Primary Items for discussion at the PEARC Conference. Please feel free to clarify these items and add more!
Identity and Access Management (IAM)
Although several XSEDE services will be retired and no longer available after August 31, 2022, the primary XSEDE username/password mechanism will remain the same. In ACCESS, we are referring to this simply as one’s ACCESS ID and password, which customers will continue to employ to authenticate to common ACCESS services. Login to user interfaces requiring a higher level of assurance (e.g., access to project allocations and member information) will require additional authentication with DUO.
...
Customers who currently authenticate using their XSEDE username and password via CILogon will instead select ACCESS from the list of CILogon authentication providers to authenticate in the same manner.
Single Sign On Hub - alternative approaches
Primarily focused on Resource Providers and Partner Institutions. Guidance on how to log into resource provider directly.
...
Strategies for ACCESS RPs to authenticate customer ssh logins with ACCESS IDs are being developed. The main obstacle is mapping or translation of ACCESS IDs to site-local IDs. We are coordinating with XSEDE to publish guidance for ACCESS RPs as soon as possible. [Need contact info for who/where RPs should send questions to on this topic - fallback: send to Derek Simmel <dsimmel@psc.edu>]
ACCESS Portal
The AMP portal will be online in a primitive form on September 1. On that date, users can expect that they will be able to:
...
Users should expect that the AMP will evolve over time and that features will be added. What is available on September 1 will be a first draft of what will eventually be available moving forward.
Globus
ACCESS Operations is providing a Globus subscription through August 2023. After that time Globus will remain the preferred data transfer mechanism. Note that researchers can transfer data using Globus at no charge, and many of the ACCESS-allocated resource providers offer Globus subscriptions that include enhanced features.
CONECTnet
ACCESS wide area network connectivity for RPs is via a Layer3 VPN (L3VPN) provisioned on Internet2, the national research and education (R&E) network backbone provider. The NDTS team is available to facilitate RP integration with CONECTnet and provide network performance consulting upon request.
RAMPS Marketplace
All active XSEDE allocations (with an expiration date beyond September 1, 2022) will be “mapped” to the new ACCESS allocations tiers. More information on the new tiers will be broadcast on the Advance to ACCESS page.
...
Questions, comments, or interest in joining the review panel for ACCESS allocations requests, please use this form to contact Allocations.
Ticketing System
ACCESS uses a Jira Service Management-based ticket system. Users submit tickets via a webform that is located in the Support portal.
Integrating Allocated Compute/Storage/Cloud into ACCESS
ACCESS uses an Integration Roadmaps Framework to define how operators can integrate classes of infrastructure into the ACCESS environment to achieve a defined operational status. This framework defines, for example, how HPC compute clusters can achieve the ACCESS allocated operational status, and will also be used to define how many new classes of emerging infrastructure can integrated to achieve ACCESS allocated, un-allocated, discoverable, or other statuses. Learn more here.
MATCH Tier Support for Researchers
Tier 1:
Trying to reach as many researchers as possible with existing ease of use tools
Intention is to help researchers focus on their research, be confident in the results they are getting, and to reduce their time to solution
Our focus is on utilizing Open OnDemampand, the Pegasus workflow tool, and the Cnct.CI portal, all of which will be modified, integrated, and updated to promote ACCESS wide work
...