Attendees
Name | Institution | Attended? |
Mark Huang | Texas A&M | X |
JP Navarro | U Chicago/ XSEDE |
|
Chuck Schwartz | Purdue | X |
Jason St. John | Purdue | X |
Francis Dang | Texas A&M | X |
Jeffrey Frey | University of Delaware |
|
Trevor Cooper | SDSC |
|
Vikram Gazula | University of Kentucky |
|
Shava Smallen | SDSC /XSEDE | X |
Anita Schwartz | University of Delaware |
|
John Huffman | University of Delaware |
|
Paul Williams | University of Delaware | X |
Kevin Colby | Purdue |
|
David Carver | TACC | X |
Tabitha Samuel | NICS/XSEDE | X |
Derek Simmel | PSC/XSEDE | X |
Stephen Bird | IU/ XSEDE | X |
Lisa Perez | Texas A&M |
|
Lee Liming | Globus/ XSEDE | X |
Agenda:
- Announcements
- PEARC21 upcoming deadlines for Panels, BoFs, Posters and Visualizations
- RY5 annual report due this week
- XSEDE Security trust group meeting
- GCS 5 Rollout plan and updates
- XCI Updates:
- CoManage update
- RDR update
- Changes to web SSO
- Open discussion
Notes:
- Announcements
- PEARC21 upcoming deadlines for Panels, BoFs, Posters and Visualizations:
- XSEDE Security trust group meeting
- Monday afternoon call for the XSEDE security community
- New SPs: Please have security staff added to the security-discuss mailing list
- Send e-mail to dsimmel@psc.edu for info about security-related e-mail lists in XSEDE and the weekly Trust & Incident Response call.
- Trust & Incident Response call - a brief call to share security activity at sites in our community and to discuss security observations of the week.
- Please email Derek or Alex questions or concerns or submit a ticket to help@xsede.org
- XSEDE Reporting Year 5 annual report due this week
- GCS 5 Rollout plan and updates - Lee Liming
- Slides are at: https://docs.google.com/presentation/d/1cA1CFTpMfAYcZRPdQP7oIrzTKvOh7kwatVb9b6dmdWw/edit#slide=id.p?
- Questions/clarifications
- Guest collection: Can administrators restrict who 'guests' are? There are security implications to who can access project data outside of allocated users.
- Can both version 4 and 5 run on same hardware? No you cannot run two version of GCS on the same DTN.
- X509 question: Use that to map into a user's home directory, how does that work with Oauth?
- There is a new CLI available within GCS5.4 to generate a map file
- Sharing mode: Does the 'guest' user need an account on the system? No the guest account does not need an account on the system.
- Requesting volunteers for testing
- Half day workshop to setup GCS5.4?
- PEEARC21 tutorial for GCS5.4
- XCI Updates:
- CoManage update:
- group mgmt system for across services
- comes from the CILogon team
- doing it in 3 phases: deployment of server, then integrating with XSEDE JIRA/Confluence, and XSEDE enterprise services, second phase: allocation groups, third phase: user defined groups
- rolled out to deployment fairly soon, more documentation available then
- Link to current documentation: https://www.cilogon.org/comanage
- does this manage groups across sites or is it intra site?
- centralized service, therefore authoritative source of group information
- RDR update
- RDR developers have been working on an update to RDR to make it easier to enter SP information into RDR
- Testing of it is complete
- Stony Brook University could be a potential SP tester
- Changes to web SSO
- There is an update to XSEDE Web SSO, one of the underlying services has been switched from Globus to XSEDE's CILogon managed IDP service, now need Duo to login.
- This is only while using XSEDE's IDP (not your own institution's) while using CILogon on XSEDE web services.
- XSEDE Web SSO is with 'other options' sign in option and XSEDE Institution for XSEDE Web Portal. Software.xsede.org, Confluence/JIRA is another example where XSEDE Web SSO is used.
- Open discussion