On Fri, 17 Nov 2006, Maarten Litmaath wrote:
> [...]
>
> You can also look on gridce.iihe.ac.be in the "gram_*.log" files in the
> home directory of the account the DN got mapped to: they may show why
> the state lock file could not be locked (e.g. "Permission denied").
>
> To find the pool account(s) in this case:
>
> --------------------------------------------------------------------------------
> for i in `ls -li /etc/grid-security/gridmapdir/ | awk '/heyninck/ { print $1 }'`
> do
> ls -li /etc/grid-security/gridmapdir/ | awk "\$1 == $i { print \$NF }"
> done
> --------------------------------------------------------------------------------
>
> Note: every different set of VOMS attributes gets its own pool account!
I found these entries in your gridmapdir indeed:
--------------------------------------------------------------------------------
755331 -rw-r--r-- 2 root root 0 Nov 17 12:12
%2fc%3dbe%2fo%3dbegrid%2fou%3dvub%2fou%3ddntk%2fcn%3dheyninck
755341 -rw-r--r-- 2 root root 0 Nov 17 22:56
%2fc%3dbe%2fo%3dbegrid%2fou%3dvub%2fou%3ddntk%2fcn%3dheyninck%3abecms
755361 -rw-r--r-- 2 root root 0 Nov 17 11:09
%2fc%3dbe%2fo%3dbegrid%2fou%3dvub%2fou%3ddntk%2fcn%3dheyninck%3acms
--------------------------------------------------------------------------------
The user used a grid proxy and two different VOMS proxies on the same day.
For the RB they are all equivalent, but not for the CE...
Cheers,
Maarten
|