Hi,
It seems that the mapping problem is somewhat fixed,
to the extent that the user can login (run the gridftp command).
However, it seems the correct mapping is not being done, and thus
the lgc-tags operation fails.
with the following errors:-
##
lcg-tags --verbose --debug --add --vo $VO --tags $TAG --ce
grid002.jet.efda.org
VO: biomed
Endpoint: gsiftp://grid002.jet.efda.org/opt/edg/var/info/biomed
lcg-tags: remote copy from
gsiftp://grid002.jet.efda.org/opt/edg/var/info/biomed/lock to
/tmp/lcg-tagsohsVLa failed
lcg-tags: remote copy from /tmp/vZO9WHVbVc to
gsiftp://grid002.jet.efda.org/opt/edg/var/info/biomed/lock failed
lcg-tags: error: cannot create remote lockfile.
##
The user is coming in as Role=lcgadmin, and I was expecting it to
get mapped to the sgm account (biomedsgm), which have the correct
permissions for /opt/edg/var/info/biomed/. However, the user is
being mapped to a normal biomed account (bioNNN).
Proxy info for user, shows the following attribute
attribute : /biomed/Role=lcgadmin/Capability=NULL
How do I get the biomed DN with Role=lcgadmin to be mapped
to biomedsgm.
This is what I now have in my grid-mapfile on Argus
"/biomed/Role=lcgadmin/Capability=NULL" biomedsgm
"/biomed/Role=lcgadmin" biomedsgm
"/biomed/Role=production/Capability=NULL" biomedprd
"/biomed/Role=production" biomedprd
"/biomed/Role=NULL/Capability=NULL" .bio
"/biomed" .bio
Many Thanks
krishan
|