Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Users access the computing environment in different ways. A common access point is through a terminal with ssh via command line interface (CLI). Other mechanisms are graphical user interface via VDI or web portals with on-demand, Jupyter lab, or r-studio. Some users may also rely on ssh via Visual Studio Code (VS Code). An end-user entry point component is key to shape the user experience accessing the HPC cloud resources, and it's highly dependent on the user workflow and application.
Once all the basic infrastructure is deployed, the end-user entry point would:
- Allow end-user to sign in into the machine and submit jobs;
- Allow end-user to request a remote desktop session;
- Allow end-user to request web browser-based sessions to run applications such as Jupyter lab or r-studio.
Define user entry point needs
SSH access:
- Enable users to sign in into the HPC environment via SSH for job submission and management.
- Ensure secure authentication and connection protocols are in place.
Remote desktop access:
- Allow users to request and establish remote desktop sessions for graphical applications.
- Provide VDI solutions that support various operating systems and applications.
Web browser-based access:
- Support web browser-based sessions for running applications such as Jupyter Lab or RStudio.
- Ensure seamless integration with the HPC environment and resource management.
Tools and services
SSH access:
- Use standard SSH protocols to provide secure command-line access to HPC resources.
- Configure SSH keys and user permissions to ensure secure and efficient access.
Remote desktop access:
- Utilize VDI solutions such as Windows Virtual Desktop or non-Microsoft VDI providers.
- Configure remote desktop protocols (RDP, VNC) and ensure compatibility with user applications.
Web browser-based access:
- Deploy web-based platforms like JupyterHub or RStudio Server for interactive sessions.
- To allow seamless access to compute resources, integrate these platforms with the HPC environment.
Best practices
Secure authentication and access control:
- Implement multifactor authentication (MFA) and SSH key-based authentication for secure access.
- Use role-based access control (RBAC) to manage user permissions and ensure compliance with security policies.
Optimize user experience:
- Provide clear documentation and training for users on how to access and utilize different entry points.
- To ensure a smooth user experience, continuously monitor and optimize the performance of access points.
Ensure compatibility and integration:
- Test and validate the compatibility of remote desktop and web-based access solutions with HPC applications.
- To provide seamless resource management, integrate access solutions with the existing HPC infrastructure.
Scalability and performance:
- Configure access points to scale based on user demand, ensuring availability and performance during peak usage.
- Use performance metrics to monitor and optimize the entry point infrastructure regularly.
Example steps for setup and deployment
Setting up SSH access:
Configure SSH server:
Install and configure an SSH server on the sign-in nodes.
Generate and distribute SSH keys to users and configure user permissions.
sudo apt-get install openssh-server sudo systemctl enable ssh sudo systemctl start ssh
User authentication:
Set up SSH key-based authentication and configure the SSH server to disable password authentication for added security.
ssh-keygen -t rsa -b 4096 ssh-copy-id user@hpc-login-node
Setting up remote desktop access:
Deploy VDI solution:
- Choose and deploy a VDI solution that fits your HPC environment (for example, Windows Virtual Desktop, VNC).
- Configure remote desktop protocols and ensure they're compatible with user applications.
Configure remote desktop access:
Set up remote desktop services on the HPC sign-in nodes and configure user permissions.
sudo apt-get install xrdp sudo systemctl enable xrdp sudo systemctl start xrdp
Setting up web browser-based access:
Deploy JupyterHub or RStudio Server:
Install and configure JupyterHub or RStudio Server on the HPC environment.
sudo apt-get install jupyterhub sudo systemctl enable jupyterhub sudo systemctl start jupyterhub
Integrate with HPC resources:
Configure the web-based platforms to integrate with the HPC scheduler and compute resources.
jupyterhub --no-ssl --port 8000