 |
 |
On Wed, 27 Dec 2006, Antun Balaz wrote: > > Hi Antun, > > > > Have you searched for the same date/time in > > /var/log/glite/gatekeeper.log ? You might find more information there... > > > > Cheers, > > Indeed, there is more information there (see below). Any ideas on what this > might mean? Something misconfigured? Btw. the user is from SEE VO... > > Thanks, Antun > > [...] > LCAS 0: 2006-12-23.00:05:52.977928.0000016645.0000000561 : > lcas_plugin_voms-plugin_confirm_authorization_from_x509(): Generic > verification error for VOMS (failure)! > LCAS 0: 2006-12-23.00:05:52.977928.0000016645.0000000561 : > lcas_plugin_voms-plugin_confirm_authorization_from_x509(): voms plugin failed This happens when the VOMS extensions _are_ present, but: 1. either they have expired (their max. lifetime typically is a few days, whereas the underlying grid proxy can have a lifetime up to the expiration time of the user/host certificate); 2. or they were signed by a server whose host cert is not present in /etc/grid-security/vomsdir on the CE. I will make a Wiki entry about it.