OSiRIS is a storage infrastructure for research universities for the state of Michigan. Users of OSiRIS belong to virtual organizations which are called ‘COU’ within OSiRIS.
There are 3 supported data storage protocols available:
Please be aware that S3 and CephFS do not share the same data backend. Data you store in CephFS is not visible in S3 nor the reverse. There is no requirement to use only one or the other protocol exclusively - you may use both protocols to store data on OSiRIS.
To get started using OSiRIS the first requirement is to establish an identity. This identity is based on authentication with your existing institutional credentials. Your OSiRIS identity can be linked to one or more OSiRIS virtual organizations.
You can enroll at this URL: https://comanage.osris.org/enroll
Your institutional identity will be used to login. The beginning screen prompts users to choose an organization, for example, the University of Michigan.
If this is your first time logging into OSiRIS from your organization you may be asked to agree to release information to us. The information released includes email, affiliation, and full name. This is required to login and use OSiRIS.
Generally you’ll want to just send it automatically in the future (though the choice is up to you if you prefer to be asked every time).
You’ll be asked to enter some basic information about yourself. Make sure to enter a valid email, this will be used to verify your enrollment. You should choose your virtual organization, or “COU” on this enrollment information page.
After submitting the form you’ll see a confirmation that says ‘Petition Created’. It is normal at this point to see a notice that your identifier is not registered.
Check your email at this point and look for a message from Comanage with subject “Invitation to Join OSiRIS” containing a link to verify your enrollment.
After you have verified your email an OSiRIS administrator or your virtual organization administrator will approve your enrollment. Another email will be sent.IMPORTANT:
At this point you need to login to comanage again to refresh your capabilities. You can use the link from the comanage “not registered” message or click here to open the comanage login page in a new window.
Once logged in there will be a screen to select collaboration. Please click on ‘OSiRIS’.
To access OSiRIS CephFS with ssh/scp/sftp you need to upload an SSH key.
To use OSiRIS CephFS with Globus please see the globus instructions.
To access OSiRIS S3 please see the S3 instructions.
To access OSiRIS Rados please see the Rados instructions.
Depending on how you share data you may not need to enroll every person you collaborate with.
For ssh/scp/sftp access: Every user needing to login and read data must enroll and upload an ssh key.
For Globus access: A single user can configure Globus shares accessible by Globus users or groups. The other users do not need to enroll in OSiRIS, they only need to be able to login to Globus with CIlogon and be allowed to access your share. Please have a look at the Globus.org documentation for information.
For S3 access: Every user needing to login via S3 needs to enroll into OSiRIS. You will need to configure bucket ACLs to share your data buckets with other users. This is described in the S3 instructions.
For RADOS access: Every user needing to access RADOS services will need to enroll in OSiRIS. However, in many cases it is typical to build another service on top of RADOS rather than providing direct user access (much like S3 and CephFS are themselves services on top of RADOS). Please let us know if you have some ideas for leveraging RADOS directly and we’ll be happy to work with you.
If you do not belong to an institution/group which is part of the InCommon Federation you can still authenticate to OSiRIS using one of the ‘public’ identity providers below. After establishing an account at one of these providers use that provider to login to OSiRIS Comanage.
If unsure what your COU name is please look under the ‘person menu’ on the upper-right of COmanage and click ‘My OSiRIS Identity’. Under ‘Role Attributes’ you can see the COU you are in. You may be in several.