Difference: BoscoSDSC (1 vs. 23)

Revision 232016/11/01 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Install and Configure BOSCO for Glidein-Based Submission

Line: 6 to 6

About this Document

Changed:

<
<

This document describes HOWTO install and configure BOSCO to allow a glideinWMS factory to submit glideins to the BOSCO resource's local batch queue on behalf of a VO frontend. Note, however, the installation and configuration process outlined below is highly specific to the case when you ONLY have ssh-key login access to the user account on the BOSCO resource, i.e., you do not have the ssh password. In addition, it is also important to note that this document is preliminary. As such, it may not represent the best way or the easiest way to install and configure BOSCO. The process below simply attempts to minimize its modification of the standard BOSCO installation and configuration process.

>
>

This document describes how to install and configure BOSCO to allow a glideinWMS factory to submit glideins to the BOSCO resource's local batch queue on behalf of a VO frontend. Note, however, the installation and configuration process outlined below is highly specific to the case when you ONLY have ssh-key login access to the user account on the BOSCO resource, i.e., you do not have the ssh password. In addition, it is also important to note that this document is preliminary. As such, it may not represent the best way or the easiest way to install and configure BOSCO. The process below simply attempts to minimize its modification of the standard BOSCO installation and configuration process.

This document follows the general OSG documentation conventions:

Revision 222016/11/01 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Changed:

<
<

HOWTO Install and Configure BOSCO for Glidein-Based Submission

>
>

Install and Configure BOSCO for Glidein-Based Submission

Revision 212016/11/01 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Revision 202016/04/14 - Main.JeffreyDost

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 47 to 47

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters, this will forward the passwordless bosco ssh key, and install bosco on the remote side:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.
Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --test BOSCO_USER@BOSCO_HOST 
```
If successful, run bosco_stop on the FRONTEND_HOST.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
```

Changed:

<
<

Finally, add the following elements to your frontend configuration file, frontend.xml. Note, you may add them to either the group or global credential definition. Note: All paths should be absolute, not relative.

 <credentials> <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/> <credential absfname="/home/frontend/.ssh/bosco_key.rsa.pub" keyabsfname="/home/frontend/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/> </credentials>

Please stop, reconfig, and restart your frontend. If successful, the FRONTEND_HOST is now properly configured.

[root@FRONTEND_HOST ~]$ service gwms-frontend stop [root@FRONTEND_HOST ~]$ service gwms-frontend reconfig [root@FRONTEND_HOST ~]$ service gwms-frontend start

>
>

 <credentials>
   <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/>
   <credential absfname="/home/frontend/.ssh/bosco_key.rsa.pub" keyabsfname="/home/frontend/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/>
</credentials>

Please stop, reconfig, and restart your frontend. If successful, the FRONTEND_HOST is now properly configured.

[root@FRONTEND_HOST ~]$ service gwms-frontend stop
[root@FRONTEND_HOST ~]$ service gwms-frontend reconfig
[root@FRONTEND_HOST ~]$ service gwms-frontend start

Next, login to the FACTORY_HOST via ssh as root.
```
 [user@client ~]$ ssh root@FACTORY_HOST
```

Install condor-bosco on the FACTORY_HOST from root.

 [root@FACTORY_HOST ~]$ yum install condor-bosco

Changed:

<
<

Remove and retouch the 60-campus_factory.config file.

 [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config

Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.

 <entry name="CMS_TX_US_XXXXX_BOSCO" auth_method="key_pair" enabled="True" gatekeeper="BOSCO_USER@BOSCO_HOST" gridtype="batch BATCH_TYPE" rsl="" trust_domain="bosco" verbosity="std" work_dir="~/"> <config> <max_jobs> <default_per_frontend glideins="256" held="50" idle="50"/> <per_entry glideins="256" held="50" idle="50"/> <per_frontends> </per_frontends> </max_jobs> <release max_per_cycle="20" sleep="0.2"/> <remove max_per_cycle="5" sleep="0.2"/> <restrictions require_glidein_glexec_use="False" require_voms_proxy="False"/> <submit cluster_size="10" max_per_cycle="100" sleep="0.2" slots_layout="fixed"> <submit_attrs> </submit_attrs> </submit> </config> <allow_frontends></allow_frontends> <attrs> <attr name="CONDOR_VERSION" const="False" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="default"/> <attr name="GLEXEC_JOB" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="False" type="string" value="False"/> <attr name="GLIDEIN_CMSSite" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_CPUS" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="8"/> <attr name="GLIDEIN_Country" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="US"/> <attr name="GLIDEIN_Glexec_Use" comment="This has been REQUIRED for historical reasons, OPTIONAL/NONE alt values" const="False" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="NONE"/> <attr name="GLIDEIN_MaxMemMBs" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="int" value="49152"/> <attr name="GLIDEIN_Max_Walltime" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="int" value="171000"/> <attr name="GLIDEIN_ResourceName" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_Site" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_Supported_VOs" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="CMS,MIS"/> <attr name="USE_CCB" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="True"/> <attr name="X509_CERT_DIR" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="/cvmfs/oasis.opensciencegrid.org/mis/certificates"/> </attrs> <files> </files> <infosys_refs> </infosys_refs> <monitorgroups> </monitorgroups> </entry>

Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST.

[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts [root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTENT_HOST >> /etc/ssh/ssh_known_hosts

Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST.
```
[root@FRONTEND_HOST ~]$ service gwms-factory stop [root@FRONTEND_HOST ~]$ service gwms-factory reconfig [root@FRONTEND_HOST ~]$ service gwms-factory start 
```

>
>

Remove and retouch the 60-campus_factory.config file.

[root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config
[root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config

Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.

<entry name="CMS_TX_US_XXXXX_BOSCO" auth_method="key_pair" enabled="True" gatekeeper="BOSCO_USER@BOSCO_HOST" gridtype="batch BATCH_TYPE" rsl="" trust_domain="bosco" verbosity="std" work_dir="~/">
   <config>
      <max_jobs>
         <default_per_frontend glideins="256" held="50" idle="50"/>
         <per_entry glideins="256" held="50" idle="50"/>
         <per_frontends>
         </per_frontends>
      </max_jobs>
      <release max_per_cycle="20" sleep="0.2"/>
      <remove max_per_cycle="5" sleep="0.2"/>
      <restrictions require_glidein_glexec_use="False" require_voms_proxy="False"/>
      <submit cluster_size="10" max_per_cycle="100" sleep="0.2" slots_layout="fixed">
         <submit_attrs>
         </submit_attrs>
      </submit>
   </config>
   <allow_frontends>
   </allow_frontends>
   <attrs>
      <attr name="CONDOR_VERSION" const="False" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="default"/> <attr name="GLEXEC_JOB" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="False" type="string" value="False"/>
      <attr name="GLIDEIN_CMSSite" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
      <attr name="GLIDEIN_CPUS" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="8"/>
      <attr name="GLIDEIN_Country" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="US"/>
      <attr name="GLIDEIN_Glexec_Use" comment="This has been REQUIRED for historical reasons, OPTIONAL/NONE alt values" const="False" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="NONE"/>
      <attr name="GLIDEIN_MaxMemMBs" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="int" value="49152"/>
      <attr name="GLIDEIN_Max_Walltime" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="int" value="171000"/>
      <attr name="GLIDEIN_ResourceName" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
      <attr name="GLIDEIN_Site" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
      <attr name="GLIDEIN_Supported_VOs" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="CMS,MIS"/>
      <attr name="USE_CCB" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="True"/> <attr name="X509_CERT_DIR" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="/cvmfs/oasis.opensciencegrid.org/mis/certificates"/>
   </attrs>
   <files>
   </files>
   <infosys_refs>
   </infosys_refs>
   <monitorgroups>
   </monitorgroups>
</entry>

Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST.

[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts
[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTEND_HOST >> /etc/ssh/ssh_known_hosts

Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST.
```
[root@FRONTEND_HOST ~]$ service gwms-factory stop
[root@FRONTEND_HOST ~]$ service gwms-factory reconfig
[root@FRONTEND_HOST ~]$ service gwms-factory start 
```

Troubleshooting

Revision 192015/10/22 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 56 to 56

Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST.

[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts [root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTENT_HOST >> /etc/ssh/ssh_known_hosts

Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST.
```
[root@FRONTEND_HOST ~]$ service gwms-factory stop [root@FRONTEND_HOST ~]$ service gwms-factory reconfig [root@FRONTEND_HOST ~]$ service gwms-factory start 
```

Added:

>
>

Troubleshooting

If glideins and/or direct bosco user jobs fail to be successfully submitted into a local pbs/slurm batch system, it may be useful to modify the ~/bosco/glite/bin/pbs_submit.sh submission script on the BOSCO_HOST to see the qsub/sbatch error messages directly.

Before:

jobID=`${pbs_binpath}/qsub $bls_tmp_file` # actual submission
retcode=$?
if [ "$retcode" != "0" ] ; then
       rm -f $bls_tmp_file
       exit 1
fi

After:

jobID=`${pbs_binpath}/qsub $bls_tmp_file` # actual submission
retcode=$?
echo “Full qsub output: $jobID” 1>&2
if [ "$retcode" != "0" ] ; then
       rm -f $bls_tmp_file
       exit 1
fi

Additional Documentation

http://www.uscms.org/SoftwareComputing/Grid/WMS/glideinWMS/doc.prd/recipes/batch.html

Revision 182015/09/24 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 47 to 47

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters, this will forward the passwordless bosco ssh key, and install bosco on the remote side:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.
Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --test BOSCO_USER@BOSCO_HOST 
```
If successful, run bosco_stop on the FRONTEND_HOST.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
```

Changed:

<
<

Finally, add the following elements to your frontend configuration file, frontend.xml. Note, you may add them to either the group or global credential definition.

 <credentials>
   <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/>
   <credential absfname="~/.ssh/bosco_key.rsa.pub" keyabsfname="~/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/>
</credentials>

Please stop, reconfig, and restart your frontend. If successful, the FRONTEND_HOST is now properly configured.

[root@FRONTEND_HOST ~]$ service gwms-frontend stop
[root@FRONTEND_HOST ~]$ service gwms-frontend reconfig
[root@FRONTEND_HOST ~]$ service gwms-frontend start

>
>

 <credentials> <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/> <credential absfname="/home/frontend/.ssh/bosco_key.rsa.pub" keyabsfname="/home/frontend/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/> </credentials>

Please stop, reconfig, and restart your frontend. If successful, the FRONTEND_HOST is now properly configured.

[root@FRONTEND_HOST ~]$ service gwms-frontend stop [root@FRONTEND_HOST ~]$ service gwms-frontend reconfig [root@FRONTEND_HOST ~]$ service gwms-frontend start

Next, login to the FACTORY_HOST via ssh as root.
```
 [user@client ~]$ ssh root@FACTORY_HOST
```

Install condor-bosco on the FACTORY_HOST from root.

 [root@FACTORY_HOST ~]$ yum install condor-bosco

Remove and retouch the 60-campus_factory.config file.

 [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config

Changed:

<
<

Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.

 <entry name="CMS_TX_US_XXXXX_BOSCO" auth_method="key_pair" enabled="True" gatekeeper="BOSCO_USER@BOSCO_HOST" gridtype="batch BATCH_TYPE" rsl="" trust_domain="bosco" verbosity="std" work_dir="~/">
         <config>
            <max_jobs>
               <default_per_frontend glideins="256" held="50" idle="50"/>
               <per_entry glideins="256" held="50" idle="50"/>
               <per_frontends>
               </per_frontends>
            </max_jobs>
            <release max_per_cycle="20" sleep="0.2"/>
            <remove max_per_cycle="5" sleep="0.2"/>
            <restrictions require_glidein_glexec_use="False" require_voms_proxy="False"/>
            <submit cluster_size="10" max_per_cycle="100" sleep="0.2" slots_layout="fixed">
               <submit_attrs>
               </submit_attrs>
            </submit>
         </config>
         <allow_frontends></allow_frontends>
         <attrs>
            <attr name="CONDOR_VERSION" const="False" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="default"/>
            <attr name="GLEXEC_JOB" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="False" type="string" value="False"/>
            <attr name="GLIDEIN_CMSSite" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
            <attr name="GLIDEIN_CPUS" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="8"/>
            <attr name="GLIDEIN_Country" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="US"/>
            <attr name="GLIDEIN_Glexec_Use" comment="This has been REQUIRED for historical reasons, OPTIONAL/NONE alt values" const="False" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="NONE"/>
            <attr name="GLIDEIN_MaxMemMBs" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="int" value="49152"/>
            <attr name="GLIDEIN_Max_Walltime" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="int" value="171000"/>
            <attr name="GLIDEIN_ResourceName" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>            
            <attr name="GLIDEIN_Site" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
            <attr name="GLIDEIN_Supported_VOs" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="CMS,MIS"/>
            <attr name="USE_CCB" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="True"/>
            <attr name="X509_CERT_DIR" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="/cvmfs/oasis.opensciencegrid.org/mis/certificates"/>
         </attrs>
         <files>
         </files>
         <infosys_refs>
         </infosys_refs>
         <monitorgroups>
         </monitorgroups>
</entry>

Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST.

[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts
[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTENT_HOST >> /etc/ssh/ssh_known_hosts

Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST.
```
[root@FRONTEND_HOST ~]$ service gwms-factory stop
[root@FRONTEND_HOST ~]$ service gwms-factory reconfig
[root@FRONTEND_HOST ~]$ service gwms-factory start
```

>
>

Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.

 <entry name="CMS_TX_US_XXXXX_BOSCO" auth_method="key_pair" enabled="True" gatekeeper="BOSCO_USER@BOSCO_HOST" gridtype="batch BATCH_TYPE" rsl="" trust_domain="bosco" verbosity="std" work_dir="~/"> <config> <max_jobs> <default_per_frontend glideins="256" held="50" idle="50"/> <per_entry glideins="256" held="50" idle="50"/> <per_frontends> </per_frontends> </max_jobs> <release max_per_cycle="20" sleep="0.2"/> <remove max_per_cycle="5" sleep="0.2"/> <restrictions require_glidein_glexec_use="False" require_voms_proxy="False"/> <submit cluster_size="10" max_per_cycle="100" sleep="0.2" slots_layout="fixed"> <submit_attrs> </submit_attrs> </submit> </config> <allow_frontends></allow_frontends> <attrs> <attr name="CONDOR_VERSION" const="False" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="default"/> <attr name="GLEXEC_JOB" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="False" type="string" value="False"/> <attr name="GLIDEIN_CMSSite" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_CPUS" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="8"/> <attr name="GLIDEIN_Country" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="US"/> <attr name="GLIDEIN_Glexec_Use" comment="This has been REQUIRED for historical reasons, OPTIONAL/NONE alt values" const="False" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="NONE"/> <attr name="GLIDEIN_MaxMemMBs" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="int" value="49152"/> <attr name="GLIDEIN_Max_Walltime" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="int" value="171000"/> <attr name="GLIDEIN_ResourceName" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_Site" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/> <attr name="GLIDEIN_Supported_VOs" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="CMS,MIS"/> <attr name="USE_CCB" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="True"/> <attr name="X509_CERT_DIR" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="/cvmfs/oasis.opensciencegrid.org/mis/certificates"/> </attrs> <files> </files> <infosys_refs> </infosys_refs> <monitorgroups> </monitorgroups> </entry>

Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST.

[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts [root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTENT_HOST >> /etc/ssh/ssh_known_hosts

Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST.
```
[root@FRONTEND_HOST ~]$ service gwms-factory stop [root@FRONTEND_HOST ~]$ service gwms-factory reconfig [root@FRONTEND_HOST ~]$ service gwms-factory start 
```

Additional Documentation

Line: 115 to 64

Changed:

<
< -- JeffreyDost - 2015/05/12

>
> -- JeffreyDost - 2015/05/12

\ No newline at end of file

Revision 172015/06/26 - Main.JeffreyDost

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 32 to 32

glideinWMS Factory 3.2.6 or later (3.2.8 recommended)
HTCondor 8.2.4 or later
condor-bosco

Added:

>
>

Already have an ssh login to the target BOSCO_HOST

Installation and Configuration

Changed:

<
<

>
>

Login to the FRONTEND_HOST via ssh as the FRONTEND_USER. NOTE it is important to log in with -A, this assumes you already have your personal public key access to the BOSCO_HOST. The bosco_cluster --add command will use this login to copy the bosco credentials over to the node.
```
 [user@client ~]$ ssh -A FRONTEND_USER@FRONTEND_HOST
```

Download the BOSCO installer tarball in the FRONTEND_USER home directory.

 [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/boscoinstaller.tar.gz

Unzip and untar the BOSCO installer in the FRONTEND_USER home directory.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf boscoinstaller.tar.gz 
```
Run the boscoinstaller script to install BOSCO on the FRONTEND_HOST.
```
[FRONTEND_USER@FRONTEND_HOST ~]$ python boscoinstaller 
```
Generate a passwordless rsa key, just press enter twice with no password when it prompts for one. Note it is important to name the key bosco_key.rsa:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ssh-keygen -t rsa -f ~/.ssh/bosco_key.rsa
```

Changed:

<
<

Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:
```
 source ~/bosco/bosco_setenv 
```

>
>

Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please run the following:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ source ~/bosco/bosco_setenv 
```

For whatever reason the installer doesn't create the .bosco dir so create it manually:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ mkdir ~/.bosco 
```

Start up BOSCO:

 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_start

Changed:

<
<

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters, this will forward the passwordless bosco ssh key, and install bosco on the remote side:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.
Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --test BOSCO_USER@BOSCO_HOST 
```

>
>

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters, this will forward the passwordless bosco ssh key, and install bosco on the remote side:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.
Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_cluster --test BOSCO_USER@BOSCO_HOST 
```

If successful, run bosco_stop on the FRONTEND_HOST.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
```

Deleted:

<
<

Remove source ~/bosco/bosco_setenv from .bash_profile.

Finally, add the following elements to your frontend configuration file, frontend.xml. Note, you may add them to either the group or global credential definition.

 <credentials>
   <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/>
   <credential absfname="~/.ssh/bosco_key.rsa.pub" keyabsfname="~/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/>

Revision 162015/06/26 - Main.JeffreyDost

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 36 to 36

Installation and Configuration

Changed:

<
<

Download the BOSCO quickstart installer tarball in the FRONTEND_USER home directory.

 [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz

Unzip and untar the BOSCO quickstart installer in the FRONTEND_USER home directory.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf bosco_quickstart.tar.gz 
```

Find the bosco_quickstart script and comment all lines starting from line #164 to the end of the file at line #242. As you'll see, this modification removes the automated procedure for connecting and testing your first BOSCO resource. We will do this manually.

## Start Bosco
#echo "************** Starting Bosco: ***********"
#bosco_start
#
## Connect one cluster
#REMOTE_HOST=""
#REMOTE_USER=""
#REMOTE_TYPE=""
#echo "************** Connect one cluster (resource) to BOSCO: ***********"
#echo "At any time hit [CTRL+C] to interrupt."
#echo 
#q_tmp=""
#read -p "Type the submit host name for the BOSCO resource and press [ENTER]: " q_tmp
#while [ "x$q_tmp" = "x" ]; do
#  read -p "No default, please type the name and press [ENTER]: " q_tmp
#done
#REMOTE_HOST=$q_tmp
#
#q_tmp=""
#read -p "Type your username on $REMOTE_HOST (default $USER) and press [ENTER]: " q_tmp
#if [ "x$q_tmp" = "x" ]; then 
#  REMOTE_USER=$USER
#else
#  REMOTE_USER=$q_tmp
#fi
#
#q_tmp=""
#read -p "Type the queue manager for $REMOTE_HOST (pbs, condor, lsf, sge, slurm) and press [ENTER]: " q_tmp
#while [ "x$q_tmp" = "x" ]; do
#  read -p "No default, please type the queue manager and press [ENTER]: " q_tmp
#done
#if [ "x$q_tmp" = "xslurm" ]; then
#  # SLURM is using PBS emulation
#  q_tmp="pbs"
#fi
#REMOTE_TYPE=$q_tmp
#
#echo "Connecting $REMOTE_HOST, user: $REMOTE_USER, queue manager: $REMOTE_TYPE"
#show_progress "-20-" bosco_cluster --add $REMOTE_USER@$REMOTE_HOST $REMOTE_TYPE 
#if [ $? -ne 0 ]; then
#  echo "Failed to connect the cluster $REMOTE_HOST. Please check your data and retry."
#  exit 1
#fi
#
#echo "$REMOTE_HOST connected"
#
#echo "************** Testing the cluster (resource): ***********"
##echo "This may take up to 2 minutes... please wait."
#show_progress "This may take up to 2 minutes... please wait." bosco_cluster --test $REMOTE_USER@$REMOTE_HOST 
## MMDB move this underneath 
#echo "BOSCO on $REMOTE_HOST Tested"
#if [ $? -ne 0 ]; then
#  echo "Failed to test the cluster $REMOTE_HOST. Please check your data and retry."
#  echo "The BOSCO install document contains some troubleshooting information:"
#  echo "https://twiki.grid.iu.edu/bin/view/CampusGrids/BoscoInstall"
#  exit 1
#fi
#
#
#echo "************** Congratulations, Bosco is now setup to work with $REMOTE_HOST! ***********"
#cat << EOF
#You are ready to submit jobs with the "condor_submit" command.
#Remember to setup the environment all the time you want to use Bosco:
#source ~/bosco/bosco_setenv
#
#Here is a quickstart guide about BOSCO:
#https://twiki.grid.iu.edu/bin/view/CampusGrids/BoscoQuickStart
#
#To remove Bosco you can run:
#source ~/bosco/bosco_setenv; bosco_uninstall --all
#
#Here is a submit file example (supposing you want to run "myjob.sh"):
#universe = grid
#Executable = myjob.sh
#arguments = 
#output = myjob.output.txt
#error = myjob.error.txt
#log = myjob.log
#transfer_output_files = 
#should_transfer_files = YES
#when_to_transfer_output = ON_EXIT
#queue 1
#EOF

Run the bosco_quickstart script to install and start BOSCO on the FRONTEND_HOST.

[FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_quickstart 
Bosco Quickstart Detailed logging of this run is in ./bosco_quickstart.log 
Bosco is not installed. 
You need Bosco to run this quickstart. Do you want to install Bosco? Select y/n and press [ENTER]): y 
************** Downloading and Installing Bosco 
*********** Installing BOSCO................ BOSCO Installed 
************** Starting Bosco: *********** 
BOSCO Started 
[FRONTEND_USER@FRONTEND_HOST ~]$

>
>

Download the BOSCO installer tarball in the FRONTEND_USER home directory.

 [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/boscoinstaller.tar.gz

Unzip and untar the BOSCO installer in the FRONTEND_USER home directory.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf boscoinstaller.tar.gz 
```
Run the boscoinstaller script to install BOSCO on the FRONTEND_HOST.
```
[FRONTEND_USER@FRONTEND_HOST ~]$ python boscoinstaller 
```
Generate a passwordless rsa key, just press enter twice with no password when it prompts for one. Note it is important to name the key bosco_key.rsa:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ssh-keygen -t rsa -f ~/.ssh/bosco_key.rsa
```

Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:
```
 source ~/bosco/bosco_setenv 
```

Changed:

<
<

Find the bosco_cluster script in ~/bosco/bin. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 from bosco_cluster and paste them (in numerical order) into a separate bash script. This script will be used to generate the FRONTEND_USER ssh-key pair and passphrase for BOSCO. The resulting script (which we'll refer to here in this document as bosco_keygen.sh) should look like the following:

#!/bin/bash

# Bosco key location
bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location
PASSPHRASE_LOCATION=$HOME/.bosco/.pass

if [ `uname` = Darwin ] ; then
    MD5SUM=md5
else
    MD5SUM=md5sum
fi

# If the key doesn't exist, create it
if [ ! -e $bosco_key ]; then
    # Generate a md5sum password
    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`

    # Output the password to a specially crafted file
    mkdir -p `dirname $PASSPHRASE_LOCATION`
    echo $PASSPHRASE > $PASSPHRASE_LOCATION
    chmod go-rwx $PASSPHRASE_LOCATION

    # Check if the passphrase is empty
    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null

    if [ $? -ne 0 ]; then
        echo "Error running keygen" >&2
        exit 1
    fi
fi

Run the bosco_keygen.sh script to generate the ssh key pair for the FRONTEND_USER. You will find the keys, bosco_key.rsa and bosco_key.rsa.pub, in the FRONTEND_USER .ssh directory.
```
[FRONTEND_USER@FRONTEND_HOST ~]$ chmod +x bosco_keygen.sh 
[FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_keygen.sh 
```
Next, we need to strip the passphrase from the private key. To do so, you will need to know the passphrase generated by the bosco_keygen.sh script. You can find the passphrase in the ~/.bosco/.pass file. Once you have the passphrase, run the following
```
[FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass 
Enter pass phrase for bosco_key.rsa: 
writing RSA key
```
and then replace the old private key with the new passphrase-less one.
```
[FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ mv bosco_key.rsa_nopass bosco_key.rsa 
```
Make sure the permissions are set correctly.
```
 [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ chmod 600 bosco_key.rsa 
```
Copy the FRONTEND_USER 's public BOSCO key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_HOST.

Again, find the ~/bosco/bin/bosco_cluster bash script on the FRONTEND_HOST and comment out all lines between #811 to #837.

if [ $? -eq 0 ]; then
    echo "Cluster $remote_host already installed"
    echo "Reinstalling on $remote_host"
    reinstall=1
else
    reinstall=0
fi

# If the key doesn't exist, create it                      <<<-------------------- line #811
#if [ ! -e $bosco_key ]; then
#    # Generate a md5sum password
#    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`
#
#    # Output the password to a specially crafted file
#    mkdir -p `dirname $PASSPHRASE_LOCATION`
#    echo $PASSPHRASE > $PASSPHRASE_LOCATION
#    chmod go-rwx $PASSPHRASE_LOCATION
#    
#    # Check if the passphrase is empty
#    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null
# 
#    if [ $? -ne 0 ]; then
#        echo "Error running keygen" >&2
#        exit 1
#    fi
#fi
#
#
# Transfer the public key to the remote host
#echo "Enter the password to copy the ssh keys to $remote_host:"
#cat ${bosco_key}.pub | ssh $remote_host "umask 077; test -d ~/.ssh || mkdir ~/.ssh ; cat >> ~/.ssh/authorized_keys"
#if [ $? -ne 0 ]; then
#    echo "Error copying BOSCO key.  Please make sure you password is correct."
#    exit 1
#fi                                        <<<-------------------- line #837

start_ssh

# Quickly test the ssh

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.

>
>

For whatever reason the installer doesn't create the .bosco dir so create it manually:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ mkdir ~/.bosco 
```

Start up BOSCO:

 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_start

Add the BOSCO_HOST by running the bosco_cluster script with the following parameters, this will forward the passwordless bosco ssh key, and install bosco on the remote side:
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE 
```
where BATCH_TYPE = pbs, condor, etc.

Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --test BOSCO_USER@BOSCO_HOST 
```
If successful, run bosco_stop on the FRONTEND_HOST.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
```
Remove source ~/bosco/bosco_setenv from .bash_profile.

Revision 152015/06/25 - Main.JeffreyDost

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 134 to 134

[FRONTEND_USER@FRONTEND_HOST ~]$

Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:
```
 source ~/bosco/bosco_setenv 
```

Changed:

<
<

#!/bin/bash 
# Bosco key location bosco_key=$HOME/.ssh/bosco_key.rsa 
# Bosco password location PASSPHRASE_LOCATION=$HOME/.bosco/.pass if [ `uname` = Darwin ] ; then MD5SUM=md5 else MD5SUM=md5sum fi # If the key doesn't exist, create it if [ ! -e $bosco_key ]; then # Generate a md5sum password PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'` # Output the password to a specially crafted file mkdir -p `dirname $PASSPHRASE_LOCATION` echo $PASSPHRASE > $PASSPHRASE_LOCATION chmod go-rwx $PASSPHRASE_LOCATION # Check if the passphrase is empty ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null if [ $? -ne 0 ]; then echo "Error running keygen" >&2 exit 1 fi fi

>
>

#!/bin/bash

# Bosco key location
bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location
PASSPHRASE_LOCATION=$HOME/.bosco/.pass

if [ `uname` = Darwin ] ; then
    MD5SUM=md5
else
    MD5SUM=md5sum
fi

# If the key doesn't exist, create it
if [ ! -e $bosco_key ]; then
    # Generate a md5sum password
    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`

    # Output the password to a specially crafted file
    mkdir -p `dirname $PASSPHRASE_LOCATION`
    echo $PASSPHRASE > $PASSPHRASE_LOCATION
    chmod go-rwx $PASSPHRASE_LOCATION

    # Check if the passphrase is empty
    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null

    if [ $? -ne 0 ]; then
        echo "Error running keygen" >&2
        exit 1
    fi
fi

Run the bosco_keygen.sh script to generate the ssh key pair for the FRONTEND_USER. You will find the keys, bosco_key.rsa and bosco_key.rsa.pub, in the FRONTEND_USER .ssh directory.
```
[FRONTEND_USER@FRONTEND_HOST ~]$ chmod +x bosco_keygen.sh 
[FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_keygen.sh 
```

Revision 142015/06/25 - Main.JeffreyDost

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 38 to 38

Download the BOSCO quickstart installer tarball in the FRONTEND_USER home directory.

 [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz

Unzip and untar the BOSCO quickstart installer in the FRONTEND_USER home directory.
```
 [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf bosco_quickstart.tar.gz 
```

Changed:

<
<

# Start Bosco echo "************** Starting Bosco: ***********" bosco_start # Connect one cluster <<<-------------------- line #164 #REMOTE_HOST="" #REMOTE_USER="" #REMOTE_TYPE="" #echo "************** Connect one cluster (resource) to BOSCO: ***********" #echo "At any time hit [CTRL+C] to interrupt." # ... # ... # ... #Executable = myjob.sh #arguments = #output = myjob.output.txt #error = myjob.error.txt #log = myjob.log #transfer_output_files = #should_transfer_files = YES #when_to_transfer_output = ON_EXIT #queue 1 #EOF <<<-------------------- line #242

>
>

## Start Bosco
#echo "************** Starting Bosco: ***********"
#bosco_start
#
## Connect one cluster
#REMOTE_HOST=""
#REMOTE_USER=""
#REMOTE_TYPE=""
#echo "************** Connect one cluster (resource) to BOSCO: ***********"
#echo "At any time hit [CTRL+C] to interrupt."
#echo 
#q_tmp=""
#read -p "Type the submit host name for the BOSCO resource and press [ENTER]: " q_tmp
#while [ "x$q_tmp" = "x" ]; do
#  read -p "No default, please type the name and press [ENTER]: " q_tmp
#done
#REMOTE_HOST=$q_tmp
#
#q_tmp=""
#read -p "Type your username on $REMOTE_HOST (default $USER) and press [ENTER]: " q_tmp
#if [ "x$q_tmp" = "x" ]; then 
#  REMOTE_USER=$USER
#else
#  REMOTE_USER=$q_tmp
#fi
#
#q_tmp=""
#read -p "Type the queue manager for $REMOTE_HOST (pbs, condor, lsf, sge, slurm) and press [ENTER]: " q_tmp
#while [ "x$q_tmp" = "x" ]; do
#  read -p "No default, please type the queue manager and press [ENTER]: " q_tmp
#done
#if [ "x$q_tmp" = "xslurm" ]; then
#  # SLURM is using PBS emulation
#  q_tmp="pbs"
#fi
#REMOTE_TYPE=$q_tmp
#
#echo "Connecting $REMOTE_HOST, user: $REMOTE_USER, queue manager: $REMOTE_TYPE"
#show_progress "-20-" bosco_cluster --add $REMOTE_USER@$REMOTE_HOST $REMOTE_TYPE 
#if [ $? -ne 0 ]; then
#  echo "Failed to connect the cluster $REMOTE_HOST. Please check your data and retry."
#  exit 1
#fi
#
#echo "$REMOTE_HOST connected"
#
#echo "************** Testing the cluster (resource): ***********"
##echo "This may take up to 2 minutes... please wait."
#show_progress "This may take up to 2 minutes... please wait." bosco_cluster --test $REMOTE_USER@$REMOTE_HOST 
## MMDB move this underneath 
#echo "BOSCO on $REMOTE_HOST Tested"
#if [ $? -ne 0 ]; then
#  echo "Failed to test the cluster $REMOTE_HOST. Please check your data and retry."
#  echo "The BOSCO install document contains some troubleshooting information:"
#  echo "https://twiki.grid.iu.edu/bin/view/CampusGrids/BoscoInstall"
#  exit 1
#fi
#
#
#echo "************** Congratulations, Bosco is now setup to work with $REMOTE_HOST! ***********"
#cat << EOF
#You are ready to submit jobs with the "condor_submit" command.
#Remember to setup the environment all the time you want to use Bosco:
#source ~/bosco/bosco_setenv
#
#Here is a quickstart guide about BOSCO:
#https://twiki.grid.iu.edu/bin/view/CampusGrids/BoscoQuickStart
#
#To remove Bosco you can run:
#source ~/bosco/bosco_setenv; bosco_uninstall --all
#
#Here is a submit file example (supposing you want to run "myjob.sh"):
#universe = grid
#Executable = myjob.sh
#arguments = 
#output = myjob.output.txt
#error = myjob.error.txt
#log = myjob.log
#transfer_output_files = 
#should_transfer_files = YES
#when_to_transfer_output = ON_EXIT
#queue 1
#EOF

Run the bosco_quickstart script to install and start BOSCO on the FRONTEND_HOST.

[FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_quickstart 
Bosco Quickstart Detailed logging of this run is in ./bosco_quickstart.log 
Bosco is not installed.

Revision 132015/06/03 - Main.MartinKandes

 			 META TOPICPARENT 
			 name="WebHome" 
		
	
  HOWTO Install and Configure BOSCO for Glidein-Based Submission
- META TOPICPARENT
+ name="WebHome"
 This document follows the general OSG documentation conventions:
-<
<
+ A User Command Line is illustrated by a green box that displays a prompt:  [user@client ~]$ 
  A Root Command Line is illustrated by a red box that displays the root prompt:   [root@client ~]$ 
   Lines in a file are illustrated by a yellow box that displays the desired lines in a file:  priorities=1
->
>
+ A User Command Line is illustrated by a green box that displays a prompt: [user@client ~]$ 
  A Root Command Line is illustrated by a red box that displays the root prompt:  [root@client ~]$ 
  Lines in a file are illustrated by a yellow box that displays the desired lines in a file:  priorities=1
  Definitions
  Installation and Configuration
-<
<
+ Login to the FRONTEND_HOST via ssh as the FRONTEND_USER.   [user@client ~]$ ssh FRONTEND_USER@FRONTEND_HOST
  Download the BOSCO quickstart installer tarball in the FRONTEND_USER home directory.   [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz 
  Unzip and untar the BOSCO quickstart installer in the FRONTEND_USER home directory.   [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf bosco_quickstart.tar.gz 
  Find the bosco_quickstart script and comment all lines starting from line #164 to the end of the file at line #242. As you'll see, this modification removes the automated procedure for connecting and testing your first BOSCO resource. We will do this manually. # Start Bosco
echo "************** Starting Bosco: ***********"
bosco_start

# Connect one cluster                                        <<<-------------------- line #164
#REMOTE_HOST=""
#REMOTE_USER=""
#REMOTE_TYPE=""
#echo "************** Connect one cluster (resource) to BOSCO: ***********"
#echo "At any time hit [CTRL+C] to interrupt."
# ...
# ...
# ...
#Executable = myjob.sh
#arguments = 
#output = myjob.output.txt
#error = myjob.error.txt
#log = myjob.log
#transfer_output_files = 
#should_transfer_files = YES
#when_to_transfer_output = ON_EXIT
#queue 1
#EOF                                                          <<<-------------------- line #242

  Run the bosco_quickstart script to install and start BOSCO on the FRONTEND_HOST.  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_quickstart 
Bosco Quickstart
Detailed logging of this run is in ./bosco_quickstart.log

Bosco is not installed. You need Bosco to run this quickstart.
Do you want to install Bosco? Select y/n and press [ENTER]): y
************** Downloading and Installing Bosco ***********
Installing BOSCO................
BOSCO Installed
->
>
+ Login to the FRONTEND_HOST via ssh as the FRONTEND_USER.  [user@client ~]$ ssh FRONTEND_USER@FRONTEND_HOST
  Download the BOSCO quickstart installer tarball in the FRONTEND_USER home directory.  [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz 
  Unzip and untar the BOSCO quickstart installer in the FRONTEND_USER home directory.  [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf bosco_quickstart.tar.gz 
  Find the bosco_quickstart script and comment all lines starting from line #164 to the end of the file at line #242. As you'll see, this modification removes the automated procedure for connecting and testing your first BOSCO resource. We will do this manually. # Start Bosco echo "************** Starting Bosco: ***********" bosco_start # Connect one cluster <<<-------------------- line #164 #REMOTE_HOST="" #REMOTE_USER="" #REMOTE_TYPE="" #echo "************** Connect one cluster (resource) to BOSCO: ***********" #echo "At any time hit [CTRL+C] to interrupt." # ... # ... # ... #Executable = myjob.sh #arguments = #output = myjob.output.txt #error = myjob.error.txt #log = myjob.log #transfer_output_files = #should_transfer_files = YES #when_to_transfer_output = ON_EXIT #queue 1 #EOF <<<-------------------- line #242 
  Run the bosco_quickstart script to install and start BOSCO on the FRONTEND_HOST. [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_quickstart 
Bosco Quickstart Detailed logging of this run is in ./bosco_quickstart.log 
Bosco is not installed. 
You need Bosco to run this quickstart. Do you want to install Bosco? Select y/n and press [ENTER]): y 
************** Downloading and Installing Bosco 
*********** Installing BOSCO................ BOSCO Installed
 ************ Starting Bosco: *********
BOSCO Started
[FRONTEND_USER@FRONTEND_HOST ~]$
-<
<
+ Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:  source ~/bosco/bosco_setenv 
  Find the bosco_cluster script in ~/bosco/bin. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 from bosco_cluster and paste them (in numerical order) into a separate bash script. This script will be used to generate the FRONTEND_USER ssh-key pair and passphrase for BOSCO. The resulting script (which we'll refer to here in this document as bosco_keygen.sh) should look like the following: #!/bin/bash

# Bosco key location
bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location
PASSPHRASE_LOCATION=$HOME/.bosco/.pass

if [ `uname` = Darwin ] ; then 
    MD5SUM=md5
else
    MD5SUM=md5sum
fi

# If the key doesn't exist, create it
if [ ! -e $bosco_key ]; then 
    # Generate a md5sum password
    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`

    # Output the password to a specially crafted file
    mkdir -p `dirname $PASSPHRASE_LOCATION`
    echo $PASSPHRASE > $PASSPHRASE_LOCATION
    chmod go-rwx $PASSPHRASE_LOCATION
    
    # Check if the passphrase is empty
    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null
 
    if [ $? -ne 0 ]; then 
        echo "Error running keygen" >&2
        exit 1
    fi   
fi
->
>
+ Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:  source ~/bosco/bosco_setenv 
  Find the bosco_cluster script in ~/bosco/bin. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 from bosco_cluster and paste them (in numerical order) into a separate bash script. This script will be used to generate the FRONTEND_USER ssh-key pair and passphrase for BOSCO. The resulting script (which we'll refer to here in this document as bosco_keygen.sh) should look like the following: #!/bin/bash 
# Bosco key location bosco_key=$HOME/.ssh/bosco_key.rsa 
# Bosco password location PASSPHRASE_LOCATION=$HOME/.bosco/.pass if [ `uname` = Darwin ] ; then MD5SUM=md5 else MD5SUM=md5sum fi # If the key doesn't exist, create it if [ ! -e $bosco_key ]; then # Generate a md5sum password PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'` # Output the password to a specially crafted file mkdir -p `dirname $PASSPHRASE_LOCATION` echo $PASSPHRASE > $PASSPHRASE_LOCATION chmod go-rwx $PASSPHRASE_LOCATION # Check if the passphrase is empty ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null if [ $? -ne 0 ]; then echo "Error running keygen" >&2 exit 1 fi fi
-<
<
+ Run the bosco_keygen.sh script to generate the ssh key pair for the FRONTEND_USER. You will find the keys, bosco_key.rsa and bosco_key.rsa.pub, in the FRONTEND_USER .ssh directory. [FRONTEND_USER@FRONTEND_HOST ~]$ chmod +x bosco_keygen.sh
->
>
+ Run the bosco_keygen.sh script to generate the ssh key pair for the FRONTEND_USER. You will find the keys, bosco_key.rsa and bosco_key.rsa.pub, in the FRONTEND_USER .ssh directory. [FRONTEND_USER@FRONTEND_HOST ~]$ chmod +x bosco_keygen.sh
 [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_keygen.sh
-<
<
+ Next, we need to strip the passphrase from the private key. To do so, you will need to know the passphrase generated by the bosco_keygen.sh script. You can find the passphrase in the ~/.bosco/.pass file. Once you have the passphrase, run the following   [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass
->
>
+ Next, we need to strip the passphrase from the private key. To do so, you will need to know the passphrase generated by the bosco_keygen.sh script. You can find the passphrase in the ~/.bosco/.pass file. Once you have the passphrase, run the following [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass
 Enter pass phrase for bosco_key.rsa:
-<
<
+writing RSA key and then replace the old private key with the new passphrase-less one.  [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ mv bosco_key.rsa_nopass bosco_key.rsa 
 Make sure the permissions are set correctly.  [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ chmod 600 bosco_key.rsa 
 
 Copy the FRONTEND_USER 's public BOSCO key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_HOST.
  Again, find the ~/bosco/bin/bosco_cluster bash script on the FRONTEND_HOST and comment out all lines between #811 to #837. if [ $? -eq 0 ]; then
->
>
+writing RSA key
 and then replace the old private key with the new passphrase-less one. [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ mv bosco_key.rsa_nopass bosco_key.rsa 
 Make sure the permissions are set correctly.  [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ chmod 600 bosco_key.rsa 
 
 Copy the FRONTEND_USER 's public BOSCO key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_HOST.
  Again, find the ~/bosco/bin/bosco_cluster bash script on the FRONTEND_HOST and comment out all lines between #811 to #837. if [ $? -eq 0 ]; then
     echo "Cluster $remote_host already installed"
    echo "Reinstalling on $remote_host"
    reinstall=1
     reinstall=0
fi
-<
<
+# If the key doesn't exist, create it        <<<-------------------- line #811
->
>
+# If the key doesn't exist, create it                      <<<-------------------- line #811
 #if [ ! -e $bosco_key ]; then
#    # Generate a md5sum password
#    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`
 #if [ $? -ne 0 ]; then
#    echo "Error copying BOSCO key.  Please make sure you password is correct."
#    exit 1
-<
<
+#fi                                         <<<-------------------- line #837
->
>
+#fi                                        <<<-------------------- line #837
 start_ssh

# Quickly test the ssh
-<
<
+ Add the BOSCO_HOST by running the bosco_cluster script with the following parameters:  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE  where BATCH_TYPE = pbs, condor, etc. 
  Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --test BOSCO_USER@BOSCO_HOST 
  If successful, run bosco_stop on the FRONTEND_HOST.  [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
  Remove source ~/bosco/bosco_setenv from .bash_profile. Your FRONTEND_HOST is now properly configured. 
  Next, login to the FACTORY_HOST via ssh as root.   [user@client ~]$ ssh root@FACTORY_HOST
  Install condor-bosco on the FACTORY_HOST from root.   [root@FACTORY_HOST ~]$ yum install condor-bosco 
  Remove and retouch the 60-campus_factory.config file.   [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config 
  [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config
  Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.
->
>
+ Add the BOSCO_HOST by running the bosco_cluster script with the following parameters:  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE  where BATCH_TYPE = pbs, condor, etc.
  Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --test BOSCO_USER@BOSCO_HOST 
  If successful, run bosco_stop on the FRONTEND_HOST.  [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
  Remove source ~/bosco/bosco_setenv from .bash_profile. 
  Finally, add the following elements to your frontend configuration file, frontend.xml. Note, you may add them to either the group or global credential definition.  <credentials>
   <credential absfname="/path/to/grid_proxy" security_class="frontend" trust_domain="grid" type="grid_proxy"/>
   <credential absfname="~/.ssh/bosco_key.rsa.pub" keyabsfname="~/.ssh/bosco_key.rsa" pilotabsfname="/path/to/grid_proxy" security_class="frontend" trust_domain="bosco" type="key_pair"/>
</credentials>

  Please stop, reconfig, and restart your frontend. If successful, the FRONTEND_HOST is now properly configured. [root@FRONTEND_HOST ~]$ service gwms-frontend stop
[root@FRONTEND_HOST ~]$ service gwms-frontend reconfig
[root@FRONTEND_HOST ~]$ service gwms-frontend start  

  Next, login to the FACTORY_HOST via ssh as root.  [user@client ~]$ ssh root@FACTORY_HOST
  Install condor-bosco on the FACTORY_HOST from root.  [root@FACTORY_HOST ~]$ yum install condor-bosco 
  Remove and retouch the 60-campus_factory.config file.  [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config
  Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.  <entry name="CMS_TX_US_XXXXX_BOSCO" auth_method="key_pair" enabled="True" gatekeeper="BOSCO_USER@BOSCO_HOST" gridtype="batch BATCH_TYPE" rsl="" trust_domain="bosco" verbosity="std" work_dir="~/">
         <config>
            <max_jobs>
               <default_per_frontend glideins="256" held="50" idle="50"/>
               <per_entry glideins="256" held="50" idle="50"/>
               <per_frontends>
               </per_frontends>
            </max_jobs>
            <release max_per_cycle="20" sleep="0.2"/>
            <remove max_per_cycle="5" sleep="0.2"/>
            <restrictions require_glidein_glexec_use="False" require_voms_proxy="False"/>
            <submit cluster_size="10" max_per_cycle="100" sleep="0.2" slots_layout="fixed">
               <submit_attrs>
               </submit_attrs>
            </submit>
         </config>
         <allow_frontends></allow_frontends>
         <attrs>
            <attr name="CONDOR_VERSION" const="False" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="default"/>
            <attr name="GLEXEC_JOB" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="False" type="string" value="False"/>
            <attr name="GLIDEIN_CMSSite" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
            <attr name="GLIDEIN_CPUS" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="8"/>
            <attr name="GLIDEIN_Country" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="US"/>
            <attr name="GLIDEIN_Glexec_Use" comment="This has been REQUIRED for historical reasons, OPTIONAL/NONE alt values" const="False" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="NONE"/>
            <attr name="GLIDEIN_MaxMemMBs" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="int" value="49152"/>
            <attr name="GLIDEIN_Max_Walltime" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="int" value="171000"/>
            <attr name="GLIDEIN_ResourceName" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>            
            <attr name="GLIDEIN_Site" const="True" glidein_publish="True" job_publish="True" parameter="True" publish="True" type="string" value="TX_US_XXXXX"/>
            <attr name="GLIDEIN_Supported_VOs" const="True" glidein_publish="False" job_publish="False" parameter="True" publish="True" type="string" value="CMS,MIS"/>
            <attr name="USE_CCB" const="True" glidein_publish="True" job_publish="False" parameter="True" publish="True" type="string" value="True"/>
            <attr name="X509_CERT_DIR" const="True" glidein_publish="False" job_publish="True" parameter="True" publish="True" type="string" value="/cvmfs/oasis.opensciencegrid.org/mis/certificates"/>
         </attrs>
         <files>
         </files>
         <infosys_refs>
         </infosys_refs>
         <monitorgroups>
         </monitorgroups>
</entry>

  Finally, build up a global ssh fingerprint list so that the FACTORY_HOST trusts the keys of both the BOSCO_HOST and the FRONTEND_HOST. [root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa BOSCO_HOST >> /etc/ssh/ssh_known_hosts
[root@FACTORY_HOST ~]$ ssh-keyscan -t rsa,dsa FRONTENT_HOST >> /etc/ssh/ssh_known_hosts

  Stop, reconfigure and restart your factory. If successful, the FACTORY_HOST is now properly configured. You may now submit user jobs to the BOSCO_HOST via the FRONTEND_HOST. [root@FRONTEND_HOST ~]$ service gwms-factory stop
[root@FRONTEND_HOST ~]$ service gwms-factory reconfig
[root@FRONTEND_HOST ~]$ service gwms-factory start
  Additional Documentation
->
>
+ http://www.uscms.org/SoftwareComputing/Grid/WMS/glideinWMS/doc.prd/recipes/batch.html
  https://twiki.grid.iu.edu/bin/view/CampusGrids/BoscoQuickStart
  https://twiki.grid.iu.edu/bin/view/CampusGrids/BoSCO
  https://twiki.grid.iu.edu/bin/view/Documentation/Release3/InstallGlideinWMSFactory
  https://twiki.grid.iu.edu/bin/view/Documentation/Release3/InstallGlideinWMSFrontend
-<
<
+. recognize frontend keys on factory

The BOSCO submission from the Factory uses SSH. Before being able to do ssh in batch mode for the glidein submission you must trust the keys of the BOSCO resource, the one added with "bosco_cluster --add" on the Frontend, in our example carvergrid.nersc.gov. You have a couple of options depending on how you want to configure ssh: 

 Build up a global fingerprint list. Collect the keys in /etc/ssh/ssh_known_hosts (or ~/.ssh/known_hosts of the users submitting glideins). Note that you'll have to update the fingerprint list if the BOSCO recource key will change or all the glidein submisison attempts will failssh-keyscan -t rsa,dsa carvergrid.nersc.gov >> /etc/ssh/ssh_known_hosts 
  Alternatively disable strict host key checking in ssh for the BOSCO resource adding these lines to /etc/ssh/ssh_config (or ~/.ssh/config of the users submitting glideins). The syntax below can accept also IP numbers or wildcards (to include more hosts).Host carvergrid.nersc.gov StrictHostKeyChecking no 
The setting above will add the key the first time and give a warning if the key changes subsequently. To avoid host key verification, and not use known_hosts file you can do the following (not recommended unless on a local network). In this example the BOSCO resources have IPs 192.168.0.XXX.Host 192.168.0.* StrictHostKeyChecking no UserKnownHostsFile=/dev/null 
 

If you have access to the ssh key on the factory, it is recommended also to manually ssh to the host to see if the ssh connection works correctly.



16.



-- JeffreyDost - 2015/05/12
->
>
+ -- JeffreyDost - 2015/05/12

Revision 122015/06/03 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

HOWTO Install and Configure BOSCO for Glidein-Based Submission

Line: 165 to 165

Install condor-bosco on the FACTORY_HOST from root.

  [root@FACTORY_HOST ~]$ yum install condor-bosco

Remove and retouch the 60-campus_factory.config file.

  [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config 
  [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config

Added:

>
>

Now, add the entry for the BOSCO_HOST to factory configuration file, glideinWMS.xml.

Additional Documentation

Deleted:

<
<

14. Add entry to factory config ...

<max_jobs>

<default_per_frontend glideins="256" held="5" idle="10"/>

<per_entry glideins="256" held="5" idle="10"/>

<per_frontends>

</per_frontends>

</max_jobs>

<submit_attrs>

</submit_attrs>

</submit>

</config>

<allow_frontends>

</allow_frontends>

<attrs>

</attrs>

<files>

</files>

<infosys_refs>

</infosys_refs>

</monitorgroups>

</entry>

15. recognize frontend keys on factory

Revision 112015/06/02 - Main.MartinKandes

 			 META TOPICPARENT 
			 name="WebHome" 
		
	
  HOWTO Install and Configure BOSCO for Glidein-Based Submission
- META TOPICPARENT
+ name="WebHome"
     fi   
fi
-<
<
+ Additional Documentation 




8. Generate the FRONTEND_USER's bosco ssh key pair and passphrase by running the bash script created in Step 7.

[1507] frontend@test-frontend-1 ~$ chmod +x bosco_generate_keys.sh

[1508] frontend@test-frontend-1 ~$ ./bosco_generate_keys.sh

[1508] frontend@test-frontend-1 ~$ cd .ssh

[1509] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts



marco says use no passphrase

[1522] frontend@test-frontend-1 ~$ ./bosco_generate_keys.sh

[1522] frontend@test-frontend-1 ~$ cd .ssh

[1523] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts

[1523] frontend@test-frontend-1 ~/.ssh$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass
->
>
+ Run the bosco_keygen.sh script to generate the ssh key pair for the FRONTEND_USER. You will find the keys, bosco_key.rsa and bosco_key.rsa.pub, in the FRONTEND_USER .ssh directory. [FRONTEND_USER@FRONTEND_HOST ~]$ chmod +x bosco_keygen.sh
[FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_keygen.sh

  Next, we need to strip the passphrase from the private key. To do so, you will need to know the passphrase generated by the bosco_keygen.sh script. You can find the passphrase in the ~/.bosco/.pass file. Once you have the passphrase, run the following   [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass
 Enter pass phrase for bosco_key.rsa:
->
>
+writing RSA key and then replace the old private key with the new passphrase-less one.  [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ mv bosco_key.rsa_nopass bosco_key.rsa 
 Make sure the permissions are set correctly.  [FRONTEND_USER@FRONTEND_HOST ~/.ssh]$ chmod 600 bosco_key.rsa 
 
 Copy the FRONTEND_USER 's public BOSCO key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_HOST.
  Again, find the ~/bosco/bin/bosco_cluster bash script on the FRONTEND_HOST and comment out all lines between #811 to #837. if [ $? -eq 0 ]; then 
    echo "Cluster $remote_host already installed"
    echo "Reinstalling on $remote_host"
    reinstall=1
else
    reinstall=0
fi
-<
<
+writing RSA key

[1524] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa_nopass bosco_key.rsa.pub known_hosts

[1524] frontend@test-frontend-1 ~/.ssh$ mv bosco_key.rsa_nopass bosco_key.rsa

[1524] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts

[1524] frontend@test-frontend-1 ~/.ssh$



chmod 600 bosco_key.rsa



9. Copy the FRONTEND_USER's public bosco key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_LOGIN_HOST.

ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAlLh6nD? +5uYmXxG4UFdHWYcokIDT7Tm+/pRnxyGseZMzG61gJU26HwCy1wvilaj3PZ+yws2896BTi4mx4IPQ+1iev2GXjWnyTTz1T3SldS4pgwYqM9tVjkkz/BI5ddVXAlurkH3YAHYrdkPamVNJg7lUcqFnFZZEN8y0gE6l2kf5PdFMkQBVo6OzFLbLp3bTAaAeTfnEcT/VEs3xqgY4SlMtHcejbnP+GKio1mwEamz2EVoCyyVFNIHnFmY1U+ze8FMPfmkB3Yzrz1B669LlP/1t2iG1weir7Z75bP3d8/nEN2T9b15bq73QfhzybWjzfdQLT8pS3Su8LZ+7z5RyabQ== frontend@test-frontend-1.t2.ucsd.edu



10. Next, comment out all lines between #811 to #837 in the ~/bosco/bin/bosco_cluster bash script.



11. Add the BOSCO_LOGIN_HOST by running the bosco_cluster bash script with the following parameters:

./bosco_cluster --add $BOSCO_USER@$BOSCO_LOGIN_HOST $BATCH_TYPE

where $BATCH_TYPE = pbs, condor, ...

[1529] frontend@test-frontend-1 ~$ bosco_cluster --add bosco@osg-gw-7.t2.ucsd.edu condor

Downloading for bosco@osg-gw-7.t2.ucsd.edu......

Unpacking..

Sending libraries to bosco@osg-gw-7.t2.ucsd.edu.

Creating BOSCO for the WN's................................................

Installing on cluster bosco@osg-gw-7.t2.ucsd.edu.

Installation complete

The cluster bosco@osg-gw-7.t2.ucsd.edu has been added to BOSCO

It is available to run jobs submitted with the following values:

> universe = grid

> grid_resource = batch condor bosco@osg-gw-7.t2.ucsd.edu

OR to run load balanced job on all available clusters with:

> universe = vanilla

[1530] frontend@test-frontend-1 ~$



12. Run a bosco test job to check the connection between the FRONTEND_HOST and the BOSCO_RESOURCE and it's worker nodes ...

[1534] frontend@test-frontend-1 ~$ ./bosco_cluster --test bosco@osg-gw-7.t2.ucsd.edu

-bash: ./bosco_cluster: No such file or directory

[1534] frontend@test-frontend-1 ~$ bosco_cluster --test bosco@osg-gw-7.t2.ucsd.edu

Testing ssh to bosco@osg-gw-7.t2.ucsd.edu...Passed!

Testing bosco submission...Passed!

Submission and log files for this job are in /home/frontend/bosco/local.bosco/bosco-test/boscotest.13683

Waiting for jobmanager to accept job...Passed

Checking for submission to remote condor cluster (could take ~30 seconds)...Passed!

Waiting for job to exit... this could take a while (waiting 60 seconds)...Failed

The job did not end in 60 seconds. This is not always a bad thing...

Maybe condor is waiting longer to poll for job completion?

Here is the current status of the job:"

-- Submitter: test-frontend-1.t2.ucsd.edu : <127.0.0.1:11000?sock=6597_e220_3> : test-frontend-1.t2.ucsd.edu

ID OWNER SUBMITTED RUN_TIME ST PRI SIZE CMD

1.0 frontend 5/14 15:34 0+00:00:00 I 0 0.0 echo Hello

[1535] frontend@test-frontend-1 ~$



12.5 Run bosco_stop on FRONTEND_HOST.



12.75. Remove source ~/bosco/bosco_setenv from .bash_profile.
->
>
+# If the key doesn't exist, create it        <<<-------------------- line #811
#if [ ! -e $bosco_key ]; then
#    # Generate a md5sum password
#    PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`
#
#    # Output the password to a specially crafted file
#    mkdir -p `dirname $PASSPHRASE_LOCATION`
#    echo $PASSPHRASE > $PASSPHRASE_LOCATION
#    chmod go-rwx $PASSPHRASE_LOCATION
#    
#    # Check if the passphrase is empty
#    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null
# 
#    if [ $? -ne 0 ]; then
#        echo "Error running keygen" >&2
#        exit 1
#    fi
#fi
#
#
# Transfer the public key to the remote host
#echo "Enter the password to copy the ssh keys to $remote_host:"
#cat ${bosco_key}.pub | ssh $remote_host "umask 077; test -d ~/.ssh || mkdir ~/.ssh ; cat >> ~/.ssh/authorized_keys"
#if [ $? -ne 0 ]; then
#    echo "Error copying BOSCO key.  Please make sure you password is correct."
#    exit 1
#fi                                         <<<-------------------- line #837
-<
<
+. Install condor-bosco on the FACTORY_HOST from ROOT.
->
>
+start_ssh
-<
<
+ Install HTCondor-BOSCO 
 If you plan to send jobs using direct batch submission (aka BOSCO), then you need also the condor-bosco package. You'll have to install the package and remove one of its file (/etc/condor/config.d/60-campus_factory.config) because it interferes with the factory configuration.[root@client ~]$ yum install condor-bosco [root@client ~]$ rm /etc/condor/config.d/60-campus_factory.config [root@client ~]$ touch /etc/condor/config.d/60-campus_factory.config
->
>
+# Quickly test the ssh
 
 Add the BOSCO_HOST by running the bosco_cluster script with the following parameters:  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --add BOSCO_USER@BOSCO_HOST BATCH_TYPE  where BATCH_TYPE = pbs, condor, etc. 
  Run a BOSCO test job to check the connection between the FRONTEND_HOST and the BOSCO_HOST and its worker nodes.  [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_cluster --test BOSCO_USER@BOSCO_HOST 
  If successful, run bosco_stop on the FRONTEND_HOST.  [FRONTEND_USER@FRONTEND_HOST ~]$ bosco_stop 
  Remove source ~/bosco/bosco_setenv from .bash_profile. Your FRONTEND_HOST is now properly configured. 
  Next, login to the FACTORY_HOST via ssh as root.   [user@client ~]$ ssh root@FACTORY_HOST
  Install condor-bosco on the FACTORY_HOST from root.   [root@FACTORY_HOST ~]$ yum install condor-bosco 
  Remove and retouch the 60-campus_factory.config file.   [root@FACTORY_HOST ~]$ rm /etc/condor/config.d/60-campus_factory.config 
  [root@FACTORY_HOST ~]$ touch /etc/condor/config.d/60-campus_factory.config
-<
<
+There is an Advanced configuration section in the BOSCO documentation that can be useful to know, specially how to deal with multi homed BOSCO resources and the specification of custom submit properties.
->
>
+ Additional Documentation
-<
<
 . Add entry to factory config ...

Revision 102015/05/27 - Main.MartinKandes

 			 META TOPICPARENT 
			 name="WebHome"
- META TOPICPARENT
+ name="WebHome"
-<
<
+  HOWTO Install and Configure Bosco for Glidein-Based Submission
->
>
+  HOWTO Install and Configure BOSCO for Glidein-Based Submission
   About this Document
 


 About this Document
->
>
+This document describes HOWTO install and configure BOSCO to allow a glideinWMS factory to submit glideins to the BOSCO resource's local batch queue on behalf of a VO frontend. Note, however, the installation and configuration process outlined below is highly specific to the case when you ONLY have ssh-key login access to the user account on the BOSCO resource, i.e., you do not have the ssh password. In addition, it is also important to note that this document is preliminary. As such, it may not represent the best way or the easiest way to install and configure BOSCO. The process below simply attempts to minimize its modification of the standard BOSCO installation and configuration process.

This document follows the general OSG documentation conventions:
 

 A User Command Line is illustrated by a green box that displays a prompt:  [user@client ~]$ 
  A Root Command Line is illustrated by a red box that displays the root prompt:   [root@client ~]$ 
   Lines in a file are illustrated by a yellow box that displays the desired lines in a file: priorities=1
  Definitions 

Hostnames:
-<
<
+ BOSCO_HOST is the hostname of the host where glideins will be submitted to the BOSCO resource's local batch queue by the glideinWMS factory on behalf of the VO frontend under the BOSCO_USER.
->
>
+ BOSCO_HOST is the hostname of the host from which glideins will be submitted to the BOSCO resource's local batch queue.
  FACTORY_HOST is the hostname of the host where you've installed and configured your glideinWMS factory.
  FRONTEND_HOST is the hostname of the host where you've installed and configured your VO's glideinWMS frontend.
 

Usernames:
-<
<
+ FACTORY_VO_USER is the user on FACTORY_HOST that submits glideins to
->
>
+ BOSCO_USER is the username of the user on the BOSCO_HOST that has access to the BOSCO resource's local batch queue; e.g., cmsbosco
  FACTORY_ADMIN_USER is the username of the user on the FACTORY_HOST used for all non-root administrative tasks; e.g., gfactory
  FACTORY_VO_USER is the username of the user on the FACTORY_HOST from which glideins are submitted to the BOST_HOST; e.g., fecmsglobal
  FRONTEND_USER is the username of the user on the FRONTEND_HOST that submits requests for glideins to the FACTORY_HOST; e.g., frontend
  Requirements
-<
<
+ Installed and configured on FRONTED_HOST: glideinWMS Frontend X.X.X or later
  Installed and configured on FACTORY_HOST: glideinWMS Factory 3.2.6 or later (3.2.8 recommended); HTCondor 8.2.4 or later
->
>
+ glideinWMS Factory 3.2.6 or later (3.2.8 recommended)
  HTCondor 8.2.4 or later
  condor-bosco
  Installation and Configuration
-<
<
+ Additional Documentation 

1. Login as the FRONTEND_USER on the FRONTEND_HOST.

ssh FRONTEND_USER@FRONTEND_HOST



2. Download the bosco quickstart installer in the FRONTEND_USER's home directory.

wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz



3. Untar the bosco quickstart installer in the FRONTEND_USER's home directory.

tar -xzf bosco_quickstart.tar.gz



4. Comment out all lines starting from line #164 to the end of the file (line #242) in the the bosco_quickstart bash script.



5. Run the bosco_quickstart installer.

./bosco_quickstart



5.5. Add to .bash_profile.

source ~/bosco/bosco_setenv



6. Select 'y' to download and install bosco in the FRONTEND_USER's home directory.

[1441] frontend@test-frontend-1 ~$ ./bosco_quickstart
->
>
+ Login to the FRONTEND_HOST via ssh as the FRONTEND_USER.   [user@client ~]$ ssh FRONTEND_USER@FRONTEND_HOST
  Download the BOSCO quickstart installer tarball in the FRONTEND_USER home directory.   [FRONTEND_USER@FRONTEND_HOST ~]$ wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz 
  Unzip and untar the BOSCO quickstart installer in the FRONTEND_USER home directory.   [FRONTEND_USER@FRONTEND_HOST ~]$ tar -xzf bosco_quickstart.tar.gz 
  Find the bosco_quickstart script and comment all lines starting from line #164 to the end of the file at line #242. As you'll see, this modification removes the automated procedure for connecting and testing your first BOSCO resource. We will do this manually. # Start Bosco
echo "************** Starting Bosco: ***********"
bosco_start

# Connect one cluster                                        <<<-------------------- line #164
#REMOTE_HOST=""
#REMOTE_USER=""
#REMOTE_TYPE=""
#echo "************** Connect one cluster (resource) to BOSCO: ***********"
#echo "At any time hit [CTRL+C] to interrupt."
# ...
# ...
# ...
#Executable = myjob.sh
#arguments = 
#output = myjob.output.txt
#error = myjob.error.txt
#log = myjob.log
#transfer_output_files = 
#should_transfer_files = YES
#when_to_transfer_output = ON_EXIT
#queue 1
#EOF                                                          <<<-------------------- line #242

  Run the bosco_quickstart script to install and start BOSCO on the FRONTEND_HOST. [FRONTEND_USER@FRONTEND_HOST ~]$ ./bosco_quickstart
 Bosco Quickstart
-<
<
 Detailed logging of this run is in ./bosco_quickstart.log

Bosco is not installed. You need Bosco to run this quickstart.
 Detailed logging of this run is in ./bosco_quickstart.log

Bosco is not installed. You need Bosco to run this quickstart.
-<
<
 Do you want to install Bosco? Select y/n and press [ENTER]): y
-<
<
+************ Downloading and Installing Bosco *********

Installing BOSCO.................
->
>
+************ Downloading and Installing Bosco *********
Installing BOSCO................
 BOSCO Installed
-<
<
+************ Starting Bosco: *********
->
>
+************ Starting Bosco: *********
 BOSCO Started
-<
<
+. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 in the ~/bosco/bin/bosco_cluster bash script and paste them (in numberical order) in a separate, temporary bash script. This script will be used to generate the FRONTEND_USER's bosco ssh key pair and passphrase. The result should look like the following:

#!/bin/bash
->
>
+[FRONTEND_USER@FRONTEND_HOST ~]$
 
 Since BOSCO is not installed in your FRONTEND_HOST path, we must (at least temporarily) source its environment configuration file, bosco_setenv. Please append the following to your .bash_profile:  source ~/bosco/bosco_setenv 
  Find the bosco_cluster script in ~/bosco/bin. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 from bosco_cluster and paste them (in numerical order) into a separate bash script. This script will be used to generate the FRONTEND_USER ssh-key pair and passphrase for BOSCO. The resulting script (which we'll refer to here in this document as bosco_keygen.sh) should look like the following: #!/bin/bash
 # Bosco key location
-<
<
 bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location
 bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location
-<
<
 PASSPHRASE_LOCATION=$HOME/.bosco/.pass
-<
<
+# Compute md5 hash
 if [ `uname` = Darwin ] ; then
-<
<
 MD5SUM? =md5
-<
<
 else
-<
<
 MD5SUM? =md5sum
-<
<
 fi

# If the key doesn't exist, create it
 PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`

# Output the password to a specially crafted file
-<
<
 mkdir -p `dirname $PASSPHRASE_LOCATION`
-<
<
+echo $PASSPHRASE > $PASSPHRASE_LOCATION
->
>
+    echo $PASSPHRASE > $PASSPHRASE_LOCATION
 chmod go-rwx $PASSPHRASE_LOCATION

# Check if the passphrase is empty
-<
<
+ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null
->
>
+    ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null
 if [ $? -ne 0 ]; then
-<
<
+echo "Error running keygen" >&2
->
>
+        echo "Error running keygen" >&2
 exit 1
-<
<
 fi
-<
<
 fi
->
>
+ Additional Documentation

Revision 92015/05/26 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Changed:

<
< How to install bosco from gildein-based submission through a glideinWMS factory ...

>
>

HOWTO Install and Configure Bosco for Glidein-Based Submission

Changed:

<
<

>
>

About this Document

Definitions

Hostnames:

BOSCO_HOST is the hostname of the host where glideins will be submitted to the BOSCO resource's local batch queue by the glideinWMS factory on behalf of the VO frontend under the BOSCO_USER.
FACTORY_HOST is the hostname of the host where you've installed and configured your glideinWMS factory.
FRONTEND_HOST is the hostname of the host where you've installed and configured your VO's glideinWMS frontend.

Usernames:

FACTORY_VO_USER is the user on FACTORY_HOST that submits glideins to

Requirements

Installed and configured on FRONTED_HOST: glideinWMS Frontend X.X.X or later
Installed and configured on FACTORY_HOST: glideinWMS Factory 3.2.6 or later (3.2.8 recommended); HTCondor 8.2.4 or later

Installation and Configuration

Additional Documentation

1. Login as the FRONTEND_USER on the FRONTEND_HOST.

Revision 82015/05/20 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

How to install bosco from gildein-based submission through a glideinWMS factory ...

Line: 132 to 132

Added:

>
>

marco says use no passphrase

[1522] frontend@test-frontend-1 ~$ ./bosco_generate_keys.sh

[1522] frontend@test-frontend-1 ~$ cd .ssh

[1523] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts

[1523] frontend@test-frontend-1 ~/.ssh$ openssl rsa -in bosco_key.rsa -out bosco_key.rsa_nopass

Enter pass phrase for bosco_key.rsa:

writing RSA key

[1524] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa_nopass bosco_key.rsa.pub known_hosts

[1524] frontend@test-frontend-1 ~/.ssh$ mv bosco_key.rsa_nopass bosco_key.rsa

[1524] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts

[1524] frontend@test-frontend-1 ~/.ssh$

chmod 600 bosco_key.rsa

9. Copy the FRONTEND_USER's public bosco key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_LOGIN_HOST.

ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAlLh6nD? +5uYmXxG4UFdHWYcokIDT7Tm+/pRnxyGseZMzG61gJU26HwCy1wvilaj3PZ+yws2896BTi4mx4IPQ+1iev2GXjWnyTTz1T3SldS4pgwYqM9tVjkkz/BI5ddVXAlurkH3YAHYrdkPamVNJg7lUcqFnFZZEN8y0gE6l2kf5PdFMkQBVo6OzFLbLp3bTAaAeTfnEcT/VEs3xqgY4SlMtHcejbnP+GKio1mwEamz2EVoCyyVFNIHnFmY1U+ze8FMPfmkB3Yzrz1B669LlP/1t2iG1weir7Z75bP3d8/nEN2T9b15bq73QfhzybWjzfdQLT8pS3Su8LZ+7z5RyabQ== frontend@test-frontend-1.t2.ucsd.edu

Line: 333 to 367

16.

Deleted:

<
<

How to remove bosco ...

- from bosco resource login node: (1) rm ~/bosco from BOSCO_USER's home directory. (2) rm FRONTEND_USER's public key from authorized_keys file on BOSCO_LOGIN_HOST

- from frontend: (1)

-- JeffreyDost - 2015/05/12 \ No newline at end of file

Revision 72015/05/20 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

How to install bosco from gildein-based submission through a glideinWMS factory ...

Line: 216 to 216

12.5 Run bosco_stop on FRONTEND_HOST.

Changed:

<
<

>
>

12.75. Remove source ~/bosco/bosco_setenv from .bash_profile.

Line: 319 to 319

</entry>

Changed:

<
<

>
>

15. recognize frontend keys on factory

Line: 329 to 329

If you have access to the ssh key on the factory, it is recommended also to manually ssh to the host to see if the ssh connection works correctly.

Changed:

<
<

>
>

16.

Added:

>
>

How to remove bosco ...

- from bosco resource login node: (1) rm ~/bosco from BOSCO_USER's home directory. (2) rm FRONTEND_USER's public key from authorized_keys file on BOSCO_LOGIN_HOST

- from frontend: (1)

-- JeffreyDost - 2015/05/12 \ No newline at end of file

Revision 62015/05/19 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

How to install bosco from gildein-based submission through a glideinWMS factory ...

Line: 212 to 212

[1535] frontend@test-frontend-1 ~$

Changed:

<
<

>
>

12.5 Run bosco_stop on FRONTEND_HOST.

Line: 319 to 319

</entry>

Added:

>
>

15. recognize frontend keys on factory

The BOSCO submission from the Factory uses SSH. Before being able to do ssh in batch mode for the glidein submission you must trust the keys of the BOSCO resource, the one added with "bosco_cluster --add" on the Frontend, in our example carvergrid.nersc.gov. You have a couple of options depending on how you want to configure ssh:

Build up a global fingerprint list. Collect the keys in /etc/ssh/ssh_known_hosts (or ~/.ssh/known_hosts of the users submitting glideins). Note that you'll have to update the fingerprint list if the BOSCO recource key will change or all the glidein submisison attempts will fail
```
ssh-keyscan -t rsa,dsa carvergrid.nersc.gov >> /etc/ssh/ssh_known_hosts 
```
Alternatively disable strict host key checking in ssh for the BOSCO resource adding these lines to /etc/ssh/ssh_config (or ~/.ssh/config of the users submitting glideins). The syntax below can accept also IP numbers or wildcards (to include more hosts).
```
Host carvergrid.nersc.gov StrictHostKeyChecking no 
```
The setting above will add the key the first time and give a warning if the key changes subsequently. To avoid host key verification, and not use known_hosts file you can do the following (not recommended unless on a local network). In this example the BOSCO resources have IPs 192.168.0.XXX.
```
Host 192.168.0.* StrictHostKeyChecking no UserKnownHostsFile=/dev/null 
```

If you have access to the ssh key on the factory, it is recommended also to manually ssh to the host to see if the ssh connection works correctly.

16.

-- JeffreyDost - 2015/05/12

Revision 52015/05/14 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Changed:

<
<

1. wget

>
>

How to install bosco from gildein-based submission through a glideinWMS factory ...

Changed:

<
<

>
>

1. Login as the FRONTEND_USER on the FRONTEND_HOST.

ssh FRONTEND_USER@FRONTEND_HOST

2. Download the bosco quickstart installer in the FRONTEND_USER's home directory.

wget ftp://ftp.cs.wisc.edu/condor/bosco/1.2/bosco_quickstart.tar.gz

3. Untar the bosco quickstart installer in the FRONTEND_USER's home directory.

tar -xzf bosco_quickstart.tar.gz

4. Comment out all lines starting from line #164 to the end of the file (line #242) in the the bosco_quickstart bash script.

5. Run the bosco_quickstart installer.

./bosco_quickstart

5.5. Add to .bash_profile.

source ~/bosco/bosco_setenv

6. Select 'y' to download and install bosco in the FRONTEND_USER's home directory.

[1441] frontend@test-frontend-1 ~$ ./bosco_quickstart

Bosco Quickstart

Detailed logging of this run is in ./bosco_quickstart.log

Bosco is not installed. You need Bosco to run this quickstart.

Do you want to install Bosco? Select y/n and press [ENTER]): y

************ Downloading and Installing Bosco *********

Installing BOSCO.................

BOSCO Installed

************ Starting Bosco: *********

BOSCO Started

7. Copy all lines from line #9 to line #13, line #36 to line #40, and line #811 to line #828 in the ~/bosco/bin/bosco_cluster bash script and paste them (in numberical order) in a separate, temporary bash script. This script will be used to generate the FRONTEND_USER's bosco ssh key pair and passphrase. The result should look like the following:

#!/bin/bash

# Bosco key location

bosco_key=$HOME/.ssh/bosco_key.rsa

# Bosco password location

PASSPHRASE_LOCATION=$HOME/.bosco/.pass

# Compute md5 hash

if [ `uname` = Darwin ] ; then

MD5SUM? =md5

else

MD5SUM? =md5sum

# If the key doesn't exist, create it

if [ ! -e $bosco_key ]; then

# Generate a md5sum password

PASSPHRASE=`echo $RANDOM$RANDOM$RANDOM$RANDOM | $MD5SUM | awk '{print $1}'`

# Output the password to a specially crafted file

mkdir -p `dirname $PASSPHRASE_LOCATION`

echo $PASSPHRASE > $PASSPHRASE_LOCATION

chmod go-rwx $PASSPHRASE_LOCATION

# Check if the passphrase is empty

ssh-keygen -q -t rsa -f $bosco_key -P $PASSPHRASE > /dev/null

if [ $? -ne 0 ]; then

echo "Error running keygen" >&2

exit 1

8. Generate the FRONTEND_USER's bosco ssh key pair and passphrase by running the bash script created in Step 7.

[1507] frontend@test-frontend-1 ~$ chmod +x bosco_generate_keys.sh

[1508] frontend@test-frontend-1 ~$ ./bosco_generate_keys.sh

[1508] frontend@test-frontend-1 ~$ cd .ssh

[1509] frontend@test-frontend-1 ~/.ssh$ ls

authorized_keys bosco_key.rsa bosco_key.rsa.pub known_hosts

9. Copy the FRONTEND_USER's public bosco key on the FRONTEND_HOST, bosco_key.rsa.pub, and append it to the authorized_keys file in the .ssh directory of the BOSCO_USER on the BOSCO_LOGIN_HOST.

10. Next, comment out all lines between #811 to #837 in the ~/bosco/bin/bosco_cluster bash script.

11. Add the BOSCO_LOGIN_HOST by running the bosco_cluster bash script with the following parameters:

./bosco_cluster --add $BOSCO_USER@$BOSCO_LOGIN_HOST $BATCH_TYPE

where $BATCH_TYPE = pbs, condor, ...

[1529] frontend@test-frontend-1 ~$ bosco_cluster --add bosco@osg-gw-7.t2.ucsd.edu condor

Downloading for bosco@osg-gw-7.t2.ucsd.edu......

Unpacking..

Sending libraries to bosco@osg-gw-7.t2.ucsd.edu.

Creating BOSCO for the WN's................................................

Installing on cluster bosco@osg-gw-7.t2.ucsd.edu.

Installation complete

The cluster bosco@osg-gw-7.t2.ucsd.edu has been added to BOSCO

It is available to run jobs submitted with the following values:

> universe = grid

> grid_resource = batch condor bosco@osg-gw-7.t2.ucsd.edu

OR to run load balanced job on all available clusters with:

> universe = vanilla

[1530] frontend@test-frontend-1 ~$

12. Run a bosco test job to check the connection between the FRONTEND_HOST and the BOSCO_RESOURCE and it's worker nodes ...

[1534] frontend@test-frontend-1 ~$ ./bosco_cluster --test bosco@osg-gw-7.t2.ucsd.edu

-bash: ./bosco_cluster: No such file or directory

[1534] frontend@test-frontend-1 ~$ bosco_cluster --test bosco@osg-gw-7.t2.ucsd.edu

Testing ssh to bosco@osg-gw-7.t2.ucsd.edu...Passed!

Testing bosco submission...Passed!

Submission and log files for this job are in /home/frontend/bosco/local.bosco/bosco-test/boscotest.13683

Waiting for jobmanager to accept job...Passed

Checking for submission to remote condor cluster (could take ~30 seconds)...Passed!

Waiting for job to exit... this could take a while (waiting 60 seconds)...Failed

The job did not end in 60 seconds. This is not always a bad thing...

Maybe condor is waiting longer to poll for job completion?

Here is the current status of the job:"

-- Submitter: test-frontend-1.t2.ucsd.edu : <127.0.0.1:11000?sock=6597_e220_3> : test-frontend-1.t2.ucsd.edu

ID OWNER SUBMITTED RUN_TIME ST PRI SIZE CMD

1.0 frontend 5/14 15:34 0+00:00:00 I 0 0.0 echo Hello

[1535] frontend@test-frontend-1 ~$

12.5 Run bosco_stop on FRONTEND_HOST.

12.75. Remove source ~/bosco/bosco_setenv from .bash_profile.

13. Install condor-bosco on the FACTORY_HOST from ROOT.

Install HTCondor-BOSCO

If you plan to send jobs using direct batch submission (aka BOSCO), then you need also the condor-bosco package. You'll have to install the package and remove one of its file (/etc/condor/config.d/60-campus_factory.config) because it interferes with the factory configuration.

[root@client ~]$ yum install condor-bosco [root@client ~]$ rm /etc/condor/config.d/60-campus_factory.config [root@client ~]$ touch /etc/condor/config.d/60-campus_factory.config

There is an Advanced configuration section in the BOSCO documentation that can be useful to know, specially how to deal with multi homed BOSCO resources and the specification of custom submit properties.

14. Add entry to factory config ...

<max_jobs>

<default_per_frontend glideins="256" held="5" idle="10"/>

<per_entry glideins="256" held="5" idle="10"/>

<per_frontends>

</per_frontends>

</max_jobs>

<submit_attrs>

</submit_attrs>

</submit>

</config>

<allow_frontends>

</allow_frontends>

<attrs>

</attrs>

<files>

</files>

<infosys_refs>

</infosys_refs>

</monitorgroups>

</entry>

-- JeffreyDost - 2015/05/12 \ No newline at end of file

Revision 42015/05/14 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Changed:

<
<

This is a test.

>
>

1. wget

-- JeffreyDost - 2015/05/12 \ No newline at end of file

Revision 32015/05/14 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

This is a test.

Revision 22015/05/12 - Main.MartinKandes

Line: 1 to 1

META TOPICPARENT	name="WebHome"

Added:

>
>

This is a test.

-- JeffreyDost - 2015/05/12 \ No newline at end of file

Revision 12015/05/12 - Main.JeffreyDost

Line: 1 to 1

Added:

>
>

META TOPICPARENT	name="WebHome"

-- JeffreyDost - 2015/05/12

View topic | History: r23 < r22 < r21 < r20 | More topic actions...

Copyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback