Difference: SystemAdministratorGuideForEMI2 (24 vs. 25)

Revision 252012-12-13 - LisaZangrando

Line: 1 to 1
 
META TOPICPARENT name="SystemAdministratorDocumentation"

System Administrator Guide for CREAM for EMI-2 release

Line: 561 to 561
 
0.0.0.0.1 What to do in case of host certificate update
There are two possible approaches: via YAIM or by manually.
Changed:
<
<
via YAIM:
>
>
using YAIM:
 
  • copy the new certificate (i.e. hostcert.pem, hostkey.pem) into the /etc/grid-security directory
  • set the proper mode and ownerships doing:
Line: 572 to 572
 
  • reconfigure CREAM via YAIM
Changed:
<
<
by manually:
  • copy the new certificate (i.e. hostcert.pem, hostkey.pem) into the /etc/grid-security and /home/glite/.certs/ directories
  • make a copy of the new certificate as following:
>
>
manually:
  • copy the new certificate (i.e. hostcert.pem, hostkey.pem) into the /etc/grid-security and $GLITE_HOME_DIR/.certs (NB: the glite home directory may be located in /home/glite/.certs/ or /var/glite/.certs/, depending if the CREAM installation has been done as EMI-1 upgrade or not) directories
  • make a copy of the new certificate as follows:
 
cp /etc/grid-security/hostcert.pem /etc/grid-security/tomcat-cert.pem
cp /etc/grid-security/hostkey.pem /etc/grid-security/tomcat-key.pem
Line: 585 to 585
 chown root.root /etc/grid-security/hostkey.pem chown root.root /etc/grid-security/tomcat-cert.pem chown root.root /etc/grid-security/tomcat-key.pem
Changed:
<
<
chown root.root /home/glite/.certs/hostcert.pem chown root.root /home/glite/.certs/hostkey.pem
>
>
chown root.root $GLITE_HOME_DIR/.certs/hostcert.pem chown root.root $GLITE_HOME_DIR/.certs/hostkey.pem
 chmod 600 /etc/grid-security/hostcert.pem chmod 400 /etc/grid-security/hostkey.pem chmod 600 /etc/grid-security/tomcat-cert.pem chmod 400 /etc/grid-security//tomcat-key.pem
Changed:
<
<
chmod 600 /home/glite/.certs/hostcert.pem chmod 400 /home/glite/.certs/hostkey.pem
>
>
chmod 600 $GLITE_HOME_DIR/.certs/hostcert.pem chmod 400 $GLITE_HOME_DIR/.certs/hostkey.pem
 
  • restart the following services:
    • tomcat5 on SL5 (or tomcat6 on SL6)
    • globus-gridftp
Changed:
<
<
    • LB
>
>
    • glite-lb-locallogger
 

0.0.0.1 Configuration via yaim

 
This site is powered by the TWiki collaboration platformCopyright © 2008-2020 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback