The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.
Difference between revisions of "EGI Myproxy with OAuth"
| Line 6: | Line 6: | ||
<br> | <br> | ||
1. | 1. Store your certificate into your EGI SSO account. This is done automatically when you visit your account at https://www.egi.eu/sso/user with a browser containing your certificate. | ||
Generate a VOMS proxy that identifies you at the EGI storage sites you want to use | (If you happen to have a SHA-2 certificate, i.e. its signature algorithm is using any of the [http://en.wikipedia.org/wiki/SHA-2 SHA-2] hash functions, like sha512WithRSAEncryption, the certificate will not be stored, please contact it-support@egi.eu). | ||
<br> | |||
2. Generate credentials. | |||
Generate a VOMS proxy that identifies you at the EGI storage sites you want to use as endpoints for the file transfers. The proxy can be generated for example on a User Interface machine provided for you by your VO or by your institute. | |||
<pre> | <pre> | ||
| Line 41: | Line 46: | ||
</pre> | </pre> | ||
3. After you create an account at globusonline.eu you can associate it with EGI SSO and later use only EGI SSO to log-into globusonline.eu along with EGI catch-all Myproxy server. How to do this, please continue with a guidelines [[Globus_Online_cookbook_for_EGI_VOs#VO_Members |here]]. | |||
Latest revision as of 13:05, 30 October 2013
Description
This page shows how to use EGI catch-all Myproxy server dedicated for using with globusonline.eu. Myproxy.egi.eu server has OAuth module in place for associating the EGI SSO and globusonline.eu accounts.
Note: You can use MyProxy Tool GUI together with EGI SSO as well.
1. Store your certificate into your EGI SSO account. This is done automatically when you visit your account at https://www.egi.eu/sso/user with a browser containing your certificate.
(If you happen to have a SHA-2 certificate, i.e. its signature algorithm is using any of the SHA-2 hash functions, like sha512WithRSAEncryption, the certificate will not be stored, please contact it-support@egi.eu).
2. Generate credentials.
Generate a VOMS proxy that identifies you at the EGI storage sites you want to use as endpoints for the file transfers. The proxy can be generated for example on a User Interface machine provided for you by your VO or by your institute.
-bash-3.2$ voms-proxy-init --voms biomed Enter GRID pass phrase for this identity: Contacting cclcgvomsli01.in2p3.fr:15000 [/O=GRID-FR/C=FR/O=CNRS/OU=CC-IN2P3/CN=cclcgvomsli01.in2p3.fr] "biomed"... Remote VOMS server contacted succesfully. Created proxy in /tmp/x509up_u507. Your proxy is valid until Fri May 24 04:12:03 CEST 2013
Upload VOMS proxy to EGI catch-all MyProxy server.
-bash-3.2$ myproxy-init -l <User's EGI SSO username> -s myproxy.egi.eu -v Your identity: /O=dutchgrid/O=users/O=egi/CN=Karolis Eigelis Enter GRID pass phrase for this identity: Creating proxy ........................................................................ Done Proxy Verify OK Your proxy is valid until: Thu May 30 16:15:47 2013 Enter MyProxy pass phrase: <User's EGI SSO password> Verifying - Enter MyProxy pass phrase: <User's EGI SSO password> A proxy valid for 168 hours (7.0 days) for user ekarolis now exists on myproxy.egi.eu.
3. After you create an account at globusonline.eu you can associate it with EGI SSO and later use only EGI SSO to log-into globusonline.eu along with EGI catch-all Myproxy server. How to do this, please continue with a guidelines here.