ATLAS Support Center

User Tools

Site Tools

Trace: fpad
hpc:othernotes

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision 		Previous revision
Last revision Both sides next revision
hpc:othernotes [2014/07/28 15:49]
jchilders created 		hpc:othernotes [2015/01/15 19:29]
jchilders
Line 2: Line 2:
  
   * [[ hpc:athenaEvtDisplay | Athena Event Displays ]]   * [[ hpc:athenaEvtDisplay | Athena Event Displays ]]
 +
 +
 +==== Grid Certificates, Robotic Certificates ====
 +
 +=== Using encoded tarballs ===
 +
 +If given an encoded tarball use the following command
 +<code bash>
 +openssl aes-256-cbc -d -in filename.tgz.enc | tar zxf -
 +</code>
 +
 +=== Removing a password ===
 +In the case of a Robotic Certificate, a password on the key will stop programs which use it so the password must be removed. Just use:
 +<code bash>
 +openssl x509 -in password-keyfile.pem -out passwordless-keyfile.pem
 +</code>
 +It will ask for the password on the old file, and you can skip entering one for the new file. You may also need to change ''x509'' to ''rsa'' or whichever protocol is being used.
 +
 +=== Updating certificates CA directory ===
 +I've typically had to update the local copy of our CA certificate folder by grabbing the one at CERN:
 +''lxplus.cern.ch:/etc/grid-security/certificates''
 +and copying it locally. Otherwise you get errors from ''voms-proxy-init''.
 +
 +=== Testing Success ===
 +To test the robotic key/cert you can do the following:
 +<code bash>
 +voms-proxy-init --cert </path/to/cert.pem> --key </path/to/key.pem> --certdir </path/to/certificates> -verify
 +</code>
 +
 +
 +
hpc/othernotes.txt · Last modified: 2015/01/15 19:31 by jchilders

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: Public Domain
Public Domain Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki