*: Install the AWS CLI tool needed by that script: {term} $ yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm -$ yum install pip +$ yum install python-pip $ pip install --upgrade pip $ pip install awscli {endterm} +*: Rather than store your AWS tokens in the AMI, if you didn't start the instance with a role that can run *condor_annex*, add one now (via the EC2 web console). *: Configure HTCondor: {file: /etc/condor/config.d/local} # Make this a single-node pool. @@ -53,13 +54,11 @@ ALLOW_WRITE = $(ALLOW_WRITE) $(TCP_FORWARDING_HOST) ALLOW_NEGOTIATOR = $(ALLOW_NEGOTIATOR) $(TCP_FORWARDING_HOST) {endfile} -*: Fix the condor-annex-ec2 service file by copying the =After=...= line from the =[Unit]= section of =/usr/lib/systemd/system/condor.service= to =[Unit]= section of =/usr/lib/systemd/system/condor-annex-ec2.service=. *: Enable the condor-annex-ec2 service. {term}systemctl enable condor-annex-ec2{endterm} -*: {term}rm /etc/condor/50ec2.config{endterm} -*: Edit =/usr/libexec/condor/condor-annex-ec2= so that it _only_ sets =EC2PublicIP= and =EC2InstanceID=: remove from after the "Annex-specific code begins here" comment (line 103) all the way down to =echo "done."= (line 252); leave that line but remove next line and change the return to return 0. -*: Either start the condor-annex-ec2 service now, and verify that =/etc/condor/config.d/49ec2.config= exists and is correct, or reboot at the end of the -instructions (and then verify the file). The configuration above does not work, otherwise. +*: {term}rm /etc/condor/config.d/50ec2.config{endterm} +*: Edit =/usr/libexec/condor/condor-annex-ec2= so that it _only_ sets =EC2PublicIP= and =EC2InstanceID=: remove all the lines from "Determine the annex ID" (60) to where the redirect to =/etc/condor/config.d/49ec2-instance.config= appears (342). (Do not delete the redirect line.) Replace the next line's '$?' with '0'. +*: Either start the condor-annex-ec2 service now, and verify that =/etc/condor/config.d/49ec2.config= exists and is correct, or reboot at the end of the instructions (and then verify the file). The configuration above does not work, otherwise. *: Run {term}condor_store_cred -c add -f `condor_config_val SEC_PASSWORD_FILE`{endterm} as root to create the pool password file. *: Make sure the password file (run =condor_config_val SEC_PASSWORD_FILE= to find it) is owned by root and has 600 permissions afterwards. *: Then copy the pool password file to =~ec2-user/.condor= and chown it to that user.