Operations Portal

This service is provided by CCIN2P3, and funded by the European Union’s Horizon 2020 research and innovation programme

Latest news

• EGI Workload Manager version upgrade

March 29, 2023 17:19 | Gino MARCHETTI
More details

EGI Workload Manager version upgrade

Dear all,

On March 31st, the EGI Workload Manager service will upgrade to version 8.0. Please remember that Dirac 8.0 will drop support for Python 2 based clients and servers.

A downtime at risk has been set on the GOCDB from 9:00-10:00

Best regards,
DIRAC Support.

March 29, 2023 17:19
by Gino MARCHETTI

• EGI Trust Anchor release 1.119-1

March 14, 2023 11:52 | Joao Pina
More details

EGI Trust Anchor release 1.119-1

Dear all,

EUGridPMA has announced a new set of CA rpms. Based on this IGTF release a new set of CA RPMs has been packaged for EGI.

Please upgrade until 2023.03.20 at your earliest convenience. When this time is over, SAM will throw critical errors on CA tests if old CAs are still detected.

Please check https://wiki.egi.eu/wiki/EGI_IGTF_Release for more details
European Grid Infrastructure EGI Trust Anchor release 1.119 2022.03.13

------------------------------------------------------------------------------
For release DOCUMENTATION available on this EGI Trust Anchor release see
the EGI operations manual HOWTO-01 at https://edu.nl/envyq
------------------------------------------------------------------------------

This is the EGI Trust Anchor release, based on the updated IGTF Accredited CA
distribution version 1.119-1 with the specific DOGWOOD CA in
meta-package "ca-policy-egi-combined-adequacy-model-1.119-1"
that supports the model of joint assurance provision as detailed in the
EGI Policy on Acceptable Authentication Assurance.

The following notices are republished from the IGTF, inasfar as pertinent to
this release. Details are found in the newsletter https://www.eugridpma.org/

Changes from 1.118 to 1.119
---------------------------
(13 March 2023)

* Updated UKeScience Root (2007) wih consistent string encodings (UK)
* Removed obsolete SHA1 subordinates DigiCertGridTrustCA-Classic
and DigiCertGridCA-1-Classic from DigiCert, reflected in RPDNC namespaces
* Experimental (non-accredited) new InCommon RSA IGTF Server CA 2 (ICA under
Sectigo USERTrust RSA root, for which namespaces have been updated) (US)

The CA modifications encoded in both "requires" and "obsoletes" clauses (RPM)
and Conflicts/Replaced clauses (Debian) have been incorporated in the above-
mentioned meta-packages. This release is best enjoyed with fetch-crl v3 or
better, available from GNU/Linux OS add-on repositories Fedora, EPEL, Debian,
and from the IGTF at https://www.igtf.net/fetch-crl

Policy on Acceptable Authentication Assurance
---------------------------------------------
If a Community or e-Infrastructure registration service is accredited by EGI
to meet the approved authentication assurance level, also an IGTF "DOGWOOD"
accredited Authority, used in combination with such a service, is sufficient.
HOWTO01, https://edu.nl/envyq#combined-assuranceadequacy-model has the details.

TECHNICALLY THIS MEANS ...
that you must ONLY install the new ca-policy-egi-cam packages if you ALSO
at the same time implement VO-specific authorization controls in your
software stack. This may require reconfiguration or a software update.
OTHERWISE
just ONLY install or update the regular ca-policy-egi-core package. There
are no changes in this case. The ca-policy-egi-core package is approved for
all VOs membership and assurance models. No configuration change is needed.

Version information: ca-policy-egi-combined-adequacy-model = 1.119-1

March 14, 2023 11:52
by Joao Pina

• [EGI Webinar 2023]Distributed Deep Learning with Horovod |Wednesday, 29th March, 14:00-15:00 CEST

March 9, 2023 11:39 | Yin Chen
More details

[EGI Webinar 2023]Distributed Deep Learning with Horovod |Wednesday, 29th March, 14:00-15:00 CEST

Dear all

I am pleased to announce a new EGI webinar in March.

Research and development of Artificial Intelligent approaches are increasingly popular in EGI community. The talk will introduce the advanced distributed deep learning research in SZTAKI, EGI Hungarian partner.

Register now to reserve your place!

Title: Distributed Deep Learning with Horovod
Date and Time: Wednesday, 29th March 2023 |14:00 -15:00 CEST
Webinar page: https://www.egi.eu/event/webinar-distributed-deep-learning-with-horovod/
Registration: https://us02web.zoom.us/webinar/register/WN_Kxp2LP4rSWKoPNq5OqDVeg

Description:
The talk will introduce the Horovod distributed deep learning framework and the reference architecture and service(s) built for supporting it. The aim of the presented works is to enable the efficient utilization of cloud resources in the heavily resource-intensive task of distributed deep learning. The concept of reference architectures is also briefly presented, along with the experiences gained from their continuous development.

The target audience for this webinar includes e-Infrastructure platform and technology providers and those researching or applying (distributed) deep learning at any level. Demos will be presented.

Speaker: Krisztián Póra, Software Engineer, SZTAKI, Hungary
Krisztián Póra received his BSc degree in Computer Engineering in 2021. His Bachelor's thesis was concerned with the automatic testing of a reference architecture supporting deep learning. His work at SZTAKI (the Institute for Computer Science and Control) is mainly focused on research and application of the distributed deep learning methodology and the development of various reference architectures supporting the swift deployment of digital research infrastructures.

Please forward this to anyone who may be interested!

Looking forward to seeing you in the webinar!

Yin

----
Dr Yin Chen
Community Support Officer
EGI Foundation (Amsterdam, The Netherlands)
W: www.egi.eu | E: yin.chen@egi.eu | M: +31 (0)6 3037 3096 | Skype: yin.chen.egi | Twitter: @yinchen16

EGI: Advanced Computing for Research
The EGI Foundation is ISO 9001:2015 and ISO/IEC 20000-1:2011 certified

#####
https://www.egi.eu/about/egi-foundation/team/yin-chen/

March 9, 2023 11:39
by Yin Chen

• voms01.ncg.ingrid.pt certificate update announcement

March 9, 2023 11:34 | Joao Pina
More details

voms01.ncg.ingrid.pt certificate update announcement

Dear VO user,

This is to inform that voms01.ncg.ingrid.pt will have a new certificate installed on the 21 of March meaning all users are required to update there client lsc file.
The new DN will be:

/DC=org/DC=terena/DC=tcs/C=PT/ST=Lisboa/O=LIP Lab Instrumentacao Fis Exper Particulas-Assoc Invest Desenv/CN=voms01.ncg.ingrid.pt

issuer: /C=NL/O=GEANT Vereniging/CN=GEANT eScience SSL CA 4

Please update your configurations as soon as possible.

VO Admin

March 9, 2023 11:34
by Joao Pina

• Notifications for failures with metrics included in the ARGO_MON_OPERATORS profile

March 8, 2023 12:37 | Alessandro Paolini
More details

Notifications for failures with metrics included in the ARGO_MON_OPERATORS profile

Dear site administrators,

during the OMB meeting occurred last November (https://indico.egi.eu/event/5994/) it was discussed and approved a change in the notification system provided by ARGO Monitoring. This change has been implemented today and this is the reason why you started to receive notifications for failures that previously you didn't get.

Previously ARGO was sending notifications only for the metrics included in the ARGO_MON_CRITICAL profile (https://poem.egi.eu/ui/public_metricprofiles/ARGO_MON_CRITICAL); from today the notifications are sent for all of the metrics included in the ARGO_MON_OPERATORS profile (https://poem.egi.eu/ui/public_metricprofiles/ARGO_MON_OPERATORS)

In this way you will be notified about the failures associated to the same metrics that raise alarms on the ROD dashboard and you can promptly react to fix the issues that might occur in your site.

See also the ticket https://ggus.eu/index.php?mode=ticket_info&ticket_id=159452

If you have any questions you can contact the EGI Operations team either by opening a ggus ticket or by email

March 8, 2023 12:37
by Alessandro Paolini

More news

• EGI Trust Anchor release 1.118-1

February 27, 2023 17:02 | Joao Pina
More details

EGI Trust Anchor release 1.118-1

Dear all,

EUGridPMA has announced a new set of CA rpms. Based on this IGTF release a new set of CA RPMs has been packaged for EGI.

Please upgrade until 2023.03.06 at your earliest convenience. When this time is over, SAM will throw critical errors on CA tests if old CAs are still detected.

Please check https://wiki.egi.eu/wiki/EGI_IGTF_Release for more details
EGI UMD software provisioning Team
The following release notes accompany this versionEuropean Grid Infrastructure EGI Trust Anchor release 1.118 2022.02.27

------------------------------------------------------------------------------
For release DOCUMENTATION available on this EGI Trust Anchor release see
the EGI operations manual HOWTO-01 at https://edu.nl/envyq
------------------------------------------------------------------------------

This is the EGI Trust Anchor release, based on the updated IGTF Accredited CA
distribution version 1.118-1 with the specific DOGWOOD CA in
meta-package "ca-policy-egi-combined-adequacy-model-1.118-1"
that supports the model of joint assurance provision as detailed in the
EGI Policy on Acceptable Authentication Assurance.

The following notices are republished from the IGTF, inasfar as pertinent to
this release. Details are found in the newsletter https://www.eugridpma.org/

Changes from 1.117 to 1.118
---------------------------
(27 February 2023)

* Updated GridCanada CA with re-issued SHA-2 based root (CA)
* Updated CILogon basic, silver, and openid with re-issued SHA-2 certs (US)
* Updated UKeScience Root (2007) re-issued with SHA-2, retired 2A ICA (UK)

The CA modifications encoded in both "requires" and "obsoletes" clauses (RPM)
and Conflicts/Replaced clauses (Debian) have been incorporated in the above-
mentioned meta-packages. This release is best enjoyed with fetch-crl v3 or
better, available from GNU/Linux OS add-on repositories Fedora, EPEL, Debian,
and from the IGTF at https://www.igtf.net/fetch-crl

Policy on Acceptable Authentication Assurance
---------------------------------------------
If a Community or e-Infrastructure registration service is accredited by EGI
to meet the approved authentication assurance level, also an IGTF "DOGWOOD"
accredited Authority, used in combination with such a service, is sufficient.
HOWTO01, https://edu.nl/envyq#combined-assuranceadequacy-model has the details.

TECHNICALLY THIS MEANS ...
that you must ONLY install the new ca-policy-egi-cam packages if you ALSO
at the same time implement VO-specific authorization controls in your
software stack. This may require reconfiguration or a software update.
OTHERWISE
just ONLY install or update the regular ca-policy-egi-core package. There
are no changes in this case. The ca-policy-egi-core package is approved for
all VOs membership and assurance models. No configuration change is needed.

Version information: ca-policy-egi-combined-adequacy-model = 1.118-1

February 27, 2023 17:02
by Joao Pina

• Restricting access to personal information in GOCDB

February 20, 2023 16:32 | Greg Corbett
More details

Restricting access to personal information in GOCDB

Dear all,

From 27th February 2023, to better align exposure of personal data in GOCDB with the requirements of the EU General Data Protection Regulation (GDPR) and UK GDPR, we will be restricting access to personal information in GOCDB to:
- Registered Users with a Role over any entity in GOCDB
- Hosts registered with a Site entity in GOCDB, via the API credentials mechanism introduced in GOCDB 5.10.0

We have treated "contact information" for entities as personal information, as we cannot guarantee that a user has not entered personal information in these fields.

This change has already been applied to the pre-production system (https://gocdb-preprod.egi.eu/, data updated ~11:20 UTC Feb 20th). A systematic registration of hosts that would have otherwise been affected by this change has already been undertaken as part of our change control process, see https://jira.egi.eu/browse/IMSCHM-174.

The change will be made on the production system (https://goc.egi.eu) at 10:30 UTC on the 27th February 2023. If, after this change, you notice any issues – please open a GGUS ticket against the “Configuration and Topology Database (GOCDB)” support unit.

Kind Regards,
The GOCDB Team

February 20, 2023 16:32
by Greg Corbett

• GOCDB returned to read/write mode

January 18, 2023 12:50 | Adrian Coveney
More details

GOCDB returned to read/write mode

Dear all,

The DNS issues at RAL have been resolved, so https://goc.egi.eu/ is now being served by the primary again and has returned to read/write mode.

It may take time for some connections to migrate back (i.e. still showing READ ONLY MODE in the portal).

Thanks,
The GOCDB Team

January 18, 2023 12:50
by Adrian Coveney

• se.igfae.usc.es (DOME access endpoint at USC-LCG2) will be decommissioned

November 24, 2022 15:20 | Marcos Seco Miguelez
More details

se.igfae.usc.es (DOME access endpoint at USC-LCG2) will be decommissioned

Our DOME access endpoint, se.igfae.usc.es, will be decommissioned in the following weeks.

Given the amount of space offered by our SE it is unlikely that LHCb VO will be affected by this operation. Should this not be the case, please let us know before January 15th 2023 so we can extend the foreseen downtime interval. A GGUS ticket, https://ggus.eu/index.php?mode=ticket_info&ticket_id=159611, to follow the decommission procedure has been created and has more information about the timeline.

No new SE will be available at our site since the current one have seldom been used.

November 24, 2022 15:20
by Marcos Seco Miguelez

• DESY VOMS server certificate migration completed

November 21, 2022 14:48 | Thomas Hartmann
More details

DESY VOMS server certificate migration completed

Dear Users of VOs using the DESY VOMS server,

as previously announced, we have completed the update of the host certificate of the VOMS server at
grid.desy.de
where your VO is hosted. As the host certificate details have changed, an update to the lsc and vomeses files is necessary to obtain new proxies without errors. If you encounter errors while obtaining a new grid proxy, please contact your resource admin to update the locally installed voms details.

Updated server credentials can be found as rpm or tarball under
https://gitlab.desy.de/grid/voms-cert-transition
The rpm package `desy-voms-all` with the new host certificate details can also be found in the WLCG repositories.

Also updated credential files have been propagated through the /cvmfs/grid.cern.ch repository for users of CVMFS based environments.

For OSG users, an updated vo roles package is available in the osg-testing repository, which is expected to move to the osg repository during the day.

If you have any questions, please do not hesitate to contact us.

Cheers,
Thomas for the DESY Grid team

November 21, 2022 14:48
by Thomas Hartmann

• DESY VOMS server downtime/update on Monday, Nov.21, requiring client updates

November 15, 2022 11:14 | Thomas Hartmann
More details

DESY VOMS server downtime/update on Monday, Nov.21, requiring client updates

Dear Users of the VOMS instance hosted at DESY,

coming week on Monday, November 21, the host certificate of the VOMS server
grid-voms.desy.de
will be updated for changing to a new CA.

With the instance's new host certificate, clients will need to update their vomses and lsc files to trust the changed DN.

Without updated VOMS descriptions, clients will fail to obtain new proxies.

If necessary, please update your clients during the downtime accordingly.

Updated rpm, lsc and vomses files as well as a more detailed description are available under
https://gitlab.desy.de/grid/voms-cert-transition

For any questions or suggestions, please contact us under
grid@desy.de

See also the downtime announcement under
https://goc.egi.eu/portal/index.php?Page_Type=Downtime&id=33173

Regards,
Thomas for the DESY Grid team

November 15, 2022 11:14
by Thomas Hartmann

• VOMS server downtime/update on Monday, Nov.21, requiring client updates

November 14, 2022 17:28 | Thomas Hartmann
More details

VOMS server downtime/update on Monday, Nov.21, requiring client updates

Dear Users of the VOMS instances hosted at DESY,

coming week on Monday, November 21, the host certificate for the VOMS server
grid-voms.desy.de
will be updated for changing to a new CA.

With the instance's new host certificate, clients will need to update their vomses and lsc files to trust the changed DN.

Without updated VOMS descriptions, clients will fail to obtain new proxies.

If necessary, please update your clients during the downtime accordingly.

Updated rpm, lsc and vomses files as well as a more detailed description are available under
https://gitlab.desy.de/grid/voms-cert-transition

For any questions or suggestions, please contact us under
grid@desy.de

See also the downtime announcement under
https://goc.egi.eu/portal/index.php?Page_Type=Downtime&id=33173

Regards,
Thomas for the DESY Grid team

November 14, 2022 17:28
by Thomas Hartmann

• GOCDB is read-only over the weekend

October 28, 2022 13:22 | Greg Corbett
More details

GOCDB is read-only over the weekend

Dear all,

The RAL-wide network issues that impacted GOCDB last week have been reoccurring this week, with minimal impact on GOCDB. However, this morning a full reboot of the underlying network was undertaken to resolve issues with other services.

The success of this intervention and general health of the network is still being determined - as such, the GOCDB team has taken the precaution of switching the DNS entry for goc.egi.eu to point at our failover infrastructure to ensure read-only access is maintained over the weekend.

If we receive the "all clear" before close of business today, we will disengage the failover and send a follow up broadcast.

We apologies for any inconvenience this may cause,
Kind Regards,
The GOCDB team

October 28, 2022 13:22
by Greg Corbett

• Decommissioning of DPM / SRM at UKI-SCOTGRID-GLASGOW

October 19, 2022 14:14 | Gordon Stewart
More details

Decommissioning of DPM / SRM at UKI-SCOTGRID-GLASGOW

Dear all,

We would like to announce that UKI-SCOTGRID-GLASGOW has begun the decommissioning procedure for its DPM and SRM services. A tracking ticket can be found here:

https://ggus.eu/index.php?mode=ticket_info&ticket_id=159276

Associated services will be placed into downtime from Wednesday 16th November. The service will be removed on Wednesday 30th November.

VO managers should aim to ensure any critical data has been transferred elsewhere by Wednesday 16th November.

We have discussed this with LHCb directly, as the major remaining user of this service, but we recommend that other VOs check whether they have critical data remaining in this service.

Regards,

Gordon Stewart
ScotGrid Technical Co-ordinator

October 19, 2022 14:14
by Gordon Stewart

Home

Broadcast

Downtimes

VO Management

VO List

Dashboard

Metrics

Sla

v6.6 - 2023-03-13