• Manuals

Browse the manual

• Introduction
  • System requirements
  • Licensing
  • CLC Genomics Server
• Installation
  • Quick installation guide
  • Installing and running the Server
    • Installing the Server software
  • Installation modes - console and silent
  • Upgrading an existing installation
    • Upgrading between major versions
  • Allowing access through your firewall
  • Downloading a license
    • Download a static license on a non-networked machine
  • Starting and stopping the server
    • Microsoft Windows
    • macOS
    • Linux
• Basic configuration
  • Logging into the administrative interface
  • Server display name
  • Adding locations for saving data
    • CLC Server File System Locations
    • Reference data management
    • Enabling and disabling internal compression of CLC data
  • Changing the listening port
  • SSL and encryption
    • Logging in using SSL from a CLC Workbench
    • Logging in using SSL from the CLC Server Command Line Tools
  • Changing the tmp directory
    • Job node setup
  • Setting the amount of memory available for the JVM
  • Limiting the number of cpus available for use
  • HTTP settings
  • External network connections
  • Proxy settings
• Managing users and groups
  • Changing the root password
  • User authentication for the CLC Server
    • Giving users administration rights
    • Authentication options
    • Managing users and groups using built-in authentication
  • User authentication via the Workbench for built-in authentication
• Access privileges and permissions
  • Controlling group access to CLC Server data
    • Setting permissions on folders
    • Technical notes about permissions and security
  • Controlling access to the server, server tasks and external data
  • Customized attributes on data locations
    • Filling in values
    • What happens when a clc object is copied to another data location?
    • Searching custom attributes
• Job processing
  • Introduction to servers setups
  • Model I: Master server with dedicated job nodes
    • Overview: Model I
    • User credentials on a master-job node setup
    • Configuring your setup
    • Installing Server plugins on job nodes
  • Model II: Master server submitting to grid nodes
    • Overview: Model II
    • Requirements for CLC Grid Integration
    • Technical overview
    • Setting up the grid integration
    • Configuring the master node for a grid setup
    • Licensing of grid workers
    • Configuring licenses as a consumable resource
    • Configuring grid presets
    • Controlling the number of cores utilized
    • Multi-job processing on grid
    • Other grid worker options
    • Testing a Grid Preset
    • Client-side: submitting CLC jobs to the grid
    • Grid Integration Tips
    • Understanding memory settings
  • Model III: Single Server setup
  • Workflow settings
    • Workflow distribution options
    • Choosing a workflow distribution option
    • Intermediate workflow result handling
• Working with external data locations
  • Import/export directories
  • Direct data transfer from client systems
  • AWS Connections in the CLC Server
  • AWS S3 public buckets
  • Browse AWS S3 locations
  • Illumina BaseSpace
• Working with CLC Server File System Locations
  • Browsing CLC Server File System Locations
  • Searching CLC Server File System Locations
    • Rebuilding the index
• Workflows
  • Installing and configuring workflows
  • Executing workflows
  • Updating workflows
• BLAST databases
• Status and management
  • Downloading a license via the web interface
  • Server maintenance
  • User statistics
  • System statistics
• Queue
• Audit log
• Server plugins
• External applications
  • External application configurations
    • Configuring the containerized execution environment
  • Configuring external applications
    • Editing external applications
    • External command
    • High-throughput sequencing import / Post-processing
    • Stream handling
    • Failure strategy
    • Environment
    • End user interface
    • Management
  • Using consistent reference data in external applications
  • Import and export of external application configurations
  • Updating external application configurations
  • Example: Velvet (standard external application)
    • Installing Velvet
    • Running Velvet from the Workbench
    • Understanding the Velvet configuration
  • Example: Bowtie (standard external application)
    • Installing Bowtie
    • Understanding the Bowtie Map configuration
    • Setting the path for temporary data
    • Tools for building index files
  • Example: Kraken2 (containerized external application)
    • Extending the Kraken2 external application for paired data
  • Example: MAFFT (containerized external application)
  • External applications in workflows
  • Running external applications
    • Using a CLC Workbench to launch external applications
    • Using CLC Server Command Line Tools to launch external applications
  • Troubleshooting external applications
• CLC Genomics Cloud Access
• Recycle bins
  • Automatic cleanup of recycle bins
  • Emptying recycle bins
  • Recycle bin restrictions
• Configuring CLC Workbench connections
• Troubleshooting
  • Check setup
  • Bug reporting
• Command line tools
• Appendix
  • Use of multi-core computers
  • Non-exclusive Algorithms
  • DRMAA libraries
    • DRMAA for SLURM
    • DRMAA for LSF
    • DRMAA for PBS Pro
    • DRMAA for OGE or SGE
  • Consumable Resources
  • Server system communication diagrams
  • Third party libraries
  • Read Mapper Reference Caching
  • Monitoring
    • Setting up JMX monitoring
    • Completed process metrics
    • Process execution metrics
    • Job node metrics
• Bibliography

Controlling access to the server, server tasks and external data

Access to the various aspects of the CLC Server can be controlled using settings under:

        Configuration () | Global Permissions ()

See figure 5.5.

Figure 5.5: Access can be controlled for many aspects of the CLC Server, including restricting access to certain tools and granting administrative access for certain types of actions

Group-level access can be configured for the following:

• Login restrictions Restrict who can log into the CLC Server.
• Web admin access Give admin-level access to defined areas in the web administrative interface. This is described further below.
• Algorithms Restrict access to specific tools to specified groups (figure 5.8). Enter a term in the search field to list tools with names containing that term.
• Workflows Control access to workflows installed on the CLC Server and control who can submit CLC Workbench workflows for execution on a CLC Server.

  Controlling access to installed workflows Each workflow installed on the CLC Server is listed and access to each is configured individually (figure 5.6). By default, all authorized users have access to all workflows installed on the CLC Server.

  Control who can submit CLC Workbench workflows for execution on a CLC Server The "Server Execution of Workbench Workflows" workflow (figure 5.6) is used by the system when a workflow installed on a CLC Workbench, or a workflow open in the CLC Workbench Workflow Editor, is submitted for execution on the CLC Server. Thus, access to the "Server Execution of Workbench Workflows" workflow determines who can run CLC Workbench workflows on the CLC Server. By default, all authorized users can access this workflow.

  
  Figure 5.6: All authorized users have access to the first installed workflow listed. Members of the testers and scientists groups can run the second installed workflow. All authorized users have access to the "Server Execution of Workbench Workflows" workflow, allowing them to run CLC Workbench workflows on this CLC Server.

  Permission to install and manage workflows on the CLC Server are configured under the "Web admin access" section, described below.

• External applications Restrict access to External Applications that have been configured and made available on the CLC Server. To grant administrative access to configure and install external applications, set the permissions under the "Web admin access" section.

• Import/export directories Restrict access to file system areas not part of the CLC data setup that the CLC Server is able to access. These are described in Import/export directories.
• AWS Connections Restrict access to AWS Connections configured under the External Data tab.
• Grid presets For grid node setups only: Restrict access to grid presets, which are used for sending jobs to a particular queue with particular parameters. Note that grid presets are identified by name. If you change the name of a preset (under the Job processing tab), then this, in effect, creates a new preset. In this situation, if you had access permissions previously set, you would need to reconfigure those settings for this, now new, preset.
• Cloud presets Only relevant when the Cloud Server Plugin is installed and an AWS Connection has been configured for accessing an AWS account with CLC Genomics Cloud resources in place. Access to each cloud preset can be customized.

To edit permissions, click on the relevant heading and then click on the relevant Edit Permissions button in the expanded list (figure 5.8). In the edit dialog, if the option Only authorized users from selected groups, is selected, a list of groups is shown, allowing access to be granted or removed, as relevant.

Figure 5.7: Setting group-level permissions for tools is done under the Algorithms section. By default, all authorized users have access to all tools. Here, access has been limited to members of the admin and bioinformaticians groups.

Web admin access

By default, only members of the admin group can access administrative areas of the web interface. Settings under the "Web admin access" heading allow access to be extended to members of other groups to the following areas:

• Audit log See and work with the audit log, available from under the Management tab . See Audit log.
• External applications Configure and administer external applications. See External applications.
• Queue See a list of the processes running on, or queued to be run on, the CLC Server. See Queue.
• Workflows Install and administer workflows on the CLC Server. See Workflows.

Figure 5.8: Access can be granted to members of non-admin groups to the Audit log, External applications, Queue, and Workflows tabs in the web administriative interface.

---