environment KDE Desktop Environment 5th Dec. 2005 curl sndconfig gv gaim transfig gnomemeeting xfig mozilla-mail joe mozilla-chat lm_sensors mozilla perl-suidperl anaconda anaconda-runtime pine xemacs xmms-mp3 xmms-devel xmms-skins mpg321 gimp-perl gnome-audio-extra gnome-spell java-1.4.2-sun-compat jpackage-utils lynx [email protected] Extra scientific Software Axodrw Jaxodraw Xv Acroread Mozilla-acroread Cernlib ROOT Mathematica Tetex Tetex-extra Mounttero for usb automount Kile Bbftp-cliewnt 5th Dec. 2005 [email protected] openmotif lesstif xmgrace CLHEP Extra none scientific Software Xcdroast RealPlayer Ogle Xine Mplayer DVD RW K3B 5th Dec. 2005 [email protected] Grid Software We install our Desktop as User Interface Edg-gridftp-client Gssklog-client 5th Dec. 2005 [email protected] lcgenv.sh 5th Dec. 2005 > /etc/profile.d > > 1- One install in pc52 > > #!/bin/sh > if test "x${LCG_ENV_SET+x}" = x; then > export LCG_GFAL_INFOSYS=lcgbdii02.gridpp.rl.ac.uk:2170 > export MYPROXY_SERVER=lcgrbp01.gridpp.rl.ac.uk > export PATH=${PATH}:/opt/d-cache/bin > export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/opt/d-cache/dcap/lib > export SRM_PATH=/opt/d-cache/srm > export VO_ATLAS_SW_DIR=/nfs/atlas > export VO_ATLAS_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_ALICE_SW_DIR=/nfs/alice > export VO_ALICE_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_LHCB_SW_DIR=/nfs/lhcb > export VO_LHCB_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_CMS_SW_DIR=/nfs/cms > export VO_CMS_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_DTEAM_SW_DIR=/nfs/dteam > export VO_DTEAM_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_BABAR_SW_DIR=/nfs/babar > export VO_BABAR_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > export VO_DZERO_SW_DIR=/nfs/dzero [email protected] > export VO_DZERO_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk > fi 2- One install in pc91 #!/bin/sh if test "x${LCG_ENV_SET+x}" = x; then export LCG_GFAL_INFOSYS=lcgbdii02.gridpp.rl.ac.uk:2170 export MYPROXY_SERVER=lcgrbp01.gridpp.rl.ac.uk export PATH=${PATH}:/opt/d-cache/srm/bin:/opt/d-cache/dcap/bin export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/opt/d-cache/dcap/lib export SRM_PATH=/opt/d-cache/srm export VO_ATLAS_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_ALICE_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_LHCB_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_CMS_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_DTEAM_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_BABAR_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export VO_DZERO_DEFAULT_SE=bohr0013.tier2.hep.man.ac.uk export DPNS_HOST=bohr0013 export DPM_HOST=bohr0013 if [ -z "$PYTHONPATH" ]; then export PYTHONPATH="/opt/lcg/lib/python" else export PYTHONPATH="${PYTHONPATH}:/opt/lcg/lib/python" fi if [ -z "$PERLLIB" ]; then export PERLLIB="/opt/lcg/lib/perl" else export PERLLIB="${PERLLIB}:/opt/lcg/lib/perl" fi fi 5th Dec. 2005 [email protected] due the fallowing file /etc/profile.d/z_edg-profile.sh the path get change from this [root@pc47 root]# echo $PATH /opt/lcg/bin:/opt/lcg/sbin:/usr/kerberos/sbin:/usr/kerberos/bin:/opt/globus/bin: /opt/globus/sbin:/opt/edg/bin:/usr/local/bin:/opt/edg/sbin:/usr/local/sbin: /usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/usr/X11R6/bin:/cern/patchy/4.15/bin: /cern/pro/bin:/opt/glite/bin:/opt/glite/externals/bin:/opt/gpt/sbin: /usr/site/manchesterSL3/bin:/usr/lib/jre/bin:/opt/d-cache/srm/bin: /opt/d-cache/dcap/bin:/usr/site/mathematica/5.0/Executables:/root/bin to this [root@pc47 root]# echo $PATH /usr/java/j2sdk1.4.2_08/bin:/opt/lcg/bin:/opt/lcg/sbin:/usr/kerberos/sbin: /usr/kerberos/bin:/opt/globus/bin:/opt/globus/sbin:/opt/edg/bin:/usr/local/bin: /opt/edg/sbin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin: /usr/X11R6/bin:/cern/patchy/4.15/bin:/cern/pro/bin:/opt/glite/bin: /opt/glite/externals/bin:/opt/gpt/sbin:/usr/site/manchesterSL3/bin: /usr/lib/jre/bin:/opt/d-cache/srm/bin:/opt/d-cache/dcap/bin: /usr/site/mathematica/5.0/Executables:/opt/edg/bin:/opt/edg/sbin:/opt/edg/bin:/opt/edg/sbin:/root/bin and the default kinit will become /usr/java/j2sdk1.4.2_08/bin/kinit not /usr/kerberos/bin/kinit and when you type your passwd you see it in txt. 5th Dec. 2005 [email protected] CERN Extra afs_tools Arc arc-server Automake17 Bonobo bonobo-devel CASTOR-client CASTOR-client-compat CASTOR-client-compat ccdb-tools cern-compat-locallinks cern-config-printers CERN-dummy-afs-provides CERN-nbtools CERN-texstyles Createrepo Dmapi dmapi-devel 5th Dec. 2005 [email protected] edg-caf-perl edg-ccm edg-pan edg-spma f2c flash-plugin fsplit gal gtkhtml heimdal krb4-workstation lcm mc mxconns ncftp python2.3 Managing maintaining AFS clients Moving volumes from on server to another sh-2.05a$ vos mov adriana afs4 vicepc afs1 vicepc If you run afsservers you needthis for login Install the following rpms Openafs kpasswd echo 'auth sufficient /lib/security/pam_afs.so try_first_pass ignore_root' \ > /etc/pam.d/system-auth In “/usr/vice/etc” one need to update the following files CellServDB Casheinfo ThisCell Update krb5.conf 5th Dec. 2005 [email protected] [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] ticket_lifetime = 24000 default_realm = FNAL.GOV dns_lookup_realm = false dns_lookup_kdc = false [realms] FNAL.GOV = { kdc = krb-fnal-1.fnal.gov:88 kdc = krb-fnal-2.fnal.gov:88 kdc = krb-fnal-3.fnal.gov:88 kdc = krb-fnal-4.fnal.gov:88 kdc = krb-fnal-5.fnal.gov:88 admin_server = krb-fnal-admin.fnal.gov default_domain=fnal.gov } 5th Dec. 2005 [email protected] PILOT.FNAL.GOV = { kdc = krb-pilot-1.fnal.gov:88 kdc = krb-pilot-2.fnal.gov:88 admin_server = krb-pilot-admin.fnal.gov default_domain=fnal.gov } [domain_realm] .fnal.gov = FNAL.GOV [kdc] profile = /var/kerberos/krb5kdc/kdc.conf [appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false } 5th Dec. 2005 [email protected] Collaborative tools 1- mail “exmh, pine, thunderbird” 1- H323 ? 3- VRVS 4- Phone “skype” 6- Access Grid ? 5th Dec. 2005 [email protected] Security hosts.allow hosts deny 5th Dec. 2005 [email protected]
© Copyright 2026 Paperzz