NOTE: UAI is deprecated in CSM 1.5.2 and will be removed in CSM 1.6.
In legacy mode UAI creation, an option is available to expose UAI ports to the customer user network in addition to the port used for SSH access. These ports are restricted to ports 80, 443, and 8888. This procedure allows a user or administrator to create a new UAI with these additional ports.
cray CLI and network access to the API Gatewaycray command) installed on the above hostcray init command) to reach the HPE Cray EX System API Gatewaycray auth login command)Only ports 80, 443, and 8888 can be exposed. Attempting to open any other ports will result in an error.
Create a new UAI with the --ports option.
vers> cray uas create --publickey PUBLIC_SSH_KEY_FILE --ports PORT_LIST
When these ports are exposed in the UAI, they will be mapped from the port number on the externally visible IP address of the UAI to the port number used to reach the UAI pod.
The mapping of these ports is displayed in the uai_portmap element of the returned output from cray uas create, and cray uas list.
The mapping is shown as a dictionary where the key is the externally served port and the value is the internally routed port.
Applications running on the UAI should listen on the internally routed port. Usually these will be the same value.
vers> cray uas create --publickey ~/.ssh/id_rsa.pub --ports 80,443,8888
Example output:
uai_age = "0m"
uai_connect_string = "ssh vers@34.68.41.239"
uai_host = "ncn-w002"
uai_img = "registry.local/cray/cray-uai-sles15sp2:1.2.4"
uai_ip = "34.68.41.239"
uai_msg = ""
uai_name = "uai-vers-42de2eeb"
uai_status = "Running: Ready"
username = "vers"
[uai_portmap]
80 = 80
443 = 443
8888 = 8888
Log in to the UAI with the connection string.
ssh USERNAME@UAI_IP_ADDRESS -i ~/.ssh/id_rsa