Hold on a minute, I think there is some confusion here (well, at least I
am confused).
When ssh keys were first mentioned on this thread, it was referring to
having *password-less* login to dCache's ssh admin interface. Derek has
stated that this uses rsa1 keys.
Mona: Does IC have this facility setup?
Edinburgh and IC both have pool nodes running non-SL3 operating systems.
In these cases, instead of running the full LCG middleware stack on the
pool nodes (including security etc) we only have the dCache software
installed. If you also want a gridftp door on the pool node, it is
necessary to have the dcache.kpwd file (essentially the grid-map-file). In
order to do this, a quick fix/hack is to set up a cron job to copy over
the dcache.kpwd file from the admin node. In order to do this, ssh-keys
are required. This procedure is detailed here:
http://wiki.gridpp.ac.uk/wiki/DCache_FAQ#Non-SL3.2FNon-LCG_Pool_node
Let me know if this still isn't making sense.
Cheers,
Greig
On Wed, 24 Aug 2005, Mona Aggarwal wrote:
> > -----Original Message-----
> > From: GRIDPP2: Deployment and support of SRM and local storage
> > management [mailto:[log in to unmask]] On Behalf Of Jensen,
> > J (Jens)
> > Sent: 24 August 2005 15:37
> > To: [log in to unmask]
> > Subject: Re: Another item for workshop
> >
> > > Configuration on the admin-node as follows:
> > > Generate public/private dsa key pair.
> > >> ssh-keygen -t dsa
> > >=====================================================================
> > > [root@gfe02 .ssh]# ls
> > > authorized_keys
> > > config
> > > id_dsa_dcachepwd
> > > id_dsa_dcachepwd.pub
> > > known_hosts
> >
> > DSA is SSH 2.
>
> We are using SSH 2 to generate public/private dsa key pair.
>
> > Did you need SSH 1 or am I just confused?
>
> Creating a version 2 keypair is similar to creating a version 1 keypair.
> Except that the SSH protocol version 2 uses different encryption algorithms
> for its encryption.
>
> Regards,
> Mona
> ====================================
> Mona Aggarwal
> Tel. (+44) 20 759 47809
> Imperial College London
> High Energy Physics Department
> Prince Consort Road, London, SW7 2BW
> ====================================
>
--
=======================================================================
Dr Greig A Cowan http://www.ph.ed.ac.uk/~gcowan1
School of Physics, University of Edinburgh, James Clerk Maxwell Building
TIER-2 STORAGE SUPPORT PAGES: http://wiki.gridpp.ac.uk/wiki/Grid_Storage
=======================================================================
|