Thanks Mona,
I just have a quick question...
> At IC, we are using ssh keys to interface with dCache-admin.
>
> Configuration on the admin-node as follows:
> Generate public/private dsa key pair.
> > ssh-keygen -t dsa
> =====================================================================
> [root@gfe02 .ssh]# ls
> authorized_keys
> config
> id_dsa_dcachepwd
> id_dsa_dcachepwd.pub
> known_hosts
>
> [root@gfe02 .ssh]# more authorized_keys
> from="gfe02.hep.ph.ic.ac.uk,cmsdsk00.hep.ph.ic.ac.uk,sedsk00.hep.ph.ic.ac.uk
> ",command="/bin/cat
> /opt/d-cache/etc/dcache.kpwd",no-port-forwarding,no-X11-forwarding,no-agent-
> forwarding ssh-dss (add-id_dsa_dcachepwd.pub)
I have the same contents of authorized_keys as above, but instead of
adding id_dsa_dcachepwd.pub at the end, I have the public key of my pool
node. As the contents show, this allows you to cat the contents of
/opt/d-cache/etc/dcache.kpwd. This procedure is explained here:
http://wiki.gridpp.ac.uk/wiki/DCache_FAQ#Non-SL3.2FNon-LCG_Pool_node
Why do you now say that you need to put the public key of the admin node
in authorized_keys?
Let me know if what I said doesn't make sense.
Cheers,
Greig
> [root@gfe02 .ssh]# more config
> Host dcacheadm
> Hostname gfe02
> user admin
> Port 22223
> Cipher blowfish
> Protocol 1
> Ciphers blowfish-cbc
>
> [root@gfe02 .ssh]#
>
> Configuration on the pool-node as follows:
> ======================================================
> [root@cmsdsk00 ~]# cd .ssh
> [root@cmsdsk00 .ssh]# ls
> authorized_keys
> id_dsa_dcachepwd
> id_dsa_dcachepwd.pub
> known_hosts
> [root@cmsdsk00 .ssh]# more authorized_keys
> ssh-dss (id_dsa_dcachepwd.pub)
>
> =======================================
>
> Login to the admin interface:
> > ssh dcacheadm < (output-generated by the script file)
>
>
> Regards,
> Mona
> ====================================
> Mona Aggarwal
> Tel. (+44) 20 759 47809
> Imperial College London
> High Energy Physics Department
> Prince Consort Road, London, SW7 2BW
> ====================================
>
--
=======================================================================
Dr Greig A Cowan http://www.ph.ed.ac.uk/~gcowan1
School of Physics, University of Edinburgh, James Clerk Maxwell Building
TIER-2 STORAGE SUPPORT PAGES: http://wiki.gridpp.ac.uk/wiki/Grid_Storage
=======================================================================
|