CANARIE CAF and DAIR Programs

CANARIE CAF and DAIR Programs Randy Jones, Director Technology Innova7on Research So9ware Developers Workshop May 30, 2016

Canadian Access Federation (CAF) 2

CAF Quick Facts > Iden7ty and Access Management services Seamless Global Wi-Fi access service Federated Single Sign-On > Began in 2012 > 133 Par7cipants in Canada 3

Canadian Access Federation (CAF): eduroam Secure, seamless worldwide Wi-Fi access for the interna7onal research & educa7on community 4

Canadian Access Federation: Federated Single Sign-On 2. Authen)cates user s iden)ty and permissions 1. Signs in with single set of creden)als A trust fabric formed by federated management of iden77es & services. 3. Authorizes access to services 5

edugain Par%cipa%ng Federa%on Par%cipa%ng Federa%on Service Provider (SP) Service Provider IdP IdP Service Provider Service Provider (SP) IdP IdP > edugain inter-federates mul7ple federa7ons Interna>onal collabora>on is easier with edugain > Has 38 federa7ons: 2035 IdPs, 1196 SPs and growing daily See hdps://technical.edugain.org > Contact CAF to export your IdP and/or SP to edugain 6

Digital Accelerator for Innovation and Research (DAIR) 7

The DAIR cloud for Canada s SMEs and Research Software Participants > A kick-start to new cloud service offerings > Mobilizes new cloud ICT businesses in Canada Get to market faster on the CANARIE network for free.

The DAIR Cloud Edmonton Sherbrooke Compute, storage & network all in Canada User control via web portal and APIs 9

How Virtualization in the Cloud Helps VM VM VM VM VM VM VM VM VM Image/Container Portability On Demand Virtual Machines Open APIs Live Migra>on Enables 10 Increased Developer Efficiency Reduced Time to Market Scalability and Reduced Effort Higher Availability

Eligibility > Approved Research SoFware Par%cipant > OR SME with offices in Canada with < 500 employees > Agreement to acceptable use policy

Why DAIR? Why use DAIR? > Cost certainty, always $0 :-) > Accelerate >me to market > Data never leaves Canada > High performance network: 100 Gbps na7onal network 12 12

Nearly 700 startups have lifted their business to the DAIR cloud Using DAIR, we gained enormous benefits by collaborating with customers on product development and evolution in real time. Mike Cook, President and Operating Officer, Identos DAIR was the right solution for us. DAIR s high-performance servers supported our sophisticated software tools and multiple data feeds. We were able to develop and test our product thoroughly on DAIR. Grant Sutherland, President, BOS Forestry canarie.ca/cloud/case-studies 13

What s offered? For development, test, and trials for the life of your agreement with CANARIE 1. 4 virtual cores (vcpus) 2. 4 virtual machines 3. 8 GB RAM 4. 80 GB storage across 4 file systems 5. 200 GB of object storage 6. Na>ve OS: Windows Server 2008, R2 Server 2012, Windows 7, Centos 6.0/7.0, Ubuntu 10.04/12.04/14.04 7. Unlimited data transfer in, within, and out of DAIR 8. Support 9. Addi>onal resources are available on a case by case basis. GPUs Coming Q2/16! 14

DAIR Demonstration Don McCullough, Solu7on Architect Research So9ware Developers Workshop May 30, 2016

Topics > Configure first virtual server instance Configure security group rules Create an SSH Key Pair Assign a floa>ng IP Launch an instance Configure instance Select the image to boot Launch a virtual server 16

Topics continued > Use your new virtual server Using your SSH Key Pair Logging in Install Apache2 Server Upload content Recommended Security Steps for Apache2 hdp://www.tecmint.com/apache-security->ps/ Consider Apache Security recommenda>ons when implemen>ng hdp://hdpd.apache.org/docs/2.4/misc/security_>ps.html 17