= OpenGENI Administrative Frequently Asked Questions =

This page shows frequently asked question from administrators of OpenGENI racks and is part of the '' ''' [wiki:GENIRacksAdministration GENI Rack Administration]''' '' pages.


== User Administration ==

=== Q. I am the administrator.  What can I access in my rack? ===

 - Local Administrator:    Each OpenGENI rack is initially configured to allow ssh access for one administrator account to all rack devices. If you are this person, than you have access to the control node, compute nodes, and switches in the rack.

 - Additional administrative accounts: Any existing administrative account can be used to create additional administrative accounts. Procedure to create more Administrative accounts detailed in the [wiki:GENIRacksAdministration/OpenGENIRacksAdminAccounts OpenGENI Rack Administration] instructions.

=== Q. I tried logging into the boss node with my administrative ID and got a "permission denied" error. What is wrong? ===

Access to the hosts and devices in the OpenGENI rack requires SSH public keys.  Your SSH public key must be installed in the authorized_keys file to access the ''control'' and ''compute'' nodes. 

If you want access the rack switches, you must first login to the control node and then ssh to the switches as detailed in your rack control plane details table. For example here is the Clemson rack details for the [wiki:GENIRacksHome/OpenGENIRacks/ClemsonRackDetails#NetworkConfiguration switches].   


== Rack Resources ==

=== Q. What types of servers are in the racks ? === 

The OpenGENI rack is implemented on Dell hardware, here is the [wiki:GENIRacksHome/OpenGENIRacks/DellPartsList parts list].

== Network Requirements ==

=== Q. Which ports will need to be open for my OpenGENI rack? ===

The list of required ports for the OpenGENI rack can be found in the [wiki:GENIRacksHome/OpenGENIRacks/OpenGENICheckList OpenGENI Checklist]. If your rack is inside a campus firewall then the following ports must be allowed through your campus network firewall to the entire rack subnet:

 * 22          - ssh
 * 25          - smtp (outbound connections only, from control node)
 * 80          - http (must also allow outbound connections from control node)
 * 443         - https (must also allow outbound connections from control node)
 * 843         - Flash Policy Server
 * 5001        - GRAM
 * 5002        - GRAM
 * 30000-65535 - Ports used by GRAM software.
 * GRE         - Not a port, but an IP protocol, required for constructing tunnels between racks.
 * ICMP        - ping


== Monitoring ==