-Untar the attached file somewhere. +Untar the attached file somewhere, then: +1: chmod 644 /path/to/gsi_keys/hostcert.pem +1: chmod 600 /path/to/gsi_keys/hostkey.pem +1: in condor_config set GSI_DAEMON_DIRECTORY = /path/to/gsi_keys +2: in condor_config set GRIDMAP = /path/to/gsi_keys/mapfiles/grid-mapfile +3: in condor_config set SEC_DEFAULT_AUTHENTICATION = REQUIRED +4: in condor_config set SEC_DEFAULT_AUTHENTICATION_METHODS = GSI +and that should do it on the Condor daemon side of things. -1: set GSI_DAEMON_DIRECTORY to /path/to/gsi_keys -2: set GRIDMAP to /path/to/gsi_keys/mapfiles/grid-mapfile -3: set SEC_DEFAULT_AUTHENTICATION to REQUIRED -4: set SEC_DEFAULT_AUTHENTICATION_METHODS to GSI +On the client side, for simple testing without the need for gsi-proxy-init and friends, you could set the following environment variables for the tools to use: -and that should do it! + setenv X509_USER_CERT /path/to/gsi_keys/hostcert.pem + setenv X509_USER_KEY /path/to/gsi_keys/hostkey.pem