Testbed Support for GridPP member institutes
> [mailto:[log in to unmask]] On Behalf Of Coles, J (Jeremy)
said:
> For those of you not on LCG-ROLLOUT I forward this message.
> Please take
> note.
The main message being that anyone who doesn't have a host certificate
on their MON box should get one now. Also, assuming that you use the
standard ports you will need 8443 open for the secure connector.
Stephen
> >Laurence Field added:
>
> >Please note that the test for the Authentication R-GMA connector has
> >been added to the SFTs. When running the Yaim configuration
> on the MON
>
> >box, if the host certificate is found, the authenticated
> connector will
>
> >automatically be configured.
> >
> >Laurence
>
>
> -----Original Message-----
> From: Markus Schulz [mailto:[log in to unmask]]
> Sent: 05 December 2005 18:58
> To: project-egee-roc-managers (EGEE ROC managers and alternates)
> Cc: LHC Computer Grid - Rollout; project-eu-egee-cic-managers
> Subject: Upcoming upgrade, time to prepare
>
>
> Dear ROC, CIC, and Site Managers,
>
> since quite a while an authenticated version of R-GMA has been
> around. Up to now we have run R-GMA in a mode where the
> service could
> be used
> with or without authorization.
> As most of you are aware, in depth discussions between the grid
> security experts have taken place and it became clear that switching
> to the more secure authenticated access will be a significant
> improvement.
>
> We are currently finishing our tests using R-GMA-5 and will
> start an
> upgrade shortly.
>
> To prepare for this switch and make a smooth transition sites can do
> the following:
>
> All sites:
> get a host certificate for you Mon-box and archivers (we are not
> aware of any run outside CERN or RAL)
>
> Large sites:
> Due to the need to migrate clients and servers at the same time, it
> might help to run during the upgrade two R-GMA MON-boxes side by side.
> This would allow to migrate without interrupting the service for an
> extended period. If you choose this path you might want to look for
> an additional machine.
>
> We look forward to your comments, questions, and suggestions.
>
>
> markus
>
|