Hi,
On 8 October 2013 17:19, Chris Brew <[log in to unmask]> wrote:
> Hi,
>
> AFAIKT the lcgdm/voms module is the cernops/puppet-voms module published from github into puppetforge for ease of installation.
Right, I just read the description. However, I am not sure if this is
an old version or if one of the dependencies is simply missing (voms
uses puppetlabs/mysql as well).
>
> I'm not sure what the vosupport module does - and it doesn't have enough (any) documentation to make me want to use it. I suspect it's designed just for internal use.
It creates pool accounts and groups, gridmapdir and uses the voms module.
>
> I use ldap for the accounts internally but I think we've gone a bit far for common UID/GIDs at all sitesand it probably doesn't gain us much since anything external is accessed with a proxy
It is more of a way to safe work for sites (especially new ones) to
create pool accounts. Even for YAIM you have to create the users.conf
which can be quite long. I was just wondering what the easiest way
would be to say "I am supporting VO X, give me the list of pool
accounts I need".
Cheers,
Luke
>
> Yours,
> Chris.
>
>> -----Original Message-----
>> From: Testbed Support for GridPP member institutes [mailto:TB-
>> [log in to unmask]] On Behalf Of L Kreczko
>> Sent: 08 October 2013 17:10
>> To: [log in to unmask]
>> Subject: Re: lcgdm/voms puppet module
>>
>> Hi Chris,
>>
>> First time I see this module, so I can't tell. It is probably worth comparing to
>> the two from CERNops:
>> https://github.com/cernops/puppet-voms
>> https://github.com/cernops/puppet-vosupport
>>
>> The interesting part of the CERNops modules is that they have a LDAP server
>> (not reachable outside CERN though [1]) which gives them the pool accounts
>> (as far I understand).
>> I would find it useful if we could have something like this in the UK:
>> same UIDs and GIDs across all sites.
>>
>> Either way it seems that many parties (DESY, CERNops, us & others) are
>> developing the same things in parallel. This sounds like a lot of duplicated
>> (and potentially wasted) effort.
>> Any ideas on how to avoid that?
>>
>> Cheers,
>> Luke
>>
>> [1]
>> https://github.com/cernops/puppet-vosupport/issues/1
>>
>> On 8 October 2013 16:50, Chris Brew <[log in to unmask]> wrote:
>> > Hi All,
>> >
>> > Is anyone using the lcgdn/voms puppet module[1] for configuring voms
>> clients.
>> >
>> > It seems to work and comes with a few preconfigured vo configs.
>> >
>> > I was considering creating more for other VOs I support and submitting
>> them back and was wondering if anyone had already created some I could
>> steal.
>> >
>> > Yours,
>> > Chris.
>> >
>> > [1] http://forge.puppetlabs.com/lcgdm/voms
>> >
>> > --
>> > Dr Chris Brew
>> > Scientific Computing Manager
>> > Particle Physics Department
>> > STFC - Rutherford Appleton Laboratory
>> > Harwell Oxford,
>> > Didcot
>> > OX11 8TZ
>> > +44 1235 446326
>> >
>> >
>> > --
>> > Scanned by iCritical.
>>
>>
>>
>> --
>> *********************************************************
>> Dr Lukasz Kreczko +44 (0)117 928 8724
>> CMS Group
>> School of Physics
>> University of Bristol
>> *********************************************************
> --
> Scanned by iCritical.
--
*********************************************************
Dr Lukasz Kreczko +44 (0)117 928 8724
CMS Group
School of Physics
University of Bristol
*********************************************************
|