JASMIN Help Site logo JASMIN Help Site logo
  • Docs 
  • Guides 
  • Training 
  • Discussions   
    •   Search this site  

Can't find what you're looking for?

Try our Google custom search, across all JASMIN sites

Docs
    • get started with jasmin
    • generate ssh key pair
    • get jasmin portal account
    • get login account
    • beginners training workshop
    • how to contact us about jasmin issues
    • jasmin status
    • jasmin training accounts
    • tips for new users
    • how to login
    • multiple account types
    • present ssh key
    • reconfirm email address
    • reset jasmin account password
    • ssh auth
    • storage
    • understanding new jasmin storage
    • update a jasmin account
    • interactive computing overview
    • check network details
    • login servers
    • login problems
    • graphical linux desktop access using nx
    • nx update nov24
    • sci servers
    • tenancy sci analysis vms
    • transfer servers
    • jasmin notebooks service
    • creating a virtual environment in the notebooks service
    • project specific servers
    • dask gateway
    • access from vscode
    • lotus overview
    • slurm scheduler overview
    • slurm queues
    • lotus cluster specification
    • how to monitor slurm jobs
    • how to submit a job
    • how to submit an mpi parallel job
    • example job 2 calc md5s
    • orchid gpu cluster
    • slurm status
    • slurm quick reference
    • software overview
    • quickstart software envs
    • python virtual environments
    • additional software
    • community software esmvaltool
    • community software checksit
    • conda environments and python virtual environments
    • Creating and using miniforge environments
    • idl
    • jasmin sci software environment
    • jasmin software faqs
    • jaspy envs
    • matplotlib
    • nag library
    • name dispersion model
    • geocat replaces ncl
    • postgres databases on request
    • running python on jasmin
    • running r on jasmin
    • rocky9 migration 2024
    • software migration 2020
    • share software envs
    • data transfer overview
    • data transfer tools
    • globus transfers with jasmin
    • bbcp
    • ftp and lftp
    • globus command line interface
    • globus connect personal
    • gridftp cert based auth
    • gridftp ssh auth
    • rclone
    • rsync scp sftp
    • hpxfer access role
    • scheduling automating transfers
    • transfers from archer2
    • apply for access to a gws
    • elastic tape command line interface hints
    • faqs storage
    • gws etiquette
    • gws scanner ui
    • gws scanner
    • gws alert system
    • install xfc client
    • xfc
    • introduction to group workspaces
    • jdma
    • managing a gws
    • secondary copy using elastic tape
    • share gws data on jasmin
    • share gws data via http
    • using the jasmin object store
    • configuring cors for object storage
    • ceda archive
    • external access to mass faq
    • how to apply for mass access
    • moose the mass client user guide
    • setting up your jasmin account for access to mass
    • introduction to the jasmin cloud
    • jasmin cloud portal
    • cluster as a service
    • cluster as a service kubernetes
    • cluster as a service identity manager
    • cluster as a service slurm
    • cluster as a service pangeo
    • cluster as a service shared storage
    • adding and removing ssh keys from an external cloud vm
    • provisioning tenancy sci vm managed cloud
    • sysadmin guidance external cloud
    • best practice
    • rose cylc on jasmin
    • using cron
    • mobaxterm
    • requesting resources
    • processing requests for resources
    • acknowledging jasmin
    • approving requests for access
    • working with many linux groups
    • jasmin conditions of use
    • get started with jasmin
    • generate ssh key pair
    • get jasmin portal account
    • get login account
    • beginners training workshop
    • how to contact us about jasmin issues
    • jasmin status
    • jasmin training accounts
    • tips for new users
    • how to login
    • multiple account types
    • present ssh key
    • reconfirm email address
    • reset jasmin account password
    • ssh auth
    • storage
    • understanding new jasmin storage
    • update a jasmin account
    • interactive computing overview
    • check network details
    • login servers
    • login problems
    • graphical linux desktop access using nx
    • nx update nov24
    • sci servers
    • tenancy sci analysis vms
    • transfer servers
    • jasmin notebooks service
    • creating a virtual environment in the notebooks service
    • project specific servers
    • dask gateway
    • access from vscode
    • lotus overview
    • slurm scheduler overview
    • slurm queues
    • lotus cluster specification
    • how to monitor slurm jobs
    • how to submit a job
    • how to submit an mpi parallel job
    • example job 2 calc md5s
    • orchid gpu cluster
    • slurm status
    • slurm quick reference
    • software overview
    • quickstart software envs
    • python virtual environments
    • additional software
    • community software esmvaltool
    • community software checksit
    • conda environments and python virtual environments
    • Creating and using miniforge environments
    • idl
    • jasmin sci software environment
    • jasmin software faqs
    • jaspy envs
    • matplotlib
    • nag library
    • name dispersion model
    • geocat replaces ncl
    • postgres databases on request
    • running python on jasmin
    • running r on jasmin
    • rocky9 migration 2024
    • software migration 2020
    • share software envs
    • data transfer overview
    • data transfer tools
    • globus transfers with jasmin
    • bbcp
    • ftp and lftp
    • globus command line interface
    • globus connect personal
    • gridftp cert based auth
    • gridftp ssh auth
    • rclone
    • rsync scp sftp
    • hpxfer access role
    • scheduling automating transfers
    • transfers from archer2
    • apply for access to a gws
    • elastic tape command line interface hints
    • faqs storage
    • gws etiquette
    • gws scanner ui
    • gws scanner
    • gws alert system
    • install xfc client
    • xfc
    • introduction to group workspaces
    • jdma
    • managing a gws
    • secondary copy using elastic tape
    • share gws data on jasmin
    • share gws data via http
    • using the jasmin object store
    • configuring cors for object storage
    • ceda archive
    • external access to mass faq
    • how to apply for mass access
    • moose the mass client user guide
    • setting up your jasmin account for access to mass
    • introduction to the jasmin cloud
    • jasmin cloud portal
    • cluster as a service
    • cluster as a service kubernetes
    • cluster as a service identity manager
    • cluster as a service slurm
    • cluster as a service pangeo
    • cluster as a service shared storage
    • adding and removing ssh keys from an external cloud vm
    • provisioning tenancy sci vm managed cloud
    • sysadmin guidance external cloud
    • best practice
    • rose cylc on jasmin
    • using cron
    • mobaxterm
    • requesting resources
    • processing requests for resources
    • acknowledging jasmin
    • approving requests for access
    • working with many linux groups
    • jasmin conditions of use
  1. Home
  2. Docs
  3. For Cloud Tenants
  4. Provisioning a Sci VM in a Managed Cloud Tenancy

Provisioning a Sci VM in a Managed Cloud Tenancy

 

Share via
JASMIN Help Site
Link copied to clipboard

Provisioning a Sci VM in a Managed Cloud Tenancy

On this page
  • Apply for access to the Sci tenancy
  • Access the tenancy
  • Provision a virtual machine
  • Connect to the VM

This article is for admins and managers of managed-cloud tenancies and shows how to provision a sci VM within one. It involves the following:

  • Becoming a member of a managed cloud tenancy
  • Provisioning a VM

A “sci vm” is essentially the same as the general-access scientific analysis servers, but created within a specific tenancy aimed at a certain group of users. The manager/deputy then has the responsibility to stop/start/restart or redeploy the VM, and to control who can access it.

The managed cloud tenancy has four access roles:

  • MANAGER role: can approve DEPUTY, ADMIN, and USER role access requests
  • DEPUTY manager role: can approve ADMIN and USER role access requests
  • ADMIN role: can access the cloud portal and can restart or provision the Sci VM
  • USER role: can log in into the sci VM from a JASMIN login node

Apply for access to the Sci tenancy  

A managed cloud tenancy is accessible via the JASMIN cloud portal  . Access is controlled by a service corresponding to the name of the tenancy: these services are listed under Sci Analysis VMs  category of “My Services”.

Access the tenancy  

With an ADMIN role, you can log in to the JASMIN cloud portal  using the same credentials for signing into the JASMIN accounts portal.

You will be presented with the “Dashboard” page -below- showing the tenancies you have access to. On the dashboard, select the organization representing the tenancy to find out the VM provisioned within a given tenancy, e.g ncas-sci-M

dashboard showing tenancies available to this user
dashboard showing tenancies available to this user

Note: The “ncas-sci-M” tenancy shown below has 0 machines as this is a new tenancy. We will proceed next to the provisioning of a virtual machine.

Provision a virtual machine  

Step 1: Select “Machines” from the top menu, then click “New machine” to create a new VM. Choose a name for the new VM. Then select a size from the drop-down menu which shows the catalog of VM template size. For example, select “j4.large” which allocates 8 CPUs and 32GB of RAM resources for the new VM

IMPORTANT: A Sci machine should be deployed with a minimum of 2 GB RAM

IMPORTANT : A Sci machine name should not exceed 8 characters long. The preferred naming format is sci e.g. sci1

dialogue for creating a new VM
dialogue for creating a new VM

The VM with the chosen name ncas-sci1 is created and it is running as shown below.

vm now shown in dashboard
vm now shown in dashboard

Step 2: Attach an external IP to the new VM by clicking “Actions” and selecting “Attach external IP”. Note that you can restart the VM from the “Actions” menu.

attach external IP (1)
attach external IP (1)

Step 3: From the box that pops up -see image below- click on the “+” (green button) to add an IP. Then click on the down arrow next to “Select an external IP” you will see the IP address to assign to the machine, select the IP and click attach IP

attach external IP (2)
attach external IP (2)

Step 4: Click “Attach IP”

Important note: As ADMIN and MANAGER of a Sci tenancy, you should note the “External IP” as this is the IP address you will need to provide to your users in order for them to connect to the machine via SSH using a JASMIN login server.

summary dashboard showing IP allocated.
summary dashboard showing IP allocated.

Step 5: An overview of the resources used by the VM is shown below

resources dashboard
resources dashboard

Note 1: Only ADMIN and MANAGER roles have access to the JASMIN cloud portal and can provision VMs. ADMIN and MANAGER roles of a Sci tenancy will not be granted root access.

Note 2: ADMIN and MANAGER roles will not allow you to SSH into the Sci VM. It is necessary to have a USER role to do so.

Connect to the VM  

From a JASMIN login server, login to the machine using the External IP address. In the same way, as you login to a JASMIN scientific server via login1. Your initial connection to JASMIN from your local machine needs to have your SSH key loaded in your SSH authentication agent, and you must have SSH Agent Forwarding enabled “-A”, see also how MISSING LINK.

terminal session showing connection to new VM
terminal session showing connection to new VM

Note that although the new provisioned Sci VM has a local hostname (in this example, sci1-202012041148.ncas-sci-m.jasmin.ac.uk ), this is NOT registered in any Domain Name Service (DNS) by default, and we are not able to arrange this for you, so you need to connect to the machine using its External IP address, not the name.

Note : Users should report issues to the ADMIN and/or MANAGER of the tenancy based SCI VM initially, rather than the JASMIN team. If the issue cannot be resolved by the ADMIN and/or MANAGER, they should contact the JASMIN helpdesk.

Last updated on 2024-02-13 as part of:  content updates (8ddd0d86c)
On this page:
  • Apply for access to the Sci tenancy
  • Access the tenancy
  • Provision a virtual machine
  • Connect to the VM
Follow us

Social media & development

     

Useful links

  • CEDA Archive 
  • CEDA Catalogue 
  • JASMIN 
  • JASMIN Accounts Portal 
  • JASMIN Projects Portal 
  • JASMIN Cloud Portal 
  • JASMIN Notebooks Service 
  • JASMIN Community Discussions 

Contact us

  • Helpdesk
UKRI/STFC logo
UKRI/NERC logo
NCAS logo
NCEO logo
Accessibility | Terms and Conditions | Privacy and Cookies
Copyright © 2024 Science and Technology Facilities Council.
Hinode theme for Hugo licensed under Creative Commons (CC BY-NC-SA 4.0).
JASMIN Help Site
Code copied to clipboard