Changes between Version 3 and Version 4 of MyProxyCredentialTranslationService


Ignore:
Timestamp:
21/05/12 11:19:46 (6 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • MyProxyCredentialTranslationService

    v3 v4  
    115115  grid-ca-sign -in /usr/local/globus-5.2.0/etc/hostcert_request.pem -out  /usr/local/globus-5.2.0/etc/hostsigned.pem 
    116116}}} 
    117 ### AS ROOT: install the signed certificate ### 
     117 1. As root: install the signed certificate 
     118{{{ 
    118119  cp /usr/local/globus-5.2.0/etc/hostsigned.pem /etc/grid-security/hostcert.pem 
    119120  chown root:root /etc/grid-security/hostcert.pem 
     
    121122 
    122123  myproxy-server-setup 
    123   #If everything is all right, kill the proxy server and configure it 
    124  
    125 ### Create the myproxy server configuration file ### 
     124}}} 
     125 1. If everything is all right, kill the proxy server and configure it. 
     126 1. Create the myproxy server configuration file 
     127{{{ 
    126128  accepted_credentials  "*" 
    127129  authorized_retrievers "*" 
     
    142144  certificate_out_dir /usr/local/globus-5.2.0/var/lib/globus/simple_ca/newcerts 
    143145  certificate_mapapp "/etc/grid-security/certificate_map_app.sh" 
    144   #Store this in: /etc/myproxy-server.config  
    145  
    146 ### Create certificate map application, which generates the new user id's ### 
     146}}} 
     147    Store this in: /etc/myproxy-server.config  
     148 1. Create certificate map application, which generates the new user id's 
     149{{{ 
    147150  #!/bin/sh 
    148151  echo "certificate_map_app called: /O=Grid/OU=GlobusTest/OU=simpleCA-test/OU=local/CN=$1" >> /var/log/pam_credential_translation.log 
    149152  echo "/O=Grid/OU=GlobusTest/OU=simpleCA-test/OU=local/CN=$1" 
    150   #And store this in /etc/grid-security/certificate_map_app.sh 
    151  
    152 ### Create myproxy-credential-translation configuration file ### 
     153}}} 
     154 1. And store this in `/etc/grid-security/certificate_map_app.sh` 
     155 1. Create myproxy-credential-translation configuration file  
     156{{{ 
    153157  auth required pam_credential_translation.so sha256passwd=<md5 hex encoded hash> 
    154158  account  required pam_credential_translation.so sha256passwd=<md5 hex encoded hash> 
    155159  #Store this in /etc/pam.d/ 
    156  
    157 ### TESTING on a client machine ### 
     160}}} 
     161 1. Testing on a client machine 
     162{{{ 
    158163  myproxy-get-trustroots -s <myproxy server FQDN> 
    159164  myproxy-logon -s <myproxy server FQDN>