6.3.1 Configuring Moab Workload Manager

Moab Workload Manager must be configured to use MWS as a resource manager. Do the following:

  1. The following lines must be in the Moab Workload Manager configuration file or one of its included files:
    2. RMCFG[mws]                      TYPE=MWS
RMCFG[mws]                      FLAGS=UserSpaceIsSeparate
RMCFG[mws]                      BASEURL=https://localhost:8080/mws

    The BASEURL must match the configured URL of MWS.

  2. Edit the MWS credential information in the Moab HPC Suite private configuration file (/opt/moab/etc/moab-private.cfg, by default). Here are the default values:
    3. CLIENTCFG[RM:mws] USERNAME=moab-admin PASSWORD=changeme!

    USERNAME and PASSWORD must match the values of auth.defaultUser.username and auth.defaultUser.password, respectively, found in the MWS configuration file. The MWS RM contacts MWS directly using the base URL, username, and password configured.

    Optionally, the USERNAME and PASSWORD configuration values can be specified directly in the Moab HPC Suite configuration file, though this is not recommended. Likewise, the BASEURL configuration value can be specified in the Moab HPC Suite private configuration file.

  3. To enable such actions as submitting jobs as different users, the ENABLEPROXY=TRUE option must be present in the ADMINCFG configuration line, and the OSCREDLOOKUP option must be set to NEVER, as follows:
    4. ADMINCFG[1]           USERS=root      ENABLEPROXY=TRUE
OSCREDLOOKUP          NEVER
  4. You may also want to configure SSL by using the following options (in either the RMCFG or CLIENTCFG section):
    • SSLCACERT: Lets you specify the absolute path to your SSL CA certificate (this also enables the use of self-signed certificates, if desired). We recommend that you set this option in the Moab HPC Suite private configuration file, for example:
      • CLIENTCFG[RM:mws]    SSLCACERT=/path/to/cert.pem
    • SSLNOHOSTCHECK: Lets you disable the SSL check to make sure that the actual server name matches the certificate's server name, for example: 
      • #In moab-private.cfg
CLIENTCFG[RM:mws]    SSLNOHOSTCHECK=TRUE

#Or in moab.cfg
RMCFG[mws]           SSLNOHOSTCHECK=TRUE

      Warning: This setting could compromise the security of the system and should not be used in production environments.

    • SSLNOPEERCHECK: Lets you disable the SSL check to make sure that the certificate is valid: 
      • #In moab-private.cfg
CLIENTCFG[RM:mws]    SSLNOPEERCHECK=TRUE

#Or in moab.cfg
RMCFG[mws]           SSLNOPEERCHECK=TRUE

      Warning: This setting could compromise the security of the system and should not be used in production environments.