From 6be6ee42c13ac5ed9450a292ed2a6928165f5e93 Mon Sep 17 00:00:00 2001
From: Anil-Kumar Vengalil <Anil-Kumar.Vengalil@sophia.inria.fr>
Date: Mon, 6 Jul 2009 07:25:54 +0000
Subject: [PATCH] Updated INSTALL.txt

---
 INSTALL.txt | 193 ++++++++++++++++++++++++++++++++--------------------
 1 file changed, 120 insertions(+), 73 deletions(-)

diff --git a/INSTALL.txt b/INSTALL.txt
index 77181656..63a83f5a 100644
--- a/INSTALL.txt
+++ b/INSTALL.txt
@@ -1,91 +1,138 @@
-========== INSTALL
-Assuming that you've set up your yum repo like for a myplc install,
-you should be able to just
+This installation note assumes that you have installed and configured MyPLC in the usual manner, and you have set up your yum repo like for a MyPLC install.
+-----
+1) Install the SFA packages:
 
-# yum install sfa-plc
+# yum install sfa-plc sfa-client
 
-========== CONFIGURE
+Note that the above command installs both sfa server (sfa-plc) and sfa client packages along with necessary dependency packages. Depending on the requirements, you may choose 
+to install the appropriate one (server, client or both) for you. For e.g. to set up your own SFA server on top of your MyPLC, you need sfa-plc. On the other hand, if you plan to use an existing SFA server, you would typically need the sfa-client only.
+-------
+2) Note down the PLC_ROOT_USER and PLC_ROOT_PASSWORD of your MyPLC installation:
 
----
-Inspect your plc config:
-
-[2009.06.09--1l-f8-32-vplc07] / # plc-config-tty 
+# plc-config-tty 
 Enter command (u for usual changes, w to save, ? for help) s PLC_ROOT_USER
 PLC_ROOT_USER = root@test.onelab.eu
 Enter command (u for usual changes, w to save, ? for help) s PLC_ROOT_PASSWORD
 PLC_ROOT_PASSWORD = test++
----
-sfa-config-tty
 
-* set GENI_PLC_USER		to PLC_ROOT_USER 
-* set GENI_PLC_PASSWORD		to PLC_ROOT_PASSWORD
+These two configuration parameters are required for SFA server configuration
+-------
+3) Configure and start SFA servers: 
+
+(a) # sfa-config-tty
+
+ set GENI_PLC_USER	to     PLC_ROOT_USER 
+ set GENI_PLC_PASSWORD	to     PLC_ROOT_PASSWORD
 write and quit
 
-*NOTE* xxx at this point you get a warning b/c the authorities hierarchy has not been created yet; ignore
----
-run gimport
+*NOTE* at this point you get a warning b/c the authorities hierarchy has not been created yet; ignore
 
-[2009.06.09--1l-f8-32-vplc07] / # sfa-import-plc.py 
+(b) # sfa-import-plc.py 
+
+(o/p will look like this)
 Import: creating top level authorities
 Hierarchy: creating authority: plc
 plc : 
 Import: creating table for authority plc
 NOTICE:  table "geni$plc" does not exist, skipping
   inserting authority record for plc
+Import: adding plc to trusted list
+Import_Site: importing site plc.internet2
+Hierarchy: creating authority: plc.internet2
+  inserting authority record for plc.internet2
+Import_Site: importing site plc.pl
+Hierarchy: creating authority: plc.pl
+  inserting authority record for plc.pl
+Import: importing person plc.pl.root
+Import: creating table for authority plc.pl
+NOTICE:  table "geni$plc$pl" does not exist, skipping
+
+(c) # cp /etc/sfa/authorities/plc/plc.pkey /usr/lib/python2.5/site-packages/sfa/server.key
+
+(d) # service sfa start
+
+This will start Registry, Slice Manager and Aggregate Manager. Your ps command output would like:
+
+# ps -ef | grep python
+root     24944     1  0 May11 ?        00:00:00 /usr/bin/python /usr/bin/sfa-server.py -r -d
+root     24957     1  0 May11 ?        00:00:00 /usr/bin/python /usr/bin/sfa-server.py -a -d
+root     24970     1  0 May11 ?        00:00:00 /usr/bin/python /usr/bin/sfa-server.py -s -d
+-------
+4) Configure SFA client:
+
+ (a) # mkdir ~/.sfi 
+ (b)copy your private key to ~/.sfi/username.pkey Replace username with your actual account name 
+ (c) # cp  /etc/sfa/sfi_config ~/.sfi/
+ (d) edit ~/.sfi/sfi_config. A sample configuration looks like:
+
+	export SFI_AUTH=plc.pl
+	export SFI_USER=plc.pl.root
+	export SFI_REGISTRY=http://vplc25.inria.fr:12345/
+	export SFI_SM=http://vplc25.inria.fr:12347/ 
+
+ (e) # source ~/.sfi/sfi_config 
+------
+5) Testing:
+
+At this stage you should be able to run sfi command. Some sample outputs are:
+
+ (a) # sfi.py list plc.pl
+     plc.pl.netflow (slice)
+     plc.pl.sirius (slice)
+     plc.pl.root (user)
+     plc.pl.pif (node)
+
+ (b) # sfi.py show plc.pl.pif
+     gid:
+          hrn: plc.pl.pif
+         uuid: 99878316891261700702442883738232624912
+     hrn: plc.pl.pif
+     type: node
+     node_type: regular
+     hostname: pif.inria.fr
+ 
+ (c) # sfi.py show plc.pl.root
+       gid:
+          hrn: plc.pl.root
+         uuid: 67306954103472941609600457537601239401
+     hrn: plc.pl.root
+     type: user
+     last_name: Administrator
+     phone: None
+     key: plc.pl.root#user
+     first_name: Default
+     email: root@vplc25.inria.fr
+
+ (d) # sfi.py slices
+     plc.pl.netflow
+     plc.pl.sirius
+
+ (e) # sfi.py resources
+<?xml version="1.0" ?>
+<Rspec duration="3600" start_time="1246736949"><networks><NetSpec duration="3600" name="plc" start_time="1246736950"><nodes><NodeSpec cpu_min="" cpu_pct="" cpu_share="" disk_max="" duration="" init_params="" name="pif.inria.fr" start_time="" type=""><net_if><IfSpec addr="138.96.250.224" init_params="" ip_spoof="" max_kbyte="" max_rate="" min_rate="" name="True" type="ipv4"/></net_if></NodeSpec></nodes></NetSpec></networks></Rspec>
+------
+
+6) Federation configuration:
+
+(a) Follow the same procedure to install and configure second MyPLC with SFA server.
+(b) On each PLC, edit the /etc/sfa/registries.xml file
+
+    set addr to ip or hostname of federated (remote) peer
+    set port to geni service port on federated (remote) peer
+    set hrn to human readable name of federated (remote) peer interface
+Sample configuration:
+
+<registries>
+	<registry addr="vplc26.inria.fr" hrn="ple" port="12345"/>
+</registries>
+
+(c) Likewise, edit the /etc/sfa/aggregates.xml
+Sampel configuration
+
+<aggregates>
+	<aggregate addr="vplc26.inria.fr" hrn="ple" port="12346"/>
+</aggregates>
+
+(d) trade trusted root gid's (seen on /etc/sfa/trusted_roots)
+we have to copy the gid of first SFA server to the /etc/sfa/trusted_roots directory of second one and vice-versa. 
 
---- 
-run sfa-config-tty again - to initialize /etc/sfa/authorities/plc/plc.pkey
-
-[2009.06.09--1l-f8-32-vplc07] / # sfa-config-tty 
-Enter command (u for usual changes, w to save, ? for help) q
-                /etc/sfa/authorities/server.key
-copied from     /etc/sfa/authorities/plc/plc.pkey
----
-
-
-xxx tested this far xxx
-
-
-Federation:
-===========
-edit /etc/sfa/aggregates.xml and /etc/sfa/registries.xml  
-* set addr to ip or hostname of federated peer
-* set port to geni service port on federated peer
-* set hrn to humarn readable name of federated peer interface
-
-trade trusted root gid's (found in /usr/share/geniwrapper/geni/trusted_roots/) 
-
-Run:
-====
-
-First run:
-# initialize the registry by running the registry import tool 
-python sfa-import-plc.py
-
-# start the services
-service sfa start
-
-or 
-
-sfa-server.py -r -d
-sfa-server.py -a -d
-sfa-server.py -s -d
-
-
-Use:
-==== 
-
-Copy my private PL (RSA) ssh key to ~/.sfi/quetier.pkey
-
-Copy /etc/sfa/sfi_config in ~/.sfi
-edit  sfi_config
-
-export SFI_AUTH=ple.upmc
-export SFI_USER=$SFI_AUTH.quetier
-export SFI_REGISTRY=http://138.96.255.199:12345/
-export SFI_SM=http://138.96.255.199:12346/
-
-source sfi_config
-
-./sfi.py list ple
-./sfi.py show ple.upmc.quetier
-- 
2.43.0