Create users in SHM#

This task is the responsibility of Trusted Research Environments Service Area (TRESA).

Once a user creation request has been received by the Trusted Research Environments Service Area (TRESA), they should follow the Data Safe Haven user management guide to create users in the SHM.

Users should be added to the SRE of their project, which should then enable them to setup an account and login via the url:

https://<SRE ID>.<SHM ID>.turingsafehaven.ac.uk/

The Project Team will then Invite users to log in.

The auto-generated username(s) must be added to the original DSG/project team spreadsheet. The usernames are included in the output from the create users command.

Current Turing SHM#

Last updated 28/11/2024:

The <SHM ID> of the SHM currently set up is prod5.

Configuration details are accessible to the Trusted Research Environments Service Area (TRESA) in this issue on the private trusted-research GitHub repo.

Sandbox SRE#

Sometimes it may be helpful to set up a Sandbox SRE in advance of users getting access to the project SRE, especially where the users need a bit of practice with a Linux remote desktop.

To set up a Sandbox SRE:

  1. Follow the Build TRE in the same way as you would for a project SRE

    • It might be simplest to set the "tier" to "0", but it some cases you may want a higher tier Sandbox to give the users the experience with more stringent security controls

  2. Clone the https://github.com/alan-turing-institute/DSGaiuk2022 repo to your local computer

  3. Use Azure Storage Explorer to perform ingress of the DSGaiuk2022 repo

  4. If you wanted to check that the ingress worked, add your own user account to the Sandbox SRE and login to inspect the contents of the /data folder (consult Assign existing users to an SRE).

  5. Follow the guidance above on inviting users to log in

Once users are logged in, they can explore the Sandbox and familiarise themselves with working in the SRE (and more generally in a Linux-based remote desktop). There are several thing users could do to get started, for example:

  1. Practice logging into the available GitLab and committing code to a repository

  2. Copy the DSGaiuk2022 repo from data to their home folder and attempt to run the contained notebook using Python (see https://github.com/alan-turing-institute/DSGaiuk2022/tree/main#running-the-notebook-on-your-own-computer)

    • Pose the question to the users: Can you find out what the average monthly concentration of CO2 levels were at the Mauna Loa observatory, in parts per million (PPM), in March 1958?

Removing Sandbox users#

Unlike the project SREs, “Sandbox” will not be torn down at the end of a project, so any users added should be removed after they no longer require access. Follow steps in the user management guide which explains how to remove users from an SRE. For more information about the DSH CLI (mentioned in the user management guide), run dsh users --help.