Gonçalo,
You are perfectly right. DPM uses standard gridftp which requires this file
to exist with an entry for the DN. AFAIK it is not used by DPM but gridftp
requires this entry before launching DPM plugin for gridftp.
Michel
--On jeudi 26 février 2009 19:37 +0000 Gonçalo Borges <[log in to unmask]>
wrote:
> Hi All...
>
> I was not speaking about the DPM DB mapping which seems to what you guys
> are referring but to the local physical mapping in the machine. What I
> see is that the file is never stored if the user DN is not registered in
> /etc/grid/grid-mapfile (the VO pool account defined here doesn't matter).
> If I have everything correctly set, this seem to be a mandatory
> configuration to, afterwards, register the file in DPM DB defining
> virtual ids according to the VOMS extensions coming with the user proxy.
>
> I can continuing the discussion in the mailing list Maarten point me out
>
> Cheers
> Goncalo
>
>
>
> Maarten Litmaath wrote:
>> Gonçalo Borges wrote:
>>
>>> So, what you say is that the local mapping in the DPM server is
>>> "grid-mapfile / lcgdm-mapfile" based... Is that it?
>>
>> Only for grid proxies, not for VOMS proxies.
>>
>> Look at the EGEE'08 presentation on SE security (only covers DPM):
>>
>> http://indico.cern.ch/sessionDisplay.py?sessionId=47&slotId=0&confId=322
>> 20#2008-09-23
>>
>>
>> Other services are also described:
>>
>> http://indico.cern.ch/sessionDisplay.py?sessionId=40&slotId=0&confId=322
>> 20#2008-09-23
>>
>>
*************************************************************
* Michel Jouvin Email : [log in to unmask] *
* LAL / CNRS Tel : +33 1 64468932 *
* B.P. 34 Fax : +33 1 69079404 *
* 91898 Orsay Cedex *
* France *
*************************************************************
|