|
|
Instructions for Group Computer Managers |
All management questions regarding computing resources of the group in the PNCE-Unix cluster are referred to these managers. In particular, group managers determine which users have access to group computing resources (ie control the membership of the group as far as PNCE-Unix cluster is concerned). They also have control over all the disk space owned by a group, and can request modification of the quota for an user's groupspace, or for a project's groupspace, or request creation of new project groupspaces. We also hope that they will be able to provide some basic user support for users within their group. Users are encourage to go with more basic questions to their group manager, who hopefully will have dealt with the issue before and can answer it based on what they already know. To facilitate this arrangement, PCS will try to give preferential treatment to requests coming from group managers, so that if the group manager does not know how to handle an issue, they can contact PCS who will show both the original user and the group manager how to answer that question in a timely manner.
The group management position is primarily administrative, dealing with requests for people to join (and figuring out who should be removed from) the group. Computer savvy is nice but not required. The computer manager should be fairly available, as PCS will not approve requests for membership without hearing from the group manager. The group manager does not have tremendous authority, some groups use secretaries or graduate students to fill the role.
In the current model, users get access to all of the resources listed above (except for groupspace and project areas) or none of it depending upon whether they are a member of the PNCE-Unix group or not. Access to groupspace and project areas can be more finely controlled.
Each distinct research group entity (as defined by PCS; for questions/comments regarding this breakdown of the department please submit a physhelp request) has a PNCE-Unix group which should roughly consist of all members of the research group. It grants login access to your groups designated login machines, use of the group's printers, access to NSCP resources if your group is a shareholder in NSCP, etc. All faculty, staff, research associates, graduate students, and undergraduate students who are actively working with your group on its research activities should probably belong to this group. Colleagues outside the department can also be given membership in this group if you wish them to have access to your group's resources; note that they need to already have a Glue/PNCE-Unix account before they can be added to the group. Members of the physics department are eligible for a PNCE-Unix account; and most other people on campus shuld be able to obtain a Glue account. Colleagues not officially associated with the campus (or those otherwise unable to obtain a PNCE-Unix/Glue account), may apply for a sponsored account following the standard account request procedure followed by a physhelp request from you indicating that you wish to sponsor them.
In addition, PCS can create groups which you can manage for various projects that your group may have. These are primarily for instances in which you wish people working on a certain project to have access to disk space or other resources which the rest of the group should not have access to.
The basic structural division is between
groupspace and data
disks. Groupspace is intended to be the primary repository of files
related to your groups research activities. Most groups (all original NSCP-II
shareholders) have groupspace in AFS space and served off of departmental
file servers, although some recent additions
to the PNCE-Unix cluster have their groupspace in NFS space served off one of
their login machines. Either way, your groups groupspace (if it has any) is
located under group/xxx, where xxx is the
abbreviation for your groupname. Data disks are generally large
filesystems mounted locally on a login machine, and located at
/data/hostname n where hostname
is the machine it is mounted on, and n is a digit indicating which
disk on that host it is.
Your groups groupspace should be structured along these lines:
/group/xxx where xxx
is the abbreviation for the groupname. The term is also used sometimes to
refer to an user's directory in the user section of the groups
groupspace.
As group manager, you have supervisory access to all files in the above
directory hierarchy, although for safety reasons your read/write access is
by default restricted (although you can turn it on via the /group/xxx/pub:
/group/xxx/pub/public_html: For your group web pages
/group/xxx/pub/test_html: For experimenting with your group web pages
/group/xxx/software:
/group/xxx/software/bin: For executables
shared among your group
/group/xxx/software/package: For source,
etc for package package
/group/xxx/common: An area to which entire group has
read/write access to facilitate the sharing of files
/group/xxx/user:
/group/xxx/user/username: User
username's groupspace directory for group xxx
/group/xxx/project:
/group/xxx/project/project_name: A
directory with shared read/write access for people working together
on a given project
fs
command). Note that you do not have access to anyone's home space other
than your own.
manage_group utility in interactive
mode. Indeed, when the utility is started in interactive mode, the first
thing it does is greet you and list which groups you manage. If you need
to see them in the middle of a session, there is the groups
command which will print out that list again.
manage_group utility (located in /dept/phys/local/bin).
Currently, only an interactive mode is available. To use, type
manage_group without any arguments at the command line.
The system should then greet you and display a list of groups which you
manage, and then give you the mg> prompt.
At the mg> prompt, you can issue various commands. The
groups command will redisplay the list of groups which you
manage. The help command will display a brief summary of
the interactive mode commands, and the quit command will exit
the program.
The list command will list the
members of the requested groups. If you manage more than one group, the
utility will ask you which group or groups you wish to list. You should enter
all the groups you want membership lists of on a single line, separated by
spaces or commas. If multiple groups are specified, the command returns the
union of the memberships of the specified groups. If you only manage a single
group, that group will be implicitly used by the command without prompting
you.
The add and remove commands add and remove,
respectively, users from groups. If you manage
more than one group, the utility will prompt you for the name(s) of groups
you wish to add/remove user(s) to/from.
If you wish to add/remove people to/from more than one
group, enter the names of all the groups on the same line separated by spaces
or commas. If you only manage a single group, the system will assume that
is the group you wish to add people to without prompting you.
The system will then ask you for a list of users to add to/remove from the aforementioned group(s). Enter the usernames of the people you wish to add or remove. Again, if you wish to add or remove more than one person, enter the usernames all on one line separated by spaces or commas.
If more than one user or group is specified, all named users are added to
or removed from all named groups.
After you enter the groups and/or users, the system will print out what
it interprets you as wishing to do, and require you to confirm the action by
typing y before it will process the request.
You must be listed as a manager of a group to add/remove/ or list users, and the user's Glue/PNCE-Unix account must exist prior to issuing this command to add them to groups.
Currently, there are no scripts to assist in any of that.
Some aspects of this management are complicated by the fact that many items
which look like directories are in actuality AFS volumes (eg, anything which
has its own quota is a volume, not a directory) which require special handling.
Therefore, actions which require the creation/deletion of a volume, or the
changing of a quota on a volume, currently must be done by PCS staff, but will
be done on your behalf as a group manager if you submit a
physhelp request. This includes creation,
deletion, and quota modification of user groupspace, project space, and
volumes underneath the software directory. However, group managers should
already have full access to all the existing files in the group directory
structure, although by default this access is disabled until you activate
it with the fs command.
In particular, this means that once the volume for your groups web pages is created, you have access to all your groups web pages. Similarly, once a volume is created for a software package, you have complete access to it for installation and other purposes.
To view the existing quota on an user's groupspace, issue the command
/usr/bin/afsws/fs listquota /group/xxx/user/username
replacing xxx with your group abbreviation and
username with the user in question's login name.
To create, remove, or modify quotas submit a physhelp request.
To assist in this, during everyone's log in process on a PNCE-Unix machine,
the system will execute the csh script in
/group/xxx/software/bin/cshrc if the file exists
and the user is a member of group xxx. This takes place before
the user's personal (.cshrc.mine) instructions run, so the
user can override your instructions if they so desire, but if not they will get
your commands.
As group manager, you have write access to this file.
 |
Physics Home |
PNCE Info |
UNIX Info |
PC Info |
System Info |
POWL Firstaider |
E-Mail
This page is maintained by the Physics Web Managers: |