Differences

This shows you the differences between two versions of the page.

--- hpc:othernotes [2014/07/28 15:49]
jchilders created
+++ hpc:othernotes [2015/01/15 19:31] (current)
jchilders
@@ Line 2: / Line 2: @@
   * [[ hpc:athenaEvtDisplay | Athena Event Displays ]]
+==== Grid Certificates, Robotic Certificates ====
+=== Using encoded tarballs ===
+If given an encoded tarball use the following command
+<code bash>
+openssl aes-256-cbc -d -in filename.tgz.enc | tar zxf -
+</code>
+=== Removing a password ===
+In the case of a Robotic Certificate, a password on the key will stop programs which use it so the password must be removed. Just use:
+<code bash>
+openssl rsa -in password-keyfile.pem -out passwordless-keyfile.pem
+</code>
+It will ask for the password on the old file, and you can skip entering one for the new file.
+  * ''openssl x509'' is for pem-formatted certificates
+  * ''openssl rsa'' is for key files
+=== Updating certificates CA directory ===
+I've typically had to update the local copy of our CA certificate folder by grabbing the one at CERN:
+''lxplus.cern.ch:/etc/grid-security/certificates''
+and copying it locally. Otherwise you get errors from ''voms-proxy-init''.
+=== Testing Success ===
+To test the robotic key/cert you can do the following:
+<code bash>
+voms-proxy-init --cert </path/to/cert.pem> --key </path/to/key.pem> --certdir </path/to/certificates> -verify
+</code>

ATLAS Support Center