Difference between revisions of "APEL/UsingAuth"
< APEL
Jump to navigation
Jump to search
Line 12: | Line 12: | ||
== Running == | == Running == | ||
* bin/run-auth | * bin/run-auth | ||
[[Category:Accounting]] |
Latest revision as of 18:36, 28 February 2012
The authentication method is very simple. All messages received from the SSM come signed by a DN which is extracted by the SSM. In order for the messages to be accepted, that DN must be in a master file read by the SSM.
The Authentication gets DNs from three sources:
- GOCDB: all nodes registered as glite-APEL
- a file containing extra DNs which are allowed
- a file containing DNs which are banned (this list takes precedence)
Configuration
- The environment variable AUTH_HOME must be set to the directory containing bin/, conf/ and src/
- edit $AUTH_HOME/conf/auth.log.cfg to specify the path to the log file.
Running
- bin/run-auth