Perun services

Perun-services are automatically activated tools which allow to keep situation stated at database the same as status of all resources controlled by system Perun. List of perun-services can be increased by adding of new services which can have special functionality according needing of administrators and users of system

Common perun-services used for usual control of sources

Service Description
afs Service is target to maintenance of structure of shared directory system AFS.
fs_home Service is used for maintenance user's home directories on target facilities. Directories which have not beed existed yet are created. At formerly created directories is checked owner and his permissions for access. Deleting of home directories is not executed, old or invalid directories must be deleted by hand. Service sets home files quotas and limits for their number.
fs_scratch Service is used for maintenance user's scratch directories on target facilities. Directories which have not beed existed yet are created. At formerly created directories is checked owner and his permissions for access. Deleting of scratch directories is not executed, old or invalid directories must be deleted by hand.
fs_scratch_global Service has the similar functionality as fs_scratch and it is used if shared scratch file at whole cluster is needed.
fs_scratch_local Service has the same functionality as fs_scratch and it is used if more then one scratch file is needed.
gridmap Service is target for maintenance of GRIDMAP file of virtual organizations.
group Service is determined to maintenance of file /etc/group at target UNIX machine. Propagation of this service is activated by change at set of groups or set of group members (having an account on target machine) or is activated by changes at attributes concerning these members.
group_nfs4 Service is special version of group service for NFS4. Maintained file is /etc/group-nfs4.
k5login Service updates KERBEROS principals in files .k5login at home directories.
k5login_root Service takes care about KERBEROS principals for root access to target facility, file /root/.k5login.
k5login_generic Service takes care about KERBEROS principals for access to specific user on target facility, file /home/[specific_user]/.k5login.
ldap Service pushes personal data about users (including group and VO membership information) to the LDAP structure.
mailman Service sets mailinglists for Mailman.
mailman_owners Service sets owners of mailinglists.
passwd Service is used for maintenance of /etc/passwd file at target UNIX machine. Propagation of this service is activated by change in set of users having an account on target machine or is activated by changes at attributes concerning these users.
passwd_nfs4 Service is special version of passwd service for NFS4. Maintained file is /etc/passwd-nfs4.
passwd_scp Service maintains file contains users and their shells for using scp.
pbs_phys_cluster Service is used for upkeep of file containing names of physical clusters and their nodes needed for scheduler (pbs) of user's tasks.
pbs_pre Service target for updating of file used by users's tasks scheduler (pbs) containig list of users with hosts and clusters where users can run their tasks.
sshkeys Service upkeeps the file containing users ssh keys.
sshkeys_root Service upkeeps the file containing ssh keys of users with root access.
voms Service updates file used by system VOMS. File contains list of virtual organizations maintained by VOMS and for each member of VO DN of certification autority and DN of user's certificate issued by this CA.

Perun-services with special functions

Service Description
apache_basic_auth Service add/remove entries in Apache basic auth file. Passwords must be managed separately.
apache_ssl Pushes list of certificates DN to Apache configuration, which are allowed to access specific directory.
docdb Service manage access to DocDB document server.
du_users_export Special export of users data for DU CESNET purpose.
eduroam_radius Service is used for update of user's identities in EDUROAM.
fedcloud_export Service is target for updating users at fedcloud infrastructure.
flexlm_iptables Service sets access to licence server Flexlm by IP address. Each user can prepare list of IP addresses from which he wants to access server and according this list is set the firewall.
mailman_meta Service has similar functionality as mailman, it is special version for VO MetaCenter.
openvpn Service generates list of IGTF certificates of users who can use OpenVPN system.
owncloud_vo_mapping Special service for OwnCloud instance of MetaCenter, where they want to map users to VOs.
pbsmon_json Service generates information (in JSON format) for special web tool displaying current status of computational hardware machines.
pbsmon_users Service generates list of users who are permitted to use web tool mentioned with pbsmon_json service.
pbs_publication_fairshare Sets priority coefficient to users of PBS based on number of reported publications with thanks to resource providers. Coefficient is used to take priority in computational tasks queue on grid infrastructure managed by PBS.
users_export Special service generates list of users for external information system.