How To Use Proxies With Ssl

Not logged in

• Browse
• Help
• Home
• Login
• Reports
• Search
• Timeline
• Wiki

• Contents
• No-Diff
• Text

 
   AUTH_SSL_ALLOW_CLIENT_PROXY = True
   AUTH_SSL_REQUIRE_CLIENT_MAPPING = True
+  COLLECTOR.ALLOW_ADVERTISE_STARTD = $(UNMAPPED_USERS), $(USERS), ssl@unmapped
 
 You can put these parameters in the new file
 /etc/condor-ce/config.d/90-ssl-auth
@@ -67,6 +68,10 @@
   AUTH_SSL_CLIENT_KEYFILE = /etc/grid-security/hostkey.pem
   AUTH_SSL_CLIENT_CADIR = /etc/grid-security/certificates
 
+Finally, remove (or comment out) the following line in /usr/share/condor-ce/mapfiles.d/50-common-default.conf:
+
+  SSL /\/CN=([.A-Za-z0-9\/=[:space:]-]+)/ \1@unmapped.htcondor.org
+
 4. The client's certificate subject must be added to HTCondor-CE's
 mapfiles by creating one or more files under /etc/condor-ce/mapfiles.d/.
 The format is similar to the traditional gridmapfile, but with some

This work is supported by NSF under Cooperative Agreement OAC-2030508 as part of the PATh Project. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the NSF. Site built using CVSTrac.