• Manuals

Browse the manual

• Introduction
  • System requirements
  • Licensing
  • CLC Genomics Server
• Installation
  • Quick installation guide
  • Installing and running the Server
    • Installing the Server software
  • Installation modes - console and silent
  • Upgrading an existing installation
    • Upgrading between major versions
  • Allowing access through your firewall
  • Downloading a license
    • Windows license download
    • macOS license download
    • Linux license download
    • Download a static license on a non-networked machine
  • Starting and stopping the server
    • Microsoft Windows
    • macOS
    • Linux
  • Installing the database
    • Download and install a Database Management System
    • Create a new database and user/role
    • Initialize the database
• Basic configuration
  • Logging into the administrative interface
  • Adding locations for saving data
    • File system locations
    • Reference data management
    • Enabling and disabling internal compression of CLC data
    • Database locations
    • Rebuilding the index
  • Accessing files on, and writing to, areas of the server filesystem
  • Direct data transfer from client systems
  • Changing the listening port
  • Changing the tmp directory
    • Job node setup
  • Setting the amount of memory available for the JVM
  • Limiting the number of cpus available for use
  • HTTP settings
  • Deployment of server information to CLC Workbenches
• Managing users and groups
  • Logging in the first time and changing the root password
  • User authentication using the web interface
    • Authentication options
    • Managing users and groups using built-in authentication
    • User authentication using the Workbench
    • Managing users through the Workbench
    • Managing groups through the Workbench
• Access privileges and permissions
  • Controlling access to CLC Server data
    • Setting permissions on a folder
    • Recycle bin
    • Technical notes about permissions and security
  • Controlling access to the server, server tasks and external data
  • Customized attributes on data locations
    • Filling in values
    • What happens when a clc object is copied to another data location?
    • Searching
• Job distribution
  • Introduction to servers setups
  • Model I: Master server with dedicated job nodes
    • Overview: Model I
    • User credentials on a master-job node setup
    • Configuring your setup
    • Installing Server plugins on job nodes
  • Model II: Master server submitting to grid nodes
    • Overview: Model II
    • Requirements for CLC Grid Integration
    • Technical overview
    • Setting up the grid integration
    • Licensing of grid workers
    • Configuring licenses as a consumable resource
    • Configure grid presets
    • Controlling the number of cores utilized
    • Multi-job processing on grid
    • Other grid worker options
    • Testing a Grid Preset
    • Client-side: starting CLC jobs on the grid
    • Grid Integration Tips
    • Understanding memory settings
  • Model III: Single Server setup
  • Cloud settings
  • Workflow queuing options
    • Choosing a workflow queuing option
  • Job running options
    • Multi-job processing
    • Fairness factor
    • Concurrent jobs per node
• Status and management
  • User statistics
  • System statistics
  • Server maintenance
• Queue
• Audit log
• Server plugins
• BLAST
  • Adding directories for BLAST databases on the Server
  • Adding and removing BLAST databases
• External applications
  • External application configuration
    • The External applications tab
    • Editing external applications
    • External command
    • High-throughput sequencing import / Post-processing
    • Stream handling
    • Environment
    • End user interface
    • Management
  • Using consistent reference data in external applications
  • Example: Velvet integration
    • Installing Velvet
    • Running Velvet from the Workbench
    • Understanding the Velvet configuration
  • Example: Bowtie integration
    • Installing Bowtie
    • Understanding the Bowtie configuration
    • Setting the path for temporary data
    • Tools for building index files
  • Import and export of external application configurations
  • External applications in workflows
  • Running external applications
    • Using a CLC Workbench to launch external applications
    • Using CLC Server Command Line Tools to launch external applications
  • Troubleshooting external applications
• Workflows
  • Installing and configuring workflows
  • Executing workflows
  • Updating workflows
• Troubleshooting
  • Check setup
  • Bug reporting
• Command line tools
• Appendix
  • Use of multi-core computers
  • Database configurations
    • Installing JDBC drivers
    • Configuring MySQL
  • SSL and encryption
    • Enabling SSL on the server
    • Logging in using SSL from the Workbench
    • Logging in using SSL from the CLC Server Command Line Tools
  • Non-exclusive Algorithms
  • DRMAA libraries
    • DRMAA for SLURM
    • DRMAA for LSF
    • DRMAA for PBS Pro
    • DRMAA for OGE or SGE
  • Consumable Resources
  • Third party libraries
  • External network connections
    • Proxy settings
  • Monitoring
    • Setting up JMX monitoring
    • Completed process metrics
    • Process execution metrics
    • Job node metrics
• Bibliography

Subsections

• Configuration option information
• Certificates

---

LDAP directory

This option will allow you to use an existing LDAP directory. Information needed during authentication and group memberships is then retrieved from that LDAP directory (figure 4.3).

Figure 4.3: LDAP settings panel.

Configuration option information

Kerberos/GSSAPI Authentication Enable the LDAP integration to use Kerberos/GSSAPI.

Encryption The default is Plain text, with options available for encryption using Start TLS ("Forced Start TLS") or LDAP over SSL ("ldaps://").

DN to use for lookups This allows you to choose which bind should be used for read and search operations. If no bind DN have been entered an unauthenticated bind will be used to do the initial lookup (lookup of users DN based on the username), and all other read and search operations will be performed with users binds. If the Bind DN and Bind password have been filled in, you have the choice between using the 'Bind DN' or the 'User DN' for read and search operations, the 'Bind DN' will in this case always be used for the initial lookup.

User object class and Group object class Intended for use where the standard posixAccount and posixGroup classes are not appropriate.

Certificates

If your LDAP server uses a certificate that is not generally trusted by the server system that the CLC Server software is running on, then it must be added to the truststore of the CLC Server installation (CLC_SERVER_BASE/jre/lib/security/cacerts, where CLC_SERVER_BASE is the server installations root location). This can be done with the keytool shipped with Java installations (also available in the CLC_SERVER_BASE/jre/bin/keytool), with a command like:

CLC_SERVER_BASE/jre/bin/keytool -import -alias \
ldap_certificate -file LDAP_CERTIFICATE.cer -keystore \
CLC_SERVER_BASE/jre/lib/security/cacerts -storepass changeit

Replace LDAP_CERTIFICATE with the path to the certificate your LDAP server uses for Start TLS/LDAPS connections. Replace CLC_SERVER_BASE with the path to the servers installation location.
For a node setup, this must be done for all job nodes as well.

Caution: If you update the server installation or reinstall the server, all imported certificates will be removed, and have to be imported again. You should also be aware that certificates have an expiration date, and will not be trusted after this date. Make sure to add a new certificate in advance of the expiration date.

---