• Manuals

Browse the manual

• Introduction
  • System requirements
  • Licensing
  • CLC Genomics Server
• Installation
  • Quick installation guide
  • Installing and running the Server
    • Installing the Server software
  • Installation modes - console and silent
  • Upgrading an existing installation
    • Upgrading between major versions
  • Allowing access through your firewall
  • Downloading a license
    • Download a static license on a non-networked machine
  • Starting and stopping the server
    • Microsoft Windows
    • macOS
    • Linux
• Basic configuration
  • Logging into the administrative interface
  • Adding locations for saving data
    • File system locations
    • Reference data management
    • Enabling and disabling internal compression of CLC data
  • Changing the listening port
  • Changing the tmp directory
    • Job node setup
  • Setting the amount of memory available for the JVM
  • Limiting the number of cpus available for use
  • HTTP settings
  • Deployment of server information to CLC Workbenches
• Managing users and groups
  • Logging in the first time and changing the root password
  • User authentication using the web interface
    • Authentication options
    • Managing users and groups using built-in authentication
  • User authentication via the Workbench for built-in authentication
• Access privileges and permissions
  • Controlling group access to CLC Server data
    • Setting permissions on folders
    • Technical notes about permissions and security
  • Controlling access to the server, server tasks and external data
  • Customized attributes on data locations
    • Filling in values
    • What happens when a clc object is copied to another data location?
    • Searching custom attributes
• Job distribution
  • Introduction to servers setups
  • Model I: Master server with dedicated job nodes
    • Overview: Model I
    • User credentials on a master-job node setup
    • Configuring your setup
    • Installing Server plugins on job nodes
  • Model II: Master server submitting to grid nodes
    • Overview: Model II
    • Requirements for CLC Grid Integration
    • Technical overview
    • Setting up the grid integration
    • Licensing of grid workers
    • Configuring licenses as a consumable resource
    • Configure grid presets
    • Controlling the number of cores utilized
    • Multi-job processing on grid
    • Other grid worker options
    • Testing a Grid Preset
    • Client-side: starting CLC jobs on the grid
    • Grid Integration Tips
    • Understanding memory settings
  • Model III: Single Server setup
  • Workflow queuing options
    • Choosing a workflow queuing option
  • Job running options
    • Multi-job processing
    • Fairness factor
    • Concurrent jobs per node
    • Intermediate workflow result handling
• Access to files outside CLC Server Locations
  • Import/export directories
  • Direct data transfer from client systems
  • AWS Connections
  • Illumina BaseSpace
• Workflows
  • Installing and configuring workflows
  • Executing workflows
  • Updating workflows
• BLAST databases
  • Adding directories for BLAST databases on the Server
  • Adding and removing BLAST databases
• Status and management
  • Downloading a license via the web interface
    • Download a static license on a non-networked machine
  • Server maintenance
  • User statistics
  • System statistics
• Queue
• Audit log
• Server plugins
• External applications
  • External application configurations
    • Configuring the containerized execution environment
  • Configuring external applications
    • Editing external applications
    • External command
    • High-throughput sequencing import / Post-processing
    • Stream handling
    • Failure strategy
    • Environment
    • End user interface
    • Management
  • Using consistent reference data in external applications
  • Import and export of external application configurations
  • Updating external application configurations
  • Example: Velvet (standard external application)
    • Installing Velvet
    • Running Velvet from the Workbench
    • Understanding the Velvet configuration
  • Example: Bowtie (standard external application)
    • Installing Bowtie
    • Understanding the Bowtie Map configuration
    • Setting the path for temporary data
    • Tools for building index files
  • Example: MAFFT (containerized external application)
    • Create the Docker image
    • Test the Docker image locally
    • Upload the Docker image to a repository
    • Configure a containerized MAFFT external application
  • External applications in workflows
  • Running external applications
    • Using a CLC Workbench to launch external applications
    • Using CLC Server Command Line Tools to launch external applications
  • Troubleshooting external applications
• CLC Genomics Cloud Access
• Browsing and searching for data
  • Browsing CLC Server data locations
  • Searching CLC Server data locations
    • Rebuilding the index
  • Browse a CLC Server import/export directory
  • Browse AWS S3 locations
• Recycle bins
• Troubleshooting
  • Check setup
  • Bug reporting
• Command line tools
• Appendix
  • Use of multi-core computers
  • SSL and encryption
    • Enabling SSL on the server
    • Logging in using SSL from the Workbench
    • Logging in using SSL from the CLC Server Command Line Tools
  • Non-exclusive Algorithms
  • DRMAA libraries
    • DRMAA for SLURM
    • DRMAA for LSF
    • DRMAA for PBS Pro
    • DRMAA for OGE or SGE
  • Consumable Resources
  • Third party libraries
  • External network connections
    • Proxy settings
  • Read Mapper Reference Caching
  • Monitoring
    • Setting up JMX monitoring
    • Completed process metrics
    • Process execution metrics
    • Job node metrics
• Bibliography

Controlling access to the server, server tasks and external data

Access to the various aspects of the CLC Server can be controlled using settings under:

        Configuration () | Global Permissions ()

See figure 5.4.

Figure 5.4: Access can be controlled for many aspects of the CLC Server, including restricting access to certain tools and granting administrative access for certain types of actions.

Group-level access can be configured for the following:

• Login restrictions Restrict who can log into the CLC Server.
• Web admin access Give admin-level access to defined areas in the web administrative interface. This is described further below.
• Algorithms Restrict access to specific tools to specified groups (figure 5.6). Enter a term in the search field to list tools with names containing that term.
• Workflows Restrict access to workflows installed on the CLC Server. To grant administrative access to such workflows, set the permissions under the "Web admin access" section.

• External applications Restrict access to External Applications that have been configured and made available on the CLC Server. To grant administrative access to configure and install external applications, set the permissions under the "Web admin access" section.

• Import/export directories Restrict access to file system areas not part of the CLC data setup that the CLC Server is able to access. These are described in Import/export directories.
• AWS Connections Restrict access to AWS Connections configured under the External Data tab.
• Grid presets For grid node setups only: Restrict access to grid presets, which are used for sending jobs to a particular queue with particular parameters. Note that grid presets are identified by name. If you change the name of a preset under the Job Distribution settings section, then this, in effect, creates a new preset. In this situation, if you had access permissions previously set, you would need to reconfigure those settings for this, now new, preset.
• GCE presets This section is only relevant when the Cloud Server Plugin has been installed and configured for access to a CLC Genomics Cloud Engine. When that has been done, settings here can be used to restrict access for each preset to specific groups of users.

To edit permissions, click on the relevant heading and then click on the relevant Edit Permissions button in the expanded list (figure 5.6). In the edit dialog, if the option Only authorized users from selected groups, is selected, a list of groups is shown, allowing access to be granted or removed, as relevant.

Figure 5.5: Setting group-level permissions for tools is done under the Algorithms section. By default, all authorized users have access to all tools. Here, access has been limited to members of the admin and bioinformaticians groups.

Web admin access

By default, only members of the admin group can access administrative areas of the web interface. Settings under the "Web admin access" heading allow access to be extended to members of other groups to the following areas:

• Audit log See and work with the audit log, available from under the Management tab . See Audit log.
• External applications Configure and administer external applications. See External applications.
• Queue See a list of the processes running on, or queued to be run on, the CLC Server. See Queue.
• Workflows Install and administer workflows on the CLC Server. See Workflows.

Figure 5.6: Access can be granted to members of non-admin groups to the Audit log, External applications, Queue, and Workflows tabs in the web administriative interface.

---