Don't forget to do time synchronization, to install the host certificate and key and Java Version 1.4.2. Before continuing you should understand dCache the Book and Installing dCache with LCG Yaim.


Open all ports in the firewall:

  • root: 1094/TCP, 33115-33145/TCP (incomming & outgoing)
  • gsiFTP: 2811/TCP (incommming), 20000-25000/TCP (incomming & outgoing)
  • srm: 8443/TCP (incomming)


Headnode on Scientific Linux


Prepare the package manager: 


echo 'rpm http://linuxsoft.cern.ch/ LCG-CAs/current production'  > /etc/apt/sources.list.d/glite-ca.list

echo 'rpm http://glitesoft.cern.ch/EGEE/gLite/APT/R3.0/ rhel30 externals Release3.0 updates'  > /etc/apt/sources.list.d/glite.list

echo 'rpm http://www.dcache.org/apt/ sl testing' > /etc/apt/sources.list.d/desy_dcache.list


Get the latest version of YAIM from LCG deployment and install it. Copy all configuration files in /opt/glite/yaim/examples/ to /opt/glite/yaim/etc/ and adjust users.conf, groups.conf and site-info.def.


Install and configure the middleware

/opt/glite/yaim/scripts/install_node \

  /opt/glite/yaim/etc/site-info.def glite-SE_dcache_admin_postgres

/opt/glite/yaim/scripts/configure_node \

  /opt/glite/yaim/etc/site-info.def glite-SE_dcache_admin_postgres


Take a look to the monitoring: http://<HOSTNAME>:2288/


Query the Information System:


ldapsearch -x -H ldap://<HOSTNAME>:2135 -b "mds-vo-name=local,o=grid"

lcg-infosites --is <HOSTNAME> --vo dteam se


Log in as Administrator (don't forget to adjust the root password if nessecary) and add the Poolnode to the group alice:

ssh -c blowfish -p 22223 -l admin <HOSTNAME>

(local) admin > cd PoolManager

(PoolManager) admin > psu addto pgroup alice <POOLNAME>

(PoolManager) admin > psu addto pgroup alice <POOLNAME>

(PoolManager) admin > save

(PoolManager) admin > ..

(local) admin > logoff


Poolnode on Debian


Get the dCache packages from the repository and convert them to Debian world:


aptitude install alien

alien /root/dcache-server-1.7.0-20.noarch.rpm

dpkg -i /root/dcache-server_1.7.0-21_all.deb


XrootD security:


mkdir -p $HOME/.authz/xrootd

wget -r alien.cern.ch/keys/privkey.pem -O /root/.authz/xrootd/tmp-ks/privkey.pem

wget -r alien.cern.ch/keys/pubkey.pem -O /root/.authz/xrootd/tmp-ks/pubkey.pem

openssl x509 -pubkey -in pubkey.pem > pkey.pem

openssl enc -base64 -d -in pkey.pem -out pubkey.der

openssl pkcs8 -in privkey.pem -topk8 -nocrypt -outform DER -out privkey.der

echo "KEY VO:*   PRIVKEY:/root/.authz/xrootd/privkey.der  PUBKEY:/root/.authz/xrootd/pubkey" >> $HOME/.authz/xrootd/keystore


Adjust /opt/d-cache/config/xrootdDoor.batch:


-maxLogin=150               \

-nostrongauthorization=always \


Copy the configuration files:


xport DCACHE_ETC="/opt/d-cache/etc"

cp $DCACHE_ETC/node_config.template  $DCACHE_ETC/node_config

cp $DCACHE_ETC/dcache.kpwd.template  $DCACHE_ETC/dcache.kpwd

cp $DCACHE_ETC/dCacheSetup.template  /opt/d-cache/config/dCacheSetup

cp $DCACHE_ETC/pool_path.template    $DCACHE_ETC/pool_path


Adjust /opt/d-cache/config/dCacheSetup:


serviceLocatorHost=<HOSTNAME>

java="/usr/bin/java"

-Dorg.dcache.net.tcp.portrange=33115:34115

xrootdIsReadOnly=false

xrootdAuthzPlugin=org.dcache.xrootd.security.plugins.tokenauthz.TokenAuthorizationFactory

xrootdAuthzKeystore=/root/.authz/xrootd/keystore


Adjust /opt/d-cache/etc/pool_path:


/data1 1100 no

/data2 1350 no


Adjust /opt/d-cache/config/<HOSTNAME>.poollist:


<POOLNAME>_1  /data1/pool/  

    sticky=allowed recover-space recover-control recover-anyway lfs=precious 

    tag.hostname=<HOSTNAME>

<POOLNAME>_2  /data2/pool/  

    sticky=allowed recover-space recover-control recover-anyway lfs=precious 

    tag.hostname=<HOSTNAME>


Don't forget to copy the dcache.kpwd from the headnode and to run the installation:


/opt/d-cache/install/install.sh


Start everything and take a look to the log /opt/d-cache/log/<HOSTNAME>Domain.log:


/opt/d-cache/bin/dcache-pool start

/opt/d-cache/bin/dcache-core start 


Copy some test data via the SRM and XrootD interface:


voms-proxy-init --voms dteam

srmcp file:////bin/bash srm://<HOSTNAME>:8443/pnfs/gsi.de/data/dteam/please-delete-me

srmcp srm://<HOSTNAME>:8443/pnfs/gsi.de/data/dteam/please-delete-me file:////dev/null

xrdcp /bin/bash root://<HOSTNAME>//pnfs/gsi.de/data/dteam/please-delete-me

xrdcp root://<HOSTNAME>//pnfs/gsi.de/data/dteam/please-delete-me /dev/null

Topic revision: r1 - 2007-03-12, VictorPenso
 
This site is powered by FoswikiCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding GSI Wiki? Send feedback
Imprint (in German)
Privacy Policy (in German)