Services
Printer-friendly version

Storage@Yale

Storage@Yale provides the ability to share critical files and directories on shared secure disk space via Windows, Macintosh, and Linux workstations.  

Features

The main functions and features of this service:

  • Replaces the existing CFS and RSS file sharing services with a faster, cheaper, safer service. 
  • Has three tiers of storage to meet various requirements:
    • Enhanced tier - higher performance
    • Standard tier - for all daily needs
    • Archive tier - long term storage
  • Allows access to data from multiple locations on-campus and off-campus. Off-campus users must connect via VPN.
  • Files, directories, and sub-directories are protected in multiple ways - local snapshots in the share, replication of data to secondary data center, and fully redundant hardware.
  • Only clients in the access control list have access to the data, offering ePHI/HIPAA compliance.
  • Research labs can directly access the shares via the HPC compute nodes, while still accessing the shares from personal machines around campus.

Who can use it?

S@Y is available to faculty, staff, and departments with a valid netid located in areas that are accessible to the Yale Ethernet network.  Workstations must be Windows, Linux, or Macintosh.

A valid PTAEO is needed for the share to be created and maintained.

How much does it cost?

Visit the ITS Rates page.

How do I get it?

To request a new share on the S@Y infrastructure select the "Request This Service" button in the top right of the webpage.  In the "More Information" field include the following required items:

Org Number:  
Org Name:   
Share Name:  [up to 49 characters, no special characters]
 

Storage Tier (Enhanced, Standard, Archive):

Initial Amount of storage: 
PI/Owner Net ID:  
Contact email address:  [for messages such as quota warnings]
PTAEO :  
3-lock data (yes/no):

Will this share directly support academic research (yes/no)?:

Permission model (Base, Flex, NFS):

NetIDs of ReadOnly Users:
NetIDs of ReadWrite Users:

If using Flex, what AD group or netid has Full Control:  

If using NFS please list the IP addresses needing access:

The share name will be in the format below. 

            Sharename-Org#-OrgName

For research users planning to connect from the HPC clusters please visit the Yale Center for Research Computing site to request the storage.  

Where can I get help?

For questions or a detailed Service Catalog please contact Storage Engineering at storage.admin@yale.edu.

FAQs and other resources

Why use Storage@Yale?  Here are some key reasons why users should use a centralized file service facility:
  • Access data from anywhere on campus of through the VPN if off campus.
  • S@Y can be accessed from any Windows, Macintosh, or Linux computer on-campus. Clients can access the same file space from locations off-campus when VPN is enabled.
  • S@Y is secure. Access to data stored on a share can be restricted by a person or group, allowing some people to have read-only permission and others full control to edit and delete.
  • Computers can be stolen and hard drives can crash. The S@Y architecture is located in a protected data center, using a more robust service architecture then a typical laptop or desktop computer.
  • Files/information can be deleted in error. S@Y provides 8 days of data recovery, all accessible by the users of the share. 
  • Easy recovery of files.  Users can perform their own file recovery through the use of snapshots or the "Previous Version" tab in Windows. 
What is the difference between the offered tiers?
  • Enhanced tier is for those workloads that require a high sustained network connection and large processing.  
  • Standard tier is for just about everything.  Day-to-day file sharing, image storage/viewing, video and audio processing/playback, etc.  
  • Archive tier is for data that will not need to be accessed on a regular basis.  It utilizes much slower storage systems, allowing the price to be low and the capacity to be large. 

What is the difference between Base and Flex permissions?

  • If you have sensitive/secure data, you must use Base permissions.
  • Base shares are created with a ReadOnly (RO) and ReadWrite (RW) Active Directory.  Users are placed in those groups and those permissions are passed throughout the share and cannot be changed within the share.
  • Flex shares have the same two AD groups, RO and RW, but also Full group.  The share owner is placed in the Full group and can modify permissions on files/directories inside the share.  This good for creating home directories or private folders for particular people.
  • Before choosing Flex make sure you are comfortable with Windows ACLs and have a Windows workstation to manage the share.

What is the smallest or largest share size?

  • Shares can be as small as 5GB or as large as 35TB.  If you need a share larger than 35TB please contact storage.admin@yale.edu to discuss your requirements. 

How is S@Y billed?

  • You are charged monthly based on the amount of capacity in use at the time of billing.  For example if you have a 2TB quota but are only using 750GB, you will only be charged for the 750GB.  

Never give out your ID or Password

  • Don'Â?t be tempted to give out your ID and password to others to access this service. S@Y uses your netid for access to the shares.  If you give this information to someone, you are also giving them the access to highly confidential information, such as the view of your W-2 form, and other benefits information.
Account Retention
  • It is deemed that if an individual (primary account owner) subscribes to a S@Y share, and more than one individual has access to it, if no explicit action was taken by the primary account holder upon their departure, ITS will contact the business office and determine if the ownership should be transferred. 
Persons Leaving the University
  • The process described above will also be implemented in the case of a person whose role at the University is terminated in the HR records. In this case, if the primary account owner is the only person on the access list, the account will be locked 14 days after the notification and then deleted after the mandatory period of 90 days.

 

Storage@Yale

Service manager: 
Steve DeGroat
Icon class: 
icon-fileshare
Short description: 

Storage@Yale provides the ability to share critical files and directories on shared secure disk space via Windows, Macintosh, and Linux workstations. 

Storage@Yale provides the ability to share critical files and directories on shared secure disk space via Windows, Macintosh, and Linux workstations.  

Features: 

The main functions and features of this service:

  • Replaces the existing CFS and RSS file sharing services with a faster, cheaper, safer service. 
  • Has three tiers of storage to meet various requirements:
    • Enhanced tier - higher performance
    • Standard tier - for all daily needs
    • Archive tier - long term storage
  • Allows access to data from multiple locations on-campus and off-campus. Off-campus users must connect via VPN.
  • Files, directories, and sub-directories are protected in multiple ways - local snapshots in the share, replication of data to secondary data center, and fully redundant hardware.
  • Only clients in the access control list have access to the data, offering ePHI/HIPAA compliance.
  • Research labs can directly access the shares via the HPC compute nodes, while still accessing the shares from personal machines around campus.
Who can use it?: 

S@Y is available to faculty, staff, and departments with a valid netid located in areas that are accessible to the Yale Ethernet network.  Workstations must be Windows, Linux, or Macintosh.

A valid PTAEO is needed for the share to be created and maintained.

How much does it cost?: 

Visit the ITS Rates page.

How do I get it?: 

To request a new share on the S@Y infrastructure select the "Request This Service" button in the top right of the webpage.  In the "More Information" field include the following required items:

Org Number:  
Org Name:   
Share Name:  [up to 49 characters, no special characters]
 

Storage Tier (Enhanced, Standard, Archive):

Initial Amount of storage: 
PI/Owner Net ID:  
Contact email address:  [for messages such as quota warnings]
PTAEO :  
3-lock data (yes/no):

Will this share directly support academic research (yes/no)?:

Permission model (Base, Flex, NFS):

NetIDs of ReadOnly Users:
NetIDs of ReadWrite Users:

If using Flex, what AD group or netid has Full Control:  

If using NFS please list the IP addresses needing access:

The share name will be in the format below. 

            Sharename-Org#-OrgName

For research users planning to connect from the HPC clusters please visit the Yale Center for Research Computing site to request the storage.  
Where can I get help?: 

For questions or a detailed Service Catalog please contact Storage Engineering at storage.admin@yale.edu.

FAQs and other resources: 
Why use Storage@Yale?  Here are some key reasons why users should use a centralized file service facility:
  • Access data from anywhere on campus of through the VPN if off campus.
  • S@Y can be accessed from any Windows, Macintosh, or Linux computer on-campus. Clients can access the same file space from locations off-campus when VPN is enabled.
  • S@Y is secure. Access to data stored on a share can be restricted by a person or group, allowing some people to have read-only permission and others full control to edit and delete.
  • Computers can be stolen and hard drives can crash. The S@Y architecture is located in a protected data center, using a more robust service architecture then a typical laptop or desktop computer.
  • Files/information can be deleted in error. S@Y provides 8 days of data recovery, all accessible by the users of the share. 
  • Easy recovery of files.  Users can perform their own file recovery through the use of snapshots or the "Previous Version" tab in Windows. 
What is the difference between the offered tiers?
  • Enhanced tier is for those workloads that require a high sustained network connection and large processing.  
  • Standard tier is for just about everything.  Day-to-day file sharing, image storage/viewing, video and audio processing/playback, etc.  
  • Archive tier is for data that will not need to be accessed on a regular basis.  It utilizes much slower storage systems, allowing the price to be low and the capacity to be large. 

What is the difference between Base and Flex permissions?

  • If you have sensitive/secure data, you must use Base permissions.
  • Base shares are created with a ReadOnly (RO) and ReadWrite (RW) Active Directory.  Users are placed in those groups and those permissions are passed throughout the share and cannot be changed within the share.
  • Flex shares have the same two AD groups, RO and RW, but also Full group.  The share owner is placed in the Full group and can modify permissions on files/directories inside the share.  This good for creating home directories or private folders for particular people.
  • Before choosing Flex make sure you are comfortable with Windows ACLs and have a Windows workstation to manage the share.

What is the smallest or largest share size?

  • Shares can be as small as 5GB or as large as 35TB.  If you need a share larger than 35TB please contact storage.admin@yale.edu to discuss your requirements. 

How is S@Y billed?

  • You are charged monthly based on the amount of capacity in use at the time of billing.  For example if you have a 2TB quota but are only using 750GB, you will only be charged for the 750GB.  

Never give out your ID or Password

  • Don'Â?t be tempted to give out your ID and password to others to access this service. S@Y uses your netid for access to the shares.  If you give this information to someone, you are also giving them the access to highly confidential information, such as the view of your W-2 form, and other benefits information.
Account Retention
  • It is deemed that if an individual (primary account owner) subscribes to a S@Y share, and more than one individual has access to it, if no explicit action was taken by the primary account holder upon their departure, ITS will contact the business office and determine if the ownership should be transferred. 
Persons Leaving the University
  • The process described above will also be implemented in the case of a person whose role at the University is terminated in the HR records. In this case, if the primary account owner is the only person on the access list, the account will be locked 14 days after the notification and then deleted after the mandatory period of 90 days.

 

3-lock data compliant: 
yes